last executing test programs:

6m47.507396206s ago: executing program 3 (id=24):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=@newtaction={0x4c, 0x30, 0x1, 0x0, 0x0, {}, [{0x38, 0x1, [@m_ife={0x34, 0x1, 0x0, 0x0, {{0x8}, {0xfde4, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0xefff}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x480c4}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a32000000006c000000060a010400000000000000000100000208000b400000000050000480340001800b000100657874686472000024000280080001400000000c080003400000000008000440000000220500020007000000180001800c0001006269747769"], 0xe0}}, 0x880)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB="000000000000000010010c8013000c800ca3488008000000000000000800038064001d80050006000000000014000500714abbd2547de97cbbf6efb226f19bf90d0002003a288e5e5b5b5a40000000006000078014000400293a02149f3b75a67093c28fd6f55a2314000400e48f01e49713f0c2d839f940d9f088d8050006000000003bd00002006272696467655f736c6176655f30000007000200293a00000500060000000000080001000000000018002580140004004d2906d0880fc8acc30fe2020f9849675000028004000500a1085e7df341b9dc3d8008a2fe5bdaad140004009c7e472c916020fe41bcc5aa8f56c9471400050080ab8be51421cfa3c9e5cbfe8217e0af0800010000000000080001000000000060001a803f0003"], 0x270}, 0x1, 0x0, 0x0, 0x8015}, 0x4)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

6m47.24785632s ago: executing program 3 (id=29):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0, 0x0, 0xfffffffffffffffe}, 0x18)
memfd_secret(0x80000)

6m47.163828361s ago: executing program 3 (id=30):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
tkill(r0, 0x26)
io_setup(0x202, &(0x7f0000000200))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSF2(r4, 0x402c542d, &(0x7f0000000140)={0x208f, 0x80, 0x5, 0x40b56a, 0xa, "f8ef4206a40000000000b9ffff2100000900", 0x10000007, 0x9})

6m46.134925156s ago: executing program 3 (id=37):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
unshare(0x22020600)
setns(r2, 0x24020000)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)

6m46.072118957s ago: executing program 3 (id=38):
io_setup(0x6, &(0x7f00000004c0)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f0000000240)=[&(0x7f0000000580)={0x0, 0x0, 0x58, 0x8, 0x0, 0xffffffffffffffff, 0x0}])

6m44.509278648s ago: executing program 4 (id=48):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000900007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0x7, 0x0, &(0x7f0000000580)="b9ff0307680426", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

6m43.599644841s ago: executing program 4 (id=50):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r2, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newlink={0x20, 0x10, 0x403, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, r2, 0xff7f}}, 0x20}}, 0x0)

6m43.459970143s ago: executing program 4 (id=54):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=@newlink={0x48, 0x10, 0xffffff1f, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, 0x0, 0x23, 0xa502}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x20090}}}}}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newtaction={0x18, 0x32, 0xb, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

6m43.456548093s ago: executing program 4 (id=56):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
unshare(0x22020600)
setns(r2, 0x24020000)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)

6m43.406301384s ago: executing program 4 (id=59):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="01000000000800006b21000000000000", @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x77359400, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x80}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="01000000971bac5544ad77590779467f", @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB='\x00\x00\x00\x00'], 0x80}}, 0x0)

6m42.29192282s ago: executing program 4 (id=64):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

6m42.170489962s ago: executing program 32 (id=64):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

6m42.046113953s ago: executing program 3 (id=66):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000380)={0x14, r1, 0x705, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x4000)

6m42.017904024s ago: executing program 33 (id=66):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000380)={0x14, r1, 0x705, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x4000)

6m9.566182002s ago: executing program 6 (id=409):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000d80)={[{@mblk_io_submit}, {@dioread_nolock}, {@bh}, {@errors_continue}, {@nouid32}, {@quota}, {@nogrpid}]}, 0x3, 0x445, &(0x7f0000000800)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x4, 0x0, 0x0, &(0x7f0000000280)='GPL\x00', 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='io_uring_defer\x00', r0}, 0x18)
getpid()
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
fdatasync(r0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r0)
sendmsg$TIPC_NL_NET_GET(r0, &(0x7f0000000680)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4004011}, 0x40000)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@dev={0xfe, 0x80, '\x00', 0x8}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0x7144}}, 0xe8)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32], 0x2c}], 0x1}, 0x0)
keyctl$KEYCTL_CAPABILITIES(0x1f, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x2, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

6m7.840923626s ago: executing program 6 (id=424):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
socket$tipc(0x1e, 0x2, 0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file1\x00', 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e54e9d911d4993a8cfaa9fc0f67742d726f2c6572726f72733d636f6e74696e75652c636865636b3d72656c617865642c646f74732c646f74732c6e6f646f74732c6e6f647f0000006e6f646f74732c646f74732c646f74732c6e6f646f74732c6e6f646f74732c646f74732c646973636172642c646f74732c646f74732c747a3d5554432c6572726f72733d636f6e74696e75652c6e6f646f74732c7379735f696d6d757461626c652c71756965742c646f74732c00"], 0xfd, 0x1bf, &(0x7f0000000840)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x80002, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x20088004, &(0x7f0000000280)={0xa, 0x4e20, 0x0, @mcast2, 0x7}, 0x1c)
sendto$inet6(r3, &(0x7f00000009c0)="c7cfcaaa22e10542fca5c0195350f15147657e0bfc59d383a47190db88690e6fedc3040ab5809ae02a54cd429cc3338c5afa0c9dce3f91950d1f567f358ac21154159130e88cbb6c43197813b2f23f3e442f80877490b393408142ebcfea6821f543e5ee9e27032e", 0x68, 0xc001, 0x0, 0x0)

6m6.455567696s ago: executing program 6 (id=438):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6906bb2b0eb2fe32d2f0048678cd35ef833c350900f95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f84", 0x74}, {&(0x7f0000000180)="0c1928a7397d5f2e855cb2b0b1e61d3fe47dc3e798cf47cfdbf169e77257f308b400000000227094d569a4456954e58ea1850000000000000000355c5f42d9f2aa5f1ba0a5c6553e", 0x48}, {&(0x7f0000000b80)="b97edc68d716252c8449bee174f6e06d864889b733fe11a2cd1b83edf4ee89f557882a6e115f6f313802bf3c797417d7b969c918598823448ed396000e44f8cc6a7a99db9bc97830b2df7971360f878a6cb35677e337e3ea1f6828196b30e485f2213ad567c62cc1bb174800513c5f9c8df2d028d2545768e3883524e866353a61ccfc0de4d4afadc9c31c23565915074b6680d902c662f768443bbe764577569ba8cd8ff4b63dc9e0aa67139b4b8120da451c19db9b86e9f7647857d646893d7774ec70d5d6c3783b04ad92cf39e91a45833c96aa1006aa133f9e5e", 0xdc}], 0x3}}, {{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc6b24fff7", 0xdd}, {&(0x7f0000000740)="5be3b011e12323e4ab88c0472f0700000000000000e71ba6231f303d2db97401439932cfd4855c4cc243dae723789d8a9a16be3135c5f82691837c90ab19545f7a1dcf1449fd59eecae5f52fba1e89d6d34b39297bbbc2580600000000000000d6e36e737691a1c6bd2a64b2a85cbaaf646e72f8fe08c33a33b275787892f61fbb621794716f96031931b55af30fa01d72aa5a53ee4c07ab7c96a4a9ed93f4d20269982ab6feb22d8e77afb7b861622ab963b07f0026fd6424082bcd0864a854e542aacc3201fff776fe1c000000000000000000000000000000002da46e8a95bcead77a244256266fe952d151a841aaa0c9c727bf08c37869c70d6aed073d6bb9fb037a079b697f3ba963ba49b6aecdc3e839ae25d497b0e60408b8e0a9931aeb1be35eea2a22fa50d66a634804121bde6a4a2d7a23c08d8237aac90c577c24f4ec2949d9202659fe626262e0764eed651fe91d276cd8918ba1a079c716281613b127eca886d75e994a1b41314ff21f5a4fd8a7e55c65b2eebabf0db0268c53503bb309959c1c0b222c6fb8310e8f25e7c26e24baedcc72d41798c95c01626c311e9f1262dfa4", 0x1a7}, {&(0x7f0000000d80)="bd2f6aa36cea0e4bccda9ad762e998d923018ec9f30d63c7059c3c786069915581888508ff589f82857ff546b23b88d6bd61f1efc982005bf6c9abc4fe2caf32ef3ff105b69346a4d09afd7b0b8bd5f8c25f0eab84d8ad1b6576552ee2acbdd9f261b7349aeede1c42e31b1082eec37b959d16afb96240a5d057cab448c3c069f6a67c6ffee04bb1106c7e99752f50c7efdfa8afc8bd11acfc7a82e59dc5ffc88775bf6c9794b3ca2f475d25203ec0e0dd996b25d908e16539ac6e6086da296964d83ba527dcb6e7de403ef2a089ba3a5e094333a951cb48b75ac346a40a3aacc5e1c0783121dbceeef071b04ef265498d8b735db3f095f107011dfeb602021f9e6c37490be170e7f86773ac1d343d9f49984c643bd3b3e61f0fac7f661f9936b6c0f8af445f329f0f8c38bde4083a131cf2c16689cb8de5dec593f738b123e79daac878c9975930ded780da7b36b1934229", 0x152}], 0x3}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="1713d50800000024ec24681aa099852c4bfae5a0bbdc62896430c2821b43171cca8728132db611681bb875ce88d2f192d5d5e70a6447b32c8bbd6ca61e1888ccee8a9a05c07cdab36ab953eb5d4845932c98", 0x52, 0x10008095, 0x0, 0x0)

6m6.393779497s ago: executing program 6 (id=441):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
unshare(0x22020600)
setns(r2, 0x24020000)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x12f451, 0x0)

6m4.993625346s ago: executing program 6 (id=450):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x84515000)
r1 = getpgid(0xffffffffffffffff)
prlimit64(r1, 0xd, &(0x7f0000000300)={0x4, 0x1}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000002c0)={'veth0_vlan\x00', &(0x7f0000000000)=@ethtool_cmd={0x26, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, [0x0, 0xfffffffc]}})

6m4.487997924s ago: executing program 6 (id=459):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000880)={0x24, 0x0, 0x1, 0x0, 0xfffffffd, {{}, {@val={0x8, 0x3, r1}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x24}}, 0x48004)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000004000000fd09"], 0x50)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={0x0, 0x84}}, 0x20008040)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r2, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x3})
r3 = syz_open_pts(r2, 0x101000)
r4 = dup3(r3, r2, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x17)

6m4.487814704s ago: executing program 34 (id=459):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000880)={0x24, 0x0, 0x1, 0x0, 0xfffffffd, {{}, {@val={0x8, 0x3, r1}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x24}}, 0x48004)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000004000000fd09"], 0x50)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={0x0, 0x84}}, 0x20008040)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
write$binfmt_aout(r2, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x3})
r3 = syz_open_pts(r2, 0x101000)
r4 = dup3(r3, r2, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000000)=0x17)

1m12.595409095s ago: executing program 7 (id=4599):
move_pages(0x0, 0x0, &(0x7f0000000040), &(0x7f0000001180), &(0x7f0000000000), 0x0)
r0 = socket$inet6(0xa, 0x3, 0x5)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
r2 = dup3(r1, r0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2, 0x9}, 0x20)
sendmmsg$inet6(r2, &(0x7f0000001580)=[{{&(0x7f0000000180)={0xa, 0x4e22, 0xfff, @mcast2, 0x5}, 0x1c, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1400000000000000290000000b0000000008"], 0x18}}], 0x1, 0x0)

1m12.376260148s ago: executing program 7 (id=4600):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x20008020)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x64, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c010000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000300004802c0001800b0001006e756d67656e00001c000280080002400000000008000140000000000800034000000001d00004802c0001800a00010071756f74610000001c0002800c00044000000000000000020c00014000000000000000023c0001800b0001007470726f7879"], 0x154}}, 0x0)

1m12.295961229s ago: executing program 7 (id=4604):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
lsetxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x0, 0x1)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000240)=ANY=[@ANYBLOB="00fcffffff0300000153d3000000000005"])

1m12.24616935s ago: executing program 7 (id=4606):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x20008020)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c010000060a09040000000000000000020000000900020073797a32000000000900010073797a3000000000300004802c0001800b0001006e756d67656e00001c000280080002400000000008000140000000000800034000000001d00004802c0001800a00010071756f74610000001c0002800c00044000000000000000020c00014000000000000000023c0001800b0001007470726f7879"], 0x154}}, 0x0) (fail_nth: 4)

1m11.999939093s ago: executing program 7 (id=4607):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
syz_io_uring_setup(0x3b52, &(0x7f0000000140)={0x0, 0x5883, 0x1000, 0x8003, 0x1c2}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000680)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_RENAMEAT={0x23, 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x118, &(0x7f0000000000)=0x6, 0x0, 0x4)

1m11.973062494s ago: executing program 7 (id=4608):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0xf)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=""/176, 0xb0}}], 0x1, 0x0, 0x0)

57.635675256s ago: executing program 35 (id=4608):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0xf)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=""/176, 0xb0}}], 0x1, 0x0, 0x0)

4.691227274s ago: executing program 5 (id=5950):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, 0x0, 0x0, 0x10)
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x400000, 0x0)

1.739945606s ago: executing program 5 (id=6028):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000280)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000040)={'vxcan0\x00', <r2=>0x0})
r3 = open(&(0x7f0000000140)='./file1\x00', 0x147842, 0x184)
preadv2(r3, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x2, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000200)={<r4=>0xffffffffffffffff}, 0x106, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r3, &(0x7f0000000580)={0x6, 0x118, 0xfa00, {{0x752d, 0x401, "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", 0xb, 0x1, 0x3, 0x3, 0xc, 0xc5, 0x2, 0x1}, r4}}, 0x120)
bind$can_j1939(r1, &(0x7f0000000080)={0x1d, r2, 0x2, {0x2, 0x0, 0x2}}, 0x18)
r5 = syz_io_uring_setup(0x27f3, &(0x7f0000000340)={0x0, 0x400000, 0x10100, 0xfffffffc}, &(0x7f0000000080), &(0x7f00000000c0)=<r6=>0x0)
r7 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f00000006c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, &(0x7f0000000180), &(0x7f00000001c0)=r7}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x6}, 0x18)
r10 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC(r10, 0x0, 0x5, &(0x7f0000000240)={@local, @empty, 0xfffb, "66c5aff8a7eb3af1f6cec2e7420000008c84aea31700", 0x96bc, 0x1000000, 0x7e, 0x6b}, 0x3c)
setsockopt$MRT_INIT(r10, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4)
syz_io_uring_setup(0x3867, &(0x7f00000003c0)={0x0, 0xb286, 0x200, 0x0, 0x2c6}, &(0x7f0000000140)=<r11=>0x0, &(0x7f0000000180))
sendmsg$inet(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000540)="652a051a907e21fb", 0x8}], 0x1}, 0x804)
syz_io_uring_submit(r11, r6, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r5, 0x8184c, 0x0, 0x9, 0x0, 0x0)
madvise(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2)
madvise(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[], 0xf0}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
syz_usb_connect(0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000180)='io_uring_create\x00', r0}, 0x18)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

1.277633172s ago: executing program 1 (id=6045):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x1, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioperm(0x0, 0x8000000000000001, 0x1)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00'}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000240)={0x0, 0x80ff, &(0x7f0000000680)={&(0x7f0000000300)=ANY=[@ANYBLOB="02090602030000002bbd7000ffdbdf250100e6"], 0x18}}, 0x4800c)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x24048850)
bpf$BPF_LINK_UPDATE(0x1d, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000005640)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x10000000000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x89f1, &(0x7f0000000080))

