last executing test programs:

2m19.580697613s ago: executing program 4 (id=103):
socket$inet6_udp(0xa, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
socket$nl_audit(0x10, 0x3, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
r6 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x8, 0x3, 0x288}, &(0x7f0000000140)=<r7=>0x0, &(0x7f0000000380)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r6, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r4, r5, 0x0)

2m19.448233335s ago: executing program 4 (id=104):
socket$inet6_udp(0xa, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
socket$nl_audit(0x10, 0x3, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
r6 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x8, 0x3, 0x288}, &(0x7f0000000140)=<r7=>0x0, &(0x7f0000000380)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r6, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r4, r5, 0x0)

2m19.253647717s ago: executing program 4 (id=107):
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x9, 0x7ffc1ffb}]})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x221081e, &(0x7f0000000340)={[{@grpid}, {@journal_dev={'journal_dev', 0x3d, 0x7fff}}, {@mb_optimize_scan}, {@dioread_lock}]}, 0x1, 0x4fc, &(0x7f0000000ac0)="$eJzs3c9vG1kdAPDvOHHipNlNdtkDINgtuwsFVXUSdzda7QEtJ4TQSog9gtQNiRtFseModpZN6CE9c0WiEic48gdw7ok7FwQ3LuWAxI8I1CBxMJrxJHVTu42axI7iz0cazXvzpv5+X9N5r35J/AIYWdcjYj8iJiLi04iYza8n+REfdY70vscH91YOD+6tJNFuf/LPJGtPr0XXn0ldy1+zFBE//G7ET5Jn4zZ39zaWa7Xqdl6fb9W35pu7e7fW68tr1bXqZqWytLi08MHt9yvn1te36hN56auP/rD/rZ+lac3kV7r7cZ46XS8ex0mNR8T3LyLYEIzl/ZkYdiK8lEJEvB4Rb2fP/2yMZV9NAOAqa7dnoz3bXQcArrpCtgaWFMr5WsBMFArlcmcN742YLtQazdbNu42dzdXOWtlcFAt312vVhXytcC6KSVpfzMpP6pUT9dsR8VpE/GJyKquXVxq11WH+xwcARti1E/P/fyY78z8AcMWVhp0AADBw5n8AGD3mfwAYPeZ/ABg9nfl/athpAAAD5P0/AIwe8z8AjJQffPxxerQP88+/Xv1sd2ej8dmt1Wpzo1zfWSmvNLa3ymuNxlr2mT313q9SPC7VGo2txfdi5/O5b281W/PN3b079cbOZutO9rned6qdO/cH1DsAoJfX3nr45ySdkT+cyo7o2suhONTMgItWGHYCwNCMDTsBYGjs9gWj6wzv8S0PwBXRY4vep5R6/YJQu91uX1xKwAW78SXr/zCqutb//RQwjBjr/zC6rP/D6Gq3k9Pu+R+nvREAuNys8QN9vv//en7+bf7NgR+vnrzjwUVmBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJfb0f6/5Xwv8JkoFMrliFciYi6Kyd31WnUhIl6NiD9NFifT+uKQcwYAzqrwtyTf/+vG7LszTzW9ee24OBERP/3VJ7/8fLnV2v5jxETyr8mj660H+fXK4LMHAF7saJ7Ozl1v5B8f3Fs5OgaZz9+/ExGlTvzDg4k4PI4/HuPZuRTFiJj+d5LXO5KutYuz2L8fEV/s1f8kZrI1kM7Opyfjp7FfGWj8wlPxC1lb55z+XXzhHHKBUfMwHX8+6vX8FeJ6du79/JeyEers8vEvfamVw2wMfBL/aPwb6zP+XT9tjPd+/71OaerZtvsRXx6POIp92DX+HMVP+sR/95Tx//KVN9/u19b+dcSN6B2/O9Z8q74139zdu7VeX16rrlU3K5WlxaWFD26/X5nP1qjn+88G//jw5qv92tL+T/eJX3pB/79+yv7/5n+f/uhrz4n/zXd6xS/EG8+Jn86J3zhl/OXp35X6taXxV/v0/0Vf/5unjP/or3vPbBsOAAxPc3dvY7lWq24rKFz+QvpP9hKk0auQDCyxiejd9PN3Os/0iaZ2+6Vi9RsxzmPVDbgMjh/6iPjvsJMBAAAAAAAAAAAAAAB6GsRvLA27jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFxd/w8AAP//0fvOfg==")
fsync(0xffffffffffffffff)

2m18.98791993s ago: executing program 4 (id=114):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
write$selinux_load(r2, &(0x7f0000000000)=ANY=[], 0x44f0)

2m18.891664422s ago: executing program 4 (id=116):
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={&(0x7f00000006c0)={0x54, r2, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x2b, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x0, 0x1, @ipv6=@loopback}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x8000001}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x0, 0x8, 0xfff}, @IPVS_DEST_ATTR_TUN_FLAGS={0x0, 0xf, 0x1}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40011}, 0x4000)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4)
openat$nci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$PIO_CMAP(r0, 0x4b71, &(0x7f0000000040)={0x2, 0x4, 0x2, 0x2, 0x8})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x9, 0x7ffc1ffb}]})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_LIMIT={0x8}]}}]}, 0x3c}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x221081e, &(0x7f0000000340)={[{@grpid}, {@journal_dev={'journal_dev', 0x3d, 0x7fff}}, {@mb_optimize_scan}, {@dioread_lock}]}, 0x1, 0x4fc, &(0x7f0000000ac0)="$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")
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=0xffffffffffffffff, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x1, 0xffffffffffffff3d, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r8}, 0x10)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)=@newtaction={0x1bc, 0x30, 0x1, 0x0, 0x0, {}, [{0x1a8, 0x1, [@m_mirred={0xdc, 0x15, 0x0, 0x0, {{0xb}, {0x84, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x6, 0x5, 0x100, 0x7}, 0x2, r5}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0xfffffff4, 0xc, 0x7fffffff}, 0x2, r5}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0xf, 0x5, 0x80000001, 0x2}, 0x3, r5}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x3, 0x0, 0x400, 0x1}, 0x2, r5}}]}, {0x2d, 0x6, "5211cb651214d7381f48dbf086e0db86ed3634a71506512754e75d4222011978306721567e3baa9f72"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_ife={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0xe4}}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_SKBMARK={0x8}]}]}, {0x4}, {0xc}, {0xc}}}, @m_nat={0x74, 0xc, 0x0, 0x0, {{0x8}, {0x4}, {0x4b, 0x6, "dd1f9ce6c137f0f088e7e6baabc747eb6106674069132dc847dc69eb0c5d97fd2a86d03ab1ecf74f1d9773d617bce6cf1aa66b3f5330ba1465791b94d754d61a942057d76f3cd5"}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}]}, 0x1bc}}, 0x0)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
fsync(0xffffffffffffffff)

2m18.652437934s ago: executing program 4 (id=120):
socket$inet6_udp(0xa, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
socket$nl_audit(0x10, 0x3, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
connect$qrtr(0xffffffffffffffff, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r5 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x8, 0x3, 0x288}, &(0x7f0000000140)=<r6=>0x0, &(0x7f0000000380)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0})
io_uring_enter(r5, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)

2m3.478532898s ago: executing program 32 (id=120):
socket$inet6_udp(0xa, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
socket$nl_audit(0x10, 0x3, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x2}, 0x18)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
connect$qrtr(0xffffffffffffffff, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r5 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x8, 0x3, 0x288}, &(0x7f0000000140)=<r6=>0x0, &(0x7f0000000380)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0})
io_uring_enter(r5, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)

48.219263996s ago: executing program 5 (id=1530):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000440)={0xffffffffffffffff, 0xe0, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x5, &(0x7f0000000280)=[0x0, 0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0], <r0=>0x0, 0xb, &(0x7f0000000340)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000380), &(0x7f00000003c0), 0x8, 0x6a, 0x8, 0x8, &(0x7f0000000400)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r4, 0x84, 0x5, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e24, 0x1, @mcast2, 0x235}}}, 0x84)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
sendmmsg$inet6(r4, &(0x7f0000001740)=[{{&(0x7f0000000480)={0xa, 0x4e21, 0x1, @private2, 0xda}, 0x1c, &(0x7f00000004c0)=[{&(0x7f00000009c0)="2735408e2e00de824eab884f574e3c64db4ca941805c41504c5a197b2a26329b10baf3f1d01961cc8e568fc16369f3e38423497dd354ee3f092ed2a04cf80ab953cc711629d5bc3fdd50b80f62aae7a4675cfb72d3d4e5b15209995d1d9ed36e1cc56d40266dfde774b68a21a7496ebae56d47bfc9e7144f19335ecd74410e690407fde968ef3262498a042d86972fea7add5da9b44b36848cc5a219a3efdbe00daa7d4b1c7fdbe4dd8e0fa9ef83878478410352eb1adfb99968fb6d68e2a380aeec6ed918369aaecf6ad24ce7", 0xcd}, {&(0x7f0000000ac0)="74a8c45d87d9c91abdaf9406a2c794d07c3cd33d6171f658a5f35baf2fe019f413dbed8172ba16bc700bc8ab62dfb3c6d978b608cc32c4bcafb7cb93291351b48a781b214979cf231e1f1f3553c462b5a64dc7cbc3fbe3b738e7281e6b74c77274d2c7dbe7aba25d8e29f763dd44d85e563ecf69e229dcaf88e65ffc63e9004686cc0243349af97f4862fb8e1d112cd28f150a2a7e5ca3ccd6934dadc7dd", 0x9e}, {&(0x7f0000000b80)="9dcf2032a220de4c22c733f5d8d11986db744956e3ae284eecb1f4b360899ce2e20af20f51c8bb713add6255b54d5fb874ac7b33b4c4590f77700b67f31232bf75be63dfe4a984f7a6f1b1b59ffce51420be104eddbf532823d0625cb875444f6f39", 0x62}, {&(0x7f0000000c00)="a74b510a4d9adb58070b284c62830aa043dd6e0dd6af6a673562171410e15f08e46d34f6e16a6c851a7eb6e07e3573400610d80656b737150c71bfce31cde713adb763c84b379fb08670034ee8616808d0a6d4c1aef6f53d4587e239c7f36b936c8818f69126ed45aea79dfeb57f1910c305a89d7c19f9c873a8d92099f7710c1a59f51bd86d7e", 0x87}], 0x4}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000540)="44131d482ad0b253dc5a76071f39568b86bfadef26ef0f78d4f978eb24568ea03a946eaf34dce42b9ce8bc563cd05848", 0x30}, {&(0x7f00000005c0)="b757218cfeedbd19dd6953f934c8cc91a60c2949400d3c5ab4bbb3e7805019661663", 0x22}, {&(0x7f0000000cc0)="aa3b622ef72cb6e4d1ddcb1d3b81c899fa235ae2525be087f8632cd88786f044a46a227a4b4d58a22515eaf0d65538d4320a4382e985f616cf4124d0a21126799f4547430c9560", 0x47}], 0x3}}, {{&(0x7f0000000780)={0xa, 0x4e20, 0x2, @private0, 0x40}, 0x1c, &(0x7f0000000d80)=[{&(0x7f0000000800)="81d0", 0x2}], 0x1, &(0x7f0000000dc0)=[@dontfrag={{0x14}}, @flowinfo={{0x14, 0x29, 0xb, 0x7}}], 0x30}}, {{&(0x7f0000000e00)={0xa, 0x4e23, 0x1, @empty, 0x8000}, 0x1c, &(0x7f00000011c0)=[{&(0x7f0000000e40)="4bddf2fdd92b40c26f754613940c393b727af3ab9eb61eefe7ed04a0a96b972dcec14bd90807b86751390fe9c9c6de65dcf3e53caab0569c6b84a4c5ccc74de887f2bc174002b5bd71cc3de1bdc7a4366aa68c7ac4387ba3a52e07045c553f68f3edd15b2bb3b88d897f6afbf7950129cb939a334713", 0x76}, {&(0x7f0000000ec0)="b27806b9caf940110bbfe469eef45571ead91eb37ecb81460fa522c34a36d077101ee52997638cd2abcd13866fd0f08bb96f77477b4bb60f7e0f919b2b1832b8f4eb25d7d497d63149cf1f085ede13462186f0a201bff3694040a439662880f3041d4e1c535c1079d7ed2b935c", 0x6d}, {&(0x7f0000000f40)="0840839088f952ac79ba0afc1540fb425dc7f2561cda6facf3f38fdc6975fbc09a4409eb736b4b860ee29a9a5545398be31e20332e03ab478cd3e9c676249cba9e158067039bdc41eb0a75a9bb5a95c2c8402f23205165258ae30c2cb9282a96e46fc81b5b67877df6a2f0f4252d51a62d2379b1160f427b8d5ee39c50376861be0b7058558907348594dd8575f3c5cae33426afde16514332aafddc1ca1c7c9cfe16f326faecb1ddc29fa663288ef78cccd", 0xb2}, {&(0x7f0000001000)="06c4e472e72ca9b38fda3b998a6a33823988a1bc9ca468bf4302fbcf3c58fc3d921bf7344fb1a3c2a5b877ff37f8ba3701f9111e0ccc63a82fcc0751b446aad46b0f4563e0b978ae25c25a89bf7a7cc49e60923b530f61a78fa9b00102594b3bf83484cf070f73c466fe8550208aa8ce453fd197056f04832a7c02fa5cc7936b9ca57b5242f30ae3343de51b313fb05c942de10f", 0x94}, {&(0x7f00000010c0)="7478a56d39e0b51750a744ef772671bfafc072d5d2e695162739d7cf9d70bb5c3a3415c602d12db44ed1b3646ff37b1c34e89dc6ed40b886ea5182bd6e38fc9aba401e56655eb4dcef8358c97f5e9ce43ddd45ffdacdfeec8e44f345296e54ae32b80d4b6d94ad377f5835bdd9f46afd1beff9bbb5ad8bf31eca716b70edac6524573409429de7bf72eb2d767317c857214ccc8265cb33eefd665eaf926896c5c150136aef06f0c2b4", 0xa9}, {&(0x7f0000001180)="d00276bb", 0x4}], 0x6, &(0x7f0000001240)=[@tclass={{0x14, 0x29, 0x43, 0xfc3}}, @dstopts_2292={{0x88, 0x29, 0x4, {0x1, 0xd, '\x00', [@calipso={0x7, 0x28, {0x0, 0x8, 0x2, 0xb, [0x80, 0x5, 0xfffffffffffffff7, 0x7]}}, @calipso={0x7, 0x28, {0x0, 0x8, 0x7f, 0x7, [0x40b, 0x21a9, 0x4, 0x9]}}, @padn={0x1, 0x2, [0x0, 0x0]}, @pad1, @pad1, @ra={0x5, 0x2, 0x1f2}, @jumbo={0xc2, 0x4, 0xffffff93}, @ra={0x5, 0x2, 0x80}]}}}, @rthdrdstopts={{0x38, 0x29, 0x37, {0x16, 0x3, '\x00', [@pad1, @hao={0xc9, 0x10, @empty}, @padn={0x1, 0x2, [0x0, 0x0]}]}}}, @rthdr={{0x78, 0x29, 0x39, {0x3a, 0xc, 0x0, 0x7, 0x0, [@loopback, @empty, @dev={0xfe, 0x80, '\x00', 0x29}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00', @dev={0xfe, 0x80, '\x00', 0x2e}]}}}, @hopopts_2292={{0x38, 0x29, 0x36, {0x2f, 0x3, '\x00', [@enc_lim={0x4, 0x1, 0x2}, @ra={0x5, 0x2, 0xfffa}, @calipso={0x7, 0x10, {0x3, 0x2, 0x8, 0x4, [0x0]}}, @enc_lim={0x4, 0x1, 0x1}, @pad1]}}}, @hopopts_2292={{0x150, 0x29, 0x36, {0x3a, 0x26, '\x00', [@calipso={0x7, 0x10, {0x3, 0x2, 0x40, 0x98d, [0x0]}}, @pad1, @generic={0x2, 0xe2, "4b5f3860717f95f02ecb69a84347756d830ee9fccb3a3a2407182e579289ba365de3a26b4b67f22ca804b799c23493eaa078758767b2e93d02450564e1446e1e2a68302f6139b595966d1ab6fdae9ec252cf95d33362a468c5756f2a80f5bfb2017de612316eff4957de9c92d04b712cb00708ac37452723c5b9f5e8eeff3053f0276c0bf731677dd03231d04f4e39ee0cd19e283dc415aa043a1472059f538eb224bed07bb677a866750173ec63c4349d21fd1760bcbc3b6a45b5b718b2a871f4d51f175815c307ede591d541ec2350c4e8eafeda526b441fdbe71d77c734836797"}, @calipso={0x7, 0x20, {0x2, 0x6, 0x3, 0x42, [0x4, 0x5, 0x40f3]}}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @ra={0x5, 0x2, 0xff}, @jumbo={0xc2, 0x4, 0x2}]}}}], 0x2d8}}, {{&(0x7f0000001540)={0xa, 0x4e20, 0x1ff, @mcast1, 0x4}, 0x1c, &(0x7f00000016c0)=[{&(0x7f0000001580)="fdd444a3155679dd6543715bd8e58eb7f8b5d36773eec5617ba5990ac6b4f4af5e241a2be4a6743e86980c2872b39e658032ba940b29e5828fee69791da91dc83821ea8fc563a17b5f98325dce2aecaf92a5fadc9f9e3ff9ba8567f582df0cf2a0c9e886acaf6eba0835de001367c0ecc2d90b9af18643a9d1a1809547d62ee256f8ffb7cc3d8abb45e350b6a334171171f1", 0x92}, {&(0x7f0000001640)="bab47a66be8ecdb5621c8244363187", 0xf}, {&(0x7f0000001680)="e086343a09630c369d2e5b818909993114b34eadac498aeb491991dc7e3fdf8c94af0d3739ad9a38784f05188207b185e5189519ff75adbb9e26f96dd4b5fc", 0x3f}], 0x3, &(0x7f0000001700)=[@dontfrag={{0x14, 0x29, 0x3e, 0x1}}], 0x18}}], 0x5, 0x4000)
socket$nl_generic(0x10, 0x3, 0x10)

48.157379097s ago: executing program 5 (id=1532):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'lo\x00'})

