last executing test programs:

29.087197526s ago: executing program 0 (id=266):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, 0x0, 0x0)
r1 = syz_open_dev$loop(0x0, 0x7, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, 0x0, 0x0)
connect$inet(r2, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x4040804)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev(r3, 0x0, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000001280)={r1, 0x200, {0x2a12, 0x80010000, 0x0, 0x3, 0x0, 0x0, 0x5, 0x3, 0x14, "fee8a2ab78fc179fd1f8a0e91ddaeca7ca64c6a4b4e00d9683dda1000000001f00deff1200100000000000000000000000000800", "2809a9000000038948224ad54afac11d875375bdb2420000b420a1a93c7540f4767f9e01177d3dd40600000061ac000000800800", "90be8b1c55f964000000000000000000000000000000000000000000000000d4", [0x20000001, 0x9]}})
sendmsg$nl_xfrm(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000700)=ANY=[@ANYBLOB="98010000160039030000000000000000e000000100000000000000000000000000000000000000000000ffff00000000000000f8ffffffffffffff0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac14143b0000000000000000000000000000000032000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400"], 0x198}}, 0x0)

28.773744576s ago: executing program 0 (id=270):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00', 0x7c2})
r1 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r1, &(0x7f00000002c0)={0x2, 0x4e20, @multicast2}, 0x10)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x448}}, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f4191db62b", 0xc}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b4015e3b0384d86a1ceb4e530554ebc8154bf392bcf9ce0b09f879bd7aaf9d086e3", 0x2c}], 0x2}}, {{0x0, 0x0, &(0x7f0000000100), 0x2}}], 0x40000000000003a, 0x0)
sendmmsg$inet(r1, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000040)={0x0, 0x2aaaad18, [@multicast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}, @random="5e1c8cd845e3", @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}]})
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r2, 0x84, 0x84, &(0x7f0000000000)=""/4102, &(0x7f0000001040)=0x1006)

28.400866244s ago: executing program 0 (id=275):
socket$nl_route(0x10, 0x3, 0x0)
r0 = epoll_create1(0x80000)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, 0xffffffffffffffff, &(0x7f00000001c0)={0x80000002})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000400)={0x0, 0x79, "b29d7d5fdb8ad5008ef5f7552ddb8384c21d3be5688ffbb49c969486f0410faea88047fb4b79124110c56d6e076d518270f3dfc8598d98825fdb382d56dd24b3183323033d8765327a3964de9058775b56e5a0c3c96dbfd2621312e11a7c7df899e65c1a31e9b1d9de7db66125f4637379fe85339817e63642"}, &(0x7f0000000080)=0x81)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000000f14b909"], 0x20}, 0x1, 0x0, 0x0, 0x24004000}, 0x41844)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="200000002a00090027bd700000000000040000000c0018000aac0f000dac0f00"], 0x20}, 0x1, 0x0, 0x0, 0x42804}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, 0x0, &(0x7f0000000040))
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000840)={0x24e, 0x8, 0x1, 0x5, 0x1, 0x4, 0xc, 0x7}, 0x20)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x30040043}, 0x240008c4)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0xf)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRESOCT=r6, @ANYRES8, @ANYRES16=0x0], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2$9p(0x0, 0x800)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x183c00, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r8, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r7, 0x400448e0, &(0x7f0000000040))

26.254342871s ago: executing program 0 (id=304):
r0 = socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$iso9660(&(0x7f0000000380), &(0x7f0000000080)='./file0\x00', 0x3018014, &(0x7f0000000000)=ANY=[], 0x3, 0x7c0, &(0x7f0000000c80)="$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")
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd25, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xe}, {}, {0x8, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x24000010}, 0x24048010)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$poke(0x4212, r1, &(0x7f0000000140), 0x200000000001)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r2, &(0x7f00000004c0)=""/79, 0x4f)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x1, 0x441e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x8, 0x0, 0x5, 0x100, 0x3, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0xb, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
modify_ldt$read(0x0, 0x0, 0x0)

25.991277475s ago: executing program 0 (id=308):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback, 0xfffffffc}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000001c0)=@ccm_128={{0x304}, "b85922d0edb7d594", "e5f5ad28a34bc428e5a9ac5b8481b87e", "080ae815", "36cfafeb69dcec6d"}, 0x28)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
ioctl$int_in(r0, 0x5421, &(0x7f0000000140)=0x1)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)

25.599178746s ago: executing program 0 (id=313):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001980), 0x200)
fcntl$setstatus(r0, 0x4, 0x2800)
r1 = syz_io_uring_setup(0xb9f, &(0x7f0000000640)={0x0, 0xec21, 0x4, 0x400001, 0x1c9}, &(0x7f0000000300)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x2007, @fd=r0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=""/216, 0xd8}], 0x1, 0x12})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)

25.56636668s ago: executing program 32 (id=313):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001980), 0x200)
fcntl$setstatus(r0, 0x4, 0x2800)
r1 = syz_io_uring_setup(0xb9f, &(0x7f0000000640)={0x0, 0xec21, 0x4, 0x400001, 0x1c9}, &(0x7f0000000300)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x2007, @fd=r0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=""/216, 0xd8}], 0x1, 0x12})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)

5.261106201s ago: executing program 3 (id=589):
socket$nl_route(0x10, 0x3, 0x0)
r0 = epoll_create1(0x80000)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, 0xffffffffffffffff, &(0x7f00000001c0)={0x80000002})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000400)={0x0, 0x79, "b29d7d5fdb8ad5008ef5f7552ddb8384c21d3be5688ffbb49c969486f0410faea88047fb4b79124110c56d6e076d518270f3dfc8598d98825fdb382d56dd24b3183323033d8765327a3964de9058775b56e5a0c3c96dbfd2621312e11a7c7df899e65c1a31e9b1d9de7db66125f4637379fe85339817e63642"}, &(0x7f0000000080)=0x81)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000000f14b909"], 0x20}, 0x1, 0x0, 0x0, 0x24004000}, 0x41844)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="200000002a00090027bd700000000000040000000c0018000aac0f000dac0f00"], 0x20}, 0x1, 0x0, 0x0, 0x42804}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, 0x0, &(0x7f0000000040))
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000840)={0x24e, 0x8, 0x1, 0x5, 0x1, 0x4, 0xc, 0x7}, 0x20)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x30040043}, 0x240008c4)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0xf)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRESOCT=r6, @ANYRES8, @ANYRES16=0x0], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2$9p(0x0, 0x800)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x183c00, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r8, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r7, 0x400448e0, &(0x7f0000000040))

3.186499499s ago: executing program 2 (id=615):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000400000000000000080003851000000600000018000000", @ANYRES32, @ANYBLOB="0000000000000000660800000000000018000000000000ffffffffffffffd0009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50afdff00000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0xa}, 0x94)

3.162324592s ago: executing program 3 (id=617):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r0)
sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, r1, 0x4, 0x70bd2d, 0x25dfdbfe, {{}, {}, {0x8, 0x2, 0x8}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0xef9e43e34c4d45b6)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000004640)={0x0}}, 0x0)
r2 = syz_io_uring_setup(0x10f, &(0x7f00000000c0)={0x0, 0x78bf, 0x0, 0x40204, 0x100039}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000f80)=<r4=>0x0)
syz_clone3(&(0x7f0000000440)={0x200040000, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000040)=0xefefffd7, 0x0, 0x4)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='>'], 0x38}}, 0x80)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_UNLINKAT={0x24, 0x10, 0x0, r5, 0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, {0x0, r7}})
setsockopt$netlink_NETLINK_TX_RING(r6, 0x10e, 0xc, &(0x7f0000000000)={0x5, 0x0, 0x9}, 0x10)
write(r6, &(0x7f00000000c0)="240000001e005f0214fffffffffffff8079b6c07995e059cf0000000050008000d000000", 0x24)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x8, 0x1, 0xffffffffffffffff, 0x0})
io_uring_enter(r2, 0x3516, 0xc2de, 0x8, 0x0, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x1)

3.083762652s ago: executing program 2 (id=618):
r0 = getpid()
r1 = gettid()
rt_tgsigqueueinfo(r0, r1, 0xb, &(0x7f00000004c0)={0x0, 0x0, 0x4})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000003c0)={'batadv_slave_0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="280000001400090a0000000000000000021f4800", @ANYRES32=r4, @ANYBLOB="08000200e4d4c21e080008004c06"], 0x28}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_config_ext={0x40000000000, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
socket$netlink(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480))
socket$inet(0x2, 0x4000000000000001, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xc, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r6, 0x3e8, 0xf, 0x0, &(0x7f0000000000)="c1df07000000d30a298ee68886dd87", 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={0xffffffffffffffff, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x2, 0x6, &(0x7f0000000040)=[0x0, 0x0], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x9d, &(0x7f0000000100)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000180), &(0x7f00000001c0), 0x8, 0xd2, 0x8, 0x8, &(0x7f0000000280)}}, 0x10)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=@getqdisc={0x48, 0x26, 0x2, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0xb, 0x8}, {0x6, 0x5}, {0x10035}}, [{0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}, {0x4}]}, 0x48}, 0x1, 0xf0ffffffffffff}, 0x0)

2.900900416s ago: executing program 3 (id=620):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001980), 0x200)
fcntl$setstatus(r0, 0x4, 0x2800)
r1 = syz_io_uring_setup(0xb9f, &(0x7f0000000640)={0x0, 0xec21, 0x100, 0x400001, 0x1c9}, &(0x7f0000000300)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x2007, @fd=r0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=""/216, 0xd8}], 0x1, 0x12})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0) (fail_nth: 41)

2.785317781s ago: executing program 5 (id=621):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=ANY=[@ANYBLOB="a0010000100001000000000000000000fe880000000000000000000000000101ac1414bb00000000000000000000000000000000120000000a00000064000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000ac14143500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffff800000000000000000000000000000000000000000000000fdffffffffffffff00000000000000000000000800000000000200000000000000000000000000000200000000000000000000000a000400cd000000000000004800020063626328616573290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c0017000000000000000000fdffffff28bd700028bd7000000000004c001400636d6163286165732900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800"], 0x1a0}}, 0x0)

2.696395672s ago: executing program 5 (id=622):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000280)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x44d, &(0x7f0000000900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0/file0\x00', 0x8042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r3 = openat$urandom(0xffffffffffffff9c, &(0x7f00000001c0), 0x101000, 0x0)
sendfile(r2, r3, 0x0, 0x10001)
ioctl$EXT4_IOC_SETFSUUID(r0, 0x4008662c, &(0x7f0000000740)={0x30, 0x0, "9fe5701c8909d2a3f7297b256529d283"})
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(0xffffffffffffffff, 0x4002f516, &(0x7f0000000000)={0x2, 0x16})
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdffffde18000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x400, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1d, 0x1, @perf_bp={0x0}, 0x100410, 0x200, 0x6, 0x1, 0x9, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r6 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x10000})
ioctl$sock_x25_SIOCADDRT(r6, 0x890b, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r4)

2.612654743s ago: executing program 3 (id=623):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x5}, 0x94)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f000007e000/0x1000)=nil)
mremap(&(0x7f000007e000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (fail_nth: 13)

2.293749904s ago: executing program 2 (id=626):
r0 = socket(0x2, 0x80805, 0x0) (async)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x35, 0x1, 0x8, 0x7, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x4, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000fcfff1ff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r1 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r1, 0x1, 0x43, &(0x7f0000000000), 0xff7b) (async)
sendmsg$inet(r1, &(0x7f0000000800)={&(0x7f0000000040)={0x2, 0x4e22, @remote}, 0x10, 0x0}, 0x20009090)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_sys\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x25, &(0x7f0000000000)={0x1}) (async)
fcntl$lock(r2, 0x25, &(0x7f0000000240)={0x0, 0x0, 0x83, 0x7}) (async)
fcntl$lock(r2, 0x25, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x80000000}) (async)
fcntl$setflags(r0, 0x2, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0xd, 0x3, &(0x7f0000000000)=ANY=[@ANYRESHEX=r0], &(0x7f0000000040)='GPL\x00', 0x5, 0xfec, &(0x7f0000001e00)=""/4076}, 0x94)

2.1756123s ago: executing program 3 (id=628):
socket$nl_route(0x10, 0x3, 0x0)
r0 = epoll_create1(0x80000)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, 0xffffffffffffffff, &(0x7f00000001c0)={0x80000002})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000400)={0x0, 0x79, "b29d7d5fdb8ad5008ef5f7552ddb8384c21d3be5688ffbb49c969486f0410faea88047fb4b79124110c56d6e076d518270f3dfc8598d98825fdb382d56dd24b3183323033d8765327a3964de9058775b56e5a0c3c96dbfd2621312e11a7c7df899e65c1a31e9b1d9de7db66125f4637379fe85339817e63642"}, &(0x7f0000000080)=0x81)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000000f14b909"], 0x20}, 0x1, 0x0, 0x0, 0x24004000}, 0x41844)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="200000002a00090027bd700000000000040000000c0018000aac0f000dac0f00"], 0x20}, 0x1, 0x0, 0x0, 0x42804}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, 0x0, &(0x7f0000000040))
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f0000000840)={0x24e, 0x8, 0x1, 0x5, 0x1, 0x4, 0xc, 0x7}, 0x20)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x30040043}, 0x240008c4)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0xf)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRESOCT=r6, @ANYRES8, @ANYRES16=0x0], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2$9p(0x0, 0x800)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x183c00, 0x0)
ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r8, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r7, 0x400448e0, &(0x7f0000000040))

2.16859908s ago: executing program 2 (id=629):
r0 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000), 0x4)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x7, 0x0, 0xfffffffc, 0x10})
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_GETMODE(r1, 0x5601, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xe, 0x4, 0x0, 0x0, 0x4000004, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2e, r0}, 0x94)
r2 = socket(0x2, 0x80805, 0x0)
setsockopt$inet_sctp_SCTP_RESET_ASSOC(r2, 0x84, 0x78, &(0x7f0000000400), 0x4)
r3 = io_uring_setup(0x7d3, &(0x7f0000000580)={0x0, 0xddf7, 0x2, 0xfffffffe, 0x181})
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
listen(r4, 0x5)
readv(r4, &(0x7f0000000000)=[{&(0x7f0000001680)=""/4088, 0xff8}], 0x1)
close_range(r3, r3, 0x0)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f000007e000/0x1000)=nil)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
ptrace$pokeuser(0x6, r5, 0x378, 0x3)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f00000002c0)=0x20)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xa9525000)
unlink(&(0x7f0000000140)='./cgroup\x00')
mremap(&(0x7f000007e000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
syz_mount_image$vfat(&(0x7f0000001040), &(0x7f0000000180)='./file1\x00', 0x1218088, &(0x7f00000005c0)=ANY=[], 0x4a, 0x2dd, &(0x7f0000001440)="$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")
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000040)={0x0, 0x0, "d607f8f9951e76c13f64323723e7eecdf40c363423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f001d34c09f39c3539e4f8d3ee0878ae95bc7f52363c468b257ff3e24852548deb01efd54f11ed2c41d078b9cf1fc8f72566153c97e4af37017ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3b90400000000000000c279f03558083906666827d61dcc3a633bffff250b5a293e3877adc1660edbc9a0307a25720a170e7f5670e419dc44febf7ddc73fd4a5a0b6c28665f7f46c7084e17c809268103a2584ab40a68e528329d97afc3612e325c1eb4a3ab2e156a97444800", "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"})
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
setsockopt$EBT_SO_SET_COUNTERS(r6, 0x0, 0x81, &(0x7f00000010c0)={'broute\x00', 0x0, 0x0, 0x0, [0x2, 0xf26, 0x5, 0x1ff, 0x96, 0xc33], 0x5, &(0x7f0000001080)=[{}, {}, {}, {}], 0x0, [{}, {}, {}, {}, {}]}, 0xc8)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