1.216564973s ago: executing program 1 (id=6048):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8000c62)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000081, &(0x7f0000000580)=ANY=[@ANYRES8=0x0, @ANYRES32, @ANYRES64, @ANYRESDEC], 0x0, 0x23e, &(0x7f0000000bc0)="$eJzs3c9qE1EUB+AzSdqmukgWrkRwQBeuStsnSJEKYldKFupCi21BklCwEGgVQ1c+gU/ic7jxDXwAoTtdFEYmSZsWUm0wf0r9vk0uzP3NOTe5Iau5eX2n1dja3ds5/PA9yuUkCrWoJUcR1ShEbiEAgOvmV5bFUdYzWrJUmFRPAMBkXfL3f3GKLQEAE/bs+Ysnaxsb60/TtBzR+tSuJ9F77V1f24m30YztWI5KHEdkp3rjR4831qOU5qpxv9Vp1/Nk69XX/v3XfkR08ytRierw/Eracybfadfn4ka/fi3Pr0Ylbg3Prw7JR30+Htw70/9SVOLbm9iNZmxFnh3kP66k6cPs88/3L/OO83zSadcXuvMGsuLUPxwAAAAAAAAAAAAAAAAAAAAAAK6tpTRN0yz7kmVZ1jl3/k7xuHt9KT1RPX8+Ty9/0flAnTPn6yznJZLe/EG+FLdLUZrl2gEAAAAAAAAAAAAAAAAAAOCq2Ns/aGw2m9vvxjo4eax//Hf+10EU+601k4gr0E93sJj3M51ad2PEWrURS0Rh/6Bxsrsam0n8JVWe0CbJhmy/4oWp+TFVn7853lUkETF3+mb+aXIh5sb8TQEAAAAAAAAAAAAAAAAAAKZs8NDvkIuHM2gIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGZg8P//Iww6/fAlUzNeIgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP+B3wEAAP//bkR7Lg==")
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x1a3302, 0x0)
r3 = syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x1, 0x100002cf}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000009c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2d, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x77359400}, 0x1, 0x0, 0x1})
io_uring_enter(r3, 0x7a98, 0x0, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

1.104766214s ago: executing program 1 (id=6053):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000080)=0x9, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0xf)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

1.084251004s ago: executing program 1 (id=6055):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x5, 0x7, 0x8, 0x5, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r1}, &(0x7f0000000600), &(0x7f00000006c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
write$cgroup_type(r0, &(0x7f0000000180), 0xfffffe51)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
unlink(0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=@framed={{0x56, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xc}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40305829, &(0x7f0000000040))

1.083954804s ago: executing program 0 (id=6056):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x89)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000240)='timer_start\x00', r2}, 0x18)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

1.062305375s ago: executing program 0 (id=6057):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x82100, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r3}, 0x18)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c00000014000100fffffffbffdbdf250a00a100", @ANYRES32=r4, @ANYBLOB="1400010000000000000000000000000000000001"], 0x2c}}, 0x24005040)
writev(r0, &(0x7f0000000300)=[{0x0}], 0x1)

1.006915166s ago: executing program 0 (id=6059):
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x60642, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='<\x00', @ANYRES16=r1, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000800038004000380080005"], 0x3c}, 0x1, 0x0, 0x0, 0x4008040}, 0x0)

951.772366ms ago: executing program 0 (id=6061):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0), 0x40080, 0x0)
connect$phonet_pipe(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f0000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x6}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

875.652638ms ago: executing program 0 (id=6062):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
futimesat(0xffffffffffffffff, 0x0, 0x0)

833.301878ms ago: executing program 0 (id=6064):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000640)=@migrate={0xa0, 0x21, 0x1, 0x0, 0x0, {{@in6=@private0, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x6e6bbc}, [@migrate={0x50, 0x11, [{@in=@dev={0xac, 0x14, 0x14, 0xc}, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in6=@private2, @in6=@local, 0xff, 0x0, 0x0, 0x2, 0xa, 0x2}]}]}, 0xa0}}, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='net/psched\x00')
mount$9p_fd(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0x5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0xc010, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
pipe(&(0x7f0000000480)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r4, 0x0, 0x0, 0x1)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1ec}}, 0x0)

816.873668ms ago: executing program 1 (id=6065):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000080)=0x9, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0xf)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

750.99219ms ago: executing program 8 (id=6066):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100d0000000fbdbdf252100000018000180140002"], 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x4008800)

741.253639ms ago: executing program 1 (id=6067):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xd}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_device, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r6, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x4}}, @TCA_RATE={0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x48801}, 0x0)

738.89832ms ago: executing program 8 (id=6068):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xdf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000980)=ANY=[@ANYBLOB="850000002a00000025000000000000009500000000000000afcd48d6494d614dcc6fab5335ec470db2c6161dba392176dd2963038e1d69ba7ea94c500dc4ef2fad96ed406f21ca0000cf920569c00cc1199684fa7c93836d9ea2cfb0e60436e05425cc4686b066707de94a4f4d5fc79c98cda2948ef0f440d7cad29567e15a7d669f381faca0f9d9b24be41a9169bdfaf16da915b2e249ee1c6eee84309e7a23c19a39484809539fca4e0b6eab1aa7d55545a34effa077faa56d59e88254f54077f799bf168301000000bf225571f2487fc86acc2bff7d5664abebd6a0244d35b213bda84cc172afd8cc2e59a7d8b85a5e3d77ac463920e231b7ae0da8616d2b7958f91f5da6c025d0faab186d94af98af1da2b5952eb15855933a212304e035f7a35dfc72c81256a55a25f8fe3b28d7e53c78fbfe5ab0255f347160ec83070000000000004015cf10453f6c0b973b81a484ebad04859d928365a7ea3fab8b4b380a00d72bc0480f94306720399379d9271cf555c14d56b51c2298237bebfc08e0d5976a942b846970cfd98b9d4139f1111f2dc5e46ac1c60a9b030074bfbcd4b09012175484135f0e519f0b1e4aaa026d570ecb5e8cddbed65ff702000000a3ff4f8a4cf796b07a6ff61c5552d703f7f14d8b78a602ca3cdf6a9120072a5d00dcdd8595356c9b2492aaf1264d4ef4a410c882834867bcd2b6e559d17879570c8ad9433269af3be5fa6a9a5c24e392955f4e979ea13201bafe4f0f6ea508000000571bed5647223c78a992810000000571cbb17d9f37282462f0e9c147c0d497c61433c6ccc35601eef97ee611be8c97f4151ffdf6f7820549cda6cb799c6e924966a7f90bf8fd1e75ee76bd72346cfbb526890aa7fe5e68949a3b30567e54d3504723177d356c4604bca492ede62fc28839b5301160ecec37e83efceefd7ca2533659edc8be05cc85451c6a145074343caea5c4bf690441974b155f5adc681a03c0bbb8498856175e2ce8b0cbbbe3c033e54ffcebde1d9d3d35a142a9ec9a7a3755e0f209150a07682c4e14e3a83558df6f3fc97f1730a136bdee07e98cb984b2e2304a1b63afefdb636e56bbaae4e62136574bc6371a0bb2be1a962aae9c1258da6ef590e1d85ea9e12b3025f43e7e08ccffc5064dea4c39cf4b98e1fc6efb5978f51e16b678eca0b658a56008948e561a9845e4ff29e2bdb1d0b923b262341c5e093fd66a2946501559335781092cf8ce3c7c56cd31121624d76517fd3666276c3c0e812b28e2f30d035cee5d0e77a3c70008ec651cc0ae637fa474816bc59d2e2a00092419304b338a987e9d3044d856cf24f370030be3b5f79f030b8d3ebce68663ef5af469abe753314fae31651e0ecea5ece8fb11a4ee288eb149f1fa33669cc8d901fa8e46354c9c3a041a1e7b55c4e81dba1e12289ee34463baf28345bde0c195bc9f021da8f3025ee9c8e3168b4177ce37ed85464c31679053e7f9d04bb5cb51da0b7958989fd70f241262fa3f1dabeb4fc4bda345360200000001fbddeacd3adaa4d2715e21c772ccd44341f7fd53df58ae791ee8b489a7c9efe3625a9d971b5997485d6a063dc6f7359e2eccc2fb39d419de1a7b5c9dc22c96295a4601adf59d44e58eb1c60b3475be31a9b7cf42b6402312d2725b8d9fa700a86407e79ae29d2c117ca65fc86c2dce97aa03279a66ec87122219b0f796ab92b1adecae50fdb408c8a80f7f02f750d6c977a1919f9f69a6cfefdf879d447df53f3b9b70d10355b07466d1ef0056b5af553d18a6cc50feeb7bfad9b7be3283b6450d014e7712d2f1d7004548b19162cef04d18d4f5987baab97a9bfbd8f185b5671820420bf5b6522c0e21c882c66f4f25ffb6d95e07de02205fca4f18a2eb5b63e45d5d80fe52734093ae5aa3c0b4f3f45bfff2418a18217747ae442e31560e5b741445ea2a1acee2e98c9f3427834ba0a765d20b30f87af976a46f9a9a1ac7dea1ea6845f9aa6623920dacc107f532348cc21164efe794874eac73381e961f3d9c8c21578fe3245097c280abe51427a7f6cd72b5da6d0252803c66730cd5eac907f09b9695906313f8873522608c6fc01e1b9e16587bb5f721303e6b89e5c54d680ac66d09af90dbf50ee69a39265964279d17eb0000000000000000000000fa086d2a39f13f60b51136a945f780687aad0731c4b839688b22c4da2a6b00008a1949a6ba49fbf981f8265e7f1f4c2d97f4680b135f91b52fc0b241c2db99a187c228ce69418a282bffff2481a0df1774fa7d94944bb92d2b89f73f0e8b63f6316c5762f3288bc970720f48b5647dd177db6810fae05334d5a44a020000001c0d882a564d74a7c72bf9a2152b261e58fea6d2f93589cfe261dc0410b5ccc92a5a0eab327a33431d62d2b7c75ce654d556c9e1817c1abca762ab53d40da51560351b673363652e1ecb56cfe4a746a45ab13c6014e9f361ab687d1cd1795ce9e05c817b83d76046bdb3709de5df7499a02d2f636a454b85b987580ada025d83bd7b8df28a540d5ec5537942e79f2f1ab25ea5f563bc77e4f9468bd309469880c7e34150ca886d1f9ac2f7e82dbe296c877d925c38c54cc8137b29028854b6bd57ca893927c331300e16aba792289e135589d93302fc37c73c303e383cdf8ef3f6d6265fe5ee01759d24027475c8901039a898582022bc95992b86dce0710887c8a625d9cbb897bdbfaf49a3f642a169827a9bae4fcfa5212461db000000000000e6ed75ca8fcda7ef3ee336189fef3b3ffb9f38fefc5ff39c4e69e3fa1f8b10ee97123e99b61eba065b1ad67530e7c4f11f9da7ae000002000000610101ad7f79cb9bbf64a0fc109f49fe8799fe266e2ccac80fefe750151f5ddfe51833ec65ece70e07ce8ab5d97db47da8f80000664dc0b86ae2b3ff9d4e220752a6b2f3ea9f793612386496dca5af7b8952aafa796ea7b152d19612297c63bb20e1e0469f7615f67a9218cbace38f5236821314f76302b98afa93044b83989339ca10e6ae30e70e17a82f03e915b8425e8e7a91614306d2ae0bc3550d856f2d7293672b5673d264fc886b0c8bdf436a0fcd21bf9da7bdca98e34cd6e59b0a7ce4ba1b466561aaa35448dff47bb1d7df23d467689a66"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018010000756cff7c00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000006c0)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x304e29ea162c174f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6}, 0x18)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r5)
sendmsg$ETHTOOL_MSG_EEE_SET(r5, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000001580)={0x308, r7, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x809}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_ENABLED={0x5, 0x5, 0x1}, @ETHTOOL_A_EEE_MODES_OURS={0x20c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xe6, 0x4, "756af45a93e30a8eb5c6ba4dc559780063b32f6534d268c404fffc9f0fee9a5b422bf68bec17c1441b39bb4ffe77a467d6719e1be231e2511a08e02acd053db8a4583ba24cdc788a37e9e351bb750e9e7597a0731b5bebdb916d2667de0eba1e0d94fde9b93cb278f4c2a1210143759582dfc4b270c3e168647658282d8db5c5d2070da408ba78e3060492c4ca1f92739387ea77cc2bee725fe7a042365576cc331c98fb86486596246b535b94ff606f4122e0992ecf495936f072296b50e5f80a3c3d0f1fd389198dbed979966d31987a6a740919da60a98e00c04fe32e7198be51"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x4}, @ETHTOOL_A_BITSET_BITS={0x58, 0x3, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3e}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7f}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x4c, 0x3, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x40}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}]}]}, @ETHTOOL_A_BITSET_VALUE={0x70, 0x4, "57cf639621486b4a26cbfec68c2ce134a86da02f1a36c5150f70b395052b9762be120aae735e776539c1597326c770921f6e6e7c6df7e419c814b667db6e055a04ff19cf34a83c68597bd459f62d38b342f50529cf9fe8135af81ec1236d57ee444ba93efb435392e8e6ab3e"}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}, @ETHTOOL_A_EEE_MODES_OURS={0xc0, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xbc, 0x3, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7ff}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xb6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'GPL\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '{\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, 'syz'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '+\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}]}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8}]}, 0x308}, 0x1, 0x0, 0x0, 0x40}, 0x4)
r8 = add_key$keyring(&(0x7f0000000340), &(0x7f0000000380)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
r9 = socket$inet6(0xa, 0x6, 0xfffffff7)
writev(r9, &(0x7f00000004c0)=[{&(0x7f00000018c0)="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", 0x1000}], 0x1)
add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, r8)
r10 = io_uring_setup(0xf08, &(0x7f0000000780)={0x0, 0x8fb5, 0x10000, 0x3, 0x5})
io_uring_register$IORING_REGISTER_BUFFERS(r10, 0x0, &(0x7f0000000640)=[{0x0}], 0x1)
syz_clone3(&(0x7f0000000000)={0x285002400, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x46)
io_uring_register$IORING_REGISTER_FILES(r10, 0x1e, &(0x7f0000000000)=[r10], 0x1)

563.781632ms ago: executing program 8 (id=6069):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYRES32, @ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8000c62)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000081, &(0x7f0000000580)=ANY=[@ANYRES8=0x0, @ANYRES32, @ANYRES64, @ANYRESDEC], 0x0, 0x23e, &(0x7f0000000bc0)="$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")
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000080), 0x1a3302, 0x0)
r3 = syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x1, 0x100002cf}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000009c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2d, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x77359400}, 0x1, 0x0, 0x1})
io_uring_enter(r3, 0x7a98, 0x0, 0x0, 0x0, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r6, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

508.995163ms ago: executing program 2 (id=6070):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x82100, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r3}, 0x18)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c00000014000100fffffffbffdbdf250a00a100", @ANYRES32=r4, @ANYBLOB="1400010000000000000000000000000000000001"], 0x2c}}, 0x24005040)
writev(r0, &(0x7f0000000300)=[{0x0}], 0x1)

459.850234ms ago: executing program 2 (id=6071):
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x60642, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='<\x00\x00', @ANYRES16=r1, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000800038004000380080005"], 0x3c}, 0x1, 0x0, 0x0, 0x4008040}, 0x0)

381.604864ms ago: executing program 8 (id=6072):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000003c0), 0x40080, 0x0)
connect$phonet_pipe(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f0000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x6}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

337.854205ms ago: executing program 2 (id=6073):
write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x64}}, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x44, 0x3, 0x7, 0x3, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xb7}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xf1f2}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x6}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040}, 0x48010)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b40)={0x5, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095", @ANYBLOB="8aa0b6943a9e9859233de31f75002b43126ccf71b3c4f4205a6fbeaeb65b5ce025705ef78e1d655fff5a56d5daa7d876a5c606d573dab67fc7f50d1921047cd29d", @ANYRES64=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000, 0x0, 0x2, 0x0, 0x88}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088f747e0ffff200000002021000aac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)

282.184656ms ago: executing program 8 (id=6074):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
futimesat(0xffffffffffffffff, 0x0, 0x0)

210.992927ms ago: executing program 2 (id=6075):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000080), &(0x7f0000000180)='%ps    \x00'}, 0x20)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x6}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

147.976948ms ago: executing program 8 (id=6076):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{}, &(0x7f0000000200), &(0x7f0000000500)}, 0x20)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)

146.797928ms ago: executing program 5 (id=6077):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xb9, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000280)={r1, 0x0, 0x0}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000002600)='./file1\x00', 0x105042, 0x0)
read(r3, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYBLOB="0e000e3e"], 0x16)

121.536318ms ago: executing program 2 (id=6078):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000000080)=0x9, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0xf)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