48.071311618s ago: executing program 5 (id=1534):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='sched\x00')
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000040)="0f", 0x1}], 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)={0x28, r2, 0x1, 0x0, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x16}]}]}]}, 0x28}}, 0x2000c050)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'veth1_to_team\x00', <r4=>0x0})
bind$packet(r3, &(0x7f0000000040)={0x11, 0x18, r4, 0x1, 0x3, 0x6, @broadcast}, 0x14)
bind$packet(r3, &(0x7f00000000c0)={0x11, 0x8, r4, 0x1, 0x2, 0x6, @random="0700ffffa1f6"}, 0x14)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000ac0000000000000000000000009500000000000000e72b262c1e0189c6308af9b41f1a15c2867ac31d0430fb4af1971b0cca45de0d380b443c91a54a065436dda3b2b3fe076d174faf62276af1ff8b812cf482de96adede7ac4dc540d51b1812b7ac5dce75fe06180fb07a0000000000009208ecff69d2e78ba5a4718e9ad04a374f54c1097357af7644a5f4bc23c38a940d9be0077616cf75510afa098a9405be8548e633f1fdee530e411c5a3672fc3d3d5634ab38e86cf96d9d96f0cdeaa330e129a3f112b56cdffc10a127834aa7f8e27e6e3112144227e333ad033c06cc5a0ce06e6195929fe99460"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket(0x10, 0x3, 0x0)
connect$netlink(r6, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000000580)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x52}, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x3, &(0x7f0000000180)={@multicast2, @initdev, <r7=>0x0}, &(0x7f00000001c0)=0xc)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r0, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0xb8, r2, 0x4, 0x70bd25, 0x25dfdbfb, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x4000800}, 0x4000801)
r8 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000140)=0x1)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000100)=0x2)

48.009767078s ago: executing program 5 (id=1536):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00', 0x100})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000002140)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff0200}]})
clock_gettime(0x0, &(0x7f00000002c0))
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454da, &(0x7f0000000280)={'bond0\x00', 0x2})
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x14, &(0x7f00000004c0)={[{@delalloc}]}, 0x2, 0x572, &(0x7f0000001380)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
mmap(&(0x7f0000503000/0x3000)=nil, 0x3000, 0x6, 0x10, r4, 0xa5c67000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6, 0x0, 0x5}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000200)={[{@max_batch_time={'max_batch_time', 0x3d, 0x358}}, {@resuid}, {@journal_async_commit}]}, 0x3, 0x458, &(0x7f0000000f00)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f00000000c0)=@filename='./file1\x00', &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x80c2, 0x13a)
fcntl$setlease(r7, 0x400, 0x1)
openat$dir(0xffffff9c, &(0x7f0000000200)='./file1\x00', 0x46102, 0xa)
r8 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r8, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})

47.668660173s ago: executing program 5 (id=1538):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0x2}, 0x18)
set_robust_list(0x0, 0x0)

46.931426433s ago: executing program 5 (id=1544):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000007c0)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x2, 0x0, 0x0, 0x4, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"/544]}, 0x298)

46.884579113s ago: executing program 33 (id=1544):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000007c0)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x2, 0x0, 0x0, 0x4, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"/544]}, 0x298)

2.671436446s ago: executing program 3 (id=2358):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x5, [@float={0x3, 0x0, 0x0, 0x10, 0x8}, @decl_tag={0x3, 0x0, 0x0, 0x11, 0x3}, @struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x4, [{0x0, 0x2}]}]}, {0x0, [0x61, 0x61, 0x2e]}}, 0x0, 0x51, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
epoll_create1(0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x5e, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
r1 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r2, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r3}], 0x2c, 0xffffffffffbffff8)
dup2(r2, r3)
fcntl$setown(r2, 0x8, r1)
tkill(r1, 0x13)

2.641673096s ago: executing program 3 (id=2361):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000340), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="08010000", @ANYRES16=r1, @ANYBLOB="0100000000000000000001000000080001000000000014000480050003000000000005000300000000000800020001000000d00008800c0007800800060000000000240007800800050000000000080006000000"], 0x108}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r5, &(0x7f00000002c0)=[{&(0x7f0000000280)='0', 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
setsockopt$IP_VS_SO_SET_TIMEOUT(r2, 0x0, 0x48a, &(0x7f0000000240)={0x38c, 0x9, 0x5}, 0xc)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x18, 0x209, 0x1, 0x0, {0x2}}, 0x14}}, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
link(&(0x7f00000000c0)='./file0/file1\x00', &(0x7f0000000180)='./file1\x00')
mount$bind(0x0, 0x0, 0x0, 0x84, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
fstat(0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000004c0)={0x8, 0x80, 0x0, 0xf, 0x0, 0x0, 0x82, 0x200000000, 0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080), 0x9}, 0x18204, 0x0, 0x3, 0x0, 0x0, 0x5338c7af, 0x0, 0x0, 0x1, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

2.524779758s ago: executing program 3 (id=2367):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b7040000000000008500000001000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
acct(&(0x7f00000001c0)='./file0\x00') (fail_nth: 5)

2.218007541s ago: executing program 3 (id=2368):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1b, 0x2000000000000019, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x120000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
timerfd_create(0x0, 0x80000)

2.170975972s ago: executing program 3 (id=2372):
chmod(0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/power/pm_freeze_timeout', 0x42, 0x8)
socket$key(0xf, 0x3, 0x2)
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x3, 0x800000000001}, 0x1180, 0x5dd8, 0x0, 0x8, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
ioprio_set$pid(0x2, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@getqdisc={0x28, 0x26, 0x723, 0x70bd0d, 0x81, {0x0, 0x0, 0x0, 0x0, {0xb, 0x8}, {0xc, 0x10}, {0xd, 0xe}}, [{0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x44045}, 0x24000895)
poll(&(0x7f0000000000), 0x20000000000000ea, 0x7)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000)

1.261539714s ago: executing program 2 (id=2380):
r0 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0xb, &(0x7f0000000040), 0x2)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
r2 = epoll_create(0x802)
epoll_pwait(r2, &(0x7f0000000000)=[{}], 0x1, 0xf1, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0x40002000})
r3 = accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000240), 0x80000)
r4 = socket$inet6(0xa, 0x2, 0x3a)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r5=>0x0})
setsockopt$inet6_IPV6_PKTINFO(r4, 0x29, 0x32, &(0x7f0000000080)={@loopback, r5}, 0x14)
sendto$inet6(r4, &(0x7f00000000c0)="800034ca269bb73c", 0x8, 0x0, &(0x7f0000000040)={0xa, 0x4e23, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c)
getsockopt$TIPC_IMPORTANCE(r3, 0x10f, 0x7f, &(0x7f0000000280), &(0x7f0000000600)=0x4)
close(r2)
ioctl$FS_IOC_GETFLAGS(r1, 0x5437, 0x0)
recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x102)
syz_emit_ethernet(0x92, &(0x7f00000003c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @val={@val={0x88a8, 0x3, 0x0, 0xffc}, {0x8100, 0x0, 0x1, 0x2}}, {@mpls_uc={0x8847, {[{0x8a}], @ipv4=@generic={{0xd, 0x4, 0x1, 0x2e, 0x78, 0x67, 0x0, 0x0, 0x21, 0x0, @multicast2, @multicast1, {[@ra={0x94, 0x4}, @rr={0x7, 0x1b, 0xc7, [@loopback, @local, @empty, @multicast1, @remote, @broadcast]}]}}, "a3bcc3243b22f608150796e661bc7e71c031e5a4920651d1dc5908bd74b6edc1415efa19844f654e4c6f796affe04d38cb329ab043fd61cee2a3b65341fc6462bdbf97e6"}}}}}, &(0x7f0000000500)={0x0, 0x2, [0xc70, 0x13b, 0xe6b, 0x8]})
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = add_key$keyring(&(0x7f0000000300), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000380)='asymmetric\x00', &(0x7f00000002c0)=@keyring)
r7 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r7, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000340)=@keyring={'key_or_keyring:', r6})
sendmsg$inet(r0, &(0x7f0000000f80)={&(0x7f0000000800)={0x2, 0x3, @local}, 0x10, &(0x7f0000000e40)=[{&(0x7f0000000000)="0f", 0x1}], 0x1}, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000780)='mm_page_free\x00', r8}, 0x10)
syz_emit_ethernet(0xfdef, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, 0x0)

963.205138ms ago: executing program 1 (id=2382):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0/file0\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {@errors_remount}, {@sysvgroups}, {@norecovery}, {@commit={'commit', 0x3d, 0x98}}, {@orlov}, {@oldalloc}, {@auto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x580, &(0x7f0000001b40)="$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")
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ff90000000000000100000850000007b00000095"], &(0x7f0000000480)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000780)='mm_page_free\x00', r1}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r2 = openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendfile(r2, r2, 0x0, 0x200000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x7c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0a00400004000000070000000600000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4, 0x0, 0x8}, 0x18)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r6}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000140)='fsi_master_gpio_in\x00', r6, 0x0, 0x7}, 0x18)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg(r7, &(0x7f0000002340)=[{{&(0x7f0000000380)=@pppol2tpin6={0x18, 0x1, {0x0, r7, 0x3, 0x4, 0x3, 0x4, {0xa, 0x4e21, 0x0, @local}}}, 0x80, 0x0}}], 0x1, 0x0)
openat2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket(0x28, 0x5, 0x0)

766.11913ms ago: executing program 1 (id=2383):
rseq(&(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0)
r0 = gettid()
rt_sigtimedwait(&(0x7f0000000080)={[0x3ff]}, 0xfffffffffffffffc, 0x0, 0x8)
tkill(r0, 0x7)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCRMFF(r1, 0x40095505, &(0x7f0000000500))
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xff58)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc0000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00@\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000400"/28], 0x50)

713.380641ms ago: executing program 3 (id=2384):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0xf, 0x4, 0x4, 0x16, 0x0, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002e000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)=r3}, 0x20)
sendmsg$inet(r2, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

712.190641ms ago: executing program 0 (id=2387):
r0 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x29, 0x16, 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0)
r2 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r2, &(0x7f00000019c0)={&(0x7f0000000080)=@l2tp6={0xa, 0x0, 0x0, @dev, 0x5}, 0x80, 0x0}, 0x24004059)
close(r2)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_buf(r3, 0x6, 0x23, &(0x7f0000000040)=""/34, &(0x7f0000000080)=0x44)
r4 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, 0x0)
ioctl$USBDEVFS_IOCTL(r4, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0x18, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x100000, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20000e8c, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0xba952e8ae70450d1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r8 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002cc0)=@newtaction={0x894, 0x30, 0xffff, 0x0, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0xfffffffc, 0x0, 0x0, 0x0, 0x20000, 0x733f, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xcff, 0x0, 0x0, 0xffffffff, 0x4, 0x0, 0x5, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a, 0x0, 0x0, 0x0, 0x200, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x1, 0x80000, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x1, 0x0, 0x0, 0x2000, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc192dfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1000, 0x0, 0x40, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b3, 0x0, 0xfffffffd, 0x0, 0x0, 0xffffffff, 0xfffffffd, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xd, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0xb, 0x1000, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x80000, 0x9, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1800]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x80000000, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c692401, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x20000000, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0xd50, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000006, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x4756, 0x4, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0xd4, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c6d, 0x4, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}, @TCA_POLICE_RESULT={0x8, 0x5, 0x4}], [@TCA_POLICE_TBF={0x3c, 0x1, {0xe, 0x3, 0x4, 0x80000004, 0x4, {0x5, 0x0, 0x8, 0x1, 0x7, 0x1f7}, {0x5, 0x0, 0x6, 0x800, 0x1ff, 0x4}, 0x2, 0x82e, 0x9}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x894}}, 0x0)
ioctl$TCFLSH(r8, 0x5608, 0x0)

685.911661ms ago: executing program 1 (id=2388):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000200)='kfree\x00', r1}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe80, 0x30, 0x871a15abc695fa3d, 0xfffffffd, 0x0, {}, [{0xe6c, 0x1, [@m_pedit={0xe68, 0x1, 0x0, 0x0, {{0xa}, {0xe3c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe38, 0x2, {{{}, 0x8, 0x0, [{0x0, 0x0, 0x6}]}, [{}, {0x0, 0x0, 0x0, 0x0, 0x2000}, {}, {}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x7ff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {0x0, 0x0, 0xfffffffd}, {}, {}, {0x0, 0x20000000, 0x0, 0x0, 0x7}, {}, {0x0, 0xffffffff}, {0x0, 0x0, 0x303}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {0xfffffff9, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x4000}, {0xfffffffe}, {}, {0xd5}, {0x0, 0x0, 0x0, 0xa13}, {}, {0x6}, {}, {}, {}, {}, {}, {}, {0x0, 0x10}, {}, {0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x800}, {}, {0x2, 0x0, 0xffffffff}, {}, {}, {0x2}, {0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8001}, {0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x233}, {}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x72f1}, {0x0, 0x0, 0xd7ed}, {0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x2}, {0x0, 0x4}, {}, {}, {}, {}, {0x814}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {0x3}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x7, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x5f}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x10000}, {}, {0x0, 0x0, 0x0, 0x20000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0x1}, {0x7}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x0, 0x7afca22067ae7b97}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x3, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe80}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)

685.550251ms ago: executing program 0 (id=2389):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000040), 0x81, r0}, 0x38)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00'}, 0x10)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0/file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0/file0\x00')

667.611941ms ago: executing program 1 (id=2390):
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x123400, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1)

667.287661ms ago: executing program 0 (id=2391):
semtimedop(0x0, &(0x7f0000000100)=[{0x0, 0x7ad2}], 0x1, &(0x7f0000000180))

654.646401ms ago: executing program 0 (id=2392):
semtimedop(0x0, &(0x7f0000000100)=[{0x0, 0x7ad2}], 0x1, &(0x7f0000000180)) (fail_nth: 1)

450.323444ms ago: executing program 0 (id=2393):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20080e, &(0x7f0000001080)={[], [{@euid_lt}, {@obj_role}, {@euid_eq}, {@appraise_type}, {@fsmagic={'fsmagic', 0x3d, 0x100}}, {@uid_eq}, {@dont_hash}]}, 0x3, 0x448, &(0x7f0000000580)="$eJzs28tvG0UYAPBv7SSlLxKq8ugDCBREeSVNWkoPXEAg9QASEhzKMSRuVeo2qAkSrSooCJUjqsSJC+KIxF/ACS4IOCFxhTuqVKFcWjgZrb2b2I7txqkTl/r3k9ae2R1n5vPu2DM7cQADazx9SCJ2RMQfETFayzYWGK893Vy6NPvP0qXZJCqVt/5OquVuLF2azYvmr9ueZ4YiCp8lsa9FvQsXLqYlSuez/OTi2fcnFy5cfP702ZlTpVOlc9PHjh05PPXi0ekX1h7M8faH0rhu7P1ofv+e4+9cfWP2xNV3f/kuyeNviqNHxjsdfLJS6XF1/VHInnfW7UuG+tQYulasddMYrvb/0SjGyskbjdc+7WvjgA1VqVQqD7Q/fLkC3MWS6HcLgP7Iv+jT+W++bdLQ445w/eXaBCiN+2a21Y4MLc9th5vmt700HhEnLv/7dbrFxtyHAABo8EM6/nmu1fivEPX3he7N1lDGIuK+iNgVEUcjYndE3B9RLftgRDzUZf3NiySrxz+Fa+sKbI3S8d9L2dpW4/gvH/3FWDHL7azGP5ycPF0uHcrek4MxvCXNT3Wo48dXf/+i3bH68V+6pfXnY8GsHdeGtjS+Zm5mceZ2Yq53/ZOIvUOt4k+WVwKSiNgTEXvXWcfpZ77d3+7YrePvoAfrTJVvIp6qnf/L0RR/Lum8Pjl5T5RLhybzq2K1X3+78ma7+m8r/h5Iz/+2ltf/cvxjSW299sxMuVw6v9DNX//q6fTxyp+ft53TrPf6H0nebtj34czi4vmpiJHk9Vqj6/dPN5WbXimfxn/wQOv+vytW3ol9EZFexA9HxCMR8WjW9sci4vGIONDhXfj5lSfeW3/8GyuNf66r87+SGInmPa0TxTM/fd9Q6Vg38afn/0g1dTDbs5bPv7W0q9urGQAAAP6vChGxI5LCxHK6UJiYqP0P/+7YVijPLyw+e3L+g3Nztd8IjMVwIb/TNVp3P3Qqm9bn+emm/OHsvvGXxa3V/MTsfHmu38HDgNvepv+n/ir2u3XAhvN7LRhc+j8MLv0fBpf+D4OrRf/f2o92AJuv1ff/x31oB7D5mvq/ZT8YIOb/MLjW0/99ZsDdoWNfHtm8dgCbamFr3PpH8hISqxJRuCOaIbFBiX5/MgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPTGfwEAAP//QDPmSQ==")
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x123400, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, 0x0)

449.911734ms ago: executing program 1 (id=2394):
semctl$GETPID(0x0, 0x3, 0xb, 0x0) (fail_nth: 1)

391.387765ms ago: executing program 0 (id=2395):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
iopl(0x3)
prctl$PR_MCE_KILL(0x21, 0x1, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r1 = open(0x0, 0x14507e, 0x0)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000300)=""/168, 0xa8)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0xb0}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x10401, &(0x7f00000024c0)=ANY=[], 0x0, 0x2c8, &(0x7f0000000d40)="$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")
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000001c0)={0x5, &(0x7f0000000000)=[{0x4, 0xf, 0x3, 0x7f}, {0x6, 0x9, 0xc7, 0x806}, {0x9, 0x7, 0x34, 0x4}, {0x9c, 0x7, 0x8, 0x87e4}, {0x3, 0x5, 0x2, 0x7f}]})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x64, 0x2, 0x6, 0x3, 0x6000000, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @loopback}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x64}}, 0x0)
fsmount(r1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='jbd2_write_superblock\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)

222.565057ms ago: executing program 1 (id=2396):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4044000)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000004c0)='ext4_insert_range\x00', r0, 0x0, 0x5}, 0x18)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.threads\x00', 0x2, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
fchdir(0xffffffffffffffff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000024c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000080)=@abs={0x1, 0x30}, 0x6e, 0x0}}], 0x2, 0x8000)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getgroups(0xb, &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01, 0x0])

218.343297ms ago: executing program 2 (id=2397):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0x24}}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7c, 0x0, &(0x7f0000000000)=0xfffffffffffffe8b)