2.047156036s ago: executing program 5 (id=630):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000000080), 0x2)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000048000)=0x1, 0x0)
r0 = fsopen(&(0x7f0000000000)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x1, 0x2)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x422001, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
close(r5)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r5, 0x8943, &(0x7f0000000100)={'syzkaller0\x00'})
ioctl$SIOCSIFHWADDR(r4, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="001300"})
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r6, 0x0, 0x8008000000010, &(0x7f0000000080)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df0180000000005762a2afff59100ac45761547a681f009cee4a5acb3da400003cb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfe90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e026bc820000000000000000000000000bdbf247aa", 0xc0)
fchdir(r1)
r7 = socket(0x2a, 0x2, 0x0)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x8024}, 0x20000010)
getsockname$packet(r7, &(0x7f0000000200)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {0x4, 0x2}, {0x8, 0xffff}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x1}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@newtfilter={0x48, 0x2c, 0xd27, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r8, {0xfffa, 0x2}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_IPV6_DST={0x14, 0x10, @local}]}}]}, 0x48}}, 0x24004000)
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r9, &(0x7f00000002c0), 0x40000000000009f, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)

1.712005939s ago: executing program 2 (id=633):
gettid() (async)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f0000000000)="f65846a898fd94c509bff78a79bbf744d0fd4769e14c99e6bd22acd1b64cc0c6696a433573c990aca2a83d4f7178eaf30eeb277490969eff6cc40670e9c41b91d74190afbff31500c2aa75cecb630ad9a9ea2c81f0b665ce11a24a3d3c999803df5c20bf67df25b25686c32be21d1e7b2e38f15345d7cec767dcf1e46be11741540a75d68615e900a575ddb317f08fbf2f7e764fb0a385767fa8ab4808fdb8678ba7239ac783f3a82283d14e5599df8ea21dba76e20af9e9f8442c61817aa1b6373e638e73897c202ed43cbec079dfa04eee59618ec0461fff274d36e5fe73d577cb847e2522a7e7b934265493763b66bd", &(0x7f0000000100)="601612ebb0d293c62a756c7e67458cb99bcfddab6ef3e5ede097734b4b409bc5f24971e0d45e6a5c34284ab8e3d925886c"}}, &(0x7f0000bbdffc)) (async)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
r0 = mq_open(&(0x7f0000001600)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\aXg\xbb\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x8a=\x0f\n*\x8a\x99\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5\x00\x00\x00\x00\x00\x00\x00\x01\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbbV\x1a\x8a\x03#T\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8', 0x40, 0xb, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd70000000000021040000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x2008040}, 0x880) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), r3)
sendmsg$TIPC_NL_MEDIA_GET(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000440)={0x20, r4, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20040040}, 0x20000000) (async)
fcntl$setlease(r0, 0x400, 0x0)
mq_open(&(0x7f0000000780)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\t\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x2, 0x136, 0x0)

1.540290881s ago: executing program 2 (id=638):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, 0x0, 0x0)
r1 = syz_open_dev$loop(0x0, 0x7, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, 0x0, 0x0)
connect$inet(r2, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x4040804)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev(r3, 0x0, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000001280)={r1, 0x200, {0x2a12, 0x80010000, 0x0, 0x3, 0x0, 0x0, 0x5, 0x3, 0x14, "fee8a2ab78fc179fd1f8a0e91ddaeca7ca64c6a4b4e00d9683dda1000000001f00deff1200100000000000000000000000000800", "2809a9000000038948224ad54afac11d875375bdb2420000b420a1a93c7540f4767f9e01177d3dd40600000061ac000000800800", "90be8b1c55f964000000000000000000000000000000000000000000000000d4", [0x20000001, 0x9]}})
sendmsg$nl_xfrm(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000700)=ANY=[@ANYBLOB="98010000160039030000000000000000e000000100000000000000000000000000000000000000000000ffff00000000000000f8ffffffffffffff0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac14143b00000000000000000000000000000000320000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400"], 0x198}}, 0x0)

1.512377765s ago: executing program 33 (id=638):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, 0x0, 0x0)
r1 = syz_open_dev$loop(0x0, 0x7, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, 0x0, 0x0)
connect$inet(r2, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x4040804)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev(r3, 0x0, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000001280)={r1, 0x200, {0x2a12, 0x80010000, 0x0, 0x3, 0x0, 0x0, 0x5, 0x3, 0x14, "fee8a2ab78fc179fd1f8a0e91ddaeca7ca64c6a4b4e00d9683dda1000000001f00deff1200100000000000000000000000000800", "2809a9000000038948224ad54afac11d875375bdb2420000b420a1a93c7540f4767f9e01177d3dd40600000061ac000000800800", "90be8b1c55f964000000000000000000000000000000000000000000000000d4", [0x20000001, 0x9]}})
sendmsg$nl_xfrm(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000700)=ANY=[@ANYBLOB="98010000160039030000000000000000e000000100000000000000000000000000000000000000000000ffff00000000000000f8ffffffffffffff0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac14143b00000000000000000000000000000000320000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400"], 0x198}}, 0x0)

1.494924057s ago: executing program 4 (id=640):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000ffff26bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="15170000bcb7040008000a00", @ANYRES32=r1, @ANYBLOB="140012800c0001006d6163767461700004000280080005"], 0x44}, 0x1, 0x0, 0x0, 0x240448d5}, 0x8000002) (async)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000005c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYRESDEC, @ANYBLOB="80efc03a1d090f7814f6167ba6cd02256fc2386f34c62edbc29e2fd00a248dba0f0b2fb7d2721e4da66a5525a2bb69da9f9ca6bec9758c2017e705875234f5efe3203a64bd3e673bb9ac9c8fc39fb627c1b6cb971811029a5c4b83065220255072badd3b38e267469d", @ANYRESHEX=r1], 0x0, 0x307, &(0x7f0000000200)="$eJzs3UtrG1cUwPEzeliSXddalFJKCxcXSkvxYAu666Km2FAqaLGtQhwIjONxIjSWjEYYZEKsRSDbrLPwIssQCIHssgkhW2/yCZI4O2+8ixciE0bzsB4TRSLIj+T/W1hHc8+Zez1zZeNraebwjzubpY20iGhyIt7ISkzi/rOG/Pp879WPy8++8p4rtTi/MpdTKiYil288mH5am/j/8ddPUrKfvXJ4lHuz/8OKyLuV6xJTRVuVHUcZaq1SqbldqPWiXdKV+s8yDdtUxbJtVmt+u7FmmWrDqmxt1ZVRXp8c36qatq2Mcl2VzLqqVVStWlfGNaNYVrquq8lxgYhkwyjW06b1KyzcP3YcOXIcx0k1xHGciOxGECT9x9SnDRbnSdf575vbMznioxwZTsOxkxj4/OPz473+X98d7Pw7u6c0LJyS5Uur/8zn8wtLSqVFNm9vF7YL3qPX/nJCimKJKXtLv602xZ0jPtHcr4t/5xdmVUtWft7c9et3twveL4f5jVb9QVDUVi9B/ZxXrzrrkzJ+Um9KTqbkG4mszwX1EmurH5Nffmqr12VKXlyViliy7s7ktvqbc0r99W++q/9MKw8AAAAAAAAAgItIV6GT9Xst/FdvRtdTrXd8hO0Zd7Ob5yWE6+uzMiXN6PX52cj1/YR8nzjDbxwAAAAAgC+IXd8pGZZlVkcTxO9l+nSRFBE3ELk17Q6m7w6/9Uc8WO9jItLbFO/fRUeQ+d3r7+GSPzAZ5YEKgvQQI4wIgg9rlIzmo6ApI1HJsaEmwMxY5JFPVzUZ6fzpCGSQZEkPPbG1hF3fSQ08tXrKm8GW7yJzHO3j+3EMK+ltkfAM9q/6c6iXwweDdPeBmjnw9mv1+aHxNlziAwAAAHCBtP3hBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAzkj4+X/Nv9P/IBcPC67b39kk/i3iey/J1n2feK77DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAceh8AAP//8yCz0A==")
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r4, 0x2000002, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}, 0x50) (async)
r5 = socket$inet_udp(0x2, 0x2, 0x0) (async)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000540)={@ipv4={""/10, ""/2, @multicast1}, <r6=>0x0}, &(0x7f0000000580)=0x14)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000780)={'syztnl0\x00', &(0x7f00000006c0)={'gre0\x00', <r7=>r6, 0x7851, 0x7, 0x9, 0x2, {{0x19, 0x4, 0x2, 0x30, 0x64, 0x65, 0x0, 0xff, 0x2f, 0x0, @private=0xa010102, @loopback, {[@generic={0x94, 0xe, "77ac8d11f599af669201c3d8"}, @rr={0x7, 0x23, 0x4b, [@dev={0xac, 0x14, 0x14, 0x25}, @dev={0xac, 0x14, 0x14, 0xb}, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010102, @multicast1, @private=0xa010102, @multicast1]}, @end, @noop, @ssrr={0x89, 0x13, 0x14, [@initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010100, @local, @private=0xa010102]}, @noop, @rr={0x7, 0x7, 0x23, [@loopback]}]}}}}})
bind$xdp(0xffffffffffffffff, &(0x7f00000007c0)={0x2c, 0xf, r7, 0x2e}, 0x10) (async)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r8=>r2, {0x7}}, '\xe9\x1fq\x89Y\x1e\x923aK\x00'})
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r8, 0x89f0, &(0x7f0000000a00)={'ip6gre0\x00', &(0x7f0000000940)={'ip6_vti0\x00', <r9=>0x0, 0x4, 0x7, 0x0, 0x1, 0x42, @private1, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x8, 0x8, 0x7, 0x401}})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@ifindex=r9, 0xa, 0x0, 0x3d, &(0x7f0000000080), 0x0, 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000800)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000840)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)

1.355170385s ago: executing program 4 (id=641):
r0 = socket$inet6_udp(0xa, 0x2, 0x0) (async)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @loopback}, 0x80004, 0x0, 0xffffffff}}, 0x2e)
r2 = socket$pppl2tp(0x18, 0x1, 0x1) (async)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r3, {0x2, 0x0, @multicast2}, 0x3}}, 0x2e) (async)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r3, {0x2, 0xfffe, @empty}, 0x2}}, 0x2e) (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x8a, &(0x7f0000000300)={[{@jqfmt_vfsold}, {@data_err_ignore}, {@acl}, {@noload}, {@data_err_ignore}, {@usrjquota, 0x22}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@init_itable_val={'init_itable', 0x3d, 0x100}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}]}, 0x6, 0x473, &(0x7f0000001200)="$eJzs3MtvG8UfAPCv7Th9/+JfKY+WFkILouKRNOmDHrgUgcQBJCQ4FHEKSVqVug1qgkSrCloO5YgqcUcckfgLuFAuCDghcUICiSNCqlAvLZyM1t5NXcdO7MSxA/58JCcznlnNfHd37PGs1wEMrNHkTy5ie0T8EhEjtey9FUZr/+7cujz9163L07moVF7/M1etd/vW5emsarbdtlqmUlmm3WtvRUyVy7MX0vz4wrl3x+cvXnr2zLmp07OnZ89PHj9+5PC+4WOTR7sSZxLX7T0fzO3d/fKb11+dPnn97e+/TPq7PS2vj6NbRmt7t6knut1Yn+2oS+eG+tgROlKIiORwFavjfyQKsWWxbCRe+qivnQPWVaWSr2xqXXylAvyHJRN1YBBlb/TJ59/s0aOpx4Zw80QsrmPcSR+1kqHIp3WK6Wek9TAaESev/P1Z8oh1WocAAKh340REPNNs/pePB+rq/S+9hlKKiP9HxM6IuC8idkXE/RHVug9GxEMdtt94hWTp/KcysqrA2pTM/55Pr23dO//LZn9RKqS5HdX4i7lTZ8qzh9J9cjCKm5L8xDJtfPPiT5+0Kquf/yWPpP1sLpj244+hhgW6mamFqbXEXO/m1Yg9Q83izy3OeZP58e6I2LPKNs489cXeVmWlFeNfRhcm5ZXPI56sHf8r0RB/Jtfy+uTEc8cmj45vjvLsofHsrFjqhx+vvdaq/ZWP//q6eaMSWxvO/4bdWsptjpi/eOls9XrtfIcN/Bxx7dePW36mWe35P5x7o5oeTp97f2ph4cJExHDulaXPT97dNstn9ZPz/+CB5uN/Z7pNcvwfjojkJN4XEY9ExKNp3x+LiP0RcWCZXfDdC4+/03n8y6zKd1ES/0zT17/F87+UpO4e/84ThbPfftV5/Imt6fE/Us0dTLdp5/Wv3Q6udf8BAADAv0G++h34XH5sMZ3Pj43VvsO/K7bmy3PzC0+fmnvv/Eztu/KlKOazla6RuvXQiXQtL8tPNuQPp+vGnxa2VPNj03PlmX4HDwNuW4vxn/i9UPv/W197CKwr92vB4DL+YXAZ/zC4jH8YXMY/DK5m4//DPvQD6L0V3v+39KofQO+Z/8PgMv5hcK00/vf35l5koLda3hufX9Mt/xJ9Snw9vLbfamg/EfkNEvIGTRTaqHM1HYW1Z4rRtPJQ2z9mcU8ie1NfufKmpkV9fFECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoon8CAAD///T43is=")

1.303324602s ago: executing program 4 (id=642):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)={0xe000202b})
epoll_pwait(r2, &(0x7f00000000c0)=[{}], 0x1, 0xd92d, 0x0, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x23}, 0x8005d})
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_buf(r3, 0x6, 0xd, 0x0, 0x0)
getsockopt$inet6_mptcp_buf(r3, 0x11c, 0x3, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x88fe)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @sk_skb=0x26}, 0x94)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f000007e000/0x1000)=nil)
r4 = fsopen(&(0x7f0000000340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x0)
fchdir(r5)
r6 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r6, &(0x7f00000004c0)=""/55, 0x37)
getdents64(r6, 0xfffffffffffffffe, 0x29)
mremap(&(0x7f000007e000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

1.167040899s ago: executing program 1 (id=644):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x5}, 0x94)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f000007e000/0x1000)=nil)
mremap(&(0x7f000007e000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (fail_nth: 26)