109.338248ms ago: executing program 5 (id=6079):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r0}, 0x18)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58"}, 0x28)
sendmsg$inet(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000240)="6e37cff5b582e082d58cb52ae25a3ca48e8d5284721b4b722d1fd011fc3144e4ceb18b32f825ada6335ca5c677147ab3296581b6b5b819d56f4aa3fe1aaf904aa07b7b748ab54c9b47531624c0ca3cc3e9246587e7cea8af062e15c1c27d8e9d9328114f2bda697decbedc50cc278f543faa13098717d9f379121225b179faeebe79be6a82f1ff403a3bc7990b1cfee9e5a1aaf11b32facecc76bc0ad86f4fa184dd6e451992a564475498a4e85e9484c9a357c0806000"/193, 0xc1}, {&(0x7f0000000500)="5fdbd61342a1560054f74cee82024cacdf79b6be94f99a7aea5b7678644cc1ef33880d4a59cad1fd0852b05064b02335eb6064c24f1ad325e0325bc473c3aeaf6709e5227bca1f7ba283d381d4f64e34fa77c5cac5d0bcf72850aaa9ea7f9144a0e108ae41f51262011dd0a3eb6eaf00da010b18a79f6917d0c25efbf1c56feb59cbcb63f4683c026aa7aa1d65bea9ba31", 0x91}, {&(0x7f0000000400)="1165b65dc1f84946f03562d6913624a2b6d8ec92d3b85d62c12f159214de3618d4dc028c1b6992dc66459f58c8b8b56fe04e31cdde47a1821cf3bddee1076115f9afb5391f0f33219347a02ffb4109374ae3528f700cf1963b704fd24e27b70dd82d3ef5fd0d6c7e9512db1aff64b84d0fe3cce36da98fcc74949374701d31a1418b3fb186b4fc5f661870be567805e16f89688c5b75b19b2081c8026c57eb5eefe65efbb7e36ceb1c63f4b46af44c39a7651531bd31e4bcb66636f5412f2f97dd0f6eba05988d5dbfef41b1382b757fa76544", 0xd3}, {&(0x7f0000000c00)="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", 0xfa}, {&(0x7f0000000980)="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", 0x119}, {&(0x7f0000001700)="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", 0xac9}], 0x6}, 0x0)

85.004319ms ago: executing program 2 (id=6080):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) (async)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0) (async)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) (async)

84.590069ms ago: executing program 5 (id=6081):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x82100, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r3}, 0x18)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c00000014000100fffffffbffdbdf250a00a100", @ANYRES32=r4, @ANYBLOB="1400010000000000000000000000000000000001"], 0x2c}}, 0x24005040)
writev(r0, &(0x7f0000000300)=[{0x0}], 0x1)

0s ago: executing program 5 (id=6082):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f00000000c0)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
syz_open_dev$ptys(0xc, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x11, &(0x7f00000002c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x5dc, 0x0, 0x0, 0x0, 0x6e7c}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)

kernel console output (not intermixed with test programs):