159.361988ms ago: executing program 2 (id=2398):
rseq(&(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0)
r0 = gettid()
rt_sigtimedwait(&(0x7f0000000080)={[0x3ff]}, 0xfffffffffffffffc, 0x0, 0x8)
tkill(r0, 0x7)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCRMFF(r1, 0x40095505, &(0x7f0000000500))
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0xff58)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc0000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00@\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000400"/28], 0x50)

131.073368ms ago: executing program 2 (id=2399):
r0 = gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000b28000)=0x3)
fcntl$setsig(r1, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r2}], 0x2c, 0xffffffffffbffff8)
dup2(r1, r2)
fcntl$setown(r1, 0x8, r0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000118110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
tkill(r0, 0x13)

119.075248ms ago: executing program 6 (id=2400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000007c0)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x2, 0x0, 0x0, 0x4, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"]}, 0x188)

72.109339ms ago: executing program 6 (id=2401):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000200)='kfree\x00', r1}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe80, 0x30, 0x871a15abc695fa3d, 0xfffffffd, 0x0, {}, [{0xe6c, 0x1, [@m_pedit={0xe68, 0x1, 0x0, 0x0, {{0xa}, {0xe3c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe38, 0x2, {{{}, 0x8, 0x0, [{0x0, 0x0, 0x6}]}, [{}, {0x0, 0x0, 0x0, 0x0, 0x2000}, {}, {}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x7ff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {}, {0x0, 0x0, 0xfffffffd}, {}, {}, {0x0, 0x20000000, 0x0, 0x0, 0x7}, {}, {0x0, 0xffffffff}, {0x0, 0x0, 0x303}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x0, 0x0, 0x0, 0x1}, {}, {0xfffffff9, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0x4}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x4000}, {0xfffffffe}, {}, {0xd5}, {0x0, 0x0, 0x0, 0xa13}, {}, {0x6}, {}, {}, {}, {}, {}, {}, {0x0, 0x10}, {}, {0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1, 0x800}, {}, {0x2, 0x0, 0xffffffff}, {}, {}, {0x2}, {0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x8001}, {0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x233}, {}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x72f1}, {0x0, 0x0, 0xd7ed}, {0x0, 0x9, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x2}, {0x0, 0x4}, {}, {}, {}, {}, {0x814}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {0x3}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x7, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {0x5f}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x10000}, {}, {0x0, 0x0, 0x0, 0x20000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0x1}, {0x7}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x0, 0x7afca22067ae7b97}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x3, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe80}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)

71.794009ms ago: executing program 6 (id=2402):
socket$inet(0x2, 0x4000000000000001, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x10, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000040), 0x81, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x4, 0x0, 0x0)

71.486369ms ago: executing program 6 (id=2403):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000340), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="08010000", @ANYRES16=r1, @ANYBLOB="0100000000000000000001000000080001000000000014000480050003000000000005000300000000000800020001000000d00008800c0007800800060000000000240007800800050000000000080006000000"], 0x108}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r5, &(0x7f00000002c0)=[{&(0x7f0000000280)='0', 0x1}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
setsockopt$IP_VS_SO_SET_TIMEOUT(r2, 0x0, 0x48a, &(0x7f0000000240)={0x38c, 0x9, 0x5}, 0xc)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x18, 0x209, 0x1, 0x0, {0x2}}, 0x14}}, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
link(&(0x7f00000000c0)='./file0/file1\x00', &(0x7f0000000180)='./file1\x00')
mount$bind(0x0, 0x0, 0x0, 0x84, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
fstat(0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

52.046479ms ago: executing program 2 (id=2404):
prctl$PR_SET_NAME(0xf, &(0x7f0000000500)='kfree\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r1, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
accept4(r1, 0x0, 0x0, 0x400000000000000)

30.84913ms ago: executing program 2 (id=2405):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x57, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r1, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
accept4(r1, 0x0, 0x0, 0x400000000000000)

27.30235ms ago: executing program 6 (id=2406):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x6000, 0x1)
creat(&(0x7f00000000c0)='./file0\x00', 0x1f4)
ioctl$BLKGETDISKSEQ(0xffffffffffffffff, 0x80081280, &(0x7f0000000100))