958.925646ms ago: executing program 1 (id=645):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f00000000c0)=0x7, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x5}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005000)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
r2 = socket$inet6(0xa, 0x80002, 0x0)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000080)=@o_path={&(0x7f0000000040)='./file0\x00', r1, 0x4000, r2}, 0x18)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0xff00000000000000}, 0x2000400}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000003cc0), 0x40000000000023b, 0x4000000)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x3, 0x20132, 0xffffffffffffffff, 0xb299b000)
capset(0x0, &(0x7f0000000080))
mremap(&(0x7f0000006000/0x3000)=nil, 0x3000, 0xf000, 0x3, &(0x7f0000009000/0xf000)=nil)
mremap(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f0000ffa000/0x2000)=nil)
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
mlock2(&(0x7f0000009000/0x4000)=nil, 0x4000, 0x0)
syz_clone(0x111, 0x0, 0x0, 0x0, 0x0, 0x0)
write$P9_RREADDIR(r3, &(0x7f0000000640)={0xb, 0x29, 0x2, {0xf}}, 0xfffffc95)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f000007e000/0x1000)=nil)
mremap(&(0x7f000007e000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

901.642634ms ago: executing program 5 (id=646):
mbind(&(0x7f000077d000/0x2000)=nil, 0x2000, 0x4, 0x0, 0x0, 0x2)

799.060747ms ago: executing program 5 (id=647):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback, 0xfffffffc}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000001c0)=@ccm_128={{0x304}, "b85922d0edb7d594", "e5f5ad28a34bc428e5a9ac5b8481b87e", "080ae815", "36cfafeb69dcec6d"}, 0x28)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
ioctl$int_in(r0, 0x5421, &(0x7f0000000140)=0x1)
writev(r0, &(0x7f0000000080), 0x0)

797.432837ms ago: executing program 4 (id=648):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000400000000000000080003851000000600000018000000", @ANYRES32, @ANYBLOB="0000000000000000660800000000000018000000000000fffffffffffffff8009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50afdff00000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0xa}, 0x94)

797.123307ms ago: executing program 5 (id=649):
socket$nl_route(0x10, 0x3, 0x0)
r0 = epoll_create1(0x80000)
bpf$PROG_LOAD(0x5, &(0x7f0000000d80)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, 0xffffffffffffffff, &(0x7f00000001c0)={0x80000002})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000400)={0x0, 0x79, "b29d7d5fdb8ad5008ef5f7552ddb8384c21d3be5688ffbb49c969486f0410faea88047fb4b79124110c56d6e076d518270f3dfc8598d98825fdb382d56dd24b3183323033d8765327a3964de9058775b56e5a0c3c96dbfd2621312e11a7c7df899e65c1a31e9b1d9de7db66125f4637379fe85339817e63642"}, &(0x7f0000000080)=0x81)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000000f14b909"], 0x20}, 0x1, 0x0, 0x0, 0x24004000}, 0x41844)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a31000000001400078005001500070000000800124000000000050005000200000005000400000000000d000300686173683a6e6574"], 0x5c}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="200000002a00090027bd700000000000040000000c0018000aac0f000dac0f00"], 0x20}, 0x1, 0x0, 0x0, 0x42804}, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, &(0x7f0000000040))
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000840)={0x24e, 0x8, 0x1, 0x5, 0x1, 0x4, 0xc, 0x7}, 0x20)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x30040043}, 0x240008c4)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
pipe2$9p(0x0, 0x800)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x183c00, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r7, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r6, 0x400448e0, &(0x7f0000000040))

738.568785ms ago: executing program 4 (id=650):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=ANY=[@ANYBLOB="a0010000100001000000000000000000fe880000000000000000000000000101ac1414bb00000000000000000000000000000000120000000a00000064000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x1a0}}, 0x0)

642.449407ms ago: executing program 4 (id=651):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0x2, 0x7, 0x1, 0x8, 0x2, 0x0, 0x70bd2c, 0x25dfdbfd}, 0x10}}, 0x50)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'gretap0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=@newtfilter={0xac, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r3, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x80, 0x2, [@TCA_U32_LINK={0x8}, @TCA_U32_SEL={0x74, 0x5, {0x10, 0x9, 0x6, 0x10da, 0xa760, 0x0, 0x10, 0x100, [{0x1000, 0xe, 0xfffff000, 0x9f6}, {0x8000001, 0xfffffffb, 0x100, 0x3ff}, {0x9, 0x7, 0x3e, 0x800}, {0x9, 0x10, 0x5, 0x1}, {0x40, 0x80000001, 0xfffffffe, 0xffffffff}, {0x1, 0x5, 0x5127, 0x10001}]}}]}}]}, 0xac}}, 0x24040084)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000002c0)={'ip6gre0\x00', &(0x7f0000000240)={'syztnl1\x00', 0x0, 0x4, 0x1, 0x2, 0x0, 0x10, @mcast1, @empty, 0x700, 0x20, 0x8}})
exit(0xfea9)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r0)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r0, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000640)={0x74, r4, 0x32a, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x9d, 0x53}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}]}, 0x74}, 0x1, 0x0, 0x0, 0x20000000}, 0x8840)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x40006)
r6 = syz_io_uring_setup(0x5c4, &(0x7f0000000500)={0x0, 0x101a32, 0x0, 0x2, 0x16d}, &(0x7f00000002c0)=<r7=>0x0, &(0x7f0000000580)=<r8=>0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000180)=[{0x6, 0x80, 0x4, 0x7fff0000}]})
get_robust_list(0x0, &(0x7f0000000100)=0x0, &(0x7f0000000140))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40})
io_uring_enter(r6, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
sendmsg$NFT_BATCH(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f00)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "a8"}]}], {0x14}}, 0x78}}, 0x8000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_io_uring_complete(r7)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x3cb1bfe8e952c420}, 0x1, 0x0, 0x0, 0x2000c810}, 0x4084)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008000000000000000000000000000010"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r9], 0x4c}}, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r10, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r11 = eventfd2(0x7f, 0x1)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r6, 0x7, &(0x7f0000000600)=r11, 0x1)

583.307805ms ago: executing program 1 (id=652):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001980), 0x200)
fcntl$setstatus(r0, 0x4, 0x2800)
r1 = syz_io_uring_setup(0xb9f, &(0x7f0000000640)={0x0, 0xec21, 0x100, 0x400001, 0x1c9}, &(0x7f0000000300)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x2007, @fd=r0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)=""/216, 0xd8}], 0x1, 0x12})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0) (fail_nth: 43)

522.603283ms ago: executing program 1 (id=653):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, 0x0, 0x0)
r1 = syz_open_dev$loop(0x0, 0x7, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, 0x0, 0x0)
connect$inet(r2, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x4040804)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev(r3, 0x0, 0x0)
ioctl$LOOP_CONFIGURE(0xffffffffffffffff, 0x4c0a, &(0x7f0000001280)={r1, 0x200, {0x2a12, 0x80010000, 0x0, 0x3, 0x0, 0x0, 0x5, 0x3, 0x14, "fee8a2ab78fc179fd1f8a0e91ddaeca7ca64c6a4b4e00d9683dda1000000001f00deff1200100000000000000000000000000800", "2809a9000000038948224ad54afac11d875375bdb2420000b420a1a93c7540f4767f9e01177d3dd40600000061ac000000800800", "90be8b1c55f964000000000000000000000000000000000000000000000000d4", [0x20000001, 0x9]}})
sendmsg$nl_xfrm(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000700)=ANY=[@ANYBLOB="98010000160039030000000000000000e000000100000000000000000000000000000000000000000000ffff00000000000000f8ffffffffffffff0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac14143b0000000000000000000000000000000032000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400"], 0x198}}, 0x0)

459.292851ms ago: executing program 1 (id=654):
socket$kcm(0x10, 0x2, 0x0) (async)
r0 = socket$kcm(0x10, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
memfd_secret(0x0)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000004c0)="d800000018009f064e81f744db4cb904021d0800fd02fe02e8fe50a10a001100250000000c600e41b0000900070008032500000016000b000a00ff150048035c3b61c1d67f6f94007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d31afe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffff5ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a4500000000", 0xd8}], 0x1}, 0x40824)

287.092273ms ago: executing program 1 (id=655):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x5}, 0x94)
mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f000007e000/0x1000)=nil)
mremap(&(0x7f000007e000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffd000/0x1000)=nil)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (fail_nth: 27)

0s ago: executing program 3 (id=656):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)={0x164, r0, 0x0, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x1b, 0x2a, [@rann={0x7e, 0x15, {{0x0, 0x3}, 0x6, 0x9, @broadcast, 0xd47, 0x8, 0x1}}]}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x19}, @NL80211_ATTR_IE={0x11f, 0x2a, [@cf={0x4, 0x6, {0xfc, 0x2, 0x8000, 0x8}}, @tim={0x5, 0xe5, {0x0, 0x71, 0x1, "d680fa625a1e642c9af039b89cbbffe2e4e77cc40f6ce265886c2a5fc9b75cacfe0a587d6227a5edff4dd27ce2d83139237278110b7ab6f205e71f543ef9405d715cff85d1c0c3fc47a7107ae1974b4ab9f1c2cb436b461ee614724e3f528375e284befb07c358b2cb29c753d15ac4c640b5f572ff96e1391b735f768d54c29b3b2736ac871a6c83b64aff64726c8e2bd3a789c2f962991130b909e80edb1d9d23ba44066e62596cbf992c8194a730d4e843542e3def01d205fa4c2d4122062ec78d38e8b686b60e8bc2870ef9252336904680b86e68d41736128c98ec7cfe86d331"}}, @random_vendor={0xdd, 0x2a, "e50c2d855c583b33cab6ada3db7771e5d152b5fbcb029ba7da3f59818fbeb9cf79a998b8e0459d0eea2a"}]}]}, 0x164}, 0x1, 0x0, 0x0, 0x800}, 0x41)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_ASSOCIATE(r1, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20041}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x3c, r0, 0x800, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x10, 0x1, 0x1, 0x0, {0x8, 0x1ffd, 0x0, 0x9, 0x0, 0x0, 0x1}, 0x8, 0x1, 0x53}}]}, 0x3c}}, 0x8010)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x38, r0, 0x4, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x0, 0xbf}}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x82}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x400c1}, 0x44851)
sendmsg$NL80211_CMD_GET_MPATH(r1, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x38, r0, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8, 0x12}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000001}, 0x800)
sendmsg$DEVLINK_CMD_RATE_SET(r1, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0xa040000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x50, 0x0, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x2}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0x50}, 0x1, 0x0, 0x0, 0x4050}, 0x2404c051)
sendmsg$NL80211_CMD_SET_QOS_MAP(r1, &(0x7f00000008c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000740)={0x108, r0, 0x8, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_QOS_MAP={0x2a, 0xc7, {[{0xa2, 0x4}, {0x3}, {0x7, 0x6}, {0x9}, {0x7, 0x6}, {0x2, 0x6}, {0x3, 0x2}, {0x6, 0x2}, {0xf9, 0x6}, {0x6, 0x7}, {0x7, 0x7}, {0x7, 0x2}, {0x4, 0x6}, {0x9, 0x5}, {0x0, 0x5}], "25f0ced28e042205"}}, @NL80211_ATTR_QOS_MAP={0x30, 0xc7, {[{0xc0}, {0xe, 0x3}, {0xf5, 0x1}, {0x2, 0x7}, {0xc}, {0x7, 0x1}, {0x6, 0x5}, {0x2, 0x7}, {0x9, 0x7}, {0x0, 0x7}, {0xa, 0x1}, {0x1, 0x5}, {0x1, 0x4}, {0x4, 0x6}, {0x0, 0x1}, {0x9, 0x7}, {0x6, 0x2}, {0xd}], "c039784e789eb133"}}, @NL80211_ATTR_QOS_MAP={0x2a, 0xc7, {[{0x0, 0x3}, {0xb, 0x1}, {0x7, 0x1}, {0x7, 0x6}, {0x7, 0x3}, {0x7, 0x3}, {0x6, 0x3}, {0x91, 0x7}, {0xb1, 0x5}, {0x3, 0x7}, {0x2}, {0x6, 0x6}, {0x0, 0x5}, {0x5, 0x4}, {0xf8, 0x1}], "1a8c7ee361b62c31"}}, @NL80211_ATTR_QOS_MAP={0x10, 0xc7, {[{0xa}, {0x56, 0x6}], "c6970fa192a58795"}}, @NL80211_ATTR_QOS_MAP={0x28, 0xc7, {[{0x5, 0x2}, {0x1}, {0x2, 0x1}, {0xf7, 0x7}, {0x61, 0x3}, {0xfd, 0x2}, {0x1}, {0x0, 0x4}, {0x3, 0x5}, {0x3, 0x4}, {0x3, 0x4}, {0xf1, 0x3}, {0x0, 0x5}, {0x40, 0x2}], "0860696a006790a6"}}, @NL80211_ATTR_QOS_MAP={0x32, 0xc7, {[{0xca, 0x1}, {0x5, 0x2}, {}, {0x8, 0x6}, {0x0, 0x1}, {0x9, 0x2}, {0x1, 0x4}, {0x0, 0x4}, {0xc0, 0x1}, {0x2, 0x4}, {0x8, 0x6}, {0x1, 0x5}, {0x3, 0x5}, {0x7, 0x5}, {0x3, 0x2}, {0xd5, 0x4}, {0xc, 0x5}, {0xf7, 0x5}, {0x10, 0x6}], "3b195a6e5fac481f"}}]}, 0x108}, 0x1, 0x0, 0x0, 0x8000}, 0x4000011)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000940), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000980)={'wpan0\x00', <r4=>0x0})
sendmsg$NL802154_CMD_GET_SEC_KEY(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x28, r3, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x80c1)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ac0), r1)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r1, &(0x7f0000000c40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000b00)={0xfc, r5, 0x200, 0x70bd25, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}]}, 0xfc}, 0x1, 0x0, 0x0, 0x404c005}, 0x8000)
r6 = epoll_create(0x9)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r1, &(0x7f0000000c80))
syz_genetlink_get_family_id$devlink(&(0x7f0000000cc0), r1)
getsockopt$IP_SET_OP_GET_BYINDEX(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000d00)={0x7, 0x7, 0x4}, &(0x7f0000000d40)=0x28)
syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), r1)
setuid(0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000e00)={0x6, &(0x7f0000000dc0)=[{0x0, 0xc6, 0x8, 0x7}, {0xf4cd, 0x3, 0x1, 0x6}, {0x100, 0x7d, 0x6, 0x9}, {0x5, 0x3, 0x7, 0x3ff}, {0x0, 0x80, 0x0, 0x3}, {0x10, 0x8, 0xff, 0x9}]}, 0x10)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000e80), 0xffffffffffffffff)
sendmsg$NFC_CMD_ACTIVATE_TARGET(0xffffffffffffffff, &(0x7f0000000f40)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x2c, r7, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x1}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x4}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40040}, 0x24000000)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000f80)={<r8=>0x0, @in={{0x2, 0x4e22, @empty}}, 0x2, 0x7, 0x1, 0x8, 0x7}, &(0x7f0000001040)=0x98)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000001080)={r8, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x2c}}}}, &(0x7f0000001140)=0x84)
r9 = syz_genetlink_get_family_id$ipvs(&(0x7f00000011c0), r1)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f00000012c0)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x44, r9, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x313}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
stat(&(0x7f0000001340)='./file0\x00', &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0, <r10=>0x0})
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000001300)=@nullb, r10, &(0x7f0000001400)={0x7fffffffffffffff, 0x80, 0xffffffffffffffff, 0x6, 0x0, 0x8000, 0x5, 0x8, 0x2})
socket$nl_route(0x10, 0x3, 0x0)

kernel console output (not intermixed with test programs):