8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.266833][T18667] RSP: 002b:00007f424c506038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[  397.266852][T18667] RAX: ffffffffffffffda RBX: 00007f424e0e6080 RCX: 00007f424debe969
[  397.266872][T18667] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000100
[  397.266918][T18667] RBP: 00007f424c506090 R08: 0000000000000000 R09: 0000000000000000
[  397.266935][T18667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  397.266952][T18667] R13: 0000000000000001 R14: 00007f424e0e6080 R15: 00007ffc823c45d8
[  397.266977][T18667]  </TASK>
[  397.593991][T18669] serio: Serial port ptm0
[  397.721918][T18675] loop2: detected capacity change from 0 to 8192
[  397.829434][T18686] netlink: 'syz.0.5077': attribute type 4 has an invalid length.
[  397.889314][T18688] __nla_validate_parse: 4 callbacks suppressed
[  397.889331][T18688] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5078'.
[  397.931633][   T29] kauditd_printk_skb: 269 callbacks suppressed
[  397.931651][   T29] audit: type=1400 audit(1748005746.534:8729): avc:  denied  { create } for  pid=18693 comm="syz.0.5080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  397.993756][   T29] audit: type=1400 audit(1748005746.555:8730): avc:  denied  { setopt } for  pid=18693 comm="syz.0.5080" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  398.268354][T18713] sctp: [Deprecated]: syz.2.5088 (pid 18713) Use of struct sctp_assoc_value in delayed_ack socket option.
[  398.268354][T18713] Use struct sctp_sack_info instead
[  398.349276][T18724] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5092'.
[  398.387817][T18727] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5093'.
[  398.403313][T18729] blktrace: Concurrent blktraces are not allowed on loop5
[  398.484881][   T29] audit: type=1326 audit(1748005747.112:8731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18733 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  398.509806][   T29] audit: type=1326 audit(1748005747.112:8732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18733 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  398.533032][   T29] audit: type=1326 audit(1748005747.112:8733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18733 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  398.556274][   T29] audit: type=1326 audit(1748005747.112:8734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18733 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  398.579451][   T29] audit: type=1326 audit(1748005747.112:8735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18733 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  398.615676][T18736] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  398.625383][T18736] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  398.708907][T18739] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5097'.
[  399.158675][   T29] audit: type=1400 audit(1748005747.804:8736): avc:  denied  { getopt } for  pid=18744 comm="syz.5.5100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  399.188054][T18721] syz.2.5091 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  399.202271][T18721] CPU: 0 UID: 0 PID: 18721 Comm: syz.2.5091 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  399.202313][T18721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  399.202331][T18721] Call Trace:
[  399.202340][T18721]  <TASK>
[  399.202351][T18721]  __dump_stack+0x1d/0x30
[  399.202376][T18721]  dump_stack_lvl+0xe8/0x140
[  399.202403][T18721]  dump_stack+0x15/0x1b
[  399.202426][T18721]  dump_header+0x81/0x220
[  399.202520][T18721]  oom_kill_process+0x334/0x3f0
[  399.202550][T18721]  out_of_memory+0x979/0xb80
[  399.202581][T18721]  ? css_next_descendant_pre+0x138/0x160
[  399.202617][T18721]  mem_cgroup_out_of_memory+0x13d/0x190
[  399.202690][T18721]  try_charge_memcg+0x5e2/0x870
[  399.202724][T18721]  obj_cgroup_charge_pages+0xb7/0x1a0
[  399.202785][T18721]  __memcg_kmem_charge_page+0x9f/0x170
[  399.202817][T18721]  __alloc_frozen_pages_noprof+0x188/0x360
[  399.202865][T18721]  alloc_pages_mpol+0xb3/0x250
[  399.202918][T18721]  alloc_pages_noprof+0x90/0x130
[  399.202943][T18721]  __vmalloc_node_range_noprof+0x6a4/0xdf0
[  399.202991][T18721]  __kvmalloc_node_noprof+0x2f3/0x4d0
[  399.203022][T18721]  ? ip_set_alloc+0x1f/0x30
[  399.203098][T18721]  ? ip_set_alloc+0x1f/0x30
[  399.203202][T18721]  ? __kmalloc_cache_noprof+0x189/0x320
[  399.203233][T18721]  ip_set_alloc+0x1f/0x30
[  399.203270][T18721]  hash_netiface_create+0x282/0x740
[  399.203313][T18721]  ? __pfx_hash_netiface_create+0x10/0x10
[  399.203400][T18721]  ip_set_create+0x3c9/0x960
[  399.203451][T18721]  ? __nla_parse+0x40/0x60
[  399.203475][T18721]  nfnetlink_rcv_msg+0x4c6/0x590
[  399.203527][T18721]  netlink_rcv_skb+0x123/0x220
[  399.203636][T18721]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  399.203678][T18721]  nfnetlink_rcv+0x16b/0x1690
[  399.203712][T18721]  ? __kfree_skb+0x109/0x150
[  399.203732][T18721]  ? nlmon_xmit+0x4f/0x60
[  399.203770][T18721]  ? consume_skb+0x49/0x150
[  399.203815][T18721]  ? nlmon_xmit+0x4f/0x60
[  399.203844][T18721]  ? dev_hard_start_xmit+0x39e/0x3d0
[  399.203867][T18721]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  399.203972][T18721]  ? __dev_queue_xmit+0x182/0x1fb0
[  399.204074][T18721]  ? __list_del_entry_valid_or_report+0x65/0x130
[  399.204111][T18721]  ? ref_tracker_free+0x37d/0x3e0
[  399.204170][T18721]  ? __netlink_deliver_tap+0x4dc/0x500
[  399.204235][T18721]  netlink_unicast+0x5a1/0x670
[  399.204344][T18721]  netlink_sendmsg+0x58b/0x6b0
[  399.204366][T18721]  ? __pfx_netlink_sendmsg+0x10/0x10
[  399.204405][T18721]  __sock_sendmsg+0x145/0x180
[  399.204443][T18721]  ____sys_sendmsg+0x31e/0x4e0
[  399.204526][T18721]  ___sys_sendmsg+0x17b/0x1d0
[  399.204653][T18721]  __x64_sys_sendmsg+0xd4/0x160
[  399.204762][T18721]  x64_sys_call+0x2999/0x2fb0
[  399.204791][T18721]  do_syscall_64+0xd0/0x1a0
[  399.204828][T18721]  ? clear_bhb_loop+0x40/0x90
[  399.204853][T18721]  ? clear_bhb_loop+0x40/0x90
[  399.204940][T18721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.205025][T18721] RIP: 0033:0x7f82b84be969
[  399.205043][T18721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  399.205068][T18721] RSP: 002b:00007f82b6b27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  399.205150][T18721] RAX: ffffffffffffffda RBX: 00007f82b86e5fa0 RCX: 00007f82b84be969
[  399.205163][T18721] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  399.205177][T18721] RBP: 00007f82b8540ab1 R08: 0000000000000000 R09: 0000000000000000
[  399.205194][T18721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  399.205211][T18721] R13: 0000000000000000 R14: 00007f82b86e5fa0 R15: 00007ffe59476348
[  399.205237][T18721]  </TASK>
[  399.205246][T18721] memory: usage 307200kB, limit 307200kB, failcnt 1505
[  399.285209][T18750] sctp: [Deprecated]: syz.1.5102 (pid 18750) Use of struct sctp_assoc_value in delayed_ack socket option.
[  399.285209][T18750] Use struct sctp_sack_info instead
[  399.289005][T18721] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[  399.289026][T18721] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  399.539006][   T29] audit: type=1400 audit(1748005748.203:8737): avc:  denied  { mount } for  pid=18761 comm="syz.8.5106" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  399.541919][T18721] Memory cgroup stats for /syz2:
[  399.617275][T18721] cache 0
[  399.629624][T18721] rss 0
[  399.632406][T18721] shmem 0
[  399.635360][T18721] mapped_file 0
[  399.638980][T18721] dirty 0
[  399.641992][T18721] writeback 0
[  399.645329][T18721] workingset_refault_anon 559
[  399.650105][T18721] workingset_refault_file 1598
[  399.654959][T18721] swap 200704
[  399.658302][T18721] swapcached 0
[  399.661780][T18721] pgpgin 510503
[  399.665272][T18721] pgpgout 510503
[  399.668825][T18721] pgfault 455802
[  399.672396][T18721] pgmajfault 380
[  399.675979][T18721] inactive_anon 0
[  399.679698][T18721] active_anon 0
[  399.683166][T18721] inactive_file 0
[  399.686830][T18721] active_file 0
[  399.690300][T18721] unevictable 0
[  399.693780][T18721] hierarchical_memory_limit 314572800
[  399.699167][T18721] hierarchical_memsw_limit 9223372036854771712
[  399.705654][T18721] total_cache 0
[  399.709209][T18721] total_rss 0
[  399.712542][T18721] total_shmem 0
[  399.716024][T18721] total_mapped_file 0
[  399.720108][T18721] total_dirty 0
[  399.723600][T18721] total_writeback 0
[  399.727512][T18721] total_workingset_refault_anon 559
[  399.732917][T18721] total_workingset_refault_file 1598
[  399.738223][T18721] total_swap 200704
[  399.742093][T18721] total_swapcached 0
[  399.746073][T18721] total_pgpgin 510503
[  399.750137][T18721] total_pgpgout 510503
[  399.754238][T18721] total_pgfault 455802
[  399.758348][T18721] total_pgmajfault 380
[  399.762456][T18721] total_inactive_anon 0
[  399.766737][T18721] total_active_anon 0
[  399.770783][T18721] total_inactive_file 0
[  399.774959][T18721] total_active_file 0
[  399.778971][T18721] total_unevictable 0
[  399.782966][T18721] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.5091,pid=18720,uid=0
[  399.797757][T18721] Memory cgroup out of memory: Killed process 18720 (syz.2.5091) total-vm:93748kB, anon-rss:936kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  399.972631][T18771] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5108'.
[  400.007373][   T29] audit: type=1326 audit(1748005748.697:8738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18769 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  400.103874][T18776] loop8: detected capacity change from 0 to 1024
[  400.139475][T18778] loop5: detected capacity change from 0 to 512
[  400.144129][T18776] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  400.146508][T18778] EXT4-fs: Ignoring removed oldalloc option
[  400.156909][T18776] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  400.163244][T18778] /dev/loop5: Can't open blockdev
[  400.223431][T18776] JBD2: no valid journal superblock found
[  400.229290][T18776] EXT4-fs (loop8): Could not load journal inode
[  400.254100][T18781] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.293363][T18776] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  400.305537][T18781] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.319238][T18784] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=18784 comm=syz.1.5112
[  400.383297][T18781] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.433369][T18787] loop8: detected capacity change from 0 to 8192
[  400.441246][T18781] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  400.467950][T18791] loop2: detected capacity change from 0 to 512
[  400.475405][T18791] EXT4-fs: Ignoring removed orlov option
[  400.481139][T18791] EXT4-fs: Ignoring removed mblk_io_submit option
[  400.487642][T18791] EXT4-fs: test_dummy_encryption option not supported
[  400.508185][T18781] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  400.534829][T18781] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  400.557475][T18798] loop5: detected capacity change from 0 to 2048
[  400.566457][T18799] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5119'.
[  400.676590][T18781] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  400.686627][T18798] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  400.698799][T18806] loop2: detected capacity change from 0 to 2048
[  400.718981][T18806] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  400.735363][T18781] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  400.981360][T12034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.077352][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.110495][T18823] sctp: [Deprecated]: syz.5.5128 (pid 18823) Use of struct sctp_assoc_value in delayed_ack socket option.
[  401.110495][T18823] Use struct sctp_sack_info instead
[  401.161621][T18832] loop1: detected capacity change from 0 to 1024
[  401.168694][T18832] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  401.179670][T18832] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  401.197036][T18832] JBD2: no valid journal superblock found
[  401.202841][T18832] EXT4-fs (loop1): Could not load journal inode
[  401.215300][T18836] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5132'.
[  401.227976][T18836] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  401.236840][T18836] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  401.245740][T18836] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  401.248885][T18832] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  401.254502][T18836] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  401.373147][T18856] loop2: detected capacity change from 0 to 2048
[  401.385342][T18861] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5142'.
[  401.409912][T18856] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  401.456701][T18867] FAULT_INJECTION: forcing a failure.
[  401.456701][T18867] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  401.469884][T18867] CPU: 1 UID: 0 PID: 18867 Comm: syz.1.5144 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  401.469914][T18867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  401.469929][T18867] Call Trace:
[  401.469938][T18867]  <TASK>
[  401.469948][T18867]  __dump_stack+0x1d/0x30
[  401.469976][T18867]  dump_stack_lvl+0xe8/0x140
[  401.470003][T18867]  dump_stack+0x15/0x1b
[  401.470061][T18867]  should_fail_ex+0x265/0x280
[  401.470165][T18867]  should_fail+0xb/0x20
[  401.470200][T18867]  should_fail_usercopy+0x1a/0x20
[  401.470286][T18867]  _copy_from_user+0x1c/0xb0
[  401.470323][T18867]  ___sys_sendmsg+0xc1/0x1d0
[  401.470369][T18867]  __sys_sendmmsg+0x178/0x300
[  401.470402][T18867]  __x64_sys_sendmmsg+0x57/0x70
[  401.470433][T18867]  x64_sys_call+0x2f2f/0x2fb0
[  401.470468][T18867]  do_syscall_64+0xd0/0x1a0
[  401.470514][T18867]  ? clear_bhb_loop+0x40/0x90
[  401.470541][T18867]  ? clear_bhb_loop+0x40/0x90
[  401.470564][T18867]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.470587][T18867] RIP: 0033:0x7fa296e0e969
[  401.470608][T18867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.470636][T18867] RSP: 002b:00007fa295477038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  401.470660][T18867] RAX: ffffffffffffffda RBX: 00007fa297035fa0 RCX: 00007fa296e0e969
[  401.470673][T18867] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000006
[  401.470686][T18867] RBP: 00007fa295477090 R08: 0000000000000000 R09: 0000000000000000
[  401.470724][T18867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  401.470740][T18867] R13: 0000000000000000 R14: 00007fa297035fa0 R15: 00007ffedbd357b8
[  401.470766][T18867]  </TASK>
[  401.718426][T18882] netlink: 88 bytes leftover after parsing attributes in process `syz.1.5149'.
[  401.763113][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.790252][T18890] netlink: 96 bytes leftover after parsing attributes in process `syz.8.5153'.
[  401.830847][T18897] FAULT_INJECTION: forcing a failure.
[  401.830847][T18897] name failslab, interval 1, probability 0, space 0, times 0
[  401.843661][T18897] CPU: 0 UID: 0 PID: 18897 Comm: syz.2.5152 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  401.843702][T18897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  401.843720][T18897] Call Trace:
[  401.843729][T18897]  <TASK>
[  401.843768][T18897]  __dump_stack+0x1d/0x30
[  401.843796][T18897]  dump_stack_lvl+0xe8/0x140
[  401.843823][T18897]  dump_stack+0x15/0x1b
[  401.843846][T18897]  should_fail_ex+0x265/0x280
[  401.843966][T18897]  should_failslab+0x8c/0xb0
[  401.844004][T18897]  __kmalloc_noprof+0xa5/0x3e0
[  401.844028][T18897]  ? pfkey_sadb2xfrm_user_sec_ctx+0x2e/0x120
[  401.844073][T18897]  pfkey_sadb2xfrm_user_sec_ctx+0x2e/0x120
[  401.844115][T18897]  pfkey_compile_policy+0x392/0x410
[  401.844158][T18897]  ? __pfx_pfkey_compile_policy+0x10/0x10
[  401.844187][T18897]  xfrm_user_policy+0x297/0x540
[  401.844255][T18897]  do_ipv6_setsockopt+0x13c2/0x22e0
[  401.844287][T18897]  ? kstrtoull+0x111/0x140
[  401.844322][T18897]  ? __rcu_read_unlock+0x4f/0x70
[  401.844347][T18897]  ? avc_has_perm_noaudit+0x1b1/0x200
[  401.844392][T18897]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[  401.844432][T18897]  ipv6_setsockopt+0x59/0x130
[  401.844459][T18897]  rawv6_setsockopt+0x1d2/0x420
[  401.844491][T18897]  sock_common_setsockopt+0x66/0x80
[  401.844593][T18897]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  401.844640][T18897]  __sys_setsockopt+0x181/0x200
[  401.844669][T18897]  __x64_sys_setsockopt+0x64/0x80
[  401.844696][T18897]  x64_sys_call+0x2bd5/0x2fb0
[  401.844785][T18897]  do_syscall_64+0xd0/0x1a0
[  401.844859][T18897]  ? clear_bhb_loop+0x40/0x90
[  401.845000][T18897]  ? clear_bhb_loop+0x40/0x90
[  401.845026][T18897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.845048][T18897] RIP: 0033:0x7f82b84be969
[  401.845063][T18897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.845087][T18897] RSP: 002b:00007f82b6b27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  401.845158][T18897] RAX: ffffffffffffffda RBX: 00007f82b86e5fa0 RCX: 00007f82b84be969
[  401.845175][T18897] RDX: 0000000000000022 RSI: 0000000000000029 RDI: 0000000000000003
[  401.845191][T18897] RBP: 00007f82b6b27090 R08: 000000000000005c R09: 0000000000000000
[  401.845207][T18897] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  401.845223][T18897] R13: 0000000000000000 R14: 00007f82b86e5fa0 R15: 00007ffe59476348
[  401.845249][T18897]  </TASK>
[  402.107038][T18904] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  402.115675][T18904] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  402.247905][T18909] loop5: detected capacity change from 0 to 2048
[  402.321707][T18912] loop0: detected capacity change from 0 to 8192
[  402.343356][T18899] loop8: detected capacity change from 0 to 164
[  402.356387][T18899] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  402.380787][T18899] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  402.391362][T18909] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  402.405995][T18899] Symlink component flag not implemented
[  402.411889][T18899] Symlink component flag not implemented
[  402.496364][T18899] Symlink component flag not implemented (7)
[  402.502448][T18899] Symlink component flag not implemented (116)
[  402.707660][T18928] sctp: [Deprecated]: syz.2.5164 (pid 18928) Use of struct sctp_assoc_value in delayed_ack socket option.
[  402.707660][T18928] Use struct sctp_sack_info instead
[  402.762959][   T29] kauditd_printk_skb: 125 callbacks suppressed
[  402.762974][   T29] audit: type=1400 audit(1748005751.595:8864): avc:  denied  { unmount } for  pid=17919 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  402.850037][T18933] netlink: 96 bytes leftover after parsing attributes in process `syz.8.5166'.
[  402.962112][T18944] loop8: detected capacity change from 0 to 1024
[  402.973383][T12034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.984450][T18944] EXT4-fs: Ignoring removed orlov option
[  402.990897][T18944] EXT4-fs (loop8): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  403.032124][T18944] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.045389][T18950] loop2: detected capacity change from 0 to 2048
[  403.067981][T17919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.080502][T18950] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.222972][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.260849][T18969] sctp: [Deprecated]: syz.2.5178 (pid 18969) Use of struct sctp_assoc_value in delayed_ack socket option.
[  403.260849][T18969] Use struct sctp_sack_info instead
[  403.279199][   T29] audit: type=1400 audit(1748005752.141:8865): avc:  denied  { connect } for  pid=18966 comm="syz.0.5179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  403.320196][T18973] netlink: 'syz.2.5181': attribute type 4 has an invalid length.
[  403.357812][   T29] audit: type=1326 audit(1748005752.204:8866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18976 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  403.381080][   T29] audit: type=1326 audit(1748005752.204:8867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18976 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  403.404321][   T29] audit: type=1326 audit(1748005752.204:8868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18976 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  403.427389][   T29] audit: type=1326 audit(1748005752.204:8869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18976 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  403.450562][   T29] audit: type=1326 audit(1748005752.204:8870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18976 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  403.473854][   T29] audit: type=1326 audit(1748005752.204:8871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18976 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  403.666076][T19003] netlink: 'syz.0.5195': attribute type 4 has an invalid length.
[  403.675790][   T29] audit: type=1326 audit(1748005752.561:8872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19000 comm="syz.8.5194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  403.700735][   T29] audit: type=1326 audit(1748005752.561:8873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19000 comm="syz.8.5194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  403.764002][T19009] loop0: detected capacity change from 0 to 512