0s ago: executing program 6 (id=2407):
r0 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0xb, &(0x7f0000000040), 0x2)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)
r2 = epoll_create(0x802)
epoll_pwait(r2, &(0x7f0000000000)=[{}], 0x1, 0xf1, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000000c0)={0x40002000})
r3 = accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000240), 0x80000)
r4 = socket$inet6(0xa, 0x2, 0x3a)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r5=>0x0})
setsockopt$inet6_IPV6_PKTINFO(r4, 0x29, 0x32, &(0x7f0000000080)={@loopback, r5}, 0x14)
sendto$inet6(r4, &(0x7f00000000c0)="800034ca269bb73c", 0x8, 0x0, &(0x7f0000000040)={0xa, 0x4e23, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c)
getsockopt$TIPC_IMPORTANCE(r3, 0x10f, 0x7f, &(0x7f0000000280), &(0x7f0000000600)=0x4)
close(r2)
ioctl$FS_IOC_GETFLAGS(r1, 0x5437, 0x0)
recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x102)
syz_emit_ethernet(0x92, &(0x7f00000003c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @val={@val={0x88a8, 0x3, 0x0, 0xffc}, {0x8100, 0x0, 0x1, 0x2}}, {@mpls_uc={0x8847, {[{0x8a}], @ipv4=@generic={{0xd, 0x4, 0x1, 0x2e, 0x78, 0x67, 0x0, 0x0, 0x21, 0x0, @multicast2, @multicast1, {[@ra={0x94, 0x4}, @rr={0x7, 0x1b, 0xc7, [@loopback, @local, @empty, @multicast1, @remote, @broadcast]}]}}, "a3bcc3243b22f608150796e661bc7e71c031e5a4920651d1dc5908bd74b6edc1415efa19844f654e4c6f796affe04d38cb329ab043fd61cee2a3b65341fc6462bdbf97e6"}}}}}, &(0x7f0000000500)={0x0, 0x2, [0xc70, 0x13b, 0xe6b, 0x8]})
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = add_key$keyring(&(0x7f0000000300), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000380)='asymmetric\x00', &(0x7f00000002c0)=@keyring)
r7 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r7, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000340)=@keyring={'key_or_keyring:', r6})
sendmsg$inet(r0, &(0x7f0000000f80)={&(0x7f0000000800)={0x2, 0x3, @local}, 0x10, &(0x7f0000000e40)=[{&(0x7f0000000000)="0f", 0x1}], 0x1}, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="18010000070080000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000780)='mm_page_free\x00', r8}, 0x10)
syz_emit_ethernet(0xfdef, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1c, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f419d2ee969
[  125.664169][ T9220] RDX: 00007f419b956f20 RSI: 0000000000000058 RDI: 00007f419b956f20
[  125.664185][ T9220] RBP: 00007f419b957090 R08: 0000000000000000 R09: 0000000000000058
[  125.664202][ T9220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.664214][ T9220] R13: 0000000000000001 R14: 00007f419d515fa0 R15: 00007ffcf9840668
[  125.664233][ T9220]  </TASK>
[  125.862472][ T9221] SELinux:  policydb magic number 0x1 does not match expected magic number 0xf97cff8c
[  125.875652][ T9221] SELinux: failed to load policy
[  125.936951][ T9225] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1448'.
[  126.062054][ T9233] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1452'.
[  126.073853][ T9233] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1452'.
[  126.104940][ T9235] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1453'.
[  126.403367][ T9254] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1461'.
[  126.436362][ T9256] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1462'.
[  126.587413][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.791059][ T9286] lo speed is unknown, defaulting to 1000
[  126.920822][ T9286] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.019099][ T9295] loop5: detected capacity change from 0 to 512
[  127.032214][ T9295] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  127.062271][ T9297] loop2: detected capacity change from 0 to 512
[  127.072905][ T9295] EXT4-fs (loop5): 1 truncate cleaned up
[  127.081455][ T9295] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.100753][ T9295] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  127.116907][ T9297] loop2: detected capacity change from 0 to 2048
[  127.123922][ T9297] EXT4-fs: Ignoring removed bh option
[  127.144123][ T4652] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.168474][ T9297] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.466415][ T9323] usb usb8: usbfs: process 9323 (syz.5.1486) did not claim interface 0 before use
[  127.669183][ T9343] loop1: detected capacity change from 0 to 512
[  127.680858][ T9339] loop0: detected capacity change from 0 to 2048
[  127.787146][ T9341] FAULT_INJECTION: forcing a failure.
[  127.787146][ T9341] name failslab, interval 1, probability 0, space 0, times 0
[  127.799869][ T9341] CPU: 1 UID: 0 PID: 9341 Comm: syz.3.1491 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  127.799966][ T9341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.799983][ T9341] Call Trace:
[  127.799992][ T9341]  <TASK>
[  127.800002][ T9341]  __dump_stack+0x1d/0x30
[  127.800029][ T9341]  dump_stack_lvl+0xe8/0x140
[  127.800051][ T9341]  dump_stack+0x15/0x1b
[  127.800074][ T9341]  should_fail_ex+0x265/0x280
[  127.800111][ T9341]  should_failslab+0x8c/0xb0
[  127.800164][ T9341]  kmem_cache_alloc_noprof+0x50/0x310
[  127.800192][ T9341]  ? __anon_vma_prepare+0xcd/0x2f0
[  127.800227][ T9341]  __anon_vma_prepare+0xcd/0x2f0
[  127.800312][ T9341]  handle_mm_fault+0x1f8c/0x2ae0
[  127.800403][ T9341]  ? mas_walk+0xf2/0x120
[  127.800439][ T9341]  do_user_addr_fault+0x636/0x1090
[  127.800508][ T9341]  exc_page_fault+0x54/0xc0
[  127.800528][ T9341]  asm_exc_page_fault+0x26/0x30
[  127.800548][ T9341] RIP: 0033:0x7f6347e366ab
[  127.800566][ T9341] Code: fa 10 73 2d 83 fa 08 73 46 83 fa 04 73 16 83 fa 01 7c 10 8a 0e 74 0a 0f b7 74 16 fe 66 89 74 17 fe 88 0f c3 8b 4c 16 fc 8b 36 <89> 4c 17 fc 89 37 c3 c5 fa 6f 06 c5 fa 6f 4c 16 f0 c5 fa 7f 07 c5
[  127.800666][ T9341] RSP: 002b:00007f63464d7028 EFLAGS: 00010246
[  127.800712][ T9341] RAX: 000020000043b0c0 RBX: 00007f6348095fa0 RCX: 0000000000000007
[  127.800741][ T9341] RDX: 0000000000000004 RSI: 0000000000000007 RDI: 000020000043b0c0
[  127.800758][ T9341] RBP: 00007f63464d7090 R08: 0000000000000004 R09: 0000000000000000
[  127.800774][ T9341] R10: 000020000043b000 R11: 0000200000000340 R12: 0000000000000001
[  127.800791][ T9341] R13: 0000000000000000 R14: 00007f6348095fa0 R15: 00007ffd9264ece8
[  127.800814][ T9341]  </TASK>
[  127.800838][ T9341] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  127.834763][ T9317] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  127.988349][ T9317] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 641 with error 28
[  127.988543][ T3307]  loop0: p1 p2 < > p3 p4 < p5 >
[  128.000897][ T9317] EXT4-fs (loop2): This should not happen!! Data will be lost
[  128.000897][ T9317] 
[  128.000962][ T9317] EXT4-fs (loop2): Total free blocks count 0
[  128.005902][ T3307] loop0: partition table partially beyond EOD, truncated
[  128.015534][ T9317] EXT4-fs (loop2): Free/Dirty block details
[  128.028767][ T9343] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  128.034522][ T9317] EXT4-fs (loop2): free_blocks=2415919104
[  128.043591][ T9343] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  128.049310][ T9317] EXT4-fs (loop2): dirty_blocks=8224
[  128.062927][ T9317] EXT4-fs (loop2): Block reservation details
[  128.067781][ T3307] loop0: p1 start 234883329 is beyond EOD, 
[  128.068917][ T9317] EXT4-fs (loop2): i_reserved_data_blocks=514
[  128.080987][ T3307] truncated
[  128.084153][ T3307] loop0: p2 start 4294902784 is beyond EOD, truncated
[  128.090962][ T3307] loop0: p3 start 4278191616 is beyond EOD, truncated
[  128.112784][ T3307] loop0: p5 start 234883329 is beyond EOD, truncated
[  128.120358][ T9343] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  128.148485][ T9339]  loop0: p1 p2 < > p3 p4 < p5 >
[  128.153590][ T9339] loop0: partition table partially beyond EOD, truncated
[  128.157175][ T9317] syz.2.1478 (9317) used greatest stack depth: 9744 bytes left
[  128.175295][ T5084] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  128.192845][ T9339] loop0: p1 start 234883329 is beyond EOD, truncated
[  128.199596][ T9339] loop0: p2 start 4294902784 is beyond EOD, truncated
[  128.206435][ T9339] loop0: p3 start 4278191616 is beyond EOD, truncated
[  128.216218][ T9343] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  128.224378][ T9343] System zones: 0-2, 18-18, 34-34
[  128.230083][ T9339] loop0: p5 start 234883329 is beyond EOD, truncated
[  128.237443][ T9343] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  128.252762][ T9343] EXT4-fs (loop1): 1 truncate cleaned up
[  128.269778][ T9343] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  128.290311][ T3005]  loop0: p1 p2 < > p3 p4 < p5 >
[  128.295343][ T3005] loop0: partition table partially beyond EOD, truncated
[  128.302855][ T3005] loop0: p1 start 234883329 is beyond EOD, truncated
[  128.309643][ T3005] loop0: p2 start 4294902784 is beyond EOD, truncated
[  128.316531][ T3005] loop0: p3 start 4278191616 is beyond EOD, truncated
[  128.324066][ T3005] loop0: p5 start 234883329 is beyond EOD, truncated
[  128.406740][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.452740][ T9365] loop0: detected capacity change from 0 to 2048
[  128.464354][ T9369] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  128.536635][ T9365] EXT4-fs (loop0): failed to initialize system zone (-117)
[  128.550730][ T9369] loop1: detected capacity change from 0 to 512
[  128.557280][ T9365] EXT4-fs (loop0): mount failed
[  128.643561][ T9369] EXT4-fs (loop1): 1 orphan inode deleted
[  128.658733][ T9369] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.701406][ T9369] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.724002][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:0: Failed to release dquot type 1
[  128.878486][ T9369] lo speed is unknown, defaulting to 1000
[  129.037942][ T9417] FAULT_INJECTION: forcing a failure.
[  129.037942][ T9417] name failslab, interval 1, probability 0, space 0, times 0
[  129.050756][ T9417] CPU: 1 UID: 0 PID: 9417 Comm: syz.5.1515 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  129.050786][ T9417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  129.050803][ T9417] Call Trace:
[  129.050821][ T9417]  <TASK>
[  129.050831][ T9417]  __dump_stack+0x1d/0x30
[  129.050860][ T9417]  dump_stack_lvl+0xe8/0x140
[  129.050885][ T9417]  dump_stack+0x15/0x1b
[  129.050947][ T9417]  should_fail_ex+0x265/0x280
[  129.050992][ T9417]  should_failslab+0x8c/0xb0
[  129.051034][ T9417]  __kmalloc_noprof+0xa5/0x3e0
[  129.051099][ T9417]  ? unregister_netdevice_many_notify+0x4cf/0x16a0
[  129.051133][ T9417]  ? unlist_netdevice+0x2cc/0x320
[  129.051181][ T9417]  unregister_netdevice_many_notify+0x4cf/0x16a0
[  129.051218][ T9417]  ? __rcu_read_unlock+0x4f/0x70
[  129.051286][ T9417]  unregister_netdevice_queue+0x1f5/0x220
[  129.051316][ T9417]  unregister_netdev+0xb3/0xe0
[  129.051419][ T9417]  slip_close+0xe4/0x100
[  129.051448][ T9417]  ? __pfx_slip_close+0x10/0x10
[  129.051476][ T9417]  tty_ldisc_close+0x74/0xa0
[  129.051511][ T9417]  tty_set_ldisc+0x1b9/0x380
[  129.051584][ T9417]  tiocsetd+0x51/0x60
[  129.051615][ T9417]  tty_ioctl+0xa7f/0xb80
[  129.051647][ T9417]  ? __pfx_tty_ioctl+0x10/0x10
[  129.051750][ T9417]  __se_sys_ioctl+0xce/0x140
[  129.051780][ T9417]  __x64_sys_ioctl+0x43/0x50
[  129.051835][ T9417]  x64_sys_call+0x19a8/0x2fb0
[  129.051864][ T9417]  do_syscall_64+0xd0/0x1a0
[  129.051896][ T9417]  ? clear_bhb_loop+0x40/0x90
[  129.051964][ T9417]  ? clear_bhb_loop+0x40/0x90
[  129.051991][ T9417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.052085][ T9417] RIP: 0033:0x7f419d2ee969
[  129.052106][ T9417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.052139][ T9417] RSP: 002b:00007f419b957038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  129.052164][ T9417] RAX: ffffffffffffffda RBX: 00007f419d515fa0 RCX: 00007f419d2ee969
[  129.052177][ T9417] RDX: 0000200000000100 RSI: 0000000000005423 RDI: 0000000000000003
[  129.052192][ T9417] RBP: 00007f419b957090 R08: 0000000000000000 R09: 0000000000000000
[  129.052209][ T9417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.052248][ T9417] R13: 0000000000000000 R14: 00007f419d515fa0 R15: 00007ffcf9840668
[  129.052274][ T9417]  </TASK>
[  129.396131][   T29] kauditd_printk_skb: 203 callbacks suppressed
[  129.396151][   T29] audit: type=1326 audit(1748286695.963:7031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.469024][   T29] audit: type=1326 audit(1748286696.003:7032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.492658][   T29] audit: type=1326 audit(1748286696.003:7033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.516269][   T29] audit: type=1326 audit(1748286696.003:7034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.539803][   T29] audit: type=1326 audit(1748286696.003:7035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.563133][   T29] audit: type=1326 audit(1748286696.003:7036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.586671][   T29] audit: type=1326 audit(1748286696.003:7037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.610224][   T29] audit: type=1326 audit(1748286696.003:7038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.633664][   T29] audit: type=1326 audit(1748286696.003:7039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.657135][   T29] audit: type=1326 audit(1748286696.003:7040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9430 comm="syz.0.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  129.798469][ T9471] bond0: entered promiscuous mode
[  129.803752][ T9471] bond0: entered allmulticast mode
[  129.830925][ T9471] 8021q: adding VLAN 0 to HW filter on device bond0
[  129.867591][ T9471] bond0 (unregistering): Released all slaves
[  129.919254][ T9490] netlink: 'syz.5.1525': attribute type 6 has an invalid length.
[  130.063120][ T9514] FAULT_INJECTION: forcing a failure.
[  130.063120][ T9514] name failslab, interval 1, probability 0, space 0, times 0
[  130.075932][ T9514] CPU: 0 UID: 0 PID: 9514 Comm: syz.5.1528 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  130.075997][ T9514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.076014][ T9514] Call Trace:
[  130.076039][ T9514]  <TASK>
[  130.076046][ T9514]  __dump_stack+0x1d/0x30
[  130.076066][ T9514]  dump_stack_lvl+0xe8/0x140
[  130.076171][ T9514]  dump_stack+0x15/0x1b
[  130.076207][ T9514]  should_fail_ex+0x265/0x280
[  130.076304][ T9514]  should_failslab+0x8c/0xb0
[  130.076356][ T9514]  kmem_cache_alloc_noprof+0x50/0x310
[  130.076405][ T9514]  ? audit_log_start+0x365/0x6c0
[  130.076448][ T9514]  audit_log_start+0x365/0x6c0
[  130.076498][ T9514]  audit_seccomp+0x48/0x100
[  130.076585][ T9514]  ? __seccomp_filter+0x68c/0x10d0
[  130.076616][ T9514]  __seccomp_filter+0x69d/0x10d0
[  130.076661][ T9514]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  130.076695][ T9514]  ? vfs_write+0x75e/0x8d0
[  130.076730][ T9514]  ? __rcu_read_unlock+0x4f/0x70
[  130.076761][ T9514]  ? __fget_files+0x184/0x1c0
[  130.076793][ T9514]  __secure_computing+0x82/0x150
[  130.076841][ T9514]  syscall_trace_enter+0xcf/0x1e0
[  130.076889][ T9514]  do_syscall_64+0xaa/0x1a0
[  130.076921][ T9514]  ? clear_bhb_loop+0x40/0x90
[  130.076949][ T9514]  ? clear_bhb_loop+0x40/0x90
[  130.076975][ T9514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.076995][ T9514] RIP: 0033:0x7f419d2ee969
[  130.077078][ T9514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.077101][ T9514] RSP: 002b:00007f419b957038 EFLAGS: 00000246 ORIG_RAX: 000000000000009e
[  130.077119][ T9514] RAX: ffffffffffffffda RBX: 00007f419d515fa0 RCX: 00007f419d2ee969
[  130.077131][ T9514] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000001001
[  130.077221][ T9514] RBP: 00007f419b957090 R08: 0000000000000000 R09: 0000000000000000
[  130.077238][ T9514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.077254][ T9514] R13: 0000000000000000 R14: 00007f419d515fa0 R15: 00007ffcf9840668
[  130.077289][ T9514]  </TASK>
[  130.477936][ T9540] capability: warning: `syz.3.1533' uses 32-bit capabilities (legacy support in use)
[  130.686515][ T9554] loop5: detected capacity change from 0 to 1024
[  130.711470][ T9554] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.911067][ T4652] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 38: comm syz-executor: path /253/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  130.959472][ T4652] EXT4-fs error (device loop5): ext4_empty_dir:3118: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  130.996986][ T4652] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 38: comm syz-executor: path /253/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  131.039974][ T4652] EXT4-fs error (device loop5): ext4_empty_dir:3118: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  131.081040][ T4652] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 38: comm syz-executor: path /253/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  131.109807][ T4652] EXT4-fs error (device loop5): ext4_empty_dir:3118: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  131.136055][ T4652] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 38: comm syz-executor: path /253/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  131.172988][ T4652] EXT4-fs error (device loop5): ext4_empty_dir:3118: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  131.194486][ T4652] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 38: comm syz-executor: path /253/file1/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=327680, rec_len=0, size=1024 fake=0
[  131.220391][ T4652] EXT4-fs error (device loop5): ext4_empty_dir:3118: inode #11: block 38: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=6144, inode=327680, rec_len=0, size=1024 fake=0
[  131.466161][ T9660] loop0: detected capacity change from 0 to 128
[  131.484061][ T9660] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  131.501167][ T9660] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  131.589749][ T4652] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.599821][ T3340] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.665766][ T3340] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.719221][ T3340] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.795304][ T3340] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.849821][ T9679] lo speed is unknown, defaulting to 1000
[  132.073075][ T9679] chnl_net:caif_netlink_parms(): no params data found
[  132.127256][ T9702] syz.3.1554: attempt to access beyond end of device
[  132.127256][ T9702] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  132.141956][ T3340] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  132.164742][ T3340] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  132.174667][ T3340] bond0 (unregistering): Released all slaves
[  132.264363][ T9679] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.271696][ T9679] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.280597][ T9719] __nla_validate_parse: 13 callbacks suppressed
[  132.280616][ T9719] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1558'.
[  132.323495][ T9679] bridge_slave_0: entered allmulticast mode
[  132.325504][ T9719] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1558'.
[  132.343569][ T9679] bridge_slave_0: entered promiscuous mode
[  132.360025][ T3340] hsr_slave_0: left promiscuous mode
[  132.373624][ T3340] hsr_slave_1: left promiscuous mode
[  132.388979][ T3340] veth1_macvtap: left promiscuous mode
[  132.398915][ T3340] veth0_macvtap: left promiscuous mode
[  132.417667][ T3340] veth1_vlan: left promiscuous mode
[  132.431224][ T3340] veth0_vlan: left promiscuous mode
[  132.489552][ T9735] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1560'.
[  132.506924][ T3340] team0 (unregistering): Port device team_slave_1 removed
[  132.517073][ T3340] team0 (unregistering): Port device team_slave_0 removed
[  132.548211][ T9679] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.555405][ T9679] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.562653][ T9679] bridge_slave_1: entered allmulticast mode
[  132.569470][ T9679] bridge_slave_1: entered promiscuous mode
[  132.591279][ T9729] bridge0: entered promiscuous mode
[  132.597352][ T9729] bridge0: port 1(macsec1) entered blocking state
[  132.603864][ T9729] bridge0: port 1(macsec1) entered disabled state
[  132.610391][ T9729] macsec1: entered allmulticast mode
[  132.615747][ T9729] bridge0: entered allmulticast mode
[  132.621618][ T9729] macsec1: left allmulticast mode
[  132.626767][ T9729] bridge0: left allmulticast mode
[  132.633026][ T9729] bridge0: left promiscuous mode
[  132.642984][ T9735] IPVS: Error joining to the multicast group
[  132.675767][ T9679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  132.687809][ T9679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  132.688115][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.714023][ T9679] team0: Port device team_slave_0 added
[  132.721282][ T9679] team0: Port device team_slave_1 added
[  132.741589][ T9739] SELinux: ebitmap: empty map
[  132.749400][ T9739] SELinux: failed to load policy
[  132.782380][ T9679] batman_adv: batadv0: Adding interface: batadv_slave_0
[  132.789545][ T9679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.815695][ T9679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  132.860818][ T9749] xt_cluster: you have exceeded the maximum number of cluster nodes (514 > 32)
[  132.884088][ T9679] batman_adv: batadv0: Adding interface: batadv_slave_1
[  132.891101][ T9679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.917173][ T9679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  132.942463][ T9758] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1569'.
[  132.951567][ T9758] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1569'.