 RSI: 0000000000800000 RDI: 0000200000000000
[   57.152116][ T4437] RBP: 00007f5f9b407090 R08: 0000000000000000 R09: 0000000000000000
[   57.152157][ T4437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.152199][ T4437] R13: 00007f5f9cc26038 R14: 00007f5f9cc25fa0 R15: 00007fffb343a028
[   57.152262][ T4437]  </TASK>
[   57.364187][ T4374] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.371885][ T4374] bridge_slave_0: entered allmulticast mode
[   57.378674][ T4374] bridge_slave_0: entered promiscuous mode
[   57.395776][ T4374] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.403006][ T4374] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.414931][ T4374] bridge_slave_1: entered allmulticast mode
[   57.421747][ T4374] bridge_slave_1: entered promiscuous mode
[   57.469144][ T4374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.482274][ T4374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.483361][ T4441] netlink: 8 bytes leftover after parsing attributes in process `syz.3.332'.
[   57.528748][ T4374] team0: Port device team_slave_0 added
[   57.535740][ T4374] team0: Port device team_slave_1 added
[   57.567530][ T4374] batman_adv: batadv0: Adding interface: batadv_slave_0
[   57.574641][ T4374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   57.600721][ T4374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   57.672659][ T4374] batman_adv: batadv0: Adding interface: batadv_slave_1
[   57.680088][ T4374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   57.706154][ T4374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   57.818095][ T4462] loop1: detected capacity change from 0 to 764
[   57.839169][ T4462] FAULT_INJECTION: forcing a failure.
[   57.839169][ T4462] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   57.842528][ T4374] hsr_slave_0: entered promiscuous mode
[   57.852400][ T4462] CPU: 1 UID: 0 PID: 4462 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[   57.852508][ T4462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   57.852558][ T4462] Call Trace:
[   57.852590][ T4462]  <TASK>
[   57.852620][ T4462]  __dump_stack+0x1d/0x30
[   57.852705][ T4462]  dump_stack_lvl+0x95/0xd0
[   57.852771][ T4462]  dump_stack+0x15/0x1b
[   57.852922][ T4462]  should_fail_ex+0x263/0x280
[   57.852997][ T4462]  should_fail+0xb/0x20
[   57.853060][ T4462]  should_fail_usercopy+0x1a/0x20
[   57.853158][ T4462]  _copy_to_user+0x20/0xa0
[   57.853287][ T4462]  simple_read_from_buffer+0xb5/0x130
[   57.853460][ T4462]  proc_fail_nth_read+0x10e/0x150
[   57.853547][ T4462]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   57.853755][ T4462]  vfs_read+0x1ab/0x7f0
[   57.853863][ T4462]  ? __rcu_read_unlock+0x4e/0x70
[   57.853926][ T4462]  ? __fget_files+0x184/0x1c0
[   57.854049][ T4462]  ? mutex_lock+0x57/0x90
[   57.854154][ T4462]  ksys_read+0xdc/0x1a0
[   57.854217][ T4462]  __x64_sys_read+0x40/0x50
[   57.854271][ T4462]  x64_sys_call+0x2889/0x3000
[   57.854355][ T4462]  do_syscall_64+0xc0/0x2a0
[   57.854469][ T4462]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.854535][ T4462] RIP: 0033:0x7fdcd842b58e
[   57.854596][ T4462] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[   57.854651][ T4462] RSP: 002b:00007fdcd6ec6fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   57.854767][ T4462] RAX: ffffffffffffffda RBX: 00007fdcd6ec76c0 RCX: 00007fdcd842b58e
[   57.854809][ T4462] RDX: 000000000000000f RSI: 00007fdcd6ec70a0 RDI: 0000000000000009
[   57.854837][ T4462] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   57.854873][ T4462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.854987][ T4462] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   57.855049][ T4462]  </TASK>
[   57.998192][ T3557] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   58.007022][ T3558] Bluetooth: hci0: command 0x1003 tx timeout
[   58.017103][ T4374] hsr_slave_1: entered promiscuous mode
[   58.070971][ T4374] debugfs: 'hsr0' already exists in 'hsr'
[   58.076836][ T4374] Cannot create hsr debugfs directory
[   58.093150][ T4467] loop1: detected capacity change from 0 to 764
[   58.229080][ T4477] netlink: 160 bytes leftover after parsing attributes in process `syz.1.341'.
[   58.297554][ T4476] loop3: detected capacity change from 0 to 1024
[   58.330575][ T4476] EXT4-fs: Ignoring removed bh option
[   58.336132][ T4476] EXT4-fs: inline encryption not supported
[   58.366911][ T4476] EXT4-fs (loop3): orphan cleanup on readonly fs
[   58.379656][ T4374] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   58.393755][ T4374] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   58.401123][ T4476] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.340: Failed to acquire dquot type 0
[   58.415460][ T4374] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   58.422359][ T4476] EXT4-fs (loop3): 1 truncate cleaned up
[   58.430821][ T4374] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   58.440093][ T4476] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   58.469326][ T4501] FAULT_INJECTION: forcing a failure.
[   58.469326][ T4501] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   58.482813][ T4501] CPU: 1 UID: 0 PID: 4501 Comm: syz.1.345 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   58.482839][ T4501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   58.482852][ T4501] Call Trace:
[   58.482859][ T4501]  <TASK>
[   58.482868][ T4501]  __dump_stack+0x1d/0x30
[   58.482900][ T4501]  dump_stack_lvl+0x95/0xd0
[   58.483059][ T4501]  dump_stack+0x15/0x1b
[   58.483082][ T4501]  should_fail_ex+0x263/0x280
[   58.483112][ T4501]  should_fail_alloc_page+0xf2/0x100
[   58.483189][ T4501]  __alloc_frozen_pages_noprof+0x108/0x350
[   58.483226][ T4501]  alloc_pages_mpol+0xb3/0x260
[   58.483330][ T4501]  ? css_rstat_updated+0xbb/0x280
[   58.483371][ T4501]  vma_alloc_folio_noprof+0x1a9/0x300
[   58.483412][ T4501]  handle_mm_fault+0x111f/0x3030
[   58.483495][ T4501]  ? _raw_spin_lock+0x52/0xa0
[   58.483526][ T4501]  ? __pte_offset_map_lock+0x1d9/0x240
[   58.483555][ T4501]  __get_user_pages+0x1023/0x1ea0
[   58.483652][ T4501]  __mm_populate+0x242/0x390
[   58.483688][ T4501]  do_mlock+0x47c/0x520
[   58.483740][ T4501]  ? mutex_unlock+0x4e/0x90
[   58.483777][ T4501]  ? fput+0x8f/0xc0
[   58.483839][ T4501]  ? ksys_write+0x194/0x1a0
[   58.483859][ T4501]  __x64_sys_mlock+0x36/0x50
[   58.483880][ T4501]  x64_sys_call+0x1794/0x3000
[   58.483905][ T4501]  do_syscall_64+0xc0/0x2a0
[   58.483971][ T4501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.483992][ T4501] RIP: 0033:0x7fdcd846acb9
[   58.484008][ T4501] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   58.484026][ T4501] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   58.484048][ T4501] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   58.484061][ T4501] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   58.484140][ T4501] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   58.484152][ T4501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   58.484164][ T4501] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   58.484182][ T4501]  </TASK>
[   58.537523][ T4505] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   58.537787][ T4505] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   58.732193][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.760346][ T4374] 8021q: adding VLAN 0 to HW filter on device bond0
[   58.781279][ T4374] 8021q: adding VLAN 0 to HW filter on device team0
[   58.813619][  T585] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.820829][  T585] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.839441][  T585] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.846635][  T585] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.902059][ T4515] loop1: detected capacity change from 0 to 512
[   58.945637][ T4515] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   58.966285][ T4515] EXT4-fs (loop1): orphan cleanup on readonly fs
[   59.018915][ T4515] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.347: bg 0: block 248: padding at end of block bitmap is not set
[   59.037965][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   59.050147][ T4374] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.072395][ T4515] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.347: Failed to acquire dquot type 1
[   59.084457][ T4515] EXT4-fs (loop1): 1 truncate cleaned up
[   59.091127][ T4515] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   59.104172][ T4515] EXT4-fs (loop1): shut down requested (0)
[   59.199175][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.209464][  T585] Bluetooth: hci0: Frame reassembly failed (-84)
[   59.373533][ T4374] veth0_vlan: entered promiscuous mode
[   59.389089][ T4374] veth1_vlan: entered promiscuous mode
[   59.418984][ T4559] loop3: detected capacity change from 0 to 764
[   59.429514][ T4374] veth0_macvtap: entered promiscuous mode
[   59.441822][   T29] kauditd_printk_skb: 163 callbacks suppressed
[   59.441895][   T29] audit: type=1326 audit(1768773604.380:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.471588][   T29] audit: type=1326 audit(1768773604.380:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.495006][   T29] audit: type=1326 audit(1768773604.380:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.518811][   T29] audit: type=1326 audit(1768773604.380:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.542585][   T29] audit: type=1326 audit(1768773604.380:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.565523][   T29] audit: type=1326 audit(1768773604.380:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.588881][   T29] audit: type=1326 audit(1768773604.380:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.590948][ T4374] veth1_macvtap: entered promiscuous mode
[   59.612420][   T29] audit: type=1326 audit(1768773604.380:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.636851][ T4374] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.641100][   T29] audit: type=1326 audit(1768773604.380:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.641206][   T29] audit: type=1326 audit(1768773604.380:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4558 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5f9c9aacb9 code=0x7ffc0000
[   59.653125][ T4374] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.719363][   T53] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.752705][   T53] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.771087][   T53] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.771858][ T4565] netlink: 160 bytes leftover after parsing attributes in process `syz.3.355'.
[   59.789921][   T53] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.845459][ T4568] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   59.889900][ T4568] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   59.901748][ T4570] netlink: 8 bytes leftover after parsing attributes in process `syz.5.314'.
[   59.912165][ T4572] Symlink component flag not implemented
[   59.917842][ T4572] Symlink component flag not implemented
[   59.942020][ T4568] bond0: option downdelay: invalid value (18446744073709551607)
[   59.948630][ T4572] Symlink component flag not implemented (129)
[   59.950070][ T4568] bond0: option downdelay: allowed values 0 - 2147483647
[   59.955954][ T4572] Symlink component flag not implemented (6)
[   60.048878][ T4575] FAULT_INJECTION: forcing a failure.
[   60.048878][ T4575] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   60.062442][ T4575] CPU: 0 UID: 0 PID: 4575 Comm: syz.3.359 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.062476][ T4575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   60.062557][ T4575] Call Trace:
[   60.062574][ T4575]  <TASK>
[   60.062584][ T4575]  __dump_stack+0x1d/0x30
[   60.062615][ T4575]  dump_stack_lvl+0x95/0xd0
[   60.062691][ T4575]  dump_stack+0x15/0x1b
[   60.062719][ T4575]  should_fail_ex+0x263/0x280
[   60.062750][ T4575]  should_fail_alloc_page+0xf2/0x100
[   60.062779][ T4575]  __alloc_frozen_pages_noprof+0x108/0x350
[   60.062812][ T4575]  alloc_pages_mpol+0xb3/0x260
[   60.062893][ T4575]  ? css_rstat_updated+0xbb/0x280
[   60.063007][ T4575]  vma_alloc_folio_noprof+0x1a9/0x300
[   60.063051][ T4575]  handle_mm_fault+0x111f/0x3030
[   60.063092][ T4575]  ? _raw_spin_lock+0x52/0xa0
[   60.063197][ T4575]  ? __pte_offset_map_lock+0x1d9/0x240
[   60.063236][ T4575]  __get_user_pages+0x1023/0x1ea0
[   60.063285][ T4575]  __mm_populate+0x242/0x390
[   60.063318][ T4575]  do_mlock+0x47c/0x520
[   60.063365][ T4575]  ? mutex_unlock+0x4e/0x90
[   60.063403][ T4575]  ? fput+0x8f/0xc0
[   60.063500][ T4575]  ? ksys_write+0x194/0x1a0
[   60.063593][ T4575]  __x64_sys_mlock+0x36/0x50
[   60.063617][ T4575]  x64_sys_call+0x1794/0x3000
[   60.063643][ T4575]  do_syscall_64+0xc0/0x2a0
[   60.063664][ T4575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.063704][ T4575] RIP: 0033:0x7f5f9c9aacb9
[   60.063724][ T4575] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   60.063744][ T4575] RSP: 002b:00007f5f9b407028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   60.063767][ T4575] RAX: ffffffffffffffda RBX: 00007f5f9cc25fa0 RCX: 00007f5f9c9aacb9
[   60.063782][ T4575] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   60.063858][ T4575] RBP: 00007f5f9b407090 R08: 0000000000000000 R09: 0000000000000000
[   60.063881][ T4575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.063893][ T4575] R13: 00007f5f9cc26038 R14: 00007f5f9cc25fa0 R15: 00007fffb343a028
[   60.063913][ T4575]  </TASK>
[   60.339329][   T52] Bluetooth: hci1: Frame reassembly failed (-84)
[   60.465698][ T4590] netlink: 4 bytes leftover after parsing attributes in process `syz.5.364'.
[   60.474690][ T4590] bridge_slave_1: left allmulticast mode
[   60.480536][ T4590] bridge_slave_1: left promiscuous mode
[   60.486262][ T4590] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.495054][ T4590] bridge_slave_0: left allmulticast mode
[   60.500787][ T4590] bridge_slave_0: left promiscuous mode
[   60.506565][ T4590] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.677970][  T565] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   60.687658][ T4600] set_capacity_and_notify: 2 callbacks suppressed