[  403.771197][T19011] FAULT_INJECTION: forcing a failure.
[  403.771197][T19011] name failslab, interval 1, probability 0, space 0, times 0
[  403.784247][T19011] CPU: 0 UID: 0 PID: 19011 Comm: syz.2.5199 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  403.784276][T19011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  403.784292][T19011] Call Trace:
[  403.784301][T19011]  <TASK>
[  403.784317][T19011]  __dump_stack+0x1d/0x30
[  403.784345][T19011]  dump_stack_lvl+0xe8/0x140
[  403.784371][T19011]  dump_stack+0x15/0x1b
[  403.784435][T19011]  should_fail_ex+0x265/0x280
[  403.784480][T19011]  should_failslab+0x8c/0xb0
[  403.784522][T19011]  __kvmalloc_node_noprof+0x126/0x4d0
[  403.784545][T19011]  ? nf_hook_entries_grow+0x1bc/0x440
[  403.784720][T19011]  nf_hook_entries_grow+0x1bc/0x440
[  403.784763][T19011]  __nf_register_net_hook+0x18e/0x480
[  403.784807][T19009] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  403.784804][T19011]  nf_register_net_hook+0x88/0x130
[  403.784975][T19011]  nf_register_net_hooks+0x44/0x150
[  403.785020][T19011]  ip_vs_register_hooks+0x9b/0xe0
[  403.785126][T19011]  ip_vs_add_service+0x244/0xa70
[  403.785163][T19011]  ? should_fail_ex+0xdb/0x280
[  403.785276][T19011]  do_ip_vs_set_ctl+0x6ec/0x8c0
[  403.785340][T19011]  ? _parse_integer_limit+0x170/0x190
[  403.785405][T19011]  nf_setsockopt+0x196/0x1b0
[  403.785433][T19011]  ip_setsockopt+0x102/0x110
[  403.785474][T19011]  ipv6_setsockopt+0xfb/0x130
[  403.785506][T19011]  tcp_setsockopt+0x95/0xb0
[  403.785565][T19011]  sock_common_setsockopt+0x66/0x80
[  403.785606][T19011]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  403.785706][T19011]  __sys_setsockopt+0x181/0x200
[  403.785736][T19011]  __x64_sys_setsockopt+0x64/0x80
[  403.785763][T19011]  x64_sys_call+0x2bd5/0x2fb0
[  403.785795][T19011]  do_syscall_64+0xd0/0x1a0
[  403.785828][T19011]  ? clear_bhb_loop+0x40/0x90
[  403.785937][T19011]  ? clear_bhb_loop+0x40/0x90
[  403.785968][T19011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.785998][T19011] RIP: 0033:0x7f82b84be969
[  403.786020][T19011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  403.786046][T19011] RSP: 002b:00007f82b6b27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  403.786187][T19011] RAX: ffffffffffffffda RBX: 00007f82b86e5fa0 RCX: 00007f82b84be969
[  403.786206][T19011] RDX: 0000000000000482 RSI: 0000000000000000 RDI: 0000000000000004
[  403.786224][T19011] RBP: 00007f82b6b27090 R08: 000000000000002c R09: 0000000000000000
[  403.786243][T19011] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  403.786260][T19011] R13: 0000000000000000 R14: 00007f82b86e5fa0 R15: 00007ffe59476348
[  403.786285][T19011]  </TASK>
[  404.045321][T19009] EXT4-fs (loop0): orphan cleanup on readonly fs
[  404.053286][T19009] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.5198: iget: bad extended attribute block 19
[  404.068442][T19009] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.5198: couldn't read orphan inode 15 (err -117)
[  404.082905][T19009] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  404.120982][T11776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.143011][T19024] loop0: detected capacity change from 0 to 256
[  404.177878][T19026] netlink: 'syz.2.5207': attribute type 4 has an invalid length.
[  404.255455][T19038] sctp: [Deprecated]: syz.5.5212 (pid 19038) Use of struct sctp_assoc_value in delayed_ack socket option.
[  404.255455][T19038] Use struct sctp_sack_info instead
[  404.310996][T19042] loop5: detected capacity change from 0 to 2048
[  404.323821][T19042] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  404.412219][T12034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.157956][T19060] netlink: 'syz.5.5221': attribute type 4 has an invalid length.
[  405.188871][T19065] sctp: [Deprecated]: syz.5.5224 (pid 19065) Use of struct sctp_assoc_value in delayed_ack socket option.
[  405.188871][T19065] Use struct sctp_sack_info instead
[  405.279569][T19078] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  405.288250][T19078] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  405.348038][T19080] loop1: detected capacity change from 0 to 2048
[  405.627276][T19080] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  405.938013][T19099] netlink: 'syz.5.5234': attribute type 4 has an invalid length.
[  405.990833][T12206] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.013181][T19105] loop0: detected capacity change from 0 to 1024
[  406.020330][T19105] EXT4-fs: Ignoring removed orlov option
[  406.029618][T19105] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  406.040744][T19108] sctp: [Deprecated]: syz.1.5237 (pid 19108) Use of struct sctp_assoc_value in delayed_ack socket option.
[  406.040744][T19108] Use struct sctp_sack_info instead
[  406.072359][T19105] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  406.087744][T19105] EXT4-fs error (device loop0): ext4_find_dest_de:2054: inode #12: block 7: comm syz.0.5238: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  406.130068][T19116] xt_hashlimit: size too large, truncated to 1048576
[  406.190156][T19105] EXT4-fs error (device loop0): ext4_check_all_de:659: inode #12: block 7: comm syz.0.5238: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  406.292044][T19128] geneve0: entered promiscuous mode
[  406.322260][T11776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.336499][T19131] futex_wake_op: syz.8.5246 tries to shift op by -1; fix this program
[  406.361972][T19135] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5245'.
[  406.371269][T19116] loop5: detected capacity change from 0 to 764
[  406.377806][T19116] iso9660: Unknown parameter 'sys_enter'
[  406.385159][T19135] nfs: Unknown parameter ''
[  406.415696][T19137] loop1: detected capacity change from 0 to 2048
[  406.429204][T19137] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.459246][T19143] FAULT_INJECTION: forcing a failure.
[  406.459246][T19143] name failslab, interval 1, probability 0, space 0, times 0
[  406.471979][T19143] CPU: 0 UID: 0 PID: 19143 Comm: syz.8.5250 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  406.472017][T19143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  406.472106][T19143] Call Trace:
[  406.472113][T19143]  <TASK>
[  406.472121][T19143]  __dump_stack+0x1d/0x30
[  406.472173][T19143]  dump_stack_lvl+0xe8/0x140
[  406.472200][T19143]  dump_stack+0x15/0x1b
[  406.472222][T19143]  should_fail_ex+0x265/0x280
[  406.472369][T19143]  should_failslab+0x8c/0xb0
[  406.472421][T19143]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  406.472486][T19143]  ? sidtab_sid2str_get+0xa0/0x130
[  406.472531][T19143]  kmemdup_noprof+0x2b/0x70
[  406.472558][T19143]  sidtab_sid2str_get+0xa0/0x130
[  406.472606][T19143]  security_sid_to_context_core+0x1eb/0x2e0
[  406.472709][T19143]  security_sid_to_context+0x27/0x40
[  406.472738][T19143]  avc_audit_post_callback+0x10f/0x520
[  406.472841][T19143]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  406.472917][T19143]  common_lsm_audit+0x1b8/0x230
[  406.472954][T19143]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  406.473042][T19143]  ? avc_denied+0xe4/0x100
[  406.473061][T19143]  slow_avc_audit+0x104/0x140
[  406.473098][T19143]  avc_has_perm+0x128/0x150
[  406.473188][T19143]  file_has_perm+0x324/0x370
[  406.473232][T19143]  selinux_file_permission+0x31f/0x360
[  406.473265][T19143]  security_file_permission+0x3e/0x80
[  406.473297][T19143]  vfs_write+0x135/0x8d0
[  406.473382][T19143]  ? __rcu_read_unlock+0x4f/0x70
[  406.473411][T19143]  ? __fget_files+0x184/0x1c0
[  406.473524][T19143]  ksys_write+0xda/0x1a0
[  406.473556][T19143]  __x64_sys_write+0x40/0x50
[  406.473641][T19143]  x64_sys_call+0x2cdd/0x2fb0
[  406.473677][T19143]  do_syscall_64+0xd0/0x1a0
[  406.473706][T19143]  ? clear_bhb_loop+0x40/0x90
[  406.473753][T19143]  ? clear_bhb_loop+0x40/0x90
[  406.473783][T19143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  406.473808][T19143] RIP: 0033:0x7f424debe969
[  406.473823][T19143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  406.473842][T19143] RSP: 002b:00007f424c527038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  406.473863][T19143] RAX: ffffffffffffffda RBX: 00007f424e0e5fa0 RCX: 00007f424debe969
[  406.473897][T19143] RDX: 0000000000000007 RSI: 0000200000000140 RDI: 0000000000000004
[  406.473914][T19143] RBP: 00007f424c527090 R08: 0000000000000000 R09: 0000000000000000
[  406.473931][T19143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  406.473948][T19143] R13: 0000000000000000 R14: 00007f424e0e5fa0 R15: 00007ffc823c45d8
[  406.473978][T19143]  </TASK>
[  406.733117][T19115] geneve0: left promiscuous mode
[  406.756834][T12206] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.798029][T19146] sctp: [Deprecated]: syz.5.5251 (pid 19146) Use of struct sctp_assoc_value in delayed_ack socket option.
[  406.798029][T19146] Use struct sctp_sack_info instead
[  406.818653][T19152] netlink: 96 bytes leftover after parsing attributes in process `syz.8.5255'.
[  406.917599][T19167] blktrace: Concurrent blktraces are not allowed on loop3
[  407.037170][T19173] loop8: detected capacity change from 0 to 2048
[  407.067098][T19173] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  407.067134][T19166] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  407.186958][T17919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.214580][T19186] sctp: [Deprecated]: syz.0.5267 (pid 19186) Use of struct sctp_assoc_value in delayed_ack socket option.
[  407.214580][T19186] Use struct sctp_sack_info instead
[  407.781375][T19214] loop1: detected capacity change from 0 to 2048
[  407.787854][T19216] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5278'.
[  407.803882][T19219] FAULT_INJECTION: forcing a failure.
[  407.803882][T19219] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  407.817051][T19219] CPU: 0 UID: 0 PID: 19219 Comm: syz.0.5281 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  407.817105][T19219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  407.817192][T19219] Call Trace:
[  407.817201][T19219]  <TASK>
[  407.817221][T19219]  __dump_stack+0x1d/0x30
[  407.817243][T19219]  dump_stack_lvl+0xe8/0x140
[  407.817263][T19219]  dump_stack+0x15/0x1b
[  407.817290][T19219]  should_fail_ex+0x265/0x280
[  407.817369][T19219]  should_fail+0xb/0x20
[  407.817409][T19219]  should_fail_usercopy+0x1a/0x20
[  407.817476][T19219]  _copy_from_user+0x1c/0xb0
[  407.817508][T19219]  __copy_msghdr+0x244/0x300
[  407.817547][T19219]  ___sys_sendmsg+0x109/0x1d0
[  407.817594][T19219]  __x64_sys_sendmsg+0xd4/0x160
[  407.817629][T19219]  x64_sys_call+0x2999/0x2fb0
[  407.817721][T19219]  do_syscall_64+0xd0/0x1a0
[  407.817751][T19219]  ? clear_bhb_loop+0x40/0x90
[  407.817855][T19219]  ? clear_bhb_loop+0x40/0x90
[  407.817884][T19219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.817953][T19219] RIP: 0033:0x7f2a554ce969
[  407.817969][T19219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  407.817987][T19219] RSP: 002b:00007f2a53b37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  407.818006][T19219] RAX: ffffffffffffffda RBX: 00007f2a556f5fa0 RCX: 00007f2a554ce969
[  407.818020][T19219] RDX: 0000000000000000 RSI: 0000200000007940 RDI: 0000000000000004
[  407.818104][T19219] RBP: 00007f2a53b37090 R08: 0000000000000000 R09: 0000000000000000
[  407.818179][T19219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  407.818192][T19219] R13: 0000000000000000 R14: 00007f2a556f5fa0 R15: 00007ffcedc466c8
[  407.818217][T19219]  </TASK>
[  407.995532][T19214] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  408.096890][T12206] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.130189][   T29] kauditd_printk_skb: 153 callbacks suppressed
[  408.130209][   T29] audit: type=1326 audit(1748005757.233:9027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19235 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa296e0e969 code=0x7ffc0000
[  408.168402][   T29] audit: type=1326 audit(1748005757.233:9028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19235 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fa296e0e969 code=0x7ffc0000
[  408.191480][   T29] audit: type=1326 audit(1748005757.233:9029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19235 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa296e0e969 code=0x7ffc0000
[  408.214760][   T29] audit: type=1326 audit(1748005757.233:9030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19235 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa296e0e969 code=0x7ffc0000
[  408.237953][   T29] audit: type=1326 audit(1748005757.233:9031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19235 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7fa296e0e969 code=0x7ffc0000
[  408.261232][   T29] audit: type=1326 audit(1748005757.233:9032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19235 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa296e0e969 code=0x7ffc0000
[  408.315913][T19245] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5289'.
[  408.338973][T19245] netlink: 48 bytes leftover after parsing attributes in process `syz.5.5289'.
[  408.355828][T19245] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5289'.
[  408.376700][   T29] audit: type=1400 audit(1748005757.485:9033): avc:  denied  { read } for  pid=19244 comm="syz.5.5289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  408.378055][T19245] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5289'.
[  408.443466][T19255] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5294'.
[  408.466748][T19259] sctp: [Deprecated]: syz.1.5296 (pid 19259) Use of struct sctp_assoc_value in delayed_ack socket option.
[  408.466748][T19259] Use struct sctp_sack_info instead
[  408.483382][   T29] audit: type=1326 audit(1748005757.590:9034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19256 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  408.506543][   T29] audit: type=1326 audit(1748005757.590:9035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19256 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  408.529697][   T29] audit: type=1326 audit(1748005757.590:9036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19256 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  408.608179][T19273] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5303'.
[  408.623827][T19273] team0 (unregistering): Port device team_slave_1 removed
[  408.650005][T19279] netlink: 48 bytes leftover after parsing attributes in process `syz.8.5301'.
[  408.708220][T19289] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5301'.
[  408.728350][T19289] team0 (unregistering): Port device team_slave_0 removed
[  408.745290][T19294] sctp: [Deprecated]: syz.2.5311 (pid 19294) Use of struct sctp_assoc_value in delayed_ack socket option.
[  408.745290][T19294] Use struct sctp_sack_info instead
[  408.765922][T19289] team0 (unregistering): Port device team_slave_1 removed
[  408.775230][T19295] loop1: detected capacity change from 0 to 2048
[  408.811913][T19295] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.031463][T12206] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.153769][T19322] loop2: detected capacity change from 0 to 1024
[  409.166857][T19322] EXT4-fs: Ignoring removed orlov option
[  409.174704][T19322] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  409.194397][T19322] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.210765][T19322] EXT4-fs error (device loop2): ext4_find_dest_de:2054: inode #12: block 7: comm syz.2.5321: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  409.288915][T19322] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.5321: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  409.327198][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.370738][T19328] netlink: 'syz.2.5322': attribute type 4 has an invalid length.
[  409.403762][T19330] sctp: [Deprecated]: syz.2.5323 (pid 19330) Use of struct sctp_assoc_value in delayed_ack socket option.
[  409.403762][T19330] Use struct sctp_sack_info instead
[  409.440886][T19332] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5324'.
[  409.762966][T19356] random: crng reseeded on system resumption
[  410.228155][T19378] FAULT_INJECTION: forcing a failure.
[  410.228155][T19378] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.241360][T19378] CPU: 0 UID: 0 PID: 19378 Comm: syz.5.5341 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  410.241405][T19378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  410.241418][T19378] Call Trace:
[  410.241425][T19378]  <TASK>
[  410.241434][T19378]  __dump_stack+0x1d/0x30
[  410.241461][T19378]  dump_stack_lvl+0xe8/0x140
[  410.241481][T19378]  dump_stack+0x15/0x1b
[  410.241499][T19378]  should_fail_ex+0x265/0x280
[  410.241562][T19378]  should_fail+0xb/0x20
[  410.241595][T19378]  should_fail_usercopy+0x1a/0x20
[  410.241689][T19378]  _copy_from_user+0x1c/0xb0
[  410.241719][T19378]  kstrtouint_from_user+0x69/0xf0
[  410.241754][T19378]  ? avc_policy_seqno+0x15/0x30
[  410.241780][T19378]  proc_fail_nth_write+0x50/0x160
[  410.241811][T19378]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  410.241904][T19378]  vfs_write+0x266/0x8d0
[  410.241929][T19378]  ? vfs_read+0x47f/0x6f0
[  410.241974][T19378]  ? __rcu_read_unlock+0x4f/0x70
[  410.242014][T19378]  ? __fget_files+0x184/0x1c0
[  410.242050][T19378]  ksys_write+0xda/0x1a0
[  410.242087][T19378]  __x64_sys_write+0x40/0x50
[  410.242182][T19378]  x64_sys_call+0x2cdd/0x2fb0
[  410.242211][T19378]  do_syscall_64+0xd0/0x1a0
[  410.242241][T19378]  ? clear_bhb_loop+0x40/0x90
[  410.242270][T19378]  ? clear_bhb_loop+0x40/0x90
[  410.242427][T19378]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.242449][T19378] RIP: 0033:0x7f1a7888d41f
[  410.242465][T19378] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  410.242485][T19378] RSP: 002b:00007f1a76ef7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  410.242505][T19378] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1a7888d41f
[  410.242517][T19378] RDX: 0000000000000001 RSI: 00007f1a76ef70a0 RDI: 0000000000000004
[  410.242604][T19378] RBP: 00007f1a76ef7090 R08: 0000000000000000 R09: 0000000000000000
[  410.242617][T19378] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  410.242629][T19378] R13: 0000000000000000 R14: 00007f1a78ab5fa0 R15: 00007fffddf21588
[  410.242649][T19378]  </TASK>
[  410.489086][T19388] FAULT_INJECTION: forcing a failure.
[  410.489086][T19388] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  410.502275][T19388] CPU: 1 UID: 0 PID: 19388 Comm: +}[@ Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  410.502309][T19388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  410.502321][T19388] Call Trace:
[  410.502329][T19388]  <TASK>
[  410.502364][T19388]  __dump_stack+0x1d/0x30
[  410.502385][T19388]  dump_stack_lvl+0xe8/0x140
[  410.502409][T19388]  dump_stack+0x15/0x1b
[  410.502431][T19388]  should_fail_ex+0x265/0x280
[  410.502518][T19388]  should_fail+0xb/0x20
[  410.502554][T19388]  should_fail_usercopy+0x1a/0x20
[  410.502583][T19388]  _copy_to_user+0x20/0xa0
[  410.502613][T19388]  simple_read_from_buffer+0xb5/0x130
[  410.502643][T19388]  proc_fail_nth_read+0x100/0x140
[  410.502672][T19388]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  410.502782][T19388]  vfs_read+0x19d/0x6f0
[  410.502820][T19388]  ? __rcu_read_unlock+0x4f/0x70
[  410.502850][T19388]  ? __fget_files+0x184/0x1c0
[  410.502921][T19388]  ksys_read+0xda/0x1a0
[  410.502952][T19388]  __x64_sys_read+0x40/0x50
[  410.503068][T19388]  x64_sys_call+0x2d77/0x2fb0
[  410.503090][T19388]  do_syscall_64+0xd0/0x1a0
[  410.503183][T19388]  ? clear_bhb_loop+0x40/0x90
[  410.503208][T19388]  ? clear_bhb_loop+0x40/0x90
[  410.503229][T19388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.503258][T19388] RIP: 0033:0x7f1a7888d37c
[  410.503300][T19388] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  410.503319][T19388] RSP: 002b:00007f1a76ef7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  410.503365][T19388] RAX: ffffffffffffffda RBX: 00007f1a78ab5fa0 RCX: 00007f1a7888d37c
[  410.503407][T19388] RDX: 000000000000000f RSI: 00007f1a76ef70a0 RDI: 0000000000000005
[  410.503419][T19388] RBP: 00007f1a76ef7090 R08: 0000000000000000 R09: 0000000000000000
[  410.503431][T19388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  410.503444][T19388] R13: 0000000000000000 R14: 00007f1a78ab5fa0 R15: 00007fffddf21588
[  410.503470][T19388]  </TASK>
[  410.743807][T19391] loop8: detected capacity change from 0 to 1024
[  410.781069][T19391] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  410.827809][T19391] EXT4-fs error (device loop8): mb_free_blocks:1948: group 0, inode 16: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  410.868880][T17919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.310528][T19476] 9pnet_fd: Insufficient options for proto=fd
[  411.432552][T19495] SELinux:  policydb string length 3592 does not match expected length 8
[  411.442354][T19495] SELinux: failed to load policy
[  411.477550][T19503] nfs: Unknown parameter ''
[  411.592108][T19513] loop8: detected capacity change from 0 to 1024
[  411.600808][T19513] EXT4-fs (loop8): orphan cleanup on readonly fs
[  411.607658][T19513] EXT4-fs error (device loop8): ext4_orphan_get:1417: comm syz.8.5390: bad orphan inode 8