[  132.982113][ T9758] bond0: entered promiscuous mode
[  132.987248][ T9758] bond0: entered allmulticast mode
[  133.012649][ T9758] 8021q: adding VLAN 0 to HW filter on device bond0
[  133.022805][ T9679] hsr_slave_0: entered promiscuous mode
[  133.029018][ T9679] hsr_slave_1: entered promiscuous mode
[  133.035104][ T9679] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  133.042749][ T9679] Cannot create hsr debugfs directory
[  133.086696][ T9767] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  133.140035][ T9773] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[  133.272368][ T9790] loop0: detected capacity change from 0 to 2048
[  133.338091][ T9679] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  133.353699][ T5552]  loop0: p2 p3 p4
[  133.357777][ T5552] loop0: p2 size 4864 extends beyond EOD, truncated
[  133.373469][ T9679] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  133.387990][ T9767] loop1: detected capacity change from 0 to 512
[  133.398505][ T5552] loop0: p3 start 65535 is beyond EOD, truncated
[  133.404942][ T5552] loop0: p4 start 2048 is beyond EOD, truncated
[  133.433924][ T9679] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  133.454503][ T9790]  loop0: p2 p3 p4
[  133.464061][ T9679] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  133.464082][ T9790] loop0: p2 size 4864 extends beyond EOD, truncated
[  133.481654][ T9790] loop0: p3 start 65535 is beyond EOD, truncated
[  133.488370][ T9790] loop0: p4 start 2048 is beyond EOD, truncated
[  133.554965][ T9767] EXT4-fs (loop1): 1 orphan inode deleted
[  133.573827][ T9679] 8021q: adding VLAN 0 to HW filter on device bond0
[  133.590607][   T57] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[  133.608271][ T9767] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.622816][ T9679] 8021q: adding VLAN 0 to HW filter on device team0
[  133.648865][ T3340] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.655992][ T3340] bridge0: port 1(bridge_slave_0) entered forwarding state
[  133.676342][ T9767] ext4 filesystem being mounted at /302/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.685850][ T3340] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.694210][ T3340] bridge0: port 2(bridge_slave_1) entered forwarding state
[  133.711298][ T9679] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  133.721794][ T9679] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  133.877498][ T9679] 8021q: adding VLAN 0 to HW filter on device batadv0
[  134.025991][ T9870] FAULT_INJECTION: forcing a failure.
[  134.025991][ T9870] name failslab, interval 1, probability 0, space 0, times 0
[  134.038769][ T9870] CPU: 1 UID: 0 PID: 9870 Comm: syz.3.1593 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  134.038798][ T9870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  134.038815][ T9870] Call Trace:
[  134.038822][ T9870]  <TASK>
[  134.038831][ T9870]  __dump_stack+0x1d/0x30
[  134.038960][ T9870]  dump_stack_lvl+0xe8/0x140
[  134.038987][ T9870]  dump_stack+0x15/0x1b
[  134.039010][ T9870]  should_fail_ex+0x265/0x280
[  134.039092][ T9870]  should_failslab+0x8c/0xb0
[  134.039124][ T9870]  __kmalloc_noprof+0xa5/0x3e0
[  134.039191][ T9870]  ? ipv6_flowlabel_opt+0x747/0x1230
[  134.039234][ T9870]  ipv6_flowlabel_opt+0x747/0x1230
[  134.039292][ T9870]  do_ipv6_setsockopt+0xc92/0x22e0
[  134.039412][ T9870]  ? kstrtoull+0x111/0x140
[  134.039451][ T9870]  ? __rcu_read_unlock+0x4f/0x70
[  134.039477][ T9870]  ? avc_has_perm_noaudit+0x1b1/0x200
[  134.039585][ T9870]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[  134.039629][ T9870]  ipv6_setsockopt+0x59/0x130
[  134.039660][ T9870]  tcp_setsockopt+0x98/0xb0
[  134.039702][ T9870]  sock_common_setsockopt+0x69/0x80
[  134.039836][ T9870]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  134.039878][ T9870]  __sys_setsockopt+0x184/0x200
[  134.039956][ T9870]  __x64_sys_setsockopt+0x64/0x80
[  134.039984][ T9870]  x64_sys_call+0x2bd5/0x2fb0
[  134.040014][ T9870]  do_syscall_64+0xd0/0x1a0
[  134.040103][ T9870]  ? clear_bhb_loop+0x40/0x90
[  134.040133][ T9870]  ? clear_bhb_loop+0x40/0x90
[  134.040200][ T9870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.040230][ T9870] RIP: 0033:0x7f6347e6e969
[  134.040251][ T9870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.040276][ T9870] RSP: 002b:00007f63464d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  134.040304][ T9870] RAX: ffffffffffffffda RBX: 00007f6348095fa0 RCX: 00007f6347e6e969
[  134.040319][ T9870] RDX: 0000000000000020 RSI: 0000000000000029 RDI: 0000000000000003
[  134.040356][ T9870] RBP: 00007f63464d7090 R08: 0000000000000021 R09: 0000000000000000
[  134.040369][ T9870] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  134.040445][ T9870] R13: 0000000000000000 R14: 00007f6348095fa0 R15: 00007ffd9264ece8
[  134.040522][ T9870]  </TASK>
[  134.324112][ T9679] veth0_vlan: entered promiscuous mode
[  134.332144][ T9679] veth1_vlan: entered promiscuous mode
[  134.348489][ T9679] veth0_macvtap: entered promiscuous mode
[  134.356119][ T9679] veth1_macvtap: entered promiscuous mode
[  134.387235][ T9679] batman_adv: batadv0: Interface activated: batadv_slave_0
[  134.411836][ T9896] loop3: detected capacity change from 0 to 512
[  134.418295][ T9679] batman_adv: batadv0: Interface activated: batadv_slave_1
[  134.419116][ T9896] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  134.434979][ T9679] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.444215][ T9679] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.453164][ T9679] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.461899][ T9679] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.488109][ T9896] EXT4-fs (loop3): 1 truncate cleaned up
[  134.501912][ T9896] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.504416][   T29] kauditd_printk_skb: 258 callbacks suppressed
[  134.504434][   T29] audit: type=1400 audit(1748286701.063:7296): avc:  denied  { mount } for  pid=9679 comm="syz-executor" name="/" dev="gadgetfs" ino=4417 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  134.586648][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.636782][ T9917] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  134.640163][ T9907] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1598'.
[  134.643344][ T9917] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  134.643433][ T9917] vhci_hcd vhci_hcd.0: Device attached
[  134.677322][   T29] audit: type=1400 audit(1748286701.243:7297): avc:  denied  { map } for  pid=9915 comm="syz.3.1599" path="socket:[19926]" dev="sockfs" ino=19926 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  134.703114][ T9919] vhci_hcd: connection closed
[  134.710852][ T5084] vhci_hcd: stop threads
[  134.720007][ T5084] vhci_hcd: release socket
[  134.724486][ T5084] vhci_hcd: disconnect device
[  134.733514][   T29] audit: type=1400 audit(1748286701.263:7298): avc:  denied  { getopt } for  pid=9915 comm="syz.3.1599" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  134.791970][ T9928] sch_tbf: burst 3504 is lower than device lo mtu (65550) !
[  134.849578][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.877012][ T9945] netlink: 'syz.1.1605': attribute type 3 has an invalid length.
[  134.892301][ T9950] loop1: detected capacity change from 0 to 512
[  134.951643][ T9961] loop6: detected capacity change from 0 to 512
[  134.963944][ T9961] EXT4-fs error (device loop6): ext4_get_branch:178: inode #11: block 4294967295: comm syz.6.1607: invalid block
[  134.976559][ T9961] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.1607: invalid indirect mapped block 4294967295 (level 1)
[  134.991003][ T9961] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.1607: invalid indirect mapped block 4294967295 (level 1)
[  135.005835][ T9961] EXT4-fs (loop6): 2 truncates cleaned up
[  135.012217][ T9961] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.054613][ T9961] netlink: '+}[@': attribute type 10 has an invalid length.
[  135.065013][ T9961] 8021q: adding VLAN 0 to HW filter on device team0
[  135.073887][ T9961] bond0: (slave team0): Enslaving as an active interface with an up link
[  135.100787][ T9679] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.146466][ T9992] loop6: detected capacity change from 0 to 512
[  135.154396][ T9992] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  135.166032][ T9992] EXT4-fs (loop6): 1 truncate cleaned up
[  135.172292][ T9992] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.200320][ T9679] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.317695][T10023] loop6: detected capacity change from 0 to 512
[  135.325897][T10023] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  135.342830][T10023] EXT4-fs (loop6): 1 truncate cleaned up
[  135.349514][T10023] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.386458][ T9679] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.472039][T10045] loop3: detected capacity change from 0 to 512
[  135.479940][T10045] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  135.498356][T10050] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1623'.
[  135.507548][T10050] IPVS: Error joining to the multicast group
[  135.508553][T10045] EXT4-fs (loop3): 1 truncate cleaned up
[  135.522349][T10045] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.549614][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.645568][T10070] loop2: detected capacity change from 0 to 1024
[  135.652990][T10070] ext3: Unknown parameter 'dont_measure'
[  135.706726][   T29] audit: type=1326 audit(1748286702.273:7299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10084 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febf05de969 code=0x7ffc0000
[  135.730824][   T29] audit: type=1326 audit(1748286702.283:7300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10084 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febf05de969 code=0x7ffc0000
[  135.754586][   T29] audit: type=1326 audit(1748286702.283:7301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10084 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7febf05de969 code=0x7ffc0000
[  135.778301][   T29] audit: type=1326 audit(1748286702.283:7302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10084 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febf05de969 code=0x7ffc0000
[  135.801828][   T29] audit: type=1326 audit(1748286702.283:7303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10084 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febf05de969 code=0x7ffc0000
[  135.825378][   T29] audit: type=1326 audit(1748286702.283:7304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10084 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7febf05de969 code=0x7ffc0000
[  135.848777][   T29] audit: type=1326 audit(1748286702.283:7305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10084 comm="syz.2.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febf05de969 code=0x7ffc0000
[  136.375738][T10184] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1635'.
[  136.545149][T10217] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1644'.
[  136.638673][T10226] loop0: detected capacity change from 0 to 2048
[  136.663632][T10226] EXT4-fs (loop0): failed to initialize system zone (-117)
[  136.671049][T10226] EXT4-fs (loop0): mount failed
[  136.777819][T10245] loop6: detected capacity change from 0 to 512
[  136.794291][T10245] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.807093][T10245] ext4 filesystem being mounted at /23/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  136.852344][ T9679] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.983680][T10270] IPVS: Error joining to the multicast group
[  137.100572][T10284] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  137.223942][T10284] loop6: detected capacity change from 0 to 512
[  137.284101][T10284] EXT4-fs (loop6): 1 orphan inode deleted
[  137.303520][ T5084] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:7: Failed to release dquot type 1
[  137.306616][T10284] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.334114][T10284] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.477742][T10284] lo speed is unknown, defaulting to 1000
[  137.552856][T10347] __nla_validate_parse: 7 callbacks suppressed
[  137.552874][T10347] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1677'.
[  137.568537][T10347] IPVS: Error joining to the multicast group
[  137.607803][T10352] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1678'.
[  137.646544][T10352] lo speed is unknown, defaulting to 1000
[  138.303997][T10415] Falling back ldisc for ttyS3.
[  138.310260][T10426] loop2: detected capacity change from 0 to 2048
[  138.398796][T10435] FAULT_INJECTION: forcing a failure.
[  138.398796][T10435] name failslab, interval 1, probability 0, space 0, times 0
[  138.411655][T10435] CPU: 1 UID: 0 PID: 10435 Comm: syz.2.1684 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  138.411698][T10435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  138.411716][T10435] Call Trace:
[  138.411724][T10435]  <TASK>
[  138.411733][T10435]  __dump_stack+0x1d/0x30
[  138.411756][T10435]  dump_stack_lvl+0xe8/0x140
[  138.411783][T10435]  dump_stack+0x15/0x1b
[  138.411806][T10435]  should_fail_ex+0x265/0x280
[  138.411960][T10435]  should_failslab+0x8c/0xb0
[  138.412066][T10435]  __kmalloc_node_noprof+0xa9/0x410
[  138.412095][T10435]  ? __vmalloc_node_range_noprof+0x3c5/0xdf0
[  138.412133][T10435]  __vmalloc_node_range_noprof+0x3c5/0xdf0
[  138.412180][T10435]  ? mod_objcg_state+0x40e/0x530
[  138.412218][T10435]  ? copy_process+0x399/0x1f90
[  138.412258][T10435]  __vmalloc_node_noprof+0x63/0x80
[  138.412292][T10435]  ? copy_process+0x399/0x1f90
[  138.412328][T10435]  dup_task_struct+0x449/0x6a0
[  138.412363][T10435]  ? __traceiter_sys_enter+0x4d/0x80
[  138.412404][T10435]  copy_process+0x399/0x1f90
[  138.412444][T10435]  ? copy_clone_args_from_user+0x3ce/0x490
[  138.412497][T10435]  kernel_clone+0x16c/0x5b0
[  138.412566][T10435]  __se_sys_clone3+0x1c2/0x200
[  138.412605][T10435]  ? percpu_array_map_lookup_percpu_elem+0xae/0xd0
[  138.412670][T10435]  __x64_sys_clone3+0x31/0x40
[  138.412709][T10435]  x64_sys_call+0x10c9/0x2fb0
[  138.412765][T10435]  do_syscall_64+0xd0/0x1a0
[  138.412797][T10435]  ? clear_bhb_loop+0x40/0x90
[  138.412826][T10435]  ? clear_bhb_loop+0x40/0x90
[  138.412856][T10435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.412891][T10435] RIP: 0033:0x7febf05de969
[  138.412967][T10435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.412992][T10435] RSP: 002b:00007febeec46f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  138.413017][T10435] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007febf05de969
[  138.413032][T10435] RDX: 00007febeec46f20 RSI: 0000000000000058 RDI: 00007febeec46f20
[  138.413044][T10435] RBP: 00007febeec47090 R08: 0000000000000000 R09: 0000000000000058
[  138.413061][T10435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.413077][T10435] R13: 0000000000000000 R14: 00007febf0805fa0 R15: 00007ffda6fd4ac8
[  138.413101][T10435]  </TASK>
[  138.639681][T10435] syz.2.1684: vmalloc error: size 16384, failed to allocated page array size 32, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  138.656769][T10435] CPU: 1 UID: 0 PID: 10435 Comm: syz.2.1684 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  138.656854][T10435] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  138.656874][T10435] Call Trace:
[  138.656880][T10435]  <TASK>
[  138.656887][T10435]  __dump_stack+0x1d/0x30
[  138.656908][T10435]  dump_stack_lvl+0xe8/0x140
[  138.656927][T10435]  dump_stack+0x15/0x1b
[  138.656949][T10435]  warn_alloc+0x12b/0x1a0
[  138.657009][T10435]  ? should_failslab+0x8c/0xb0
[  138.657047][T10435]  __vmalloc_node_range_noprof+0x455/0xdf0
[  138.657095][T10435]  ? copy_process+0x399/0x1f90
[  138.657199][T10435]  __vmalloc_node_noprof+0x63/0x80
[  138.657239][T10435]  ? copy_process+0x399/0x1f90
[  138.657272][T10435]  dup_task_struct+0x449/0x6a0
[  138.657299][T10435]  ? __traceiter_sys_enter+0x4d/0x80
[  138.657326][T10435]  copy_process+0x399/0x1f90
[  138.657445][T10435]  ? copy_clone_args_from_user+0x3ce/0x490
[  138.657490][T10435]  kernel_clone+0x16c/0x5b0
[  138.657521][T10435]  __se_sys_clone3+0x1c2/0x200
[  138.657574][T10435]  ? percpu_array_map_lookup_percpu_elem+0xae/0xd0
[  138.657633][T10435]  __x64_sys_clone3+0x31/0x40
[  138.657670][T10435]  x64_sys_call+0x10c9/0x2fb0
[  138.657698][T10435]  do_syscall_64+0xd0/0x1a0
[  138.657721][T10435]  ? clear_bhb_loop+0x40/0x90
[  138.657750][T10435]  ? clear_bhb_loop+0x40/0x90
[  138.657779][T10435]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.657853][T10435] RIP: 0033:0x7febf05de969
[  138.657878][T10435] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.657898][T10435] RSP: 002b:00007febeec46f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  138.657916][T10435] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007febf05de969
[  138.657937][T10435] RDX: 00007febeec46f20 RSI: 0000000000000058 RDI: 00007febeec46f20
[  138.657972][T10435] RBP: 00007febeec47090 R08: 0000000000000000 R09: 0000000000000058
[  138.657989][T10435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.658007][T10435] R13: 0000000000000000 R14: 00007febf0805fa0 R15: 00007ffda6fd4ac8
[  138.658034][T10435]  </TASK>
[  138.658043][T10435] Mem-Info:
[  138.872747][T10435] active_anon:19758 inactive_anon:0 isolated_anon:0
[  138.872747][T10435]  active_file:10559 inactive_file:12855 isolated_file:0
[  138.872747][T10435]  unevictable:0 dirty:253 writeback:0
[  138.872747][T10435]  slab_reclaimable:3277 slab_unreclaimable:15651
[  138.872747][T10435]  mapped:30009 shmem:16783 pagetables:716
[  138.872747][T10435]  sec_pagetables:0 bounce:0
[  138.872747][T10435]  kernel_misc_reclaimable:0
[  138.872747][T10435]  free:1867598 free_pcp:8405 free_cma:0
[  138.917894][T10435] Node 0 active_anon:79032kB inactive_anon:0kB active_file:42236kB inactive_file:51420kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:120036kB dirty:1012kB writeback:0kB shmem:67132kB writeback_tmp:0kB kernel_stack:2752kB pagetables:2864kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  138.947330][T10435] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  138.974285][T10435] lowmem_reserve[]: 0 2884 7863 7863
[  138.979726][T10435] Node 0 DMA32 free:2950028kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953560kB mlocked:0kB bounce:0kB free_pcp:3532kB local_pcp:0kB free_cma:0kB
[  139.008163][T10435] lowmem_reserve[]: 0 0 4978 4978
[  139.013319][T10435] Node 0 Normal free:4505236kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:78916kB inactive_anon:0kB active_file:42236kB inactive_file:51420kB unevictable:0kB writepending:1012kB present:5242880kB managed:5098244kB mlocked:0kB bounce:0kB free_pcp:29984kB local_pcp:13292kB free_cma:0kB
[  139.043846][T10435] lowmem_reserve[]: 0 0 0 0
[  139.048374][T10435] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  139.061252][T10435] Node 0 DMA32: 3*4kB (M) 4*8kB (M) 2*16kB (M) 4*32kB (M) 3*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2950028kB
[  139.077416][T10435] Node 0 Normal: 891*4kB (UME) 594*8kB (UME) 247*16kB (UM) 125*32kB (UME) 89*64kB (UME) 71*128kB (UME) 43*256kB (UME) 137*512kB (UM) 146*1024kB (UME) 80*2048kB (UME) 996*4096kB (UM) = 4505164kB
[  139.096816][T10435] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  139.106128][T10435] 40192 total pagecache pages
[  139.110811][T10435] 0 pages in swap cache
[  139.115072][T10435] Free swap  = 124996kB
[  139.119229][T10435] Total swap = 124996kB
[  139.123441][T10435] 2097051 pages RAM
[  139.127242][T10435] 0 pages HighMem/MovableOnly
[  139.131909][T10435] 80260 pages reserved
[  139.197604][T10444] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1688'.
[  139.206895][T10444] IPVS: Error joining to the multicast group
[  139.258040][T10446] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1689'.
[  139.276394][ T9679] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.510731][   T29] kauditd_printk_skb: 427 callbacks suppressed
[  139.510749][   T29] audit: type=1326 audit(1748286706.073:7732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.543401][   T29] audit: type=1326 audit(1748286706.113:7733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.567004][   T29] audit: type=1326 audit(1748286706.113:7734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.590578][   T29] audit: type=1326 audit(1748286706.113:7735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.614122][   T29] audit: type=1326 audit(1748286706.113:7736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.637718][   T29] audit: type=1326 audit(1748286706.113:7737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.661335][   T29] audit: type=1326 audit(1748286706.113:7738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.684888][   T29] audit: type=1326 audit(1748286706.113:7739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.708455][   T29] audit: type=1326 audit(1748286706.113:7740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  139.732079][   T29] audit: type=1326 audit(1748286706.113:7741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10476 comm="syz.6.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  140.036097][T10509] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10509 comm=syz.1.1700
[  140.142369][T10523] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  140.156094][T10524] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1703'.
[  140.175162][T10524] IPVS: Error joining to the multicast group
[  140.327150][T10523] loop3: detected capacity change from 0 to 512
[  140.560905][T10523] EXT4-fs (loop3): 1 orphan inode deleted