[   60.687677][ T4600] loop3: detected capacity change from 0 to 764
[   60.711793][ T3435] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4
[   60.719755][ T3435] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2
[   60.730662][ T3435] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x3
[   60.748464][ T3435] hid-generic 0000:3000000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   60.777773][ T4605] netlink: 160 bytes leftover after parsing attributes in process `syz.1.369'.
[   60.828712][ T4609] loop3: detected capacity change from 0 to 764
[   60.852299][ T4604] fido_id[4604]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   60.914040][ T4614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.370'.
[   60.923553][ T4614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.370'.
[   60.970472][ T4616] FAULT_INJECTION: forcing a failure.
[   60.970472][ T4616] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   60.983807][ T4616] CPU: 1 UID: 0 PID: 4616 Comm: syz.1.373 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   60.983836][ T4616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   60.983944][ T4616] Call Trace:
[   60.983950][ T4616]  <TASK>
[   60.983957][ T4616]  __dump_stack+0x1d/0x30
[   60.983979][ T4616]  dump_stack_lvl+0x95/0xd0
[   60.983998][ T4616]  dump_stack+0x15/0x1b
[   60.984067][ T4616]  should_fail_ex+0x263/0x280
[   60.984088][ T4616]  should_fail_alloc_page+0xf2/0x100
[   60.984238][ T4616]  __alloc_frozen_pages_noprof+0x108/0x350
[   60.984265][ T4616]  alloc_pages_mpol+0xb3/0x260
[   60.984289][ T4616]  ? css_rstat_updated+0xbb/0x280
[   60.984320][ T4616]  vma_alloc_folio_noprof+0x1a9/0x300
[   60.984420][ T4616]  handle_mm_fault+0x111f/0x3030
[   60.984448][ T4616]  ? _raw_spin_lock+0x52/0xa0
[   60.984470][ T4616]  ? __pte_offset_map_lock+0x1d9/0x240
[   60.984510][ T4616]  __get_user_pages+0x1023/0x1ea0
[   60.984545][ T4616]  __mm_populate+0x242/0x390
[   60.984625][ T4616]  do_mlock+0x47c/0x520
[   60.984664][ T4616]  ? mutex_unlock+0x4e/0x90
[   60.984700][ T4616]  ? fput+0x8f/0xc0
[   60.984739][ T4616]  ? ksys_write+0x194/0x1a0
[   60.984822][ T4616]  __x64_sys_mlock+0x36/0x50
[   60.984840][ T4616]  x64_sys_call+0x1794/0x3000
[   60.984863][ T4616]  do_syscall_64+0xc0/0x2a0
[   60.984882][ T4616]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   60.984965][ T4616] RIP: 0033:0x7fdcd846acb9
[   60.984979][ T4616] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   60.984995][ T4616] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   60.985012][ T4616] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   60.985077][ T4616] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   60.985097][ T4616] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   60.985109][ T4616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   60.985119][ T4616] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   60.985136][ T4616]  </TASK>
[   61.277953][ T3558] Bluetooth: hci0: command 0x1003 tx timeout
[   61.284184][ T3557] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   61.617335][ T4641] loop4: detected capacity change from 0 to 764
[   61.669410][ T4646] netlink: 160 bytes leftover after parsing attributes in process `syz.4.383'.
[   61.822752][ T4656] FAULT_INJECTION: forcing a failure.
[   61.822752][ T4656] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   61.836337][ T4656] CPU: 0 UID: 0 PID: 4656 Comm: syz.4.388 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   61.836371][ T4656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   61.836388][ T4656] Call Trace:
[   61.836397][ T4656]  <TASK>
[   61.836436][ T4656]  __dump_stack+0x1d/0x30
[   61.836469][ T4656]  dump_stack_lvl+0x95/0xd0
[   61.836494][ T4656]  dump_stack+0x15/0x1b
[   61.836520][ T4656]  should_fail_ex+0x263/0x280
[   61.836587][ T4656]  should_fail_alloc_page+0xf2/0x100
[   61.836619][ T4656]  __alloc_frozen_pages_noprof+0x108/0x350
[   61.836665][ T4656]  alloc_pages_mpol+0xb3/0x260
[   61.836775][ T4656]  ? css_rstat_updated+0xbb/0x280
[   61.836814][ T4656]  vma_alloc_folio_noprof+0x1a9/0x300
[   61.836851][ T4656]  handle_mm_fault+0x111f/0x3030
[   61.836892][ T4656]  ? _raw_spin_lock+0x52/0xa0
[   61.836936][ T4656]  ? __pte_offset_map_lock+0x1d9/0x240
[   61.836975][ T4656]  __get_user_pages+0x1023/0x1ea0
[   61.837090][ T4656]  __mm_populate+0x242/0x390
[   61.837125][ T4656]  do_mlock+0x47c/0x520
[   61.837147][ T4656]  ? mutex_unlock+0x4e/0x90
[   61.837183][ T4656]  ? fput+0x8f/0xc0
[   61.837286][ T4656]  ? ksys_write+0x194/0x1a0
[   61.837312][ T4656]  __x64_sys_mlock+0x36/0x50
[   61.837363][ T4656]  x64_sys_call+0x1794/0x3000
[   61.837393][ T4656]  do_syscall_64+0xc0/0x2a0
[   61.837471][ T4656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.837602][ T4656] RIP: 0033:0x7f4d86feacb9
[   61.837622][ T4656] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   61.837646][ T4656] RSP: 002b:00007f4d85a47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   61.837671][ T4656] RAX: ffffffffffffffda RBX: 00007f4d87265fa0 RCX: 00007f4d86feacb9
[   61.837690][ T4656] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   61.837707][ T4656] RBP: 00007f4d85a47090 R08: 0000000000000000 R09: 0000000000000000
[   61.837758][ T4656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.837770][ T4656] R13: 00007f4d87266038 R14: 00007f4d87265fa0 R15: 00007fff119ed2b8
[   61.837788][ T4656]  </TASK>
[   62.192010][ T4665] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   62.408553][ T3558] Bluetooth: hci1: command 0x1003 tx timeout
[   62.414892][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   62.539397][ T4680] loop2: detected capacity change from 0 to 764
[   62.551066][ T4680] Symlink component flag not implemented
[   62.556853][ T4680] Symlink component flag not implemented
[   62.562702][ T4680] Symlink component flag not implemented (129)
[   62.568980][ T4680] Symlink component flag not implemented (6)
[   62.673988][ T4682] netlink: 160 bytes leftover after parsing attributes in process `syz.1.396'.
[   62.702929][ T4684] netlink: 'syz.1.398': attribute type 66 has an invalid length.
[   62.825184][ T4694] FAULT_INJECTION: forcing a failure.
[   62.825184][ T4694] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   62.838820][ T4694] CPU: 1 UID: 0 PID: 4694 Comm: syz.5.401 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   62.838854][ T4694] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   62.838869][ T4694] Call Trace:
[   62.838878][ T4694]  <TASK>
[   62.838887][ T4694]  __dump_stack+0x1d/0x30
[   62.838921][ T4694]  dump_stack_lvl+0x95/0xd0
[   62.839006][ T4694]  dump_stack+0x15/0x1b
[   62.839104][ T4694]  should_fail_ex+0x263/0x280
[   62.839136][ T4694]  should_fail_alloc_page+0xf2/0x100
[   62.839165][ T4694]  __alloc_frozen_pages_noprof+0x108/0x350
[   62.839206][ T4694]  alloc_pages_mpol+0xb3/0x260
[   62.839242][ T4694]  ? css_rstat_updated+0xbb/0x280
[   62.839352][ T4694]  vma_alloc_folio_noprof+0x1a9/0x300
[   62.839406][ T4694]  handle_mm_fault+0x111f/0x3030
[   62.839448][ T4694]  ? _raw_spin_lock+0x52/0xa0
[   62.839525][ T4694]  ? __pte_offset_map_lock+0x1d9/0x240
[   62.839638][ T4694]  __get_user_pages+0x1023/0x1ea0
[   62.839688][ T4694]  __mm_populate+0x242/0x390
[   62.839806][ T4694]  do_mlock+0x47c/0x520
[   62.839834][ T4694]  ? mutex_unlock+0x4e/0x90
[   62.839946][ T4694]  ? fput+0x8f/0xc0
[   62.840088][ T4694]  ? ksys_write+0x194/0x1a0
[   62.840114][ T4694]  __x64_sys_mlock+0x36/0x50
[   62.840143][ T4694]  x64_sys_call+0x1794/0x3000
[   62.840176][ T4694]  do_syscall_64+0xc0/0x2a0
[   62.840199][ T4694]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.840221][ T4694] RIP: 0033:0x7fa03d2eacb9
[   62.840274][ T4694] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   62.840296][ T4694] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   62.840320][ T4694] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   62.840336][ T4694] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   62.840352][ T4694] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   62.840373][ T4694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   62.840416][ T4694] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   62.840434][ T4694]  </TASK>
[   63.060933][ T4697] loop1: detected capacity change from 0 to 512
[   63.088721][ T4697] EXT4-fs: dax option not supported
[   63.165412][ T3634] Bluetooth: hci1: Frame reassembly failed (-84)
[   63.174914][ T4688] netlink: 6 bytes leftover after parsing attributes in process `syz.2.397'.
[   63.188883][ T4688] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   63.267309][ T4706] loop4: detected capacity change from 0 to 764
[   63.285833][ T4706] iso9660: Unknown parameter 'GPL'
[   63.418916][ T4713] netlink: 160 bytes leftover after parsing attributes in process `syz.4.408'.
[   63.433052][ T4712] netlink: 14 bytes leftover after parsing attributes in process `syz.5.409'.
[   63.468143][ T4712] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   63.528323][ T4712] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   63.561207][ T4712] bond0 (unregistering): Released all slaves
[   63.706148][ T4733] FAULT_INJECTION: forcing a failure.
[   63.706148][ T4733] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   63.719494][ T4733] CPU: 0 UID: 0 PID: 4733 Comm: syz.2.416 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   63.719548][ T4733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   63.719561][ T4733] Call Trace:
[   63.719569][ T4733]  <TASK>
[   63.719577][ T4733]  __dump_stack+0x1d/0x30
[   63.719608][ T4733]  dump_stack_lvl+0x95/0xd0
[   63.719637][ T4733]  dump_stack+0x15/0x1b
[   63.719782][ T4733]  should_fail_ex+0x263/0x280
[   63.719881][ T4733]  should_fail_alloc_page+0xf2/0x100
[   63.719913][ T4733]  __alloc_frozen_pages_noprof+0x108/0x350
[   63.719963][ T4733]  alloc_pages_mpol+0xb3/0x260
[   63.720010][ T4733]  ? css_rstat_updated+0xbb/0x280
[   63.720050][ T4733]  vma_alloc_folio_noprof+0x1a9/0x300
[   63.720083][ T4733]  handle_mm_fault+0x111f/0x3030
[   63.720152][ T4733]  ? _raw_spin_lock+0x52/0xa0
[   63.720178][ T4733]  ? __pte_offset_map_lock+0x1d9/0x240
[   63.720287][ T4733]  __get_user_pages+0x1023/0x1ea0
[   63.720340][ T4733]  __mm_populate+0x242/0x390
[   63.720397][ T4733]  do_mlock+0x47c/0x520
[   63.720477][ T4733]  ? mutex_unlock+0x4e/0x90
[   63.720538][ T4733]  ? fput+0x8f/0xc0
[   63.720567][ T4733]  ? ksys_write+0x194/0x1a0
[   63.720594][ T4733]  __x64_sys_mlock+0x36/0x50
[   63.720621][ T4733]  x64_sys_call+0x1794/0x3000
[   63.720652][ T4733]  do_syscall_64+0xc0/0x2a0
[   63.720764][ T4733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.720790][ T4733] RIP: 0033:0x7f46fa0bacb9
[   63.720812][ T4733] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   63.720897][ T4733] RSP: 002b:00007f46f8b17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   63.721008][ T4733] RAX: ffffffffffffffda RBX: 00007f46fa335fa0 RCX: 00007f46fa0bacb9
[   63.721028][ T4733] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   63.721045][ T4733] RBP: 00007f46f8b17090 R08: 0000000000000000 R09: 0000000000000000
[   63.721063][ T4733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   63.721077][ T4733] R13: 00007f46fa336038 R14: 00007f46fa335fa0 R15: 00007ffe73471f78
[   63.721099][ T4733]  </TASK>
[   63.938876][ T3557] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   63.980690][ T4735] netlink: 20 bytes leftover after parsing attributes in process `syz.5.417'.
[   64.011194][ T4742] loop3: detected capacity change from 0 to 764
[   64.100679][ T4750] loop2: detected capacity change from 0 to 1024
[   64.108118][ T4750] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   64.145367][ T4750] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   64.162385][ T4750] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   64.247829][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   64.275786][ T4762] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   64.331014][ T4767] netlink: 'syz.3.430': attribute type 4 has an invalid length.
[   64.363055][ T4769] FAULT_INJECTION: forcing a failure.
[   64.363055][ T4769] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   64.376581][ T4769] CPU: 0 UID: 0 PID: 4769 Comm: syz.4.431 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   64.376608][ T4769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   64.376621][ T4769] Call Trace:
[   64.376628][ T4769]  <TASK>
[   64.376636][ T4769]  __dump_stack+0x1d/0x30
[   64.376665][ T4769]  dump_stack_lvl+0x95/0xd0
[   64.376724][ T4769]  dump_stack+0x15/0x1b
[   64.376744][ T4769]  should_fail_ex+0x263/0x280
[   64.376769][ T4769]  should_fail_alloc_page+0xf2/0x100
[   64.376829][ T4769]  __alloc_frozen_pages_noprof+0x108/0x350
[   64.376868][ T4769]  alloc_pages_mpol+0xb3/0x260
[   64.376904][ T4769]  ? css_rstat_updated+0xbb/0x280
[   64.377081][ T4769]  vma_alloc_folio_noprof+0x1a9/0x300
[   64.377112][ T4769]  handle_mm_fault+0x111f/0x3030
[   64.377146][ T4769]  ? _raw_spin_lock+0x52/0xa0
[   64.377253][ T4769]  ? __pte_offset_map_lock+0x1d9/0x240
[   64.377292][ T4769]  __get_user_pages+0x1023/0x1ea0
[   64.377329][ T4769]  __mm_populate+0x242/0x390
[   64.377364][ T4769]  do_mlock+0x47c/0x520
[   64.377390][ T4769]  ? mutex_unlock+0x4e/0x90
[   64.377418][ T4769]  ? fput+0x8f/0xc0
[   64.377442][ T4769]  ? ksys_write+0x194/0x1a0
[   64.377499][ T4769]  __x64_sys_mlock+0x36/0x50
[   64.377520][ T4769]  x64_sys_call+0x1794/0x3000
[   64.377545][ T4769]  do_syscall_64+0xc0/0x2a0
[   64.377566][ T4769]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.377608][ T4769] RIP: 0033:0x7f4d86feacb9
[   64.377628][ T4769] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   64.377651][ T4769] RSP: 002b:00007f4d85a47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   64.377676][ T4769] RAX: ffffffffffffffda RBX: 00007f4d87265fa0 RCX: 00007f4d86feacb9
[   64.377694][ T4769] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   64.377710][ T4769] RBP: 00007f4d85a47090 R08: 0000000000000000 R09: 0000000000000000