[  411.618090][T19516] loop2: detected capacity change from 0 to 2048
[  411.619425][T19513] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  411.640477][T19513] EXT4-fs (loop8): warning: mounting fs with errors, running e2fsck is recommended
[  411.648287][T19516] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  411.651328][T19513] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  411.672586][T19513] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  411.740152][T19526] loop0: detected capacity change from 0 to 2048
[  411.758011][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.782671][T19526] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  411.902238][T11776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  411.924156][T19537] nfs: Unknown parameter ''
[  411.949677][T19539] netlink: 'syz.0.5399': attribute type 4 has an invalid length.
[  411.990337][T19545] loop2: detected capacity change from 0 to 1024
[  411.998679][T19545] EXT4-fs: Ignoring removed orlov option
[  412.004781][T19545] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  412.019403][T19545] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.034955][T19545] EXT4-fs error (device loop2): ext4_find_dest_de:2054: inode #12: block 7: comm syz.2.5402: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  412.109034][T19552] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.5402: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  412.209910][T19566] nfs: Unknown parameter ''
[  412.237872][T19570] netlink: 'syz.0.5412': attribute type 4 has an invalid length.
[  412.365360][T19580] loop1: detected capacity change from 0 to 8192
[  412.393318][T19580] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  412.402045][T19580] FAT-fs (loop1): Filesystem has been set read-only
[  412.410118][T17919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.500891][T19602] nfs: Unknown parameter ''
[  412.601873][T19611] __nla_validate_parse: 18 callbacks suppressed
[  412.601892][T19611] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5432'.
[  412.630164][T19611] netlink: 48 bytes leftover after parsing attributes in process `syz.5.5432'.
[  412.649955][T19611] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5432'.
[  412.659409][T19611] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5432'.
[  412.698067][T19618] netlink: 'syz.0.5435': attribute type 21 has an invalid length.
[  412.706521][T19618] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5435'.
[  412.719887][T19623] FAULT_INJECTION: forcing a failure.
[  412.719887][T19623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  412.733170][T19623] CPU: 1 UID: 0 PID: 19623 Comm: syz.5.5437 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  412.733199][T19623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  412.733236][T19623] Call Trace:
[  412.733244][T19623]  <TASK>
[  412.733254][T19623]  __dump_stack+0x1d/0x30
[  412.733281][T19623]  dump_stack_lvl+0xe8/0x140
[  412.733308][T19623]  dump_stack+0x15/0x1b
[  412.733330][T19623]  should_fail_ex+0x265/0x280
[  412.733428][T19623]  should_fail+0xb/0x20
[  412.733519][T19623]  should_fail_usercopy+0x1a/0x20
[  412.733546][T19623]  _copy_to_user+0x20/0xa0
[  412.733589][T19623]  simple_read_from_buffer+0xb5/0x130
[  412.733616][T19623]  proc_fail_nth_read+0x100/0x140
[  412.733653][T19623]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  412.733687][T19623]  vfs_read+0x19d/0x6f0
[  412.733790][T19623]  ? __rcu_read_unlock+0x4f/0x70
[  412.733876][T19623]  ? __fget_files+0x184/0x1c0
[  412.733954][T19623]  ksys_read+0xda/0x1a0
[  412.734057][T19623]  __x64_sys_read+0x40/0x50
[  412.734088][T19623]  x64_sys_call+0x2d77/0x2fb0
[  412.734110][T19623]  do_syscall_64+0xd0/0x1a0
[  412.734142][T19623]  ? clear_bhb_loop+0x40/0x90
[  412.734238][T19623]  ? clear_bhb_loop+0x40/0x90
[  412.734275][T19623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.734295][T19623] RIP: 0033:0x7f1a7888d37c
[  412.734310][T19623] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  412.734357][T19623] RSP: 002b:00007f1a76ef7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  412.734374][T19623] RAX: ffffffffffffffda RBX: 00007f1a78ab5fa0 RCX: 00007f1a7888d37c
[  412.734386][T19623] RDX: 000000000000000f RSI: 00007f1a76ef70a0 RDI: 0000000000000006
[  412.734441][T19623] RBP: 00007f1a76ef7090 R08: 0000000000000000 R09: 0000000000000000
[  412.734453][T19623] R10: 000000000000004a R11: 0000000000000246 R12: 0000000000000001
[  412.734464][T19623] R13: 0000000000000000 R14: 00007f1a78ab5fa0 R15: 00007fffddf21588
[  412.734482][T19623]  </TASK>
[  412.947005][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.962733][T19626] loop5: detected capacity change from 0 to 128
[  412.971626][T19624] loop0: detected capacity change from 0 to 2048
[  412.990748][T19624] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  413.028350][T11776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.080042][T19637] loop0: detected capacity change from 0 to 2048
[  413.099470][T19641] random: crng reseeded on system resumption
[  413.108332][T19637] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  413.212070][T19646] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5445'.
[  413.223284][T19646] nfs: Unknown parameter ''
[  413.229129][T11776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.269254][T19652] sctp: [Deprecated]: syz.0.5448 (pid 19652) Use of struct sctp_assoc_value in delayed_ack socket option.
[  413.269254][T19652] Use struct sctp_sack_info instead
[  413.281444][T19654] loop5: detected capacity change from 0 to 1024
[  413.293483][T19654] EXT4-fs: Ignoring removed orlov option
[  413.300565][T19654] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  413.329466][T19654] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  413.353974][T19654] EXT4-fs error (device loop5): ext4_find_dest_de:2054: inode #12: block 7: comm syz.5.5449: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  413.409526][T19658] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  413.436493][T19654] EXT4-fs error (device loop5): ext4_check_all_de:659: inode #12: block 7: comm syz.5.5449: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  413.515464][T12034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.544083][T19671] loop1: detected capacity change from 0 to 2048
[  413.563574][T19671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  413.603149][T19680] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5459'.
[  413.621144][T19680] nfs: Unknown parameter ''
[  413.659020][   T29] kauditd_printk_skb: 198 callbacks suppressed
[  413.659035][   T29] audit: type=1400 audit(1748005763.039:9235): avc:  denied  { bind } for  pid=19683 comm="syz.0.5461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.684918][   T29] audit: type=1400 audit(1748005763.039:9236): avc:  denied  { listen } for  pid=19683 comm="syz.0.5461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.743807][T12206] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.822731][   T29] audit: type=1400 audit(1748005763.207:9237): avc:  denied  { accept } for  pid=19683 comm="syz.0.5461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  413.876157][   T29] audit: type=1400 audit(1748005763.259:9238): avc:  denied  { read } for  pid=19683 comm="syz.0.5461" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  414.706193][T19698] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  414.745546][T19700] futex_wake_op: syz.8.5464 tries to shift op by -1; fix this program
[  415.015025][T19708] sctp: [Deprecated]: syz.1.5470 (pid 19708) Use of struct sctp_assoc_value in delayed_ack socket option.
[  415.015025][T19708] Use struct sctp_sack_info instead
[  416.948138][T19723] netlink: 48 bytes leftover after parsing attributes in process `syz.8.5471'.
[  417.350765][   T29] audit: type=1326 audit(1748005766.913:9239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19730 comm="syz.8.5477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  417.374386][   T29] audit: type=1326 audit(1748005766.913:9240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19730 comm="syz.8.5477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  417.397842][   T29] audit: type=1326 audit(1748005766.913:9241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19730 comm="syz.8.5477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  417.676042][   T29] audit: type=1326 audit(1748005767.260:9242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19740 comm="syz.8.5482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  417.769687][T19743] loop2: detected capacity change from 0 to 2048
[  417.794557][   T29] audit: type=1326 audit(1748005767.281:9243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19740 comm="syz.8.5482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  417.818169][   T29] audit: type=1326 audit(1748005767.281:9244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19740 comm="syz.8.5482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  417.934089][T19747] loop5: detected capacity change from 0 to 1024
[  417.941017][T19747] EXT4-fs: Ignoring removed orlov option
[  417.956552][T19747] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  417.980637][T19745] __nla_validate_parse: 1 callbacks suppressed
[  417.980656][T19745] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  418.018380][T19743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.032502][T19747] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  418.121145][T19747] EXT4-fs error (device loop5): ext4_find_dest_de:2054: inode #12: block 7: comm syz.5.5486: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  418.292342][T19747] EXT4-fs error (device loop5): ext4_check_all_de:659: inode #12: block 7: comm syz.5.5486: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  418.387489][T12034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.397523][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.473558][T19778] loop5: detected capacity change from 0 to 2048
[  418.686274][T19778] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.822757][T19789] netlink: 48 bytes leftover after parsing attributes in process `syz.8.5498'.
[  418.887773][T19786] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5498'.
[  419.002980][T12034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.047410][T19797] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5502'.
[  419.225507][T19812] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5507'.
[  419.238169][T19810] loop5: detected capacity change from 0 to 2048
[  419.255707][T19812] nfs: Unknown parameter ''
[  419.290893][   T29] kauditd_printk_skb: 4 callbacks suppressed
[  419.290909][   T29] audit: type=1326 audit(1748005768.939:9249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19813 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b84be969 code=0x7ffc0000
[  419.320349][   T29] audit: type=1326 audit(1748005768.939:9250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19813 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f82b84be969 code=0x7ffc0000
[  419.343413][   T29] audit: type=1326 audit(1748005768.939:9251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19813 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b84be969 code=0x7ffc0000
[  419.366514][   T29] audit: type=1326 audit(1748005768.939:9252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19813 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f82b84be969 code=0x7ffc0000
[  419.389755][   T29] audit: type=1326 audit(1748005768.939:9253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19813 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b84be969 code=0x7ffc0000
[  419.430786][T19810] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  419.477160][T19818] netlink: 96 bytes leftover after parsing attributes in process `syz.8.5509'.
[  419.603225][T19827] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5514'.
[  419.652261][T19833] nfs: Unknown parameter ''
[  419.755470][T19840] sctp: [Deprecated]: syz.2.5521 (pid 19840) Use of struct sctp_assoc_value in delayed_ack socket option.
[  419.755470][T19840] Use struct sctp_sack_info instead
[  419.806904][T12034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.833100][T19849] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5524'.
[  419.905312][   T29] audit: type=1326 audit(1748005769.590:9254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19852 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  419.912473][T19855] loop0: detected capacity change from 0 to 1024
[  419.928772][   T29] audit: type=1326 audit(1748005769.590:9255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19852 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  419.958088][   T29] audit: type=1326 audit(1748005769.590:9256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19852 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  419.959677][T19855] EXT4-fs: Ignoring removed orlov option
[  419.981326][   T29] audit: type=1326 audit(1748005769.590:9257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19852 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  420.010018][   T29] audit: type=1326 audit(1748005769.590:9258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19852 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a7888e969 code=0x7ffc0000
[  420.048144][T19855] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  420.084011][T19855] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  420.085115][T19865] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5529'.
[  420.112045][T19865] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5529'.
[  420.143993][T19855] EXT4-fs error (device loop0): ext4_find_dest_de:2054: inode #12: block 7: comm syz.0.5527: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  420.193089][T19878] sctp: [Deprecated]: syz.2.5535 (pid 19878) Use of struct sctp_assoc_value in delayed_ack socket option.
[  420.193089][T19878] Use struct sctp_sack_info instead
[  420.277879][T19873] EXT4-fs error (device loop0): ext4_check_all_de:659: inode #12: block 7: comm syz.0.5527: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  420.468629][T19901] random: crng reseeded on system resumption
[  420.640863][T19913] sctp: [Deprecated]: syz.1.5551 (pid 19913) Use of struct sctp_assoc_value in delayed_ack socket option.
[  420.640863][T19913] Use struct sctp_sack_info instead
[  420.718940][T11776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.792409][   T51] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  420.857559][   T51] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  420.915176][   T51] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  420.971845][   T51] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  421.040024][T19922] chnl_net:caif_netlink_parms(): no params data found
[  421.125132][   T51] bridge_slave_1: left allmulticast mode
[  421.130866][   T51] bridge_slave_1: left promiscuous mode
[  421.136601][   T51] bridge0: port 2(bridge_slave_1) entered disabled state
[  421.150842][   T51] bridge_slave_0: left allmulticast mode
[  421.156634][   T51] bridge_slave_0: left promiscuous mode
[  421.162397][   T51] bridge0: port 1(bridge_slave_0) entered disabled state
[  421.214082][   T51] dvmrp3 (unregistering): left allmulticast mode
[  421.243970][T19944] loop2: detected capacity change from 0 to 2048
[  421.269563][T19944] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.283992][   T51] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  421.294300][   T51] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  421.317849][   T51] bond0 (unregistering): Released all slaves
[  421.332395][   T51] bond1 (unregistering): Released all slaves
[  421.358390][   T51] bond2 (unregistering): Released all slaves
[  421.392125][T19922] bridge0: port 1(bridge_slave_0) entered blocking state
[  421.399311][T19922] bridge0: port 1(bridge_slave_0) entered disabled state
[  421.430644][T19922] bridge_slave_0: entered allmulticast mode
[  421.450189][T19922] bridge_slave_0: entered promiscuous mode
[  421.470977][T19922] bridge0: port 2(bridge_slave_1) entered blocking state
[  421.478438][T19922] bridge0: port 2(bridge_slave_1) entered disabled state
[  421.495721][T19922] bridge_slave_1: entered allmulticast mode
[  421.515670][T19922] bridge_slave_1: entered promiscuous mode
[  421.548484][   T51] hsr_slave_0: left promiscuous mode
[  421.554620][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.582025][   T51] hsr_slave_1: left promiscuous mode
[  421.589117][   T51] batman_adv: batadv0: Removing interface: dummy0
[  421.591877][T19954] sctp: [Deprecated]: syz.1.5563 (pid 19954) Use of struct sctp_assoc_value in delayed_ack socket option.
[  421.591877][T19954] Use struct sctp_sack_info instead
[  421.612915][   T51] batman_adv: batadv0: Removing interface: batadv_slave_0
[  421.630562][   T51] batman_adv: batadv0: Removing interface: batadv_slave_1
[  421.708563][   T51] team0 (unregistering): Port device team_slave_1 removed
[  421.734215][   T51] team0 (unregistering): Port device team_slave_0 removed
[  421.833592][T19922] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  421.855169][T19922] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  421.929754][T19922] team0: Port device team_slave_0 added
[  421.956909][T19922] team0: Port device team_slave_1 added
[  422.059062][T19922] batman_adv: batadv0: Adding interface: batadv_slave_0
[  422.066097][T19922] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  422.092295][T19922] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  422.112691][T19922] batman_adv: batadv0: Adding interface: batadv_slave_1
[  422.119795][T19922] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  422.145937][T19922] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  422.162966][T19983] loop2: detected capacity change from 0 to 1024
[  422.169908][T19983] EXT4-fs: Ignoring removed orlov option
[  422.177073][T19983] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  422.192348][T19983] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.229873][T19983] EXT4-fs error (device loop2): ext4_find_dest_de:2054: inode #12: block 7: comm syz.2.5576: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  422.270099][T19992] netlink: 'syz.8.5578': attribute type 4 has an invalid length.
[  422.293709][T19922] hsr_slave_0: entered promiscuous mode
[  422.303721][T19922] hsr_slave_1: entered promiscuous mode
[  422.310025][T19922] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  422.319233][T19922] Cannot create hsr debugfs directory
[  422.334952][T19983] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.5576: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  422.400395][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.527268][T20017] netlink: 'syz.0.5591': attribute type 4 has an invalid length.
[  422.776822][T20048] netlink: 'syz.2.5603': attribute type 4 has an invalid length.
[  422.787934][T19922] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  422.810890][T19922] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  422.825230][T19922] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  422.851223][T19922] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  422.970190][T19922] 8021q: adding VLAN 0 to HW filter on device bond0
[  422.978881][T20063] __nla_validate_parse: 7 callbacks suppressed
[  422.978898][T20063] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5613'.
[  422.995250][T20061] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  423.011664][T19922] 8021q: adding VLAN 0 to HW filter on device team0
[  423.029376][  T139] bridge0: port 1(bridge_slave_0) entered blocking state
[  423.036503][  T139] bridge0: port 1(bridge_slave_0) entered forwarding state
[  423.073075][  T139] bridge0: port 2(bridge_slave_1) entered blocking state
[  423.080200][  T139] bridge0: port 2(bridge_slave_1) entered forwarding state
[  423.158860][T20081] sctp: [Deprecated]: syz.1.5619 (pid 20081) Use of struct sctp_assoc_value in delayed_ack socket option.
[  423.158860][T20081] Use struct sctp_sack_info instead
[  423.176865][T20082] random: crng reseeded on system resumption
[  423.196687][T19922] 8021q: adding VLAN 0 to HW filter on device batadv0
[  423.299040][T20094] loop2: detected capacity change from 0 to 2048
[  423.351589][T20094] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  423.428212][T19922] veth0_vlan: entered promiscuous mode
[  423.445393][T19922] veth1_vlan: entered promiscuous mode
[  423.505784][T19922] veth0_macvtap: entered promiscuous mode
[  423.534188][T19922] veth1_macvtap: entered promiscuous mode
[  423.579883][T19922] batman_adv: batadv0: Interface activated: batadv_slave_0
[  423.608433][T19922] batman_adv: batadv0: Interface activated: batadv_slave_1
[  423.628602][T19922] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  423.637438][T19922] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  423.646213][T19922] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  423.655010][T19922] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  423.681675][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.865872][T20125] sctp: [Deprecated]: syz.2.5630 (pid 20125) Use of struct sctp_assoc_value in delayed_ack socket option.
[  423.865872][T20125] Use struct sctp_sack_info instead
[  424.296069][T20140] netlink: 96 bytes leftover after parsing attributes in process `syz.8.5636'.