[  140.570774][T10553] loop1: detected capacity change from 0 to 512
[  140.577412][T10553] EXT4-fs: Ignoring removed nobh option
[  140.583458][   T57] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 1
[  140.598983][T10553] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.625943][T10523] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.641316][T10523] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.844780][T10523] lo speed is unknown, defaulting to 1000
[  141.848419][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.983541][T10453] syz.2.1692 (10453) used greatest stack depth: 5952 bytes left
[  142.226493][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.386368][T10626] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1714'.
[  142.395676][T10626] IPVS: Error joining to the multicast group
[  142.859728][T10632] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1717'.
[  142.955400][T10636] SELinux: ebitmap: empty map
[  142.965498][T10636] SELinux: failed to load policy
[  142.998476][T10648] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1725'.
[  143.007608][T10648] IPVS: Error joining to the multicast group
[  143.037681][T10653] loop1: detected capacity change from 0 to 1024
[  143.294735][T10653] loop1: detected capacity change from 0 to 164
[  143.310443][T10653] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  143.459846][T10708] SELinux: ebitmap: empty map
[  143.465161][T10708] SELinux: failed to load policy
[  143.562301][T10732] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  143.569785][T10732] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  143.841739][T10776] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1746'.
[  143.860511][T10776] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1746'.
[  144.137672][T10811] loop6: detected capacity change from 0 to 512
[  144.155468][T10811] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  144.164613][T10811] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  144.212074][T10811] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  144.221399][T10811] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  144.229807][T10811] System zones: 0-2, 18-18, 34-34
[  144.235674][T10811] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  144.250936][T10811] EXT4-fs (loop6): 1 truncate cleaned up
[  144.257154][T10811] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.328987][T10823] EXT4-fs error (device loop6): ext4_find_dest_de:2054: inode #2: block 3: comm syz.6.1752: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  144.348805][T10823] EXT4-fs error (device loop6): ext4_find_dest_de:2054: inode #2: block 3: comm syz.6.1752: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  144.808888][T10832] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1756'.
[  144.821750][T10835] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1755'.
[  144.935858][ T9679] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.971479][   T29] kauditd_printk_skb: 449 callbacks suppressed
[  144.971495][   T29] audit: type=1326 audit(1748286711.533:8190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.001393][   T29] audit: type=1326 audit(1748286711.533:8191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.024998][   T29] audit: type=1326 audit(1748286711.533:8192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0f6272d2d0 code=0x7ffc0000
[  145.049589][   T29] audit: type=1326 audit(1748286711.573:8193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.049685][   T29] audit: type=1326 audit(1748286711.573:8194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.049715][   T29] audit: type=1326 audit(1748286711.573:8195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.049741][   T29] audit: type=1326 audit(1748286711.573:8196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.049785][   T29] audit: type=1326 audit(1748286711.573:8197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.049852][   T29] audit: type=1326 audit(1748286711.573:8198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.049885][   T29] audit: type=1326 audit(1748286711.573:8199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10841 comm="syz.6.1759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  145.243236][T10845] loop6: detected capacity change from 0 to 2048
[  145.253755][T10845] EXT4-fs (loop6): failed to initialize system zone (-117)
[  145.261323][T10845] EXT4-fs (loop6): mount failed
[  145.328031][T10851] SELinux: failed to load policy
[  145.339916][T10851] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1762'.
[  145.341058][T10855] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1763'.
[  145.358127][T10855] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1763'.
[  145.367202][T10855] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1763'.
[  145.463599][T10873] loop3: detected capacity change from 0 to 1024
[  145.470765][T10873] EXT4-fs: Ignoring removed nobh option
[  145.476573][T10873] EXT4-fs: Ignoring removed bh option
[  145.495016][T10873] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.521181][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.586110][T10887] bond1: entered promiscuous mode
[  145.591235][T10887] bond1: entered allmulticast mode
[  145.597032][T10887] 8021q: adding VLAN 0 to HW filter on device bond1
[  145.643266][T10895] loop0: detected capacity change from 0 to 512
[  145.650461][T10895] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  145.662024][T10895] EXT4-fs (loop0): 1 truncate cleaned up
[  145.668549][T10895] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.708156][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.929128][T10926] veth1_virt_wifi: entered promiscuous mode
[  145.999372][T10933] loop1: detected capacity change from 0 to 512
[  146.006037][T10933] ext4: Unknown parameter 'euid<00000000000000000000'
[  146.021281][T10933] loop1: detected capacity change from 0 to 512
[  146.028281][T10933] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  146.039905][T10933] EXT4-fs (loop1): 1 truncate cleaned up
[  146.046006][T10933] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.115702][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.206189][T10949] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10949 comm=syz.1.1796
[  146.250507][T10949] SELinux: ebitmap: empty map
[  146.255852][T10949] SELinux: failed to load policy
[  146.491645][T10975] loop1: detected capacity change from 0 to 512
[  146.498449][T10975] EXT4-fs: Ignoring removed nobh option
[  146.508118][T10975] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.959359][T11000] FAULT_INJECTION: forcing a failure.
[  146.959359][T11000] name failslab, interval 1, probability 0, space 0, times 0
[  146.972262][T11000] CPU: 0 UID: 0 PID: 11000 Comm: syz.2.1818 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  146.972291][T11000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  146.972406][T11000] Call Trace:
[  146.972414][T11000]  <TASK>
[  146.972424][T11000]  __dump_stack+0x1d/0x30
[  146.972453][T11000]  dump_stack_lvl+0xe8/0x140
[  146.972479][T11000]  dump_stack+0x15/0x1b
[  146.972566][T11000]  should_fail_ex+0x265/0x280
[  146.972601][T11000]  should_failslab+0x8c/0xb0
[  146.972708][T11000]  kmem_cache_alloc_noprof+0x50/0x310
[  146.972729][T11000]  ? skb_clone+0x151/0x1f0
[  146.972755][T11000]  skb_clone+0x151/0x1f0
[  146.972782][T11000]  __netlink_deliver_tap+0x2c9/0x500
[  146.972809][T11000]  netlink_unicast+0x64c/0x670
[  146.972955][T11000]  netlink_sendmsg+0x58b/0x6b0
[  146.972990][T11000]  ? __pfx_netlink_sendmsg+0x10/0x10
[  146.973010][T11000]  __sock_sendmsg+0x142/0x180
[  146.973038][T11000]  ____sys_sendmsg+0x31e/0x4e0
[  146.973067][T11000]  ___sys_sendmsg+0x17b/0x1d0
[  146.973180][T11000]  __x64_sys_sendmsg+0xd4/0x160
[  146.973276][T11000]  x64_sys_call+0x2999/0x2fb0
[  146.973298][T11000]  do_syscall_64+0xd0/0x1a0
[  146.973321][T11000]  ? clear_bhb_loop+0x40/0x90
[  146.973345][T11000]  ? clear_bhb_loop+0x40/0x90
[  146.973497][T11000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.973526][T11000] RIP: 0033:0x7febf05de969
[  146.973603][T11000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.973620][T11000] RSP: 002b:00007febeec47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  146.973641][T11000] RAX: ffffffffffffffda RBX: 00007febf0805fa0 RCX: 00007febf05de969
[  146.973658][T11000] RDX: 00000000000008d0 RSI: 0000200000000500 RDI: 0000000000000003
[  146.973671][T11000] RBP: 00007febeec47090 R08: 0000000000000000 R09: 0000000000000000
[  146.973684][T11000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.973741][T11000] R13: 0000000000000000 R14: 00007febf0805fa0 R15: 00007ffda6fd4ac8
[  146.973766][T11000]  </TASK>
[  147.277820][T11007] loop2: detected capacity change from 0 to 512
[  147.284927][T11007] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  147.296377][T11007] EXT4-fs (loop2): invalid journal inode
[  147.302243][T11007] EXT4-fs (loop2): can't get journal size
[  147.308901][T11007] EXT4-fs (loop2): 1 truncate cleaned up
[  147.315699][T11007] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.344362][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.394313][T11012] bond1: entered promiscuous mode
[  147.399399][T11012] bond1: entered allmulticast mode
[  147.407656][T11012] 8021q: adding VLAN 0 to HW filter on device bond1
[  147.625283][T11027] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  147.635249][ T3392] IPVS: starting estimator thread 0...
[  147.646302][T11028] IPVS: set_ctl: invalid protocol: 92 100.1.1.1:20000
[  147.723013][T11029] IPVS: using max 2208 ests per chain, 110400 per kthread
[  147.743229][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.837140][T11043] loop1: detected capacity change from 0 to 512
[  147.844007][T11043] ext4: Unknown parameter 'euid<00000000000000000000'
[  147.861444][T11043] loop1: detected capacity change from 0 to 512
[  147.869615][T11043] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  147.888560][T11043] EXT4-fs (loop1): 1 truncate cleaned up
[  147.891642][T11051] netlink: 'syz.2.1839': attribute type 12 has an invalid length.
[  147.902160][T11051] netlink: 'syz.2.1839': attribute type 29 has an invalid length.
[  147.902994][T11043] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.910011][T11051] __nla_validate_parse: 14 callbacks suppressed
[  147.910029][T11051] netlink: 148 bytes leftover after parsing attributes in process `syz.2.1839'.
[  147.937957][T11051] netlink: 'syz.2.1839': attribute type 2 has an invalid length.
[  147.938066][T11050] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1838'.
[  147.945724][T11051] netlink: 43 bytes leftover after parsing attributes in process `syz.2.1839'.
[  147.997945][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.142981][T11061] loop2: detected capacity change from 0 to 512
[  148.149570][T11061] EXT4-fs: Ignoring removed nobh option
[  148.157772][T11061] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.624012][T11078] loop3: detected capacity change from 0 to 512
[  148.630856][T11078] ext4: Unknown parameter 'euid<00000000000000000000'
[  148.713390][T11080] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1849'.
[  148.722842][T11080] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1849'.
[  148.861369][T11084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1851'.
[  148.893342][T11088] sch_tbf: burst 3504 is lower than device lo mtu (65550) !
[  149.294792][ T3321] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.647747][T11121] sch_tbf: burst 3504 is lower than device lo mtu (65550) !
[  150.088070][T11147] block device autoloading is deprecated and will be removed.
[  150.114496][T11147] lo: entered promiscuous mode
[  150.119352][T11147] lo: entered allmulticast mode
[  150.124429][T11147] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  150.170350][   T29] kauditd_printk_skb: 398 callbacks suppressed
[  150.170368][   T29] audit: type=1326 audit(1748286716.733:8598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  150.240558][   T29] audit: type=1326 audit(1748286716.773:8599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  150.264148][   T29] audit: type=1326 audit(1748286716.773:8600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  150.287687][   T29] audit: type=1326 audit(1748286716.773:8601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  150.311314][   T29] audit: type=1326 audit(1748286716.773:8602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3ff4a6e9a3 code=0x7ffc0000
[  150.334756][   T29] audit: type=1326 audit(1748286716.773:8603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3ff4a6d41f code=0x7ffc0000
[  150.358166][   T29] audit: type=1326 audit(1748286716.783:8604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f3ff4a6e9f7 code=0x7ffc0000
[  150.381588][   T29] audit: type=1326 audit(1748286716.783:8605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3ff4a6d2d0 code=0x7ffc0000
[  150.405126][   T29] audit: type=1326 audit(1748286716.783:8606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f3ff4a6d5ca code=0x7ffc0000
[  150.428619][   T29] audit: type=1326 audit(1748286716.783:8607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11146 comm="syz.0.1880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  150.662077][T11151] loop1: detected capacity change from 0 to 128
[  150.696763][T11151] /dev/loop1: Can't open blockdev
[  151.149655][T11173] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1891'.
[  151.185392][T11180] FAULT_INJECTION: forcing a failure.
[  151.185392][T11180] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.198590][T11180] CPU: 0 UID: 0 PID: 11180 Comm: syz.0.1893 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  151.198617][T11180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  151.198633][T11180] Call Trace:
[  151.198640][T11180]  <TASK>
[  151.198651][T11180]  __dump_stack+0x1d/0x30
[  151.198734][T11180]  dump_stack_lvl+0xe8/0x140
[  151.198756][T11180]  dump_stack+0x15/0x1b
[  151.198773][T11180]  should_fail_ex+0x265/0x280
[  151.198808][T11180]  should_fail+0xb/0x20
[  151.198916][T11180]  should_fail_usercopy+0x1a/0x20
[  151.198940][T11180]  _copy_from_user+0x1c/0xb0
[  151.199086][T11180]  do_sock_getsockopt+0xf1/0x240
[  151.199116][T11180]  __x64_sys_getsockopt+0x11e/0x1a0
[  151.199211][T11180]  x64_sys_call+0x12aa/0x2fb0
[  151.199235][T11180]  do_syscall_64+0xd0/0x1a0
[  151.199261][T11180]  ? clear_bhb_loop+0x40/0x90
[  151.199370][T11180]  ? clear_bhb_loop+0x40/0x90
[  151.199392][T11180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.199419][T11180] RIP: 0033:0x7f3ff4a6e969
[  151.199439][T11180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.199463][T11180] RSP: 002b:00007f3ff30d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  151.199524][T11180] RAX: ffffffffffffffda RBX: 00007f3ff4c95fa0 RCX: 00007f3ff4a6e969
[  151.199539][T11180] RDX: 000000000000271d RSI: 0000200000000114 RDI: 0000000000000003
[  151.199555][T11180] RBP: 00007f3ff30d7090 R08: 0000200000000040 R09: 0000000000000000
[  151.199572][T11180] R10: 0000200000019580 R11: 0000000000000246 R12: 0000000000000001
[  151.199657][T11180] R13: 0000000000000000 R14: 00007f3ff4c95fa0 R15: 00007ffc40211f38
[  151.199688][T11180]  </TASK>
[  151.504180][T11196] loop1: detected capacity change from 0 to 128
[  151.699049][T11222] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  151.719843][T11224] FAULT_INJECTION: forcing a failure.
[  151.719843][T11224] name failslab, interval 1, probability 0, space 0, times 0
[  151.732632][T11224] CPU: 0 UID: 0 PID: 11224 Comm: syz.6.1914 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  151.732727][T11224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  151.732739][T11224] Call Trace:
[  151.732746][T11224]  <TASK>
[  151.732753][T11224]  __dump_stack+0x1d/0x30
[  151.732779][T11224]  dump_stack_lvl+0xe8/0x140
[  151.732805][T11224]  dump_stack+0x15/0x1b
[  151.732859][T11224]  should_fail_ex+0x265/0x280
[  151.732937][T11224]  ? audit_log_d_path+0x8d/0x150
[  151.732991][T11224]  should_failslab+0x8c/0xb0
[  151.733033][T11224]  __kmalloc_cache_noprof+0x4c/0x320
[  151.733058][T11224]  audit_log_d_path+0x8d/0x150
[  151.733167][T11224]  audit_log_d_path_exe+0x42/0x70
[  151.733208][T11224]  audit_log_task+0x1e9/0x250
[  151.733248][T11224]  audit_seccomp+0x61/0x100
[  151.733280][T11224]  ? __seccomp_filter+0x68c/0x10d0
[  151.733322][T11224]  __seccomp_filter+0x69d/0x10d0
[  151.733353][T11224]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  151.733390][T11224]  ? vfs_write+0x75e/0x8d0
[  151.733425][T11224]  ? __rcu_read_unlock+0x4f/0x70
[  151.733510][T11224]  ? __fget_files+0x184/0x1c0
[  151.733553][T11224]  __secure_computing+0x82/0x150
[  151.733582][T11224]  syscall_trace_enter+0xcf/0x1e0
[  151.733615][T11224]  do_syscall_64+0xaa/0x1a0
[  151.733712][T11224]  ? clear_bhb_loop+0x40/0x90
[  151.733742][T11224]  ? clear_bhb_loop+0x40/0x90
[  151.733783][T11224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.733855][T11224] RIP: 0033:0x7f0f6272e969
[  151.733875][T11224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.733898][T11224] RSP: 002b:00007f0f60d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000126
[  151.733992][T11224] RAX: ffffffffffffffda RBX: 00007f0f62955fa0 RCX: 00007f0f6272e969
[  151.734010][T11224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000800
[  151.734026][T11224] RBP: 00007f0f60d97090 R08: 0000000000000000 R09: 0000000000000000
[  151.734043][T11224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.734059][T11224] R13: 0000000000000000 R14: 00007f0f62955fa0 R15: 00007ffe610a2728
[  151.734079][T11224]  </TASK>
[  151.995889][T11226] dvmrp3: entered allmulticast mode
[  152.098623][T11240] loop1: detected capacity change from 0 to 512
[  152.118925][T11240] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  152.151309][T11240] EXT4-fs (loop1): 1 truncate cleaned up
[  152.164764][T11240] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.227529][T11222] lo speed is unknown, defaulting to 1000
[  152.266935][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.443561][T11270] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1934'.
[  152.466709][T11270] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1934'.
[  152.558889][T11273] lo speed is unknown, defaulting to 1000
[  152.609797][T11280] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1938'.
[  152.619024][T11280] IPVS: Error joining to the multicast group
[  152.695349][T11286] loop1: detected capacity change from 0 to 512
[  152.702122][T11286] ext4: Unknown parameter 'euid<00000000000000000000'
[  153.157668][T11297] FAULT_INJECTION: forcing a failure.
[  153.157668][T11297] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.170889][T11297] CPU: 1 UID: 0 PID: 11297 Comm: syz.3.1945 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  153.170925][T11297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.170965][T11297] Call Trace:
[  153.170971][T11297]  <TASK>
[  153.170979][T11297]  __dump_stack+0x1d/0x30
[  153.171075][T11297]  dump_stack_lvl+0xe8/0x140
[  153.171102][T11297]  dump_stack+0x15/0x1b
[  153.171125][T11297]  should_fail_ex+0x265/0x280
[  153.171168][T11297]  should_fail+0xb/0x20
[  153.171244][T11297]  should_fail_usercopy+0x1a/0x20
[  153.171322][T11297]  _copy_from_iter+0xcf/0xdd0
[  153.171348][T11297]  ? __build_skb_around+0x1a0/0x200
[  153.171464][T11297]  ? __alloc_skb+0x223/0x320
[  153.171573][T11297]  netlink_sendmsg+0x471/0x6b0
[  153.171603][T11297]  ? __pfx_netlink_sendmsg+0x10/0x10
[  153.171689][T11297]  __sock_sendmsg+0x142/0x180
[  153.171736][T11297]  ____sys_sendmsg+0x31e/0x4e0
[  153.171832][T11297]  ___sys_sendmsg+0x17b/0x1d0
[  153.171912][T11297]  __x64_sys_sendmsg+0xd4/0x160
[  153.171947][T11297]  x64_sys_call+0x2999/0x2fb0
[  153.171975][T11297]  do_syscall_64+0xd0/0x1a0
[  153.172059][T11297]  ? clear_bhb_loop+0x40/0x90
[  153.172089][T11297]  ? clear_bhb_loop+0x40/0x90
[  153.172151][T11297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.172223][T11297] RIP: 0033:0x7f6347e6e969
[  153.172240][T11297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.172264][T11297] RSP: 002b:00007f63464d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.172290][T11297] RAX: ffffffffffffffda RBX: 00007f6348095fa0 RCX: 00007f6347e6e969
[  153.172307][T11297] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  153.172337][T11297] RBP: 00007f63464d7090 R08: 0000000000000000 R09: 0000000000000000
[  153.172354][T11297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.172371][T11297] R13: 0000000000000000 R14: 00007f6348095fa0 R15: 00007ffd9264ece8
[  153.172395][T11297]  </TASK>
[  153.375120][T11291] SELinux:  Context Ü is not valid (left unmapped).
[  153.455189][T11304] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1949'.
[  153.690013][T11320] vhci_hcd: invalid port number 15
[  153.695289][T11320] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub
[  153.808053][T11325] geneve0: entered allmulticast mode
[  153.897286][T11329] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1960'.
[  153.931499][T11329] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  153.952336][T11333] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1962'.
[  153.972256][T11329] FAULT_INJECTION: forcing a failure.
[  153.972256][T11329] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.985409][T11329] CPU: 1 UID: 0 PID: 11329 Comm: syz.1.1960 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  153.985497][T11329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  153.985512][T11329] Call Trace:
[  153.985588][T11329]  <TASK>
[  153.985597][T11329]  __dump_stack+0x1d/0x30
[  153.985675][T11329]  dump_stack_lvl+0xe8/0x140