[   64.377755][ T4769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   64.377769][ T4769] R13: 00007f4d87266038 R14: 00007f4d87265fa0 R15: 00007fff119ed2b8
[   64.377788][ T4769]  </TASK>
[   64.667501][   T29] kauditd_printk_skb: 760 callbacks suppressed
[   64.667520][   T29] audit: type=1400 audit(1768773609.600:1881): avc:  denied  { create } for  pid=4770 comm="syz.3.432" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   64.715737][ T4774] loop5: detected capacity change from 0 to 764
[   64.727441][   T29] audit: type=1400 audit(1768773609.660:1882): avc:  denied  { ioctl } for  pid=4770 comm="syz.3.432" path="socket:[9874]" dev="sockfs" ino=9874 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[   64.809881][   T29] audit: type=1326 audit(1768773609.750:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4773 comm="syz.5.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   64.836600][   T29] audit: type=1326 audit(1768773609.750:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4773 comm="syz.5.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   64.860490][   T29] audit: type=1326 audit(1768773609.770:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4773 comm="syz.5.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   64.884285][   T29] audit: type=1326 audit(1768773609.770:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4773 comm="syz.5.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   64.907721][   T29] audit: type=1326 audit(1768773609.770:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4773 comm="syz.5.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   64.931107][   T29] audit: type=1326 audit(1768773609.770:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4773 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   64.954220][   T29] audit: type=1326 audit(1768773609.770:1890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4773 comm="syz.5.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   64.978157][   T29] audit: type=1326 audit(1768773609.770:1889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4773 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   65.088365][ T4792] FAULT_INJECTION: forcing a failure.
[   65.088365][ T4792] name failslab, interval 1, probability 0, space 0, times 0
[   65.101304][ T4792] CPU: 0 UID: 0 PID: 4792 Comm: syz.5.441 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   65.101331][ T4792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   65.101343][ T4792] Call Trace:
[   65.101350][ T4792]  <TASK>
[   65.101359][ T4792]  __dump_stack+0x1d/0x30
[   65.101390][ T4792]  dump_stack_lvl+0x95/0xd0
[   65.101419][ T4792]  dump_stack+0x15/0x1b
[   65.101446][ T4792]  should_fail_ex+0x263/0x280
[   65.101477][ T4792]  should_failslab+0x8c/0xb0
[   65.101501][ T4792]  kmem_cache_alloc_noprof+0x68/0x490
[   65.101523][ T4792]  ? vm_area_dup+0x33/0x2c0
[   65.101546][ T4792]  vm_area_dup+0x33/0x2c0
[   65.101573][ T4792]  __split_vma+0xe9/0x660
[   65.101600][ T4792]  ? __walk_page_range+0x324/0x340
[   65.101628][ T4792]  vma_modify+0xbcb/0xd30
[   65.101667][ T4792]  vma_modify_flags+0x182/0x210
[   65.101703][ T4792]  mlock_fixup+0x132/0x250
[   65.101727][ T4792]  apply_vma_lock_flags+0x195/0x260
[   65.101759][ T4792]  do_mlock+0x3c3/0x520
[   65.101786][ T4792]  ? mutex_unlock+0x4e/0x90
[   65.101821][ T4792]  ? fput+0x8f/0xc0
[   65.101861][ T4792]  ? ksys_write+0x194/0x1a0
[   65.101886][ T4792]  __x64_sys_mlock+0x36/0x50
[   65.101917][ T4792]  x64_sys_call+0x1794/0x3000
[   65.101947][ T4792]  do_syscall_64+0xc0/0x2a0
[   65.101969][ T4792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.101990][ T4792] RIP: 0033:0x7fa03d2eacb9
[   65.102006][ T4792] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   65.102029][ T4792] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   65.102053][ T4792] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   65.102071][ T4792] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   65.102087][ T4792] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   65.102100][ T4792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.102111][ T4792] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   65.102133][ T4792]  </TASK>
[   65.315425][ T3557] Bluetooth: hci1: command 0x1003 tx timeout
[   65.321495][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   65.450902][ T4800] loop5: detected capacity change from 0 to 512
[   65.457597][ T4800] EXT4-fs: Ignoring removed nomblk_io_submit option
[   65.491738][ T4800] ext4: Unknown parameter 'nouser_xattr'
[   65.541928][ T4806] FAULT_INJECTION: forcing a failure.
[   65.541928][ T4806] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   65.555514][ T4806] CPU: 0 UID: 0 PID: 4806 Comm: syz.5.447 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   65.555550][ T4806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   65.555586][ T4806] Call Trace:
[   65.555594][ T4806]  <TASK>
[   65.555603][ T4806]  __dump_stack+0x1d/0x30
[   65.555632][ T4806]  dump_stack_lvl+0x95/0xd0
[   65.555714][ T4806]  dump_stack+0x15/0x1b
[   65.555740][ T4806]  should_fail_ex+0x263/0x280
[   65.555772][ T4806]  should_fail_alloc_page+0xf2/0x100
[   65.555801][ T4806]  __alloc_frozen_pages_noprof+0x108/0x350
[   65.555869][ T4806]  alloc_pages_mpol+0xb3/0x260
[   65.555908][ T4806]  ? css_rstat_updated+0xbb/0x280
[   65.555968][ T4806]  vma_alloc_folio_noprof+0x1a9/0x300
[   65.556010][ T4806]  handle_mm_fault+0x111f/0x3030
[   65.556052][ T4806]  ? _raw_spin_lock+0x52/0xa0
[   65.556086][ T4806]  ? __pte_offset_map_lock+0x1d9/0x240
[   65.556155][ T4806]  __get_user_pages+0x1023/0x1ea0
[   65.556218][ T4806]  __mm_populate+0x242/0x390
[   65.556261][ T4806]  do_mlock+0x47c/0x520
[   65.556297][ T4806]  ? mutex_unlock+0x4e/0x90
[   65.556356][ T4806]  ? fput+0x8f/0xc0
[   65.556410][ T4806]  ? ksys_write+0x194/0x1a0
[   65.556504][ T4806]  __x64_sys_mlock+0x36/0x50
[   65.556608][ T4806]  x64_sys_call+0x1794/0x3000
[   65.556640][ T4806]  do_syscall_64+0xc0/0x2a0
[   65.556682][ T4806]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.556711][ T4806] RIP: 0033:0x7fa03d2eacb9
[   65.556732][ T4806] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   65.556755][ T4806] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   65.556782][ T4806] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   65.556814][ T4806] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   65.556829][ T4806] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   65.556903][ T4806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   65.556919][ T4806] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   65.556945][ T4806]  </TASK>
[   65.860269][ T4815] __nla_validate_parse: 2 callbacks suppressed
[   65.860288][ T4815] netlink: 160 bytes leftover after parsing attributes in process `syz.3.451'.
[   66.037710][ T4827] loop1: detected capacity change from 0 to 764
[   66.070840][ T4835] FAULT_INJECTION: forcing a failure.
[   66.070840][ T4835] name failslab, interval 1, probability 0, space 0, times 0
[   66.083591][ T4835] CPU: 0 UID: 0 PID: 4835 Comm: syz.3.457 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.083617][ T4835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   66.083630][ T4835] Call Trace:
[   66.083637][ T4835]  <TASK>
[   66.083646][ T4835]  __dump_stack+0x1d/0x30
[   66.083678][ T4835]  dump_stack_lvl+0x95/0xd0
[   66.083706][ T4835]  dump_stack+0x15/0x1b
[   66.083732][ T4835]  should_fail_ex+0x263/0x280
[   66.083763][ T4835]  should_failslab+0x8c/0xb0
[   66.083798][ T4835]  kmem_cache_alloc_noprof+0x68/0x490
[   66.083826][ T4835]  ? mas_alloc_nodes+0x1a2/0x210
[   66.083860][ T4835]  mas_alloc_nodes+0x1a2/0x210
[   66.083896][ T4835]  mas_preallocate+0x2ca/0x510
[   66.083942][ T4835]  __split_vma+0x240/0x660
[   66.083967][ T4835]  ? __walk_page_range+0x324/0x340
[   66.083997][ T4835]  vma_modify+0xbcb/0xd30
[   66.084040][ T4835]  vma_modify_flags+0x182/0x210
[   66.084076][ T4835]  mlock_fixup+0x132/0x250
[   66.084100][ T4835]  apply_vma_lock_flags+0x195/0x260
[   66.084133][ T4835]  do_mlock+0x3c3/0x520
[   66.084159][ T4835]  ? mutex_unlock+0x4e/0x90
[   66.084193][ T4835]  ? fput+0x8f/0xc0
[   66.084224][ T4835]  ? ksys_write+0x194/0x1a0
[   66.084248][ T4835]  __x64_sys_mlock+0x36/0x50
[   66.084272][ T4835]  x64_sys_call+0x1794/0x3000
[   66.084298][ T4835]  do_syscall_64+0xc0/0x2a0
[   66.084323][ T4835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.084352][ T4835] RIP: 0033:0x7f5f9c9aacb9
[   66.084373][ T4835] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   66.084396][ T4835] RSP: 002b:00007f5f9b407028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   66.084422][ T4835] RAX: ffffffffffffffda RBX: 00007f5f9cc25fa0 RCX: 00007f5f9c9aacb9
[   66.084438][ T4835] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   66.084451][ T4835] RBP: 00007f5f9b407090 R08: 0000000000000000 R09: 0000000000000000
[   66.084463][ T4835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.084475][ T4835] R13: 00007f5f9cc26038 R14: 00007f5f9cc25fa0 R15: 00007fffb343a028
[   66.084494][ T4835]  </TASK>
[   66.302728][   T37] Bluetooth: hci1: Frame reassembly failed (-84)
[   66.318089][ T3557] Bluetooth: hci0: command 0x1003 tx timeout
[   66.324247][ T3558] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   66.466804][ T4846] netlink: 20 bytes leftover after parsing attributes in process `syz.1.461'.
[   66.488152][ T4846] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[   66.560510][ T4855] xt_ecn: cannot match TCP bits for non-tcp packets
[   66.613777][ T4859] FAULT_INJECTION: forcing a failure.
[   66.613777][ T4859] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   66.627184][ T4859] CPU: 0 UID: 0 PID: 4859 Comm: syz.3.464 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   66.627213][ T4859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   66.627226][ T4859] Call Trace:
[   66.627234][ T4859]  <TASK>
[   66.627242][ T4859]  __dump_stack+0x1d/0x30
[   66.627269][ T4859]  dump_stack_lvl+0x95/0xd0
[   66.627335][ T4859]  dump_stack+0x15/0x1b
[   66.627440][ T4859]  should_fail_ex+0x263/0x280
[   66.627482][ T4859]  should_fail_alloc_page+0xf2/0x100
[   66.627512][ T4859]  __alloc_frozen_pages_noprof+0x108/0x350
[   66.627550][ T4859]  alloc_pages_mpol+0xb3/0x260
[   66.627581][ T4859]  ? css_rstat_updated+0xbb/0x280
[   66.627681][ T4859]  vma_alloc_folio_noprof+0x1a9/0x300
[   66.627720][ T4859]  handle_mm_fault+0x111f/0x3030
[   66.627760][ T4859]  ? _raw_spin_lock+0x52/0xa0
[   66.627865][ T4859]  ? __pte_offset_map_lock+0x1d9/0x240
[   66.627967][ T4859]  __get_user_pages+0x1023/0x1ea0
[   66.628023][ T4859]  __mm_populate+0x242/0x390
[   66.628063][ T4859]  do_mlock+0x47c/0x520
[   66.628090][ T4859]  ? mutex_unlock+0x4e/0x90
[   66.628194][ T4859]  ? fput+0x8f/0xc0
[   66.628225][ T4859]  ? ksys_write+0x194/0x1a0
[   66.628307][ T4859]  __x64_sys_mlock+0x36/0x50
[   66.628326][ T4859]  x64_sys_call+0x1794/0x3000
[   66.628354][ T4859]  do_syscall_64+0xc0/0x2a0
[   66.628431][ T4859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.628486][ T4859] RIP: 0033:0x7f5f9c9aacb9
[   66.628558][ T4859] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   66.628581][ T4859] RSP: 002b:00007f5f9b407028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   66.628605][ T4859] RAX: ffffffffffffffda RBX: 00007f5f9cc25fa0 RCX: 00007f5f9c9aacb9
[   66.628623][ T4859] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   66.628639][ T4859] RBP: 00007f5f9b407090 R08: 0000000000000000 R09: 0000000000000000
[   66.628655][ T4859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   66.628747][ T4859] R13: 00007f5f9cc26038 R14: 00007f5f9cc25fa0 R15: 00007fffb343a028
[   66.628771][ T4859]  </TASK>
[   66.950528][ T4863] loop4: detected capacity change from 0 to 1024
[   66.965589][ T4826] Set syz1 is full, maxelem 65536 reached
[   66.973525][ T4863] ext3: Unknown parameter 'noacl'
[   67.019492][ T4844] loop2: detected capacity change from 0 to 512
[   67.026766][ T4844] EXT4-fs: dax option not supported
[   67.051550][ T4844] loop2: detected capacity change from 0 to 512
[   67.085681][ T4844] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   67.129592][ T4844] EXT4-fs (loop2): 1 truncate cleaned up
[   67.136409][ T4869] netlink: 160 bytes leftover after parsing attributes in process `syz.1.468'.
[   67.148776][ T4844] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.195269][ T4867] netlink: 'syz.3.466': attribute type 32 has an invalid length.
[   67.236691][ T4873] loop1: detected capacity change from 0 to 4096
[   67.245852][ T4873] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.291556][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.344087][   T52] Bluetooth: hci0: Frame reassembly failed (-84)
[   67.354471][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.469866][ T4887] loop2: detected capacity change from 0 to 764
[   67.507495][ T4887] macvtap0: refused to change device tx_queue_len
[   67.655535][ T4897] FAULT_INJECTION: forcing a failure.
[   67.655535][ T4897] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   67.669159][ T4897] CPU: 0 UID: 0 PID: 4897 Comm: syz.1.479 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   67.669192][ T4897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   67.669244][ T4897] Call Trace:
[   67.669253][ T4897]  <TASK>
[   67.669264][ T4897]  __dump_stack+0x1d/0x30
[   67.669298][ T4897]  dump_stack_lvl+0x95/0xd0
[   67.669332][ T4897]  dump_stack+0x15/0x1b
[   67.669360][ T4897]  should_fail_ex+0x263/0x280
[   67.669394][ T4897]  should_fail_alloc_page+0xf2/0x100
[   67.669424][ T4897]  __alloc_frozen_pages_noprof+0x108/0x350
[   67.669480][ T4897]  alloc_pages_mpol+0xb3/0x260
[   67.669519][ T4897]  ? css_rstat_updated+0xbb/0x280
[   67.669615][ T4897]  vma_alloc_folio_noprof+0x1a9/0x300
[   67.669650][ T4897]  handle_mm_fault+0x111f/0x3030
[   67.669761][ T4897]  ? _raw_spin_lock+0x52/0xa0
[   67.669787][ T4897]  ? __pte_offset_map_lock+0x1d9/0x240
[   67.669867][ T4897]  __get_user_pages+0x1023/0x1ea0
[   67.669927][ T4897]  __mm_populate+0x242/0x390
[   67.670023][ T4897]  do_mlock+0x47c/0x520
[   67.670047][ T4897]  ? mutex_unlock+0x4e/0x90