[  424.425955][   T29] kauditd_printk_skb: 11 callbacks suppressed
[  424.426035][   T29] audit: type=1326 audit(1748005774.336:9270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20150 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  424.470586][   T29] audit: type=1326 audit(1748005774.378:9271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20150 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  424.493756][   T29] audit: type=1326 audit(1748005774.378:9272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20150 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  424.516957][   T29] audit: type=1326 audit(1748005774.378:9273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20150 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  424.540187][   T29] audit: type=1326 audit(1748005774.378:9274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20150 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  424.563288][   T29] audit: type=1326 audit(1748005774.378:9275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20150 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  424.586473][   T29] audit: type=1326 audit(1748005774.378:9276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20150 comm="kfree" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f424debe969 code=0x7ffc0000
[  424.663212][T20157] sctp: [Deprecated]: syz.1.5643 (pid 20157) Use of struct sctp_assoc_value in delayed_ack socket option.
[  424.663212][T20157] Use struct sctp_sack_info instead
[  424.868242][T20174] loop1: detected capacity change from 0 to 2048
[  424.897881][T20185] sctp: [Deprecated]: syz.2.5657 (pid 20185) Use of struct sctp_assoc_value in delayed_ack socket option.
[  424.897881][T20185] Use struct sctp_sack_info instead
[  424.956132][T20174] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  425.042284][T20194] FAULT_INJECTION: forcing a failure.
[  425.042284][T20194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  425.055382][T20194] CPU: 0 UID: 0 PID: 20194 Comm: syz.5.5659 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  425.055422][T20194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  425.055486][T20194] Call Trace:
[  425.055493][T20194]  <TASK>
[  425.055501][T20194]  __dump_stack+0x1d/0x30
[  425.055525][T20194]  dump_stack_lvl+0xe8/0x140
[  425.055551][T20194]  dump_stack+0x15/0x1b
[  425.055574][T20194]  should_fail_ex+0x265/0x280
[  425.055632][T20194]  should_fail+0xb/0x20
[  425.055665][T20194]  should_fail_usercopy+0x1a/0x20
[  425.055718][T20194]  strncpy_from_user+0x25/0x230
[  425.055803][T20194]  ? __kmalloc_cache_noprof+0x189/0x320
[  425.055829][T20194]  __se_sys_memfd_create+0x1ff/0x590
[  425.055856][T20194]  __x64_sys_memfd_create+0x31/0x40
[  425.056028][T20194]  x64_sys_call+0x122f/0x2fb0
[  425.056058][T20194]  do_syscall_64+0xd0/0x1a0
[  425.056090][T20194]  ? clear_bhb_loop+0x40/0x90
[  425.056122][T20194]  ? clear_bhb_loop+0x40/0x90
[  425.056144][T20194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.056192][T20194] RIP: 0033:0x7f66becde969
[  425.056212][T20194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.056312][T20194] RSP: 002b:00007f66bd346e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  425.056331][T20194] RAX: ffffffffffffffda RBX: 00000000000004ea RCX: 00007f66becde969
[  425.056346][T20194] RDX: 00007f66bd346ef0 RSI: 0000000000000000 RDI: 00007f66bed61444
[  425.056363][T20194] RBP: 00002000000006c0 R08: 00007f66bd346bb7 R09: 00007f66bd346e40
[  425.056380][T20194] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000140
[  425.056397][T20194] R13: 00007f66bd346ef0 R14: 00007f66bd346eb0 R15: 0000200000002240
[  425.056467][T20194]  </TASK>
[  425.413565][T20203] loop5: detected capacity change from 0 to 1024
[  425.420598][T20203] EXT4-fs: Ignoring removed orlov option
[  425.426747][T20203] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  425.479661][T20203] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  425.548127][T19922] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.577450][T20177] FAULT_INJECTION: forcing a failure.
[  425.577450][T20177] name fail_futex, interval 1, probability 0, space 0, times 1
[  425.590352][T20177] CPU: 0 UID: 0 PID: 20177 Comm: syz.0.5649 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  425.590410][T20177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  425.590503][T20177] Call Trace:
[  425.590511][T20177]  <TASK>
[  425.590519][T20177]  __dump_stack+0x1d/0x30
[  425.590540][T20177]  dump_stack_lvl+0xe8/0x140
[  425.590563][T20177]  dump_stack+0x15/0x1b
[  425.590585][T20177]  should_fail_ex+0x265/0x280
[  425.590627][T20177]  should_fail+0xb/0x20
[  425.590699][T20177]  get_futex_key+0xff/0x750
[  425.590726][T20177]  ? inet6_sendmsg+0x76/0xd0
[  425.590780][T20177]  futex_wake+0x7b/0x340
[  425.590828][T20177]  do_futex+0x323/0x380
[  425.590903][T20177]  mm_release+0xb2/0x1e0
[  425.590984][T20177]  exit_mm_release+0x25/0x30
[  425.591034][T20177]  exit_mm+0x38/0x190
[  425.591066][T20177]  do_exit+0x55f/0x17c0
[  425.591099][T20177]  do_group_exit+0xff/0x140
[  425.591152][T20177]  ? get_signal+0xe51/0xf70
[  425.591245][T20177]  get_signal+0xe59/0xf70
[  425.591268][T20177]  arch_do_signal_or_restart+0x97/0x480
[  425.591346][T20177]  syscall_exit_to_user_mode+0x68/0xb0
[  425.591376][T20177]  do_syscall_64+0xdd/0x1a0
[  425.591408][T20177]  ? clear_bhb_loop+0x40/0x90
[  425.591435][T20177]  ? clear_bhb_loop+0x40/0x90
[  425.591465][T20177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.591495][T20177] RIP: 0033:0x7f2a554ce969
[  425.591516][T20177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.591582][T20177] RSP: 002b:00007f2a53b16038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  425.591603][T20177] RAX: fffffffffffffe00 RBX: 00007f2a556f6080 RCX: 00007f2a554ce969
[  425.591619][T20177] RDX: 0000000000000002 RSI: 0000200000002140 RDI: 0000000000000005
[  425.591636][T20177] RBP: 00007f2a53b16090 R08: 0000000000000000 R09: 0000000000000000
[  425.591653][T20177] R10: 0000000000044080 R11: 0000000000000246 R12: 0000000000000001
[  425.591671][T20177] R13: 0000000000000000 R14: 00007f2a556f6080 R15: 00007ffcedc466c8
[  425.591763][T20177]  </TASK>
[  425.878725][T20216] sctp: [Deprecated]: syz.5.5668 (pid 20216) Use of struct sctp_assoc_value in delayed_ack socket option.
[  425.878725][T20216] Use struct sctp_sack_info instead
[  425.908146][T12206] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.024606][T20232] netlink: 96 bytes leftover after parsing attributes in process `syz.5.5674'.
[  426.205115][T20253] sctp: [Deprecated]: syz.8.5685 (pid 20253) Use of struct sctp_assoc_value in delayed_ack socket option.
[  426.205115][T20253] Use struct sctp_sack_info instead
[  426.686244][T20267] loop8: detected capacity change from 0 to 2048
[  426.821697][T20280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5696'.
[  426.826210][   T29] audit: type=1400 audit(1748005776.856:9277): avc:  denied  { create } for  pid=20277 comm="syz.2.5695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  426.836207][T20280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5696'.
[  426.881510][   T29] audit: type=1400 audit(1748005776.887:9278): avc:  denied  { connect } for  pid=20277 comm="syz.2.5695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  426.943950][T20283] sctp: [Deprecated]: syz.1.5698 (pid 20283) Use of struct sctp_assoc_value in delayed_ack socket option.
[  426.943950][T20283] Use struct sctp_sack_info instead
[  426.999581][   T29] audit: type=1400 audit(1748005777.013:9279): avc:  denied  { listen } for  pid=20277 comm="syz.2.5695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  427.034967][T20285] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5697'.
[  427.058356][T20291] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5701'.
[  427.060376][T20285] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5697'.
[  427.291050][T20310] netlink: 48 bytes leftover after parsing attributes in process `syz.8.5706'.
[  427.572413][T20338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  427.589491][T20333] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  427.619969][T20338] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  427.654433][T20341] loop2: detected capacity change from 0 to 512
[  427.665348][T20341] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  427.682034][T20333] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  427.723449][T20341] EXT4-fs (loop2): 1 truncate cleaned up
[  427.743481][T20351] netlink: 'syz.8.5723': attribute type 10 has an invalid length.
[  427.753036][T20333] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  427.839355][T20333] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  427.905394][T20333] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  427.936722][T20333] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  427.951555][T20333] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  427.973179][T20333] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  428.119025][T20339] chnl_net:caif_netlink_parms(): no params data found
[  428.222728][T20339] bridge0: port 1(bridge_slave_0) entered blocking state
[  428.229953][T20339] bridge0: port 1(bridge_slave_0) entered disabled state
[  428.237468][T20339] bridge_slave_0: entered allmulticast mode
[  428.244899][T20339] bridge_slave_0: entered promiscuous mode
[  428.252524][T20339] bridge0: port 2(bridge_slave_1) entered blocking state
[  428.259721][T20339] bridge0: port 2(bridge_slave_1) entered disabled state
[  428.268789][T20339] bridge_slave_1: entered allmulticast mode
[  428.275506][T20339] bridge_slave_1: entered promiscuous mode
[  428.298977][T20339] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  428.310982][T20339] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  428.334089][T20339] team0: Port device team_slave_0 added
[  428.341183][T20339] team0: Port device team_slave_1 added
[  428.360881][T20339] batman_adv: batadv0: Adding interface: batadv_slave_0
[  428.367915][T20339] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  428.394079][T20339] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  428.409220][T20339] batman_adv: batadv0: Adding interface: batadv_slave_1
[  428.416281][T20339] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  428.442488][T20339] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  428.474559][T20339] hsr_slave_0: entered promiscuous mode
[  428.481084][T20339] hsr_slave_1: entered promiscuous mode
[  428.488215][T20339] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  428.496680][T20339] Cannot create hsr debugfs directory
[  428.543880][T20374] sctp: [Deprecated]: syz.0.5728 (pid 20374) Use of struct sctp_assoc_value in delayed_ack socket option.
[  428.543880][T20374] Use struct sctp_sack_info instead
[  428.585787][T20339] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.660639][T20339] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.709334][T20339] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.737471][T20387] __nla_validate_parse: 3 callbacks suppressed
[  428.737487][T20387] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5732'.
[  428.771288][T20387] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5732'.
[  428.771343][T20386] xt_CT: You must specify a L4 protocol and not use inversions on it
[  428.849320][T20386] veth0: entered promiscuous mode
[  428.868407][T20339] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  428.889351][T20385] veth0: left promiscuous mode
[  428.948426][T20398] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5738'.
[  428.966623][T20339] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  428.987710][T20339] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  429.009500][T20403] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5738'.
[  429.024634][T20401] sctp: [Deprecated]: syz.8.5739 (pid 20401) Use of struct sctp_assoc_value in delayed_ack socket option.
[  429.024634][T20401] Use struct sctp_sack_info instead
[  429.061321][T20339] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  429.070628][T20339] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  429.170375][T20339] 8021q: adding VLAN 0 to HW filter on device bond0
[  429.192382][T20339] 8021q: adding VLAN 0 to HW filter on device team0
[  429.211224][   T29] kauditd_printk_skb: 166 callbacks suppressed
[  429.211307][   T29] audit: type=1326 audit(1748005779.365:9446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.211765][  T139] bridge0: port 1(bridge_slave_0) entered blocking state
[  429.217709][   T29] audit: type=1326 audit(1748005779.365:9447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.240976][  T139] bridge0: port 1(bridge_slave_0) entered forwarding state
[  429.295929][  T139] bridge0: port 2(bridge_slave_1) entered blocking state
[  429.303142][  T139] bridge0: port 2(bridge_slave_1) entered forwarding state
[  429.349243][T20428] loop0: detected capacity change from 0 to 1024
[  429.362014][   T29] audit: type=1326 audit(1748005779.439:9448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.373090][T20339] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  429.385651][   T29] audit: type=1326 audit(1748005779.439:9449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.419807][   T29] audit: type=1326 audit(1748005779.439:9450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.443492][   T29] audit: type=1326 audit(1748005779.439:9451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.467076][   T29] audit: type=1326 audit(1748005779.439:9452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.490890][   T29] audit: type=1326 audit(1748005779.439:9453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.514434][   T29] audit: type=1326 audit(1748005779.439:9454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.537977][   T29] audit: type=1326 audit(1748005779.439:9455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz.0.5746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a554ce969 code=0x7ffc0000
[  429.554508][T20428] EXT4-fs: Ignoring removed orlov option
[  429.599117][T20428] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  429.655089][T20339] 8021q: adding VLAN 0 to HW filter on device batadv0
[  429.678409][T20442] sctp: [Deprecated]: syz.8.5752 (pid 20442) Use of struct sctp_assoc_value in delayed_ack socket option.
[  429.678409][T20442] Use struct sctp_sack_info instead
[  429.822011][T20339] veth0_vlan: entered promiscuous mode
[  429.873961][T20339] veth1_vlan: entered promiscuous mode
[  429.882015][T20461] netlink: 48 bytes leftover after parsing attributes in process `syz.8.5754'.
[  429.902545][T20460] netlink: 'syz.2.5755': attribute type 4 has an invalid length.
[  429.926519][T20339] veth0_macvtap: entered promiscuous mode
[  430.064346][T20339] veth1_macvtap: entered promiscuous mode
[  430.076729][T20339] batman_adv: batadv0: Interface activated: batadv_slave_0
[  430.086066][T20339] batman_adv: batadv0: Interface activated: batadv_slave_1
[  430.094489][T20339] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  430.103311][T20339] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  430.112222][T20339] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  430.121049][T20339] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  430.234107][T20468] netlink: 96 bytes leftover after parsing attributes in process `syz.8.5757'.
[  430.359362][T20470] futex_wake_op: syz.5.5758 tries to shift op by -1; fix this program
[  430.658036][T20486] sctp: [Deprecated]: syz.1.5763 (pid 20486) Use of struct sctp_assoc_value in delayed_ack socket option.
[  430.658036][T20486] Use struct sctp_sack_info instead
[  430.785772][T20497] netlink: 96 bytes leftover after parsing attributes in process `syz.5.5769'.
[  430.807099][T20495] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5768'.
[  431.179295][T20524] sctp: [Deprecated]: syz.1.5777 (pid 20524) Use of struct sctp_assoc_value in delayed_ack socket option.
[  431.179295][T20524] Use struct sctp_sack_info instead
[  431.231042][T20492] chnl_net:caif_netlink_parms(): no params data found
[  431.291683][T20492] bridge0: port 1(bridge_slave_0) entered blocking state
[  431.298855][T20492] bridge0: port 1(bridge_slave_0) entered disabled state
[  431.306134][T20492] bridge_slave_0: entered allmulticast mode
[  431.312772][T20492] bridge_slave_0: entered promiscuous mode
[  431.319804][T20531] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5779'.
[  431.329797][T20492] bridge0: port 2(bridge_slave_1) entered blocking state
[  431.337043][T20492] bridge0: port 2(bridge_slave_1) entered disabled state
[  431.344548][T20492] bridge_slave_1: entered allmulticast mode
[  431.351217][T20492] bridge_slave_1: entered promiscuous mode
[  431.374595][T20535] FAULT_INJECTION: forcing a failure.
[  431.374595][T20535] name failslab, interval 1, probability 0, space 0, times 0
[  431.387312][T20535] CPU: 0 UID: 0 PID: 20535 Comm: syz.2.5780 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  431.387346][T20535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  431.387417][T20535] Call Trace:
[  431.387423][T20535]  <TASK>
[  431.387432][T20535]  __dump_stack+0x1d/0x30
[  431.387539][T20535]  dump_stack_lvl+0xe8/0x140
[  431.387567][T20535]  dump_stack+0x15/0x1b
[  431.387598][T20535]  should_fail_ex+0x265/0x280
[  431.387642][T20535]  ? sctp_sched_prio_set+0x2cd/0x5e0
[  431.387702][T20535]  should_failslab+0x8c/0xb0
[  431.387827][T20535]  __kmalloc_cache_noprof+0x4c/0x320
[  431.387859][T20535]  sctp_sched_prio_set+0x2cd/0x5e0
[  431.387921][T20535]  sctp_sched_set_value+0xc2/0x110
[  431.387963][T20535]  sctp_setsockopt_scheduler_value+0x2bd/0x350
[  431.388001][T20535]  sctp_setsockopt+0x74d/0xe30
[  431.388073][T20535]  sock_common_setsockopt+0x66/0x80
[  431.388112][T20535]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  431.388152][T20535]  __sys_setsockopt+0x181/0x200
[  431.388189][T20535]  __x64_sys_setsockopt+0x64/0x80
[  431.388243][T20535]  x64_sys_call+0x2bd5/0x2fb0
[  431.388273][T20535]  do_syscall_64+0xd0/0x1a0
[  431.388341][T20535]  ? clear_bhb_loop+0x40/0x90
[  431.388444][T20535]  ? clear_bhb_loop+0x40/0x90
[  431.388467][T20535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.388493][T20535] RIP: 0033:0x7f82b84be969
[  431.388512][T20535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.388588][T20535] RSP: 002b:00007f82b6b27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  431.388678][T20535] RAX: ffffffffffffffda RBX: 00007f82b86e5fa0 RCX: 00007f82b84be969
[  431.388695][T20535] RDX: 000000000000007c RSI: 0000000000000084 RDI: 0000000000000003
[  431.388712][T20535] RBP: 00007f82b6b27090 R08: 0000000000000008 R09: 0000000000000000
[  431.388729][T20535] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  431.388826][T20535] R13: 0000000000000000 R14: 00007f82b86e5fa0 R15: 00007ffe59476348
[  431.388852][T20535]  </TASK>
[  431.391279][T20492] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  431.607908][T20492] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  431.640076][T20492] team0: Port device team_slave_0 added
[  431.650800][T20492] team0: Port device team_slave_1 added
[  431.695157][T20492] batman_adv: batadv0: Adding interface: batadv_slave_0
[  431.702342][T20492] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  431.728584][T20492] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  431.752324][T20492] batman_adv: batadv0: Adding interface: batadv_slave_1
[  431.759345][T20492] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  431.785566][T20492] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  431.842261][T20550] sctp: [Deprecated]: syz.1.5788 (pid 20550) Use of struct sctp_assoc_value in delayed_ack socket option.
[  431.842261][T20550] Use struct sctp_sack_info instead
[  431.878546][T20492] hsr_slave_0: entered promiscuous mode
[  431.906166][T20492] hsr_slave_1: entered promiscuous mode
[  431.912862][T20556] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5791'.
[  431.954539][T20492] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  431.963285][T20492] Cannot create hsr debugfs directory
[  432.032405][T20569] loop1: detected capacity change from 0 to 1024
[  432.072356][T20562] loop5: detected capacity change from 0 to 8192
[  432.077416][T20569] EXT4-fs: Ignoring removed orlov option
[  432.079066][T20569] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  432.090719][T20569] EXT4-fs mount: 6 callbacks suppressed
[  432.090816][T20569] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.151965][T20569] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.5796: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0
[  432.179897][T20492] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.209169][T20339] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.253684][T20492] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.275951][T20576] infiniband syz2: set active
[  432.275968][T20576] infiniband syz2: added veth0_to_bond
[  432.315560][T20576] RDS/IB: syz2: added
[  432.319863][T20576] smc: adding ib device syz2 with port count 1
[  432.329063][T20492] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.340425][T20576] smc:    ib device syz2 port 1 has pnetid SYZ2 (user defined)
[  432.385162][T20492] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.536414][   T37] bond0 (unregistering): Released all slaves