[  153.985705][T11329]  dump_stack+0x15/0x1b
[  153.985722][T11329]  should_fail_ex+0x265/0x280
[  153.985825][T11329]  should_fail+0xb/0x20
[  153.985862][T11329]  should_fail_usercopy+0x1a/0x20
[  153.985918][T11329]  _copy_from_user+0x1c/0xb0
[  153.985948][T11329]  ___sys_sendmsg+0xc1/0x1d0
[  153.985986][T11329]  __x64_sys_sendmsg+0xd4/0x160
[  153.986013][T11329]  x64_sys_call+0x2999/0x2fb0
[  153.986037][T11329]  do_syscall_64+0xd0/0x1a0
[  153.986111][T11329]  ? clear_bhb_loop+0x40/0x90
[  153.986132][T11329]  ? clear_bhb_loop+0x40/0x90
[  153.986230][T11329]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.986257][T11329] RIP: 0033:0x7fa7f0ffe969
[  153.986276][T11329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.986309][T11329] RSP: 002b:00007fa7ef667038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.986328][T11329] RAX: ffffffffffffffda RBX: 00007fa7f1225fa0 RCX: 00007fa7f0ffe969
[  153.986363][T11329] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  153.986375][T11329] RBP: 00007fa7ef667090 R08: 0000000000000000 R09: 0000000000000000
[  153.986391][T11329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.986406][T11329] R13: 0000000000000000 R14: 00007fa7f1225fa0 R15: 00007fffbd56d0a8
[  153.986432][T11329]  </TASK>
[  154.217828][T11345] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  154.477575][T11345] lo speed is unknown, defaulting to 1000
[  154.587006][T11379] FAULT_INJECTION: forcing a failure.
[  154.587006][T11379] name failslab, interval 1, probability 0, space 0, times 0
[  154.599769][T11379] CPU: 1 UID: 0 PID: 11379 Comm: syz.3.1979 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  154.599804][T11379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  154.599829][T11379] Call Trace:
[  154.599836][T11379]  <TASK>
[  154.599845][T11379]  __dump_stack+0x1d/0x30
[  154.599871][T11379]  dump_stack_lvl+0xe8/0x140
[  154.599890][T11379]  dump_stack+0x15/0x1b
[  154.599944][T11379]  should_fail_ex+0x265/0x280
[  154.599987][T11379]  should_failslab+0x8c/0xb0
[  154.600025][T11379]  kmem_cache_alloc_noprof+0x50/0x310
[  154.600045][T11379]  ? dup_fd+0x3a/0x540
[  154.600070][T11379]  dup_fd+0x3a/0x540
[  154.600102][T11379]  ? __fget_files+0x184/0x1c0
[  154.600229][T11379]  ksys_unshare+0x346/0x6d0
[  154.600339][T11379]  ? ksys_write+0x16e/0x1a0
[  154.600367][T11379]  __x64_sys_unshare+0x1f/0x30
[  154.600397][T11379]  x64_sys_call+0x2d4b/0x2fb0
[  154.600423][T11379]  do_syscall_64+0xd0/0x1a0
[  154.600514][T11379]  ? clear_bhb_loop+0x40/0x90
[  154.600540][T11379]  ? clear_bhb_loop+0x40/0x90
[  154.600606][T11379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.600634][T11379] RIP: 0033:0x7f6347e6e969
[  154.600652][T11379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.600676][T11379] RSP: 002b:00007f63464d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  154.600699][T11379] RAX: ffffffffffffffda RBX: 00007f6348095fa0 RCX: 00007f6347e6e969
[  154.600775][T11379] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020060400
[  154.600791][T11379] RBP: 00007f63464d7090 R08: 0000000000000000 R09: 0000000000000000
[  154.600825][T11379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.600837][T11379] R13: 0000000000000000 R14: 00007f6348095fa0 R15: 00007ffd9264ece8
[  154.600861][T11379]  </TASK>
[  155.050820][T11400] FAULT_INJECTION: forcing a failure.
[  155.050820][T11400] name failslab, interval 1, probability 0, space 0, times 0
[  155.063618][T11400] CPU: 1 UID: 0 PID: 11400 Comm: syz.6.1988 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  155.063648][T11400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.063664][T11400] Call Trace:
[  155.063672][T11400]  <TASK>
[  155.063681][T11400]  __dump_stack+0x1d/0x30
[  155.063708][T11400]  dump_stack_lvl+0xe8/0x140
[  155.063804][T11400]  dump_stack+0x15/0x1b
[  155.063826][T11400]  should_fail_ex+0x265/0x280
[  155.063871][T11400]  should_failslab+0x8c/0xb0
[  155.063910][T11400]  kmem_cache_alloc_node_noprof+0x57/0x320
[  155.063999][T11400]  ? __alloc_skb+0x101/0x320
[  155.064040][T11400]  __alloc_skb+0x101/0x320
[  155.064100][T11400]  netlink_alloc_large_skb+0xba/0xf0
[  155.064143][T11400]  netlink_sendmsg+0x3cf/0x6b0
[  155.064195][T11400]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.064223][T11400]  __sock_sendmsg+0x142/0x180
[  155.064254][T11400]  ____sys_sendmsg+0x31e/0x4e0
[  155.064317][T11400]  ___sys_sendmsg+0x17b/0x1d0
[  155.064430][T11400]  __x64_sys_sendmsg+0xd4/0x160
[  155.064538][T11400]  x64_sys_call+0x2999/0x2fb0
[  155.064644][T11400]  do_syscall_64+0xd0/0x1a0
[  155.064675][T11400]  ? clear_bhb_loop+0x40/0x90
[  155.064704][T11400]  ? clear_bhb_loop+0x40/0x90
[  155.064733][T11400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.064794][T11400] RIP: 0033:0x7f0f6272e969
[  155.064820][T11400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.064858][T11400] RSP: 002b:00007f0f60d97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.064882][T11400] RAX: ffffffffffffffda RBX: 00007f0f62955fa0 RCX: 00007f0f6272e969
[  155.064899][T11400] RDX: 0000000004000850 RSI: 0000200000000600 RDI: 0000000000000003
[  155.065005][T11400] RBP: 00007f0f60d97090 R08: 0000000000000000 R09: 0000000000000000
[  155.065022][T11400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.065038][T11400] R13: 0000000000000000 R14: 00007f0f62955fa0 R15: 00007ffe610a2728
[  155.065059][T11400]  </TASK>
[  155.306632][   T29] kauditd_printk_skb: 329 callbacks suppressed
[  155.306651][   T29] audit: type=1400 audit(1748286721.873:8937): avc:  denied  { create } for  pid=11401 comm="syz.3.1989" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  155.337930][   T29] audit: type=1400 audit(1748286721.903:8938): avc:  denied  { write } for  pid=11401 comm="syz.3.1989" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  155.369818][T11402] netlink: 'syz.3.1989': attribute type 10 has an invalid length.
[  155.400651][T11402] veth0_vlan: entered allmulticast mode
[  155.413429][T11402] veth0_vlan: left promiscuous mode
[  155.420080][T11402] veth0_vlan: entered promiscuous mode
[  155.428415][T11402] team0: Device veth0_vlan failed to register rx_handler
[  155.505671][T11415] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1995'.
[  155.557923][T11418] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1995'.
[  155.642184][T11423] netlink: 'syz.2.1998': attribute type 10 has an invalid length.
[  155.653873][T11423] veth0_vlan: entered allmulticast mode
[  155.666326][T11423] veth0_vlan: left promiscuous mode
[  155.673533][T11423] veth0_vlan: entered promiscuous mode
[  155.684966][T11423] team0: Device veth0_vlan failed to register rx_handler
[  155.816743][T11435] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2004'.
[  156.051814][   T29] audit: type=1400 audit(1748286722.613:8939): avc:  denied  { write } for  pid=11447 comm="syz.2.2008" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  156.341280][   T29] audit: type=1326 audit(1748286722.903:8940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11459 comm="syz.1.2013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  156.364952][   T29] audit: type=1326 audit(1748286722.903:8941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11459 comm="syz.1.2013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  156.388478][   T29] audit: type=1326 audit(1748286722.903:8942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11459 comm="syz.1.2013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  156.412170][   T29] audit: type=1326 audit(1748286722.903:8943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11459 comm="syz.1.2013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  156.417069][T11460] SELinux: ebitmap: empty map
[  156.435735][   T29] audit: type=1326 audit(1748286722.903:8944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11459 comm="syz.1.2013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  156.441141][T11460] SELinux: failed to load policy
[  156.463976][   T29] audit: type=1326 audit(1748286722.903:8945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11459 comm="syz.1.2013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  156.464763][   T29] audit: type=1326 audit(1748286722.903:8946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11459 comm="syz.1.2013" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  156.610325][T11466] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2016'.
[  156.647298][T11472] block device autoloading is deprecated and will be removed.
[  157.006196][T11550] SELinux: ebitmap: empty map
[  157.011046][T11550] SELinux: failed to load policy
[  157.110002][T11557] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2028'.
[  157.264862][T11569] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2031'.
[  157.310786][T11571] lo speed is unknown, defaulting to 1000
[  157.499855][T11578] lo speed is unknown, defaulting to 1000
[  157.655763][T11580] SELinux: ebitmap: empty map
[  157.662759][T11580] SELinux: failed to load policy
[  157.719317][T11588] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2039'.
[  157.749377][T11588] IPVS: Error joining to the multicast group
[  158.462256][T11622] FAULT_INJECTION: forcing a failure.
[  158.462256][T11622] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.475393][T11622] CPU: 1 UID: 0 PID: 11622 Comm: syz.0.2053 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  158.475429][T11622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.475453][T11622] Call Trace:
[  158.475461][T11622]  <TASK>
[  158.475470][T11622]  __dump_stack+0x1d/0x30
[  158.475527][T11622]  dump_stack_lvl+0xe8/0x140
[  158.475550][T11622]  dump_stack+0x15/0x1b
[  158.475566][T11622]  should_fail_ex+0x265/0x280
[  158.475600][T11622]  should_fail+0xb/0x20
[  158.475638][T11622]  should_fail_usercopy+0x1a/0x20
[  158.475724][T11622]  _copy_from_user+0x1c/0xb0
[  158.475850][T11622]  ___sys_sendmsg+0xc1/0x1d0
[  158.475898][T11622]  __x64_sys_sendmsg+0xd4/0x160
[  158.475932][T11622]  x64_sys_call+0x2999/0x2fb0
[  158.475959][T11622]  do_syscall_64+0xd0/0x1a0
[  158.475981][T11622]  ? clear_bhb_loop+0x40/0x90
[  158.476073][T11622]  ? clear_bhb_loop+0x40/0x90
[  158.476102][T11622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.476131][T11622] RIP: 0033:0x7f3ff4a6e969
[  158.476198][T11622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.476217][T11622] RSP: 002b:00007f3ff30d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  158.476318][T11622] RAX: ffffffffffffffda RBX: 00007f3ff4c95fa0 RCX: 00007f3ff4a6e969
[  158.476334][T11622] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  158.476350][T11622] RBP: 00007f3ff30d7090 R08: 0000000000000000 R09: 0000000000000000
[  158.476365][T11622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.476377][T11622] R13: 0000000000000000 R14: 00007f3ff4c95fa0 R15: 00007ffc40211f38
[  158.476453][T11622]  </TASK>
[  158.745411][T11626] loop0: detected capacity change from 0 to 4096
[  158.767214][T11626] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.825924][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.883085][T11642] lo speed is unknown, defaulting to 1000
[  159.015777][T11650] loop0: detected capacity change from 0 to 164
[  159.028347][T11650] tipc: Started in network mode
[  159.033410][T11650] tipc: Node identity , cluster identity 4711
[  159.039517][T11650] tipc: Failed to obtain node identity
[  159.045047][T11650] tipc: Enabling of bearer <eth:gre0> rejected, failed to enable media
[  159.154581][T11658] loop0: detected capacity change from 0 to 512
[  159.161687][T11658] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  159.183315][T11658] EXT4-fs (loop0): 1 truncate cleaned up
[  159.189441][T11658] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.234116][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.268950][T11669] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.288739][T11669] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  159.633026][T11726] __nla_validate_parse: 1 callbacks suppressed
[  159.633045][T11726] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2073'.
[  159.648952][T11726] IPVS: Error joining to the multicast group
[  160.563312][T11806] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2083'.
[  160.575058][T11806] ipvlan2: entered promiscuous mode
[  160.598329][T11808] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2084'.
[  160.607402][T11808] IPVS: Error joining to the multicast group
[  160.645939][T11811] xt_CT: No such helper "snmp"
[  160.816313][T11844] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  160.983966][T11844] lo speed is unknown, defaulting to 1000
[  161.409519][   T29] kauditd_printk_skb: 274 callbacks suppressed
[  161.409537][   T29] audit: type=1326 audit(1748286727.973:9221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11848 comm="syz.1.2100" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa7f0ffe969 code=0x0
[  161.704424][T11866] netlink: 92 bytes leftover after parsing attributes in process `syz.6.2108'.
[  161.713630][   T29] audit: type=1326 audit(1748286728.273:9222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  161.737290][   T29] audit: type=1326 audit(1748286728.273:9223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  161.760833][   T29] audit: type=1326 audit(1748286728.273:9224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  161.784406][   T29] audit: type=1326 audit(1748286728.273:9225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  161.807957][   T29] audit: type=1326 audit(1748286728.273:9226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  161.831464][   T29] audit: type=1326 audit(1748286728.273:9227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  161.854996][   T29] audit: type=1326 audit(1748286728.273:9228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  161.878547][   T29] audit: type=1326 audit(1748286728.273:9229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  161.902126][   T29] audit: type=1326 audit(1748286728.273:9230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11871 comm="syz.3.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6347e6e969 code=0x7ffc0000
[  162.178504][T11906] SELinux:  Context system_u:object_r:semanage_exec_t:s0 is not valid (left unmapped).
[  162.263526][T11908] IPv6: NLM_F_CREATE should be specified when creating new route
[  162.422328][T11936] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2126'.
[  162.498468][T11952] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2128'.
[  163.244713][T12066] SELinux: ebitmap: empty map
[  163.249790][T12066] SELinux: failed to load policy
[  163.358172][T12074] FAULT_INJECTION: forcing a failure.
[  163.358172][T12074] name failslab, interval 1, probability 0, space 0, times 0
[  163.370970][T12074] CPU: 0 UID: 0 PID: 12074 Comm: syz.1.2142 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  163.371024][T12074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.371041][T12074] Call Trace:
[  163.371048][T12074]  <TASK>
[  163.371080][T12074]  __dump_stack+0x1d/0x30
[  163.371178][T12074]  dump_stack_lvl+0xe8/0x140
[  163.371204][T12074]  dump_stack+0x15/0x1b
[  163.371227][T12074]  should_fail_ex+0x265/0x280
[  163.371263][T12074]  should_failslab+0x8c/0xb0
[  163.371294][T12074]  __kmalloc_noprof+0xa5/0x3e0
[  163.371326][T12074]  ? iovec_from_user+0x84/0x210
[  163.371360][T12074]  iovec_from_user+0x84/0x210
[  163.371389][T12074]  __import_iovec+0xf3/0x540
[  163.371422][T12074]  ? aio_prep_rw+0x489/0x4f0
[  163.371487][T12074]  aio_read+0x135/0x2e0
[  163.371546][T12074]  io_submit_one+0xaad/0x11b0
[  163.371589][T12074]  __se_sys_io_submit+0xfb/0x280
[  163.371618][T12074]  __x64_sys_io_submit+0x43/0x50
[  163.371675][T12074]  x64_sys_call+0xfc4/0x2fb0
[  163.371698][T12074]  do_syscall_64+0xd0/0x1a0
[  163.371723][T12074]  ? clear_bhb_loop+0x40/0x90
[  163.371796][T12074]  ? clear_bhb_loop+0x40/0x90
[  163.371851][T12074]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.371872][T12074] RIP: 0033:0x7fa7f0ffe969
[  163.371886][T12074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.371901][T12074] RSP: 002b:00007fa7ef667038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  163.371918][T12074] RAX: ffffffffffffffda RBX: 00007fa7f1225fa0 RCX: 00007fa7f0ffe969
[  163.371930][T12074] RDX: 0000200000000080 RSI: 0000000000000001 RDI: 00007fa7ef636000
[  163.371941][T12074] RBP: 00007fa7ef667090 R08: 0000000000000000 R09: 0000000000000000
[  163.371952][T12074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.372009][T12074] R13: 0000000000000000 R14: 00007fa7f1225fa0 R15: 00007fffbd56d0a8
[  163.372034][T12074]  </TASK>
[  163.627547][T12076] FAULT_INJECTION: forcing a failure.
[  163.627547][T12076] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.640731][T12076] CPU: 0 UID: 0 PID: 12076 Comm: syz.1.2143 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  163.640765][T12076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.640816][T12076] Call Trace:
[  163.640823][T12076]  <TASK>
[  163.640832][T12076]  __dump_stack+0x1d/0x30
[  163.640859][T12076]  dump_stack_lvl+0xe8/0x140
[  163.640884][T12076]  dump_stack+0x15/0x1b
[  163.640932][T12076]  should_fail_ex+0x265/0x280
[  163.641030][T12076]  should_fail+0xb/0x20
[  163.641057][T12076]  should_fail_usercopy+0x1a/0x20
[  163.641083][T12076]  _copy_from_iter+0xcf/0xdd0
[  163.641101][T12076]  ? __build_skb_around+0x1a0/0x200
[  163.641154][T12076]  ? __alloc_skb+0x223/0x320
[  163.641184][T12076]  netlink_sendmsg+0x471/0x6b0
[  163.641251][T12076]  ? __pfx_netlink_sendmsg+0x10/0x10
[  163.641269][T12076]  __sock_sendmsg+0x142/0x180
[  163.641294][T12076]  ____sys_sendmsg+0x31e/0x4e0
[  163.641316][T12076]  ___sys_sendmsg+0x17b/0x1d0
[  163.641349][T12076]  __x64_sys_sendmsg+0xd4/0x160
[  163.641423][T12076]  x64_sys_call+0x2999/0x2fb0
[  163.641443][T12076]  do_syscall_64+0xd0/0x1a0
[  163.641465][T12076]  ? clear_bhb_loop+0x40/0x90
[  163.641545][T12076]  ? clear_bhb_loop+0x40/0x90
[  163.641566][T12076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.641595][T12076] RIP: 0033:0x7fa7f0ffe969
[  163.641615][T12076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.641666][T12076] RSP: 002b:00007fa7ef667038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  163.641683][T12076] RAX: ffffffffffffffda RBX: 00007fa7f1225fa0 RCX: 00007fa7f0ffe969
[  163.641694][T12076] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000007
[  163.641705][T12076] RBP: 00007fa7ef667090 R08: 0000000000000000 R09: 0000000000000000
[  163.641715][T12076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.641726][T12076] R13: 0000000000000000 R14: 00007fa7f1225fa0 R15: 00007fffbd56d0a8
[  163.641799][T12076]  </TASK>
[  163.874347][T12076] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2143'.
[  163.888474][T12076] hsr_slave_0: left promiscuous mode
[  163.894618][T12076] hsr_slave_1: left promiscuous mode
[  163.935233][T12086] tipc: Started in network mode
[  163.940171][T12086] tipc: Node identity , cluster identity 4711
[  163.946353][T12086] tipc: Failed to obtain node identity
[  163.951825][T12086] tipc: Enabling of bearer <eth:gre0> rejected, failed to enable media
[  164.073123][T12093] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2149'.
[  164.102830][T12093] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2149'.
[  164.161635][T12097] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2151'.
[  164.473460][T12118] IPVS: Error joining to the multicast group
[  164.738669][T12130] __nla_validate_parse: 3 callbacks suppressed
[  164.738683][T12130] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2163'.
[  164.860235][T12150] FAULT_INJECTION: forcing a failure.
[  164.860235][T12150] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.873484][T12150] CPU: 1 UID: 0 PID: 12150 Comm: syz.0.2172 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  164.873519][T12150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  164.873535][T12150] Call Trace:
[  164.873543][T12150]  <TASK>
[  164.873551][T12150]  __dump_stack+0x1d/0x30
[  164.873578][T12150]  dump_stack_lvl+0xe8/0x140
[  164.873646][T12150]  dump_stack+0x15/0x1b
[  164.873666][T12150]  should_fail_ex+0x265/0x280
[  164.873714][T12150]  should_fail+0xb/0x20
[  164.873750][T12150]  should_fail_usercopy+0x1a/0x20
[  164.873776][T12150]  _copy_from_user+0x1c/0xb0
[  164.873843][T12150]  ___sys_sendmsg+0xc1/0x1d0
[  164.873887][T12150]  __x64_sys_sendmsg+0xd4/0x160
[  164.873919][T12150]  x64_sys_call+0x2999/0x2fb0
[  164.873975][T12150]  do_syscall_64+0xd0/0x1a0
[  164.874004][T12150]  ? clear_bhb_loop+0x40/0x90
[  164.874031][T12150]  ? clear_bhb_loop+0x40/0x90
[  164.874058][T12150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.874084][T12150] RIP: 0033:0x7f3ff4a6e969
[  164.874102][T12150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.874193][T12150] RSP: 002b:00007f3ff30d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  164.874216][T12150] RAX: ffffffffffffffda RBX: 00007f3ff4c95fa0 RCX: 00007f3ff4a6e969
[  164.874231][T12150] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000003
[  164.874247][T12150] RBP: 00007f3ff30d7090 R08: 0000000000000000 R09: 0000000000000000
[  164.874400][T12150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.874416][T12150] R13: 0000000000000000 R14: 00007f3ff4c95fa0 R15: 00007ffc40211f38
[  164.874443][T12150]  </TASK>
[  165.099979][T12159] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled
[  165.166104][T12165] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2179'.
[  165.178837][T12159] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2176'.
[  165.270922][T12170] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.364448][T12209] IPVS: length: 65 != 8