[   67.670086][ T4897]  ? fput+0x8f/0xc0
[   67.670120][ T4897]  ? ksys_write+0x194/0x1a0
[   67.670215][ T4897]  __x64_sys_mlock+0x36/0x50
[   67.670236][ T4897]  x64_sys_call+0x1794/0x3000
[   67.670302][ T4897]  do_syscall_64+0xc0/0x2a0
[   67.670327][ T4897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.670357][ T4897] RIP: 0033:0x7fdcd846acb9
[   67.670380][ T4897] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   67.670399][ T4897] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   67.670423][ T4897] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   67.670442][ T4897] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   67.670511][ T4897] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   67.670528][ T4897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   67.670541][ T4897] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   67.670609][ T4897]  </TASK>
[   68.002709][ T4911] loop1: detected capacity change from 0 to 128
[   68.017203][ T4911] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   68.031868][ T4911] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   68.042346][ T4913] netlink: 160 bytes leftover after parsing attributes in process `syz.3.485'.
[   68.042909][ T4910] SELinux: security_context_str_to_sid (�r���TVrb�)��?��ʟ��JOO�'.���j~e9���P*) failed with errno=-22
[   68.159304][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   68.189767][ T4922] FAULT_INJECTION: forcing a failure.
[   68.189767][ T4922] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   68.189880][ T4922] CPU: 0 UID: 0 PID: 4922 Comm: syz.5.488 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   68.189933][ T4922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   68.189949][ T4922] Call Trace:
[   68.190034][ T4922]  <TASK>
[   68.190044][ T4922]  __dump_stack+0x1d/0x30
[   68.190073][ T4922]  dump_stack_lvl+0x95/0xd0
[   68.190160][ T4922]  dump_stack+0x15/0x1b
[   68.190188][ T4922]  should_fail_ex+0x263/0x280
[   68.190220][ T4922]  should_fail_alloc_page+0xf2/0x100
[   68.190307][ T4922]  __alloc_frozen_pages_noprof+0x108/0x350
[   68.190433][ T4922]  alloc_pages_mpol+0xb3/0x260
[   68.190553][ T4922]  vma_alloc_folio_noprof+0x1a9/0x300
[   68.190703][ T4922]  handle_mm_fault+0x111f/0x3030
[   68.190805][ T4922]  ? _raw_spin_lock+0x52/0xa0
[   68.190880][ T4922]  ? __pte_offset_map_lock+0x1d9/0x240
[   68.191037][ T4922]  __get_user_pages+0x1023/0x1ea0
[   68.191154][ T4922]  __mm_populate+0x242/0x390
[   68.191250][ T4922]  do_mlock+0x47c/0x520
[   68.191349][ T4922]  ? mutex_unlock+0x4e/0x90
[   68.191432][ T4922]  ? fput+0x8f/0xc0
[   68.191507][ T4922]  ? ksys_write+0x194/0x1a0
[   68.191656][ T4922]  __x64_sys_mlock+0x36/0x50
[   68.191719][ T4922]  x64_sys_call+0x1794/0x3000
[   68.191893][ T4922]  do_syscall_64+0xc0/0x2a0
[   68.191972][ T4922]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.192104][ T4922] RIP: 0033:0x7fa03d2eacb9
[   68.192154][ T4922] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   68.192207][ T4922] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   68.192269][ T4922] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   68.192463][ T4922] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   68.192505][ T4922] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   68.192546][ T4922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.192580][ T4922] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   68.192644][ T4922]  </TASK>
[   68.212120][ T4921] loop3: detected capacity change from 0 to 764
[   68.284283][ T4924] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[   68.758682][ T4933] netlink: 182 bytes leftover after parsing attributes in process `syz.5.493'.
[   68.758917][ T4933] netlink: 36 bytes leftover after parsing attributes in process `syz.5.493'.
[   68.761193][ T4933] loop5: detected capacity change from 0 to 128
[   68.793540][ T4933] vfat: Unknown parameter '00000000000000000012'
[   68.807406][ T4931] FAULT_INJECTION: forcing a failure.
[   68.807406][ T4931] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   68.807503][ T4931] CPU: 0 UID: 0 PID: 4931 Comm: syz.2.494 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   68.807539][ T4931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   68.807552][ T4931] Call Trace:
[   68.807560][ T4931]  <TASK>
[   68.807570][ T4931]  __dump_stack+0x1d/0x30
[   68.807602][ T4931]  dump_stack_lvl+0x95/0xd0
[   68.807653][ T4931]  dump_stack+0x15/0x1b
[   68.807679][ T4931]  should_fail_ex+0x263/0x280
[   68.807709][ T4931]  should_fail_alloc_page+0xf2/0x100
[   68.807739][ T4931]  __alloc_frozen_pages_noprof+0x108/0x350
[   68.807793][ T4931]  alloc_pages_mpol+0xb3/0x260
[   68.807828][ T4931]  ? css_rstat_updated+0xbb/0x280
[   68.807915][ T4931]  vma_alloc_folio_noprof+0x1a9/0x300
[   68.807948][ T4931]  handle_mm_fault+0x111f/0x3030
[   68.807999][ T4931]  ? _raw_spin_lock+0x52/0xa0
[   68.808029][ T4931]  ? __pte_offset_map_lock+0x1d9/0x240
[   68.808063][ T4931]  __get_user_pages+0x1023/0x1ea0
[   68.808121][ T4931]  __mm_populate+0x242/0x390
[   68.808232][ T4931]  do_mlock+0x47c/0x520
[   68.808256][ T4931]  ? mutex_unlock+0x4e/0x90
[   68.808366][ T4931]  ? fput+0x8f/0xc0
[   68.808392][ T4931]  ? ksys_write+0x194/0x1a0
[   68.808411][ T4931]  __x64_sys_mlock+0x36/0x50
[   68.808433][ T4931]  x64_sys_call+0x1794/0x3000
[   68.808504][ T4931]  do_syscall_64+0xc0/0x2a0
[   68.808540][ T4931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.808566][ T4931] RIP: 0033:0x7f46fa0bacb9
[   68.808590][ T4931] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   68.808721][ T4931] RSP: 002b:00007f46f8b17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   68.808766][ T4931] RAX: ffffffffffffffda RBX: 00007f46fa335fa0 RCX: 00007f46fa0bacb9
[   68.808784][ T4931] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   68.808802][ T4931] RBP: 00007f46f8b17090 R08: 0000000000000000 R09: 0000000000000000
[   68.808818][ T4931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   68.808865][ T4931] R13: 00007f46fa336038 R14: 00007f46fa335fa0 R15: 00007ffe73471f78
[   68.808920][ T4931]  </TASK>
[   69.075879][ T4947] netlink: 160 bytes leftover after parsing attributes in process `syz.3.500'.
[   69.159426][ T4949] loop1: detected capacity change from 0 to 512
[   69.176070][ T4949] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   69.186637][ T4953] FAULT_INJECTION: forcing a failure.
[   69.186637][ T4953] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   69.200092][ T4953] CPU: 0 UID: 0 PID: 4953 Comm: syz.5.503 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   69.200206][ T4953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   69.200248][ T4953] Call Trace:
[   69.200281][ T4953]  <TASK>
[   69.200319][ T4953]  __dump_stack+0x1d/0x30
[   69.200430][ T4953]  dump_stack_lvl+0x95/0xd0
[   69.200497][ T4953]  dump_stack+0x15/0x1b
[   69.200557][ T4953]  should_fail_ex+0x263/0x280
[   69.200646][ T4953]  should_fail_alloc_page+0xf2/0x100
[   69.200730][ T4953]  __alloc_frozen_pages_noprof+0x108/0x350
[   69.200913][ T4953]  alloc_pages_mpol+0xb3/0x260
[   69.201067][ T4953]  ? css_rstat_updated+0xbb/0x280
[   69.201185][ T4953]  vma_alloc_folio_noprof+0x1a9/0x300
[   69.201359][ T4953]  handle_mm_fault+0x111f/0x3030
[   69.201467][ T4953]  ? _raw_spin_lock+0x52/0xa0
[   69.201531][ T4953]  ? __pte_offset_map_lock+0x1d9/0x240
[   69.201638][ T4953]  __get_user_pages+0x1023/0x1ea0
[   69.201838][ T4953]  __mm_populate+0x242/0x390
[   69.201966][ T4953]  do_mlock+0x47c/0x520
[   69.202035][ T4953]  ? mutex_unlock+0x4e/0x90
[   69.202130][ T4953]  ? fput+0x8f/0xc0
[   69.202282][ T4953]  ? ksys_write+0x194/0x1a0
[   69.202360][ T4953]  __x64_sys_mlock+0x36/0x50
[   69.202437][ T4953]  x64_sys_call+0x1794/0x3000
[   69.202517][ T4953]  do_syscall_64+0xc0/0x2a0
[   69.202624][ T4953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.202742][ T4953] RIP: 0033:0x7fa03d2eacb9
[   69.202803][ T4953] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   69.202857][ T4953] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   69.202915][ T4953] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   69.202975][ T4953] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   69.203016][ T4953] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   69.203052][ T4953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.203164][ T4953] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   69.203235][ T4953]  </TASK>
[   69.214111][ T4954] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=57881 sclass=netlink_route_socket pid=4954 comm=syz.3.502
[   69.361247][ T3557] Bluetooth: hci0: command 0x1003 tx timeout
[   69.361277][ T3558] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   69.398959][ T4959] netlink: 52 bytes leftover after parsing attributes in process `syz.5.504'.
[   69.799047][ T4984] FAULT_INJECTION: forcing a failure.
[   69.799047][ T4984] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   69.812605][ T4984] CPU: 0 UID: 0 PID: 4984 Comm: syz.3.510 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   69.812639][ T4984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   69.812655][ T4984] Call Trace:
[   69.812691][ T4984]  <TASK>
[   69.812700][ T4984]  __dump_stack+0x1d/0x30
[   69.812733][ T4984]  dump_stack_lvl+0x95/0xd0
[   69.812770][ T4984]  dump_stack+0x15/0x1b
[   69.812791][ T4984]  should_fail_ex+0x263/0x280
[   69.812865][ T4984]  should_fail_alloc_page+0xf2/0x100
[   69.812897][ T4984]  __alloc_frozen_pages_noprof+0x108/0x350
[   69.812931][ T4984]  alloc_pages_mpol+0xb3/0x260
[   69.813061][ T4984]  ? css_rstat_updated+0xbb/0x280
[   69.813104][ T4984]  vma_alloc_folio_noprof+0x1a9/0x300
[   69.813141][ T4984]  handle_mm_fault+0x111f/0x3030
[   69.813185][ T4984]  ? _raw_spin_lock+0x52/0xa0
[   69.813214][ T4984]  ? __pte_offset_map_lock+0x1d9/0x240
[   69.813329][ T4984]  __get_user_pages+0x1023/0x1ea0
[   69.813435][ T4984]  __mm_populate+0x242/0x390
[   69.813476][ T4984]  do_mlock+0x47c/0x520
[   69.813549][ T4984]  ? mutex_unlock+0x4e/0x90
[   69.813594][ T4984]  ? fput+0x8f/0xc0
[   69.813624][ T4984]  ? ksys_write+0x194/0x1a0
[   69.813691][ T4984]  __x64_sys_mlock+0x36/0x50
[   69.813713][ T4984]  x64_sys_call+0x1794/0x3000
[   69.813808][ T4984]  do_syscall_64+0xc0/0x2a0
[   69.813830][ T4984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.813856][ T4984] RIP: 0033:0x7f5f9c9aacb9
[   69.813954][ T4984] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   69.813975][ T4984] RSP: 002b:00007f5f9b407028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   69.813995][ T4984] RAX: ffffffffffffffda RBX: 00007f5f9cc25fa0 RCX: 00007f5f9c9aacb9
[   69.814011][ T4984] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   69.814099][ T4984] RBP: 00007f5f9b407090 R08: 0000000000000000 R09: 0000000000000000
[   69.814117][ T4984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   69.814135][ T4984] R13: 00007f5f9cc26038 R14: 00007f5f9cc25fa0 R15: 00007fffb343a028
[   69.814155][ T4984]  </TASK>
[   69.817645][ T4969] netlink: 8 bytes leftover after parsing attributes in process `syz.4.507'.
[   70.053074][ T4969] netlink: 'syz.4.507': attribute type 2 has an invalid length.
[   70.203250][   T29] kauditd_printk_skb: 384 callbacks suppressed
[   70.203327][   T29] audit: type=1400 audit(1768773615.140:2275): avc:  denied  { bind } for  pid=4986 comm="syz.5.511" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   70.231363][ T4987] netlink: 'syz.5.511': attribute type 10 has an invalid length.
[   70.244569][ T4987] team0: Failed to send options change via netlink (err -105)
[   70.252222][ T4987] team0: Port device dummy0 added
[   70.259481][ T4987] netlink: 'syz.5.511': attribute type 10 has an invalid length.
[   70.268330][ T4987] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   70.280646][ T4987] team0: Failed to send options change via netlink (err -105)
[   70.288206][ T4987] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   70.297389][ T4987] team0: Port device dummy0 removed
[   70.302662][ T4991] netlink: 160 bytes leftover after parsing attributes in process `syz.3.513'.
[   70.339142][   T29] audit: type=1400 audit(1768773615.280:2276): avc:  denied  { connect } for  pid=4992 comm="syz.1.514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   70.378566][   T12] Bluetooth: hci0: Frame reassembly failed (-84)
[   70.415654][ T4998] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   70.417395][ T5000] FAULT_INJECTION: forcing a failure.
[   70.417395][ T5000] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   70.437559][ T5000] CPU: 1 UID: 0 PID: 5000 Comm: syz.5.517 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   70.437583][ T5000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   70.437595][ T5000] Call Trace:
[   70.437648][ T5000]  <TASK>
[   70.437655][ T5000]  __dump_stack+0x1d/0x30
[   70.437678][ T5000]  dump_stack_lvl+0x95/0xd0
[   70.437697][ T5000]  dump_stack+0x15/0x1b
[   70.437735][ T5000]  should_fail_ex+0x263/0x280
[   70.437757][ T5000]  should_fail_alloc_page+0xf2/0x100
[   70.437778][ T5000]  __alloc_frozen_pages_noprof+0x108/0x350
[   70.437806][ T5000]  alloc_pages_mpol+0xb3/0x260
[   70.437880][ T5000]  ? css_rstat_updated+0xbb/0x280
[   70.437923][ T5000]  vma_alloc_folio_noprof+0x1a9/0x300
[   70.438027][ T5000]  handle_mm_fault+0x111f/0x3030
[   70.438056][ T5000]  ? _raw_spin_lock+0x52/0xa0
[   70.438139][ T5000]  ? __pte_offset_map_lock+0x1d9/0x240
[   70.438166][ T5000]  __get_user_pages+0x1023/0x1ea0
[   70.438202][ T5000]  __mm_populate+0x242/0x390
[   70.438290][ T5000]  do_mlock+0x47c/0x520
[   70.438309][ T5000]  ? mutex_unlock+0x4e/0x90
[   70.438413][ T5000]  ? fput+0x8f/0xc0
[   70.438435][ T5000]  ? ksys_write+0x194/0x1a0
[   70.438506][ T5000]  __x64_sys_mlock+0x36/0x50
[   70.438524][ T5000]  x64_sys_call+0x1794/0x3000
[   70.438557][ T5000]  do_syscall_64+0xc0/0x2a0
[   70.438577][ T5000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.438596][ T5000] RIP: 0033:0x7fa03d2eacb9
[   70.438610][ T5000] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   70.438643][ T5000] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   70.438660][ T5000] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   70.438672][ T5000] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   70.438683][ T5000] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   70.438734][ T5000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.438744][ T5000] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   70.438761][ T5000]  </TASK>
[   70.735910][ T4998] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.751653][ T4998] ext4 filesystem being mounted at /102/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   70.772085][ T5006] netlink: 'syz.5.518': attribute type 10 has an invalid length.
[   70.897909][ T5006] team0: Port device geneve1 added
[   70.990978][ T5025] iso9660: Unknown parameter ''
[   71.017604][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.068024][   T29] audit: type=1326 audit(1768773616.010:2277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5024 comm="syz.5.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   71.098969][   T29] audit: type=1326 audit(1768773616.010:2278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5024 comm="syz.5.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   71.122775][   T29] audit: type=1326 audit(1768773616.010:2279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5024 comm="syz.5.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   71.146923][   T29] audit: type=1326 audit(1768773616.010:2280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5024 comm="syz.5.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   71.168697][ T3557] Bluetooth: hci1: command 0x1003 tx timeout
[   71.170772][   T29] audit: type=1326 audit(1768773616.010:2281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5024 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   71.177119][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   71.200016][   T29] audit: type=1326 audit(1768773616.010:2282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5024 comm="syz.5.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   71.229392][   T29] audit: type=1326 audit(1768773616.010:2283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5024 comm="syz.5.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   71.253523][   T29] audit: type=1326 audit(1768773616.010:2284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5024 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   71.362149][ T5053] FAULT_INJECTION: forcing a failure.
[   71.362149][ T5053] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   71.375487][ T5053] CPU: 0 UID: 0 PID: 5053 Comm: syz.2.524 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.375606][ T5053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   71.375623][ T5053] Call Trace:
[   71.375633][ T5053]  <TASK>
[   71.375643][ T5053]  __dump_stack+0x1d/0x30
[   71.375675][ T5053]  dump_stack_lvl+0x95/0xd0
[   71.375704][ T5053]  dump_stack+0x15/0x1b
[   71.375729][ T5053]  should_fail_ex+0x263/0x280
[   71.375767][ T5053]  should_fail_alloc_page+0xf2/0x100
[   71.375796][ T5053]  __alloc_frozen_pages_noprof+0x108/0x350
[   71.375840][ T5053]  alloc_pages_mpol+0xb3/0x260
[   71.375878][ T5053]  ? css_rstat_updated+0xbb/0x280
[   71.375942][ T5053]  vma_alloc_folio_noprof+0x1a9/0x300
[   71.376046][ T5053]  handle_mm_fault+0x111f/0x3030
[   71.376088][ T5053]  ? _raw_spin_lock+0x52/0xa0
[   71.376120][ T5053]  ? __pte_offset_map_lock+0x1d9/0x240
[   71.376236][ T5053]  __get_user_pages+0x1023/0x1ea0
[   71.376357][ T5053]  __mm_populate+0x242/0x390
[   71.376389][ T5053]  do_mlock+0x47c/0x520
[   71.376413][ T5053]  ? mutex_unlock+0x4e/0x90
[   71.376523][ T5053]  ? fput+0x8f/0xc0
[   71.376577][ T5053]  ? ksys_write+0x194/0x1a0
[   71.376671][ T5053]  __x64_sys_mlock+0x36/0x50
[   71.376715][ T5053]  x64_sys_call+0x1794/0x3000
[   71.376746][ T5053]  do_syscall_64+0xc0/0x2a0
[   71.376773][ T5053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.376802][ T5053] RIP: 0033:0x7f46fa0bacb9
[   71.376902][ T5053] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   71.376921][ T5053] RSP: 002b:00007f46f8b17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   71.376941][ T5053] RAX: ffffffffffffffda RBX: 00007f46fa335fa0 RCX: 00007f46fa0bacb9
[   71.376970][ T5053] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   71.376983][ T5053] RBP: 00007f46f8b17090 R08: 0000000000000000 R09: 0000000000000000
[   71.376996][ T5053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   71.377009][ T5053] R13: 00007f46fa336038 R14: 00007f46fa335fa0 R15: 00007ffe73471f78
[   71.377029][ T5053]  </TASK>
[   71.734156][ T5071] workqueue: Failed to create a rescuer kthread for wq "nfc4_nci_cmd_wq": -EINTR
[   71.760221][ T5088] FAULT_INJECTION: forcing a failure.
[   71.760221][ T5088] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   71.761860][ T5085] __nla_validate_parse: 1 callbacks suppressed
[   71.761909][ T5085] netlink: 160 bytes leftover after parsing attributes in process `syz.1.529'.
[   71.769739][ T5088] CPU: 0 UID: 0 PID: 5088 Comm: syz.5.530 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   71.769901][ T5088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   71.769943][ T5088] Call Trace:
[   71.769962][ T5088]  <TASK>
[   71.769984][ T5088]  __dump_stack+0x1d/0x30
[   71.770098][ T5088]  dump_stack_lvl+0x95/0xd0
[   71.770119][ T5088]  dump_stack+0x15/0x1b
[   71.770212][ T5088]  should_fail_ex+0x263/0x280
[   71.770367][ T5088]  should_fail_alloc_page+0xf2/0x100
[   71.770442][ T5088]  __alloc_frozen_pages_noprof+0x108/0x350
[   71.770599][ T5088]  alloc_pages_mpol+0xb3/0x260
[   71.770634][ T5088]  ? css_rstat_updated+0xbb/0x280
[   71.770741][ T5088]  vma_alloc_folio_noprof+0x1a9/0x300
[   71.770836][ T5088]  handle_mm_fault+0x111f/0x3030
[   71.771002][ T5088]  ? _raw_spin_lock+0x52/0xa0
[   71.771098][ T5088]  ? __pte_offset_map_lock+0x1d9/0x240
[   71.771194][ T5088]  __get_user_pages+0x1023/0x1ea0
[   71.771336][ T5088]  __mm_populate+0x242/0x390
[   71.771475][ T5088]  do_mlock+0x47c/0x520
[   71.771589][ T5088]  ? mutex_unlock+0x4e/0x90
[   71.771703][ T5088]  ? fput+0x8f/0xc0
[   71.771779][ T5088]  ? ksys_write+0x194/0x1a0
[   71.771842][ T5088]  __x64_sys_mlock+0x36/0x50
[   71.771904][ T5088]  x64_sys_call+0x1794/0x3000
[   71.772030][ T5088]  do_syscall_64+0xc0/0x2a0
[   71.772096][ T5088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.772171][ T5088] RIP: 0033:0x7fa03d2eacb9
[   71.772218][ T5088] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   71.772283][ T5088] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   71.772393][ T5088] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   71.772452][ T5088] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   71.772508][ T5088] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   71.772604][ T5088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.772657][ T5088] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   71.772712][ T5088]  </TASK>
[   71.935694][ T5090] netlink: 56 bytes leftover after parsing attributes in process `syz.2.531'.
[   72.048287][ T5090] netlink: 8 bytes leftover after parsing attributes in process `syz.2.531'.
[   72.052176][ T5093] atomic_op ffff88811be26928 conn xmit_atomic 0000000000000000
[   72.112740][ T5090] set_capacity_and_notify: 3 callbacks suppressed
[   72.112756][ T5090] loop2: detected capacity change from 0 to 2048
[   72.128890][ T5096] loop5: detected capacity change from 0 to 764
[   72.179432][ T5090] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.369492][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.397917][ T3557] Bluetooth: hci0: command 0x1003 tx timeout
[   72.397955][ T3558] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   72.532753][ T5120] FAULT_INJECTION: forcing a failure.
[   72.532753][ T5120] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   72.546207][ T5120] CPU: 0 UID: 0 PID: 5120 Comm: syz.4.540 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   72.546239][ T5120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   72.546256][ T5120] Call Trace:
[   72.546266][ T5120]  <TASK>
[   72.546330][ T5120]  __dump_stack+0x1d/0x30
[   72.546364][ T5120]  dump_stack_lvl+0x95/0xd0
[   72.546401][ T5120]  dump_stack+0x15/0x1b
[   72.546473][ T5120]  should_fail_ex+0x263/0x280
[   72.546501][ T5120]  should_fail_alloc_page+0xf2/0x100
[   72.546583][ T5120]  __alloc_frozen_pages_noprof+0x108/0x350
[   72.546624][ T5120]  alloc_pages_mpol+0xb3/0x260
[   72.546793][ T5120]  ? css_rstat_updated+0xbb/0x280
[   72.546842][ T5120]  vma_alloc_folio_noprof+0x1a9/0x300
[   72.546885][ T5120]  handle_mm_fault+0x111f/0x3030
[   72.546928][ T5120]  ? _raw_spin_lock+0x52/0xa0
[   72.547022][ T5120]  ? __pte_offset_map_lock+0x1d9/0x240
[   72.547060][ T5120]  __get_user_pages+0x1023/0x1ea0
[   72.547110][ T5120]  __mm_populate+0x242/0x390
[   72.547229][ T5120]  do_mlock+0x47c/0x520
[   72.547251][ T5120]  ? mutex_unlock+0x4e/0x90
[   72.547290][ T5120]  ? fput+0x8f/0xc0
[   72.547324][ T5120]  ? ksys_write+0x194/0x1a0
[   72.547363][ T5120]  __x64_sys_mlock+0x36/0x50
[   72.547398][ T5120]  x64_sys_call+0x1794/0x3000
[   72.547433][ T5120]  do_syscall_64+0xc0/0x2a0
[   72.547463][ T5120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.547492][ T5120] RIP: 0033:0x7f4d86feacb9
[   72.547552][ T5120] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   72.547623][ T5120] RSP: 002b:00007f4d85a47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   72.547649][ T5120] RAX: ffffffffffffffda RBX: 00007f4d87265fa0 RCX: 00007f4d86feacb9
[   72.547665][ T5120] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   72.547678][ T5120] RBP: 00007f4d85a47090 R08: 0000000000000000 R09: 0000000000000000
[   72.547691][ T5120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   72.547702][ T5120] R13: 00007f4d87266038 R14: 00007f4d87265fa0 R15: 00007fff119ed2b8
[   72.547721][ T5120]  </TASK>
[   72.874778][ T5126] loop4: detected capacity change from 0 to 512
[   72.883716][ T5126] EXT4-fs: Ignoring removed oldalloc option
[   72.894940][ T5126] EXT4-fs (loop4): 1 truncate cleaned up
[   72.901151][ T5126] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.978114][ T5130] netlink: 160 bytes leftover after parsing attributes in process `syz.5.543'.
[   73.024922][ T5126] mmap: syz.4.542 (5126): VmData 29204480 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[   73.042576][ T5137] FAULT_INJECTION: forcing a failure.
[   73.042576][ T5137] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   73.056378][ T5137] CPU: 0 UID: 0 PID: 5137 Comm: syz.2.544 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.056440][ T5137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   73.056513][ T5137] Call Trace:
[   73.056523][ T5137]  <TASK>
[   73.056533][ T5137]  __dump_stack+0x1d/0x30
[   73.056565][ T5137]  dump_stack_lvl+0x95/0xd0
[   73.056647][ T5137]  dump_stack+0x15/0x1b
[   73.056673][ T5137]  should_fail_ex+0x263/0x280
[   73.056714][ T5137]  should_fail_alloc_page+0xf2/0x100
[   73.056747][ T5137]  __alloc_frozen_pages_noprof+0x108/0x350
[   73.056785][ T5137]  alloc_pages_mpol+0xb3/0x260
[   73.056819][ T5137]  ? css_rstat_updated+0xbb/0x280
[   73.056879][ T5137]  vma_alloc_folio_noprof+0x1a9/0x300
[   73.056934][ T5137]  handle_mm_fault+0x111f/0x3030
[   73.056973][ T5137]  ? _raw_spin_lock+0x52/0xa0
[   73.057044][ T5137]  ? __pte_offset_map_lock+0x1d9/0x240
[   73.057080][ T5137]  __get_user_pages+0x1023/0x1ea0
[   73.057123][ T5137]  __mm_populate+0x242/0x390
[   73.057179][ T5137]  do_mlock+0x47c/0x520
[   73.057220][ T5137]  ? mutex_unlock+0x4e/0x90
[   73.057254][ T5137]  ? fput+0x8f/0xc0
[   73.057289][ T5137]  ? ksys_write+0x194/0x1a0
[   73.057378][ T5137]  __x64_sys_mlock+0x36/0x50
[   73.057452][ T5137]  x64_sys_call+0x1794/0x3000
[   73.057484][ T5137]  do_syscall_64+0xc0/0x2a0
[   73.057560][ T5137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.057588][ T5137] RIP: 0033:0x7f46fa0bacb9
[   73.057606][ T5137] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   73.057652][ T5137] RSP: 002b:00007f46f8b17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   73.057672][ T5137] RAX: ffffffffffffffda RBX: 00007f46fa335fa0 RCX: 00007f46fa0bacb9
[   73.057689][ T5137] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   73.057706][ T5137] RBP: 00007f46f8b17090 R08: 0000000000000000 R09: 0000000000000000
[   73.057763][ T5137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.057775][ T5137] R13: 00007f46fa336038 R14: 00007f46fa335fa0 R15: 00007ffe73471f78
[   73.057798][ T5137]  </TASK>
[   73.331884][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.418775][ T5150] FAULT_INJECTION: forcing a failure.
[   73.418775][ T5150] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   73.432296][ T5150] CPU: 0 UID: 0 PID: 5150 Comm: syz.3.551 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   73.432327][ T5150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   73.432413][ T5150] Call Trace:
[   73.432420][ T5150]  <TASK>
[   73.432428][ T5150]  __dump_stack+0x1d/0x30
[   73.432508][ T5150]  dump_stack_lvl+0x95/0xd0
[   73.432535][ T5150]  dump_stack+0x15/0x1b
[   73.432622][ T5150]  should_fail_ex+0x263/0x280
[   73.432648][ T5150]  should_fail_alloc_page+0xf2/0x100
[   73.432677][ T5150]  __alloc_frozen_pages_noprof+0x108/0x350
[   73.432715][ T5150]  alloc_pages_mpol+0xb3/0x260
[   73.432917][ T5150]  ? css_rstat_updated+0xbb/0x280
[   73.433020][ T5150]  vma_alloc_folio_noprof+0x1a9/0x300
[   73.433048][ T5150]  handle_mm_fault+0x111f/0x3030
[   73.433091][ T5150]  ? _raw_spin_lock+0x52/0xa0
[   73.433113][ T5150]  ? __pte_offset_map_lock+0x1d9/0x240
[   73.433211][ T5150]  __get_user_pages+0x1023/0x1ea0
[   73.433246][ T5150]  __mm_populate+0x242/0x390
[   73.433317][ T5150]  do_mlock+0x47c/0x520
[   73.433343][ T5150]  ? mutex_unlock+0x4e/0x90
[   73.433379][ T5150]  ? fput+0x8f/0xc0
[   73.433492][ T5150]  ? ksys_write+0x194/0x1a0
[   73.433518][ T5150]  __x64_sys_mlock+0x36/0x50
[   73.433540][ T5150]  x64_sys_call+0x1794/0x3000
[   73.433565][ T5150]  do_syscall_64+0xc0/0x2a0
[   73.433600][ T5150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.433627][ T5150] RIP: 0033:0x7f5f9c9aacb9