[  432.546023][   T37] bond1 (unregistering): Released all slaves
[  432.555070][   T37] bond2 (unregistering): Released all slaves
[  432.564294][   T37] bond3 (unregistering): Released all slaves
[  432.606304][T20492] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  432.624467][   T37] tipc: Left network mode
[  432.624538][T20492] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  432.642003][T20492] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  432.642179][T20595] futex_wake_op: syz.1.5804 tries to shift op by -1; fix this program
[  432.668409][T20492] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  432.712505][T20492] 8021q: adding VLAN 0 to HW filter on device bond0
[  432.725768][T20492] 8021q: adding VLAN 0 to HW filter on device team0
[  432.740060][ T5465] bridge0: port 1(bridge_slave_0) entered blocking state
[  432.747215][ T5465] bridge0: port 1(bridge_slave_0) entered forwarding state
[  432.767806][ T3837] bridge0: port 2(bridge_slave_1) entered blocking state
[  432.775076][ T3837] bridge0: port 2(bridge_slave_1) entered forwarding state
[  432.922229][T20492] 8021q: adding VLAN 0 to HW filter on device batadv0
[  433.176459][   T37] hsr_slave_0: left promiscuous mode
[  433.183005][   T37] hsr_slave_1: left promiscuous mode
[  433.201482][   T37] veth1_macvtap: left promiscuous mode
[  433.211929][   T37] veth0_macvtap: left promiscuous mode
[  433.217592][   T37] veth1_vlan: left promiscuous mode
[  433.231777][   T37] veth0_vlan: left promiscuous mode
[  433.462887][T20492] veth0_vlan: entered promiscuous mode
[  433.498142][T20492] veth1_vlan: entered promiscuous mode
[  433.517382][T20492] veth0_macvtap: entered promiscuous mode
[  433.536593][T20658] bio_check_eod: 3 callbacks suppressed
[  433.536611][T20658] syz.5.5825: attempt to access beyond end of device
[  433.536611][T20658] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  433.556275][T20492] veth1_macvtap: entered promiscuous mode
[  433.567897][T20492] batman_adv: batadv0: Interface activated: batadv_slave_0
[  433.586957][T20492] batman_adv: batadv0: Interface activated: batadv_slave_1
[  433.616393][T20492] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  433.625530][T20492] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  433.634330][T20492] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  433.643207][T20492] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  433.759200][T20670] loop8: detected capacity change from 0 to 2048
[  433.780371][T20670] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.954279][T20687] __nla_validate_parse: 16 callbacks suppressed
[  433.954297][T20687] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5833'.
[  433.998159][T17919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.007322][   T29] kauditd_printk_skb: 332 callbacks suppressed
[  434.007398][   T29] audit: type=1326 audit(1748005784.384:9788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.037386][   T29] audit: type=1326 audit(1748005784.384:9789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.060916][   T29] audit: type=1326 audit(1748005784.384:9790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.084840][   T29] audit: type=1326 audit(1748005784.384:9791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.108490][   T29] audit: type=1326 audit(1748005784.384:9792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.132145][   T29] audit: type=1326 audit(1748005784.384:9793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.155943][   T29] audit: type=1326 audit(1748005784.384:9794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.179573][   T29] audit: type=1326 audit(1748005784.384:9795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.203146][   T29] audit: type=1326 audit(1748005784.384:9796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.226885][   T29] audit: type=1326 audit(1748005784.384:9797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20690 comm="syz.0.5836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  434.440672][T20719] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5847'.
[  434.542076][T20736] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5856'.
[  434.577991][T20739] loop2: detected capacity change from 0 to 1024
[  434.586498][T20739] EXT4-fs: Ignoring removed orlov option
[  434.596607][   T10] IPVS: starting estimator thread 0...
[  434.609397][T20741] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5853'.
[  434.613384][T20739] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  434.631578][T20741] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5853'.
[  434.647663][T20739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.669104][T20741] team0 (unregistering): Port device team_slave_0 removed
[  434.673252][T20739] EXT4-fs error (device loop2): ext4_find_dest_de:2054: inode #12: block 7: comm syz.2.5857: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  434.699357][T20741] team0 (unregistering): Port device team_slave_1 removed
[  434.706782][T20743] IPVS: using max 2160 ests per chain, 108000 per kthread
[  434.731183][T20739] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.5857: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  434.766270][T20750] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5860'.
[  434.781480][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.836092][T20753] loop2: detected capacity change from 0 to 2048
[  434.860758][T20753] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  434.949470][T20767] netlink: 96 bytes leftover after parsing attributes in process `syz.8.5867'.
[  435.016226][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.114288][T20780] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5873'.
[  435.192329][T20786] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5876'.
[  435.230501][T20791] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5878'.
[  435.301702][T20797] loop2: detected capacity change from 0 to 2048
[  435.326684][T20797] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  435.437224][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.619948][T20823] loop2: detected capacity change from 0 to 1024
[  435.626891][T20823] EXT4-fs: Ignoring removed orlov option
[  435.633067][T20823] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  435.651148][T20823] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.666504][T20823] EXT4-fs error (device loop2): ext4_find_dest_de:2054: inode #12: block 7: comm syz.2.5893: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  435.688366][T20823] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.5893: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  435.726620][T13192] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.073981][T20856] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 0, id = 0
[  437.263622][T20919] chnl_net:caif_netlink_parms(): no params data found
[  437.463936][T20919] bridge0: port 1(bridge_slave_0) entered blocking state
[  437.471322][T20919] bridge0: port 1(bridge_slave_0) entered disabled state
[  437.486068][T20953] loop5: detected capacity change from 0 to 1024
[  437.498114][T20953] EXT4-fs: Ignoring removed orlov option
[  437.504522][T20953] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  437.504930][T20919] bridge_slave_0: entered allmulticast mode
[  437.521126][T20919] bridge_slave_0: entered promiscuous mode
[  437.529703][T20953] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  437.537830][T20919] bridge0: port 2(bridge_slave_1) entered blocking state
[  437.546494][T20953] EXT4-fs error (device loop5): ext4_find_dest_de:2054: inode #12: block 7: comm syz.5.5943: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  437.549415][T20919] bridge0: port 2(bridge_slave_1) entered disabled state
[  437.573648][T20953] EXT4-fs error (device loop5): ext4_check_all_de:659: inode #12: block 7: comm syz.5.5943: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  437.576406][T20919] bridge_slave_1: entered allmulticast mode
[  437.603726][T20919] bridge_slave_1: entered promiscuous mode
[  437.615964][T19922] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.663934][T20963] loop1: detected capacity change from 0 to 1024
[  437.671176][T20963] EXT4-fs: Ignoring removed orlov option
[  437.681549][T20963] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  437.689274][T20919] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  437.725082][T20919] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  437.735905][T20963] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  437.760108][T20919] team0: Port device team_slave_0 added
[  437.767217][T20919] team0: Port device team_slave_1 added
[  437.780067][T20963] EXT4-fs error (device loop1): ext4_find_dest_de:2054: inode #12: block 7: comm syz.1.5947: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  437.815577][T20963] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.5947: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  437.836686][T20919] batman_adv: batadv0: Adding interface: batadv_slave_0
[  437.843894][T20919] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  437.869986][T20919] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  437.883216][T20919] batman_adv: batadv0: Adding interface: batadv_slave_1
[  437.890355][T20919] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  437.916009][T20339] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.916392][T20919] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  438.026713][T20919] hsr_slave_0: entered promiscuous mode
[  438.035033][T20919] hsr_slave_1: entered promiscuous mode
[  438.123045][T20919] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.167714][T20919] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.214581][T20919] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.237743][T20996] team0 (unregistering): Port device team_slave_0 removed
[  438.249534][T20996] team0 (unregistering): Port device team_slave_1 removed
[  438.282177][T20919] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  438.368946][T20919] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  438.381633][T20919] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  438.395189][T20919] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  438.406602][T20919] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  438.504376][T20919] 8021q: adding VLAN 0 to HW filter on device bond0
[  438.522174][T20919] 8021q: adding VLAN 0 to HW filter on device team0
[  438.532982][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[  438.540208][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[  438.572993][T20919] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  438.583555][T20919] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  438.611971][ T3444] bridge0: port 2(bridge_slave_1) entered blocking state
[  438.619108][ T3444] bridge0: port 2(bridge_slave_1) entered forwarding state
[  438.619273][T21018] loop0: detected capacity change from 0 to 2048
[  438.640250][T21018] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  438.757908][T21032] loop1: detected capacity change from 0 to 1024
[  438.763925][T20919] 8021q: adding VLAN 0 to HW filter on device batadv0
[  438.765072][T21032] EXT4-fs: Ignoring removed orlov option
[  438.781741][T21032] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  438.802869][T21032] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  438.821553][T21032] EXT4-fs error (device loop1): ext4_find_dest_de:2054: inode #12: block 7: comm syz.1.5974: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  438.843748][T20492] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.859402][T21032] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.5974: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  438.866057][T21039] loop8: detected capacity change from 0 to 2048
[  438.921008][T21039] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  438.935268][T20339] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.945704][T20919] veth0_vlan: entered promiscuous mode
[  438.955042][T21049] sctp: [Deprecated]: syz.0.5977 (pid 21049) Use of struct sctp_assoc_value in delayed_ack socket option.
[  438.955042][T21049] Use struct sctp_sack_info instead
[  438.956006][T20919] veth1_vlan: entered promiscuous mode
[  438.986866][T20919] veth0_macvtap: entered promiscuous mode
[  438.997631][T20919] veth1_macvtap: entered promiscuous mode
[  439.010088][T20919] batman_adv: batadv0: Interface activated: batadv_slave_0
[  439.019357][T20919] batman_adv: batadv0: Interface activated: batadv_slave_1
[  439.027991][T20919] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  439.036863][T20919] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  439.045699][T20919] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  439.054563][T20919] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  439.143874][T21060] __nla_validate_parse: 18 callbacks suppressed
[  439.143896][T21060] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5981'.
[  439.234155][T17919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.244936][   T29] kauditd_printk_skb: 189 callbacks suppressed
[  439.244955][   T29] audit: type=1326 audit(1748005789.896:9987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.274980][   T29] audit: type=1326 audit(1748005789.896:9988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.299066][   T29] audit: type=1326 audit(1748005789.896:9989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.322761][   T29] audit: type=1326 audit(1748005789.896:9990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.323394][   T29] audit: type=1326 audit(1748005789.896:9991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.323440][   T29] audit: type=1326 audit(1748005789.896:9992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.323487][   T29] audit: type=1326 audit(1748005789.959:9993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.323524][   T29] audit: type=1326 audit(1748005789.959:9994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.370684][T21074] sctp: [Deprecated]: syz.2.5988 (pid 21074) Use of struct sctp_assoc_value in delayed_ack socket option.
[  439.370684][T21074] Use struct sctp_sack_info instead
[  439.400562][   T29] audit: type=1326 audit(1748005790.053:9995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.522231][   T29] audit: type=1326 audit(1748005790.169:9996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21069 comm="syz.0.5986" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe23d1ee969 code=0x7ffc0000
[  439.551211][T21080] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  439.557792][T21080] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  439.565493][T21080] vhci_hcd vhci_hcd.0: Device attached
[  439.631181][T21085] vhci_hcd: connection closed
[  439.631372][  T139] vhci_hcd: stop threads
[  439.640728][  T139] vhci_hcd: release socket
[  439.645164][  T139] vhci_hcd: disconnect device
[  439.752694][T21103] loop8: detected capacity change from 0 to 1024
[  439.760206][T21103] EXT4-fs: Ignoring removed orlov option
[  439.766710][T21103] EXT4-fs (loop8): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  439.803763][T21103] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  439.826668][T21103] EXT4-fs error (device loop8): ext4_find_dest_de:2054: inode #12: block 7: comm syz.8.5998: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  439.849214][T21108] sctp: [Deprecated]: syz.2.6000 (pid 21108) Use of struct sctp_assoc_value in delayed_ack socket option.
[  439.849214][T21108] Use struct sctp_sack_info instead
[  439.874753][T21103] EXT4-fs error (device loop8): ext4_check_all_de:659: inode #12: block 7: comm syz.8.5998: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  439.920353][T21112] loop2: detected capacity change from 0 to 1024
[  439.937173][T21112] EXT4-fs: Ignoring removed orlov option
[  439.952730][T21112] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  439.964321][T21110] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5999'.
[  439.974883][T21110] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5999'.
[  439.986203][T17919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.998439][T21112] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.016210][T21112] EXT4-fs error (device loop2): ext4_find_dest_de:2054: inode #12: block 7: comm syz.2.6001: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  440.050994][T21112] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.6001: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  440.107669][T20919] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.239909][T21139] sctp: [Deprecated]: syz.8.6011 (pid 21139) Use of struct sctp_assoc_value in delayed_ack socket option.
[  440.239909][T21139] Use struct sctp_sack_info instead
[  440.468083][T21166] loop0: detected capacity change from 0 to 256
[  440.495169][T21166] FAT-fs (loop0): bogus number of FAT sectors
[  440.501370][T21166] FAT-fs (loop0): Can't find a valid FAT filesystem
[  440.527014][T21172] sctp: [Deprecated]: syz.1.6024 (pid 21172) Use of struct sctp_assoc_value in delayed_ack socket option.
[  440.527014][T21172] Use struct sctp_sack_info instead
[  440.566402][T21174] loop2: detected capacity change from 0 to 1024
[  440.573287][T21174] EXT4-fs: Ignoring removed orlov option
[  440.579416][T21174] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  440.608316][T21174] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.652507][T21174] EXT4-fs error (device loop2): ext4_find_dest_de:2054: inode #12: block 7: comm syz.2.6025: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  440.712028][T21174] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.6025: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0
[  440.778630][T20919] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.814870][T21189] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=21189 comm=syz.2.6030
[  440.849355][T21194] random: crng reseeded on system resumption
[  440.946565][T21202] loop0: detected capacity change from 0 to 256
[  440.966005][T21202] FAT-fs (loop0): bogus number of FAT sectors
[  440.972132][T21202] FAT-fs (loop0): Can't find a valid FAT filesystem
[  440.979813][T21204] sctp: [Deprecated]: syz.2.6037 (pid 21204) Use of struct sctp_assoc_value in delayed_ack socket option.
[  440.979813][T21204] Use struct sctp_sack_info instead
[  441.247492][T21226] loop1: detected capacity change from 0 to 256
[  441.263760][T21226] FAT-fs (loop1): bogus number of FAT sectors
[  441.269970][T21226] FAT-fs (loop1): Can't find a valid FAT filesystem
[  441.279799][T21230] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO
[  441.310357][T21233] sctp: [Deprecated]: syz.0.6052 (pid 21233) Use of struct sctp_assoc_value in delayed_ack socket option.
[  441.310357][T21233] Use struct sctp_sack_info instead
[  441.600802][T21257] netlink: 'syz.8.6063': attribute type 11 has an invalid length.
[  441.635108][T21257] futex_wake_op: syz.8.6063 tries to shift op by -1; fix this program
[  441.688816][T21262] netlink: 56 bytes leftover after parsing attributes in process `syz.0.6064'.
[  441.698187][T21262] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6064'.
[  441.846735][T21271] loop8: detected capacity change from 0 to 256
[  441.854049][T21271] FAT-fs (loop8): bogus number of FAT sectors
[  441.860420][T21271] FAT-fs (loop8): Can't find a valid FAT filesystem
[  442.320916][T21289] loop8: detected capacity change from 0 to 2048
[  442.347039][T21289] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.422911][T21304] ==================================================================
[  442.431082][T21304] BUG: KCSAN: data-race in mas_state_walk / mas_wr_store_entry
[  442.438665][T21304] 
[  442.441004][T21304] write to 0xffff88810942f660 of 8 bytes by task 21297 on cpu 0:
[  442.448768][T21304]  mas_wr_store_entry+0x15cc/0x2b60
[  442.454009][T21304]  mas_store_prealloc+0x74d/0x9e0
[  442.459069][T21304]  commit_merge+0x66e/0x6f0
[  442.463614][T21304]  vma_expand+0x1d0/0x370
[  442.468036][T21304]  vma_merge_new_range+0x296/0x310
[  442.473173][T21304]  mmap_region+0x7e6/0x1470
[  442.477723][T21304]  do_mmap+0x9de/0xc20
[  442.481912][T21304]  vm_mmap_pgoff+0x17a/0x2e0
[  442.486521][T21304]  ksys_mmap_pgoff+0xc2/0x310
[  442.491224][T21304]  x64_sys_call+0x1602/0x2fb0
[  442.496010][T21304]  do_syscall_64+0xd0/0x1a0
[  442.500530][T21304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.506442][T21304] 
[  442.508803][T21304] read to 0xffff88810942f660 of 8 bytes by task 21304 on cpu 1:
[  442.516474][T21304]  mas_state_walk+0x2f5/0x650
[  442.521175][T21304]  mas_walk+0x30/0x120
[  442.525251][T21304]  lock_vma_under_rcu+0xa2/0x2f0
[  442.530212][T21304]  do_user_addr_fault+0x233/0x1090
[  442.535342][T21304]  exc_page_fault+0x54/0xc0
[  442.539852][T21304]  asm_exc_page_fault+0x26/0x30
[  442.544712][T21304] 
[  442.547049][T21304] value changed: 0x00007f2827c14fff -> 0x00007f2827bf3fff
[  442.554158][T21304] 
[  442.557293][T21304] Reported by Kernel Concurrency Sanitizer on:
[  442.563446][T21304] CPU: 1 UID: 0 PID: 21304 Comm: syz.2.6080 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(voluntary) 
[  442.575969][T21304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  442.586143][T21304] ==================================================================
[  442.681584][T17919] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.