[  165.374782][T12170] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.387620][T12183] workqueue: Failed to create a rescuer kthread for wq "nfc15_nci_rx_wq": -EINTR
[  165.481437][T12170] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.570305][T12170] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.699519][T12170] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.722982][T12170] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.747732][T12170] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.773075][T12170] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.885677][T12246] SELinux: ebitmap: empty map
[  165.890846][T12246] SELinux: failed to load policy
[  166.055360][T12255] hub 4-0:1.0: USB hub found
[  166.060316][T12255] hub 4-0:1.0: 8 ports detected
[  166.098959][T12261] netlink: 156 bytes leftover after parsing attributes in process `syz.1.2198'.
[  166.108889][T12261] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2198'.
[  166.450728][   T29] kauditd_printk_skb: 304 callbacks suppressed
[  166.450749][   T29] audit: type=1326 audit(1748286733.013:9535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.6.2207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  166.481036][   T29] audit: type=1326 audit(1748286733.013:9536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.6.2207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  166.504643][   T29] audit: type=1326 audit(1748286733.013:9537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.6.2207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  166.516912][T12286] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2208'.
[  166.528289][   T29] audit: type=1326 audit(1748286733.013:9538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.6.2207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  166.528326][   T29] audit: type=1326 audit(1748286733.013:9539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.6.2207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  166.537504][T12286] IPVS: Error joining to the multicast group
[  166.590832][   T29] audit: type=1326 audit(1748286733.013:9540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.6.2207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  166.614495][   T29] audit: type=1326 audit(1748286733.023:9541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12283 comm="syz.6.2207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f6272e969 code=0x7ffc0000
[  166.656856][   T29] audit: type=1400 audit(1748286733.223:9542): avc:  denied  { read append } for  pid=12291 comm="syz.6.2211" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  166.681957][   T29] audit: type=1400 audit(1748286733.223:9543): avc:  denied  { open } for  pid=12291 comm="syz.6.2211" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  166.708952][   T29] audit: type=1400 audit(1748286733.273:9544): avc:  denied  { ioctl } for  pid=12291 comm="syz.6.2211" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  167.173758][T12305] geneve0: entered allmulticast mode
[  167.244624][T12297] lo speed is unknown, defaulting to 1000
[  168.150653][T12316] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2219'.
[  168.170302][T12316] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2219'.
[  168.248590][T12290] SELinux:  Context system_u:object_r:hald_sonypic_exec_t:s0 is not valid (left unmapped).
[  168.300129][T12325] dccp_invalid_packet: P.type (CLOSEREQ) not Data || [Data]Ack, while P.X == 0
[  169.114432][T12349] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2233'.
[  169.123532][T12349] bridge_slave_1: left allmulticast mode
[  169.129290][T12349] bridge_slave_1: left promiscuous mode
[  169.135236][T12349] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.143648][T12349] bridge_slave_0: left allmulticast mode
[  169.149452][T12349] bridge_slave_0: left promiscuous mode
[  169.155263][T12349] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.214137][T12351] lo speed is unknown, defaulting to 1000
[  169.268512][T12360] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2238'.
[  169.753842][T12399] lo speed is unknown, defaulting to 1000
[  170.814613][T12449] lo speed is unknown, defaulting to 1000
[  171.092587][T12511] FAULT_INJECTION: forcing a failure.
[  171.092587][T12511] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  171.105845][T12511] CPU: 0 UID: 0 PID: 12511 Comm: syz.0.2275 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  171.105880][T12511] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  171.105922][T12511] Call Trace:
[  171.105930][T12511]  <TASK>
[  171.105940][T12511]  __dump_stack+0x1d/0x30
[  171.105968][T12511]  dump_stack_lvl+0xe8/0x140
[  171.105991][T12511]  dump_stack+0x15/0x1b
[  171.106010][T12511]  should_fail_ex+0x265/0x280
[  171.106071][T12511]  should_fail+0xb/0x20
[  171.106175][T12511]  should_fail_usercopy+0x1a/0x20
[  171.106203][T12511]  _copy_to_user+0x20/0xa0
[  171.106242][T12511]  simple_read_from_buffer+0xb5/0x130
[  171.106304][T12511]  proc_fail_nth_read+0x100/0x140
[  171.106343][T12511]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  171.106379][T12511]  vfs_read+0x19d/0x6f0
[  171.106464][T12511]  ? __rcu_read_unlock+0x4f/0x70
[  171.106546][T12511]  ? __fget_files+0x184/0x1c0
[  171.106578][T12511]  ksys_read+0xda/0x1a0
[  171.106611][T12511]  __x64_sys_read+0x40/0x50
[  171.106648][T12511]  x64_sys_call+0x2d77/0x2fb0
[  171.106722][T12511]  do_syscall_64+0xd0/0x1a0
[  171.106822][T12511]  ? clear_bhb_loop+0x40/0x90
[  171.106852][T12511]  ? clear_bhb_loop+0x40/0x90
[  171.106882][T12511]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.106948][T12511] RIP: 0033:0x7f3ff4a6d37c
[  171.106968][T12511] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  171.106992][T12511] RSP: 002b:00007f3ff30d7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  171.107017][T12511] RAX: ffffffffffffffda RBX: 00007f3ff4c95fa0 RCX: 00007f3ff4a6d37c
[  171.107034][T12511] RDX: 000000000000000f RSI: 00007f3ff30d70a0 RDI: 0000000000000005
[  171.107051][T12511] RBP: 00007f3ff30d7090 R08: 0000000000000000 R09: 0000000000000000
[  171.107068][T12511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.107082][T12511] R13: 0000000000000000 R14: 00007f3ff4c95fa0 R15: 00007ffc40211f38
[  171.107155][T12511]  </TASK>
[  171.422438][T12529] __nla_validate_parse: 1 callbacks suppressed
[  171.428736][T12529] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2279'.
[  171.450442][T12529] IPVS: Error joining to the multicast group
[  171.469760][T12534] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2278'.
[  171.478806][T12534] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2278'.
[  171.507968][   T29] kauditd_printk_skb: 131 callbacks suppressed
[  171.507987][   T29] audit: type=1326 audit(1748286738.073:9676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.551839][   T29] audit: type=1326 audit(1748286738.073:9677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.575584][   T29] audit: type=1326 audit(1748286738.073:9678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.599241][   T29] audit: type=1326 audit(1748286738.073:9679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.622863][   T29] audit: type=1326 audit(1748286738.073:9680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.646463][   T29] audit: type=1326 audit(1748286738.073:9681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.670162][   T29] audit: type=1326 audit(1748286738.073:9682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.693754][   T29] audit: type=1326 audit(1748286738.073:9683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.717274][   T29] audit: type=1326 audit(1748286738.073:9684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  171.740824][   T29] audit: type=1326 audit(1748286738.073:9685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12538 comm="syz.0.2280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ff4a6e969 code=0x7ffc0000
[  172.276430][T12588] serio: Serial port ptm0
[  172.327803][T12590] tipc: Started in network mode
[  172.332973][T12590] tipc: Node identity fef331000000000000000000000000aa, cluster identity 4711
[  172.341887][T12590] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  172.370376][T12592] block device autoloading is deprecated and will be removed.
[  172.404918][T12594] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2288'.
[  172.414110][T12594] IPVS: Error joining to the multicast group
[  172.476859][T12599] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2290'.
[  172.509917][T12603] binfmt_misc: register: failed to install interpreter file ./file2
[  173.404447][T12633] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2302'.
[  173.446871][T12641] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2305'.
[  173.456187][T12641] IPVS: Unknown mcast interface: vcan0
[  173.559725][T12647] SELinux: ebitmap: empty map
[  173.564713][T12647] SELinux: failed to load policy
[  173.680972][T12658] lo speed is unknown, defaulting to 1000
[  174.525432][T12683] SELinux: ebitmap: empty map
[  174.530518][T12683] SELinux: failed to load policy
[  174.582861][T12688] 9pnet_fd: Insufficient options for proto=fd
[  175.947876][T12786] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2361'.
[  176.005871][T12786] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2361'.
[  176.057018][T12799] FAULT_INJECTION: forcing a failure.
[  176.057018][T12799] name failslab, interval 1, probability 0, space 0, times 0
[  176.069754][T12799] CPU: 1 UID: 0 PID: 12799 Comm: syz.3.2367 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  176.069781][T12799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  176.069794][T12799] Call Trace:
[  176.069801][T12799]  <TASK>
[  176.069809][T12799]  __dump_stack+0x1d/0x30
[  176.069832][T12799]  dump_stack_lvl+0xe8/0x140
[  176.069878][T12799]  dump_stack+0x15/0x1b
[  176.069901][T12799]  should_fail_ex+0x265/0x280
[  176.070006][T12799]  should_failslab+0x8c/0xb0
[  176.070038][T12799]  kmem_cache_alloc_noprof+0x50/0x310
[  176.070065][T12799]  ? security_file_alloc+0x32/0x100
[  176.070111][T12799]  security_file_alloc+0x32/0x100
[  176.070151][T12799]  init_file+0x5c/0x1d0
[  176.070174][T12799]  alloc_empty_file+0x8b/0x200
[  176.070193][T12799]  path_openat+0x68/0x2170
[  176.070215][T12799]  ? path_openat+0x1bf8/0x2170
[  176.070239][T12799]  ? _parse_integer_limit+0x170/0x190
[  176.070336][T12799]  ? _parse_integer+0x27/0x40
[  176.070374][T12799]  ? kstrtoull+0x111/0x140
[  176.070429][T12799]  do_filp_open+0x109/0x230
[  176.070466][T12799]  file_open_name+0xfa/0x120
[  176.070494][T12799]  __se_sys_acct+0xf0/0x490
[  176.070549][T12799]  ? fpregs_assert_state_consistent+0x84/0xa0
[  176.070594][T12799]  __x64_sys_acct+0x1f/0x30
[  176.070622][T12799]  x64_sys_call+0x18cf/0x2fb0
[  176.070716][T12799]  do_syscall_64+0xd0/0x1a0
[  176.070741][T12799]  ? clear_bhb_loop+0x40/0x90
[  176.070820][T12799]  ? clear_bhb_loop+0x40/0x90
[  176.070849][T12799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.070878][T12799] RIP: 0033:0x7f6347e6e969
[  176.070895][T12799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.070946][T12799] RSP: 002b:00007f63464d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3
[  176.070972][T12799] RAX: ffffffffffffffda RBX: 00007f6348095fa0 RCX: 00007f6347e6e969
[  176.070989][T12799] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000001c0
[  176.071039][T12799] RBP: 00007f63464d7090 R08: 0000000000000000 R09: 0000000000000000
[  176.071096][T12799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.071109][T12799] R13: 0000000000000000 R14: 00007f6348095fa0 R15: 00007ffd9264ece8
[  176.071145][T12799]  </TASK>
[  176.758236][   T29] kauditd_printk_skb: 263 callbacks suppressed
[  176.758298][   T29] audit: type=1326 audit(1748286743.323:9949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.804047][T12846] FAULT_INJECTION: forcing a failure.
[  176.804047][T12846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.804995][   T29] audit: type=1326 audit(1748286743.353:9950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.817298][T12846] CPU: 1 UID: 0 PID: 12846 Comm: syz.1.2376 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  176.817375][T12846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  176.817392][T12846] Call Trace:
[  176.817402][T12846]  <TASK>
[  176.817412][T12846]  __dump_stack+0x1d/0x30
[  176.817442][T12846]  dump_stack_lvl+0xe8/0x140
[  176.817470][T12846]  dump_stack+0x15/0x1b
[  176.817511][T12846]  should_fail_ex+0x265/0x280
[  176.817558][T12846]  should_fail+0xb/0x20
[  176.817639][T12846]  should_fail_usercopy+0x1a/0x20
[  176.817668][T12846]  _copy_from_user+0x1c/0xb0
[  176.817699][T12846]  do_seccomp+0x118/0xa40
[  176.817733][T12846]  __x64_sys_seccomp+0x40/0x50
[  176.817763][T12846]  x64_sys_call+0x2395/0x2fb0
[  176.817784][T12846]  do_syscall_64+0xd0/0x1a0
[  176.817821][T12846]  ? clear_bhb_loop+0x40/0x90
[  176.817844][T12846]  ? clear_bhb_loop+0x40/0x90
[  176.817874][T12846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.817902][T12846] RIP: 0033:0x7fa7f0ffe969
[  176.817992][T12846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.818017][T12846] RSP: 002b:00007fa7ef667038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[  176.818044][T12846] RAX: ffffffffffffffda RBX: 00007fa7f1225fa0 RCX: 00007fa7f0ffe969
[  176.818061][T12846] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000001
[  176.818078][T12846] RBP: 00007fa7ef667090 R08: 0000000000000000 R09: 0000000000000000
[  176.818161][T12846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.818177][T12846] R13: 0000000000000000 R14: 00007fa7f1225fa0 R15: 00007fffbd56d0a8
[  176.818204][T12846]  </TASK>
[  176.885709][T12848] batadv_slave_0: entered promiscuous mode
[  176.885893][   T29] audit: type=1326 audit(1748286743.363:9951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.895656][T12848] team0: entered promiscuous mode
[  176.899628][   T29] audit: type=1326 audit(1748286743.363:9952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.908055][T12848] team_slave_0: entered promiscuous mode
[  176.908771][   T29] audit: type=1326 audit(1748286743.373:9953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.913545][T12848] team_slave_1: entered promiscuous mode
[  176.917960][   T29] audit: type=1326 audit(1748286743.373:9954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.929896][T12848] xt_hashlimit: max too large, truncated to 1048576
[  176.933705][   T29] audit: type=1326 audit(1748286743.373:9955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.963785][T12847] team0: left promiscuous mode
[  176.966005][   T29] audit: type=1326 audit(1748286743.373:9956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.974180][T12847] team_slave_0: left promiscuous mode
[  176.981946][   T29] audit: type=1326 audit(1748286743.373:9957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  176.990045][T12847] team_slave_1: left promiscuous mode
[  176.997971][   T29] audit: type=1326 audit(1748286743.373:9958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.1.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7f0ffe969 code=0x7ffc0000
[  177.017038][T12852] netlink: 596 bytes leftover after parsing attributes in process `syz.1.2378'.
[  177.039339][T12847] batadv_slave_0: left promiscuous mode
[  177.069236][T12852] sg_write: data in/out 15/8 bytes for SCSI command 0xff-- guessing data in;
[  177.069236][T12852]    program syz.1.2378 not setting count and/or reply_len properly
[  177.923845][T12980] FAULT_INJECTION: forcing a failure.
[  177.923845][T12980] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.937094][T12980] CPU: 1 UID: 0 PID: 12980 Comm: syz.0.2392 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  177.937124][T12980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  177.937135][T12980] Call Trace:
[  177.937141][T12980]  <TASK>
[  177.937148][T12980]  __dump_stack+0x1d/0x30
[  177.937168][T12980]  dump_stack_lvl+0xe8/0x140
[  177.937265][T12980]  dump_stack+0x15/0x1b
[  177.937280][T12980]  should_fail_ex+0x265/0x280
[  177.937390][T12980]  should_fail+0xb/0x20
[  177.937417][T12980]  should_fail_usercopy+0x1a/0x20
[  177.937495][T12980]  _copy_from_user+0x1c/0xb0
[  177.937591][T12980]  get_timespec64+0x4c/0x100
[  177.937688][T12980]  __x64_sys_semtimedop+0x85/0xf0
[  177.937780][T12980]  x64_sys_call+0x2f66/0x2fb0
[  177.937799][T12980]  do_syscall_64+0xd0/0x1a0
[  177.937872][T12980]  ? clear_bhb_loop+0x40/0x90
[  177.937891][T12980]  ? clear_bhb_loop+0x40/0x90
[  177.937947][T12980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.938036][T12980] RIP: 0033:0x7f3ff4a6e969
[  177.938050][T12980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.938073][T12980] RSP: 002b:00007f3ff30d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dc
[  177.938098][T12980] RAX: ffffffffffffffda RBX: 00007f3ff4c95fa0 RCX: 00007f3ff4a6e969
[  177.938114][T12980] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000000
[  177.938173][T12980] RBP: 00007f3ff30d7090 R08: 0000000000000000 R09: 0000000000000000
[  177.938184][T12980] R10: 0000200000000180 R11: 0000000000000246 R12: 0000000000000001
[  177.938195][T12980] R13: 0000000000000001 R14: 00007f3ff4c95fa0 R15: 00007ffc40211f38
[  177.938213][T12980]  </TASK>
[  178.128782][T12984] FAULT_INJECTION: forcing a failure.
[  178.128782][T12984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.142125][T12984] CPU: 1 UID: 0 PID: 12984 Comm: syz.1.2394 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  178.142160][T12984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  178.142176][T12984] Call Trace:
[  178.142184][T12984]  <TASK>
[  178.142192][T12984]  __dump_stack+0x1d/0x30
[  178.142290][T12984]  dump_stack_lvl+0xe8/0x140
[  178.142316][T12984]  dump_stack+0x15/0x1b
[  178.142339][T12984]  should_fail_ex+0x265/0x280
[  178.142384][T12984]  should_fail+0xb/0x20
[  178.142444][T12984]  should_fail_usercopy+0x1a/0x20
[  178.142470][T12984]  _copy_to_user+0x20/0xa0
[  178.142501][T12984]  simple_read_from_buffer+0xb5/0x130
[  178.142535][T12984]  proc_fail_nth_read+0x100/0x140
[  178.142628][T12984]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  178.142660][T12984]  vfs_read+0x19d/0x6f0
[  178.142701][T12984]  ? __rcu_read_unlock+0x4f/0x70
[  178.142731][T12984]  ? __fget_files+0x184/0x1c0
[  178.142824][T12984]  ksys_read+0xda/0x1a0
[  178.142862][T12984]  __x64_sys_read+0x40/0x50
[  178.142947][T12984]  x64_sys_call+0x2d77/0x2fb0
[  178.143040][T12984]  do_syscall_64+0xd0/0x1a0
[  178.143071][T12984]  ? clear_bhb_loop+0x40/0x90
[  178.143099][T12984]  ? clear_bhb_loop+0x40/0x90
[  178.143198][T12984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.143270][T12984] RIP: 0033:0x7fa7f0ffd37c
[  178.143289][T12984] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  178.143313][T12984] RSP: 002b:00007fa7ef667030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  178.143338][T12984] RAX: ffffffffffffffda RBX: 00007fa7f1225fa0 RCX: 00007fa7f0ffd37c
[  178.143397][T12984] RDX: 000000000000000f RSI: 00007fa7ef6670a0 RDI: 0000000000000003
[  178.143414][T12984] RBP: 00007fa7ef667090 R08: 0000000000000000 R09: 0000000000000000
[  178.143430][T12984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.143447][T12984] R13: 0000000000000001 R14: 00007fa7f1225fa0 R15: 00007fffbd56d0a8
[  178.143529][T12984]  </TASK>
[  178.413881][T12987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2395'.
[  178.422948][T12987] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2395'.
[  178.509241][T13006] netlink: 156 bytes leftover after parsing attributes in process `syz.6.2403'.
[  178.518443][T13006] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2403'.
[  178.555107][T13012] block device autoloading is deprecated and will be removed.
[  178.631893][T13015] ==================================================================
[  178.640185][T13015] BUG: KCSAN: data-race in ep_poll_callback / ep_try_send_events
[  178.647930][T13015] 
[  178.650263][T13015] write to 0xffff888118890768 of 4 bytes by task 13014 on cpu 0:
[  178.657978][T13015]  ep_try_send_events+0x4f2/0x710
[  178.663028][T13015]  do_epoll_wait+0x371/0x940
[  178.667628][T13015]  __se_sys_epoll_pwait+0x157/0x270
[  178.672866][T13015]  __x64_sys_epoll_pwait+0x78/0x90
[  178.677991][T13015]  x64_sys_call+0x298e/0x2fb0
[  178.682671][T13015]  do_syscall_64+0xd0/0x1a0
[  178.687177][T13015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.693066][T13015] 
[  178.695383][T13015] read to 0xffff888118890768 of 4 bytes by task 13015 on cpu 1:
[  178.703007][T13015]  ep_poll_callback+0x512/0x630
[  178.707865][T13015]  __wake_up+0x66/0xb0
[  178.711935][T13015]  tty_wakeup+0xb1/0xc0
[  178.716090][T13015]  tty_port_default_wakeup+0x7f/0xd0
[  178.721382][T13015]  tty_port_tty_wakeup+0x35/0x50
[  178.726326][T13015]  uart_flush_buffer+0x253/0x3b0
[  178.731270][T13015]  uart_hangup+0x97/0x270
[  178.735603][T13015]  __tty_hangup+0x4ae/0x510
[  178.740103][T13015]  tty_ioctl+0x601/0xb80
[  178.744361][T13015]  __se_sys_ioctl+0xce/0x140
[  178.748951][T13015]  __x64_sys_ioctl+0x43/0x50
[  178.753542][T13015]  x64_sys_call+0x19a8/0x2fb0
[  178.758304][T13015]  do_syscall_64+0xd0/0x1a0
[  178.762828][T13015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.768724][T13015] 
[  178.771055][T13015] value changed: 0x40002018 -> 0x40000000
[  178.776765][T13015] 
[  178.779098][T13015] Reported by Kernel Concurrency Sanitizer on:
[  178.785241][T13015] CPU: 1 UID: 0 PID: 13015 Comm: syz.6.2407 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) 
[  178.795653][T13015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  178.805712][T13015] ==================================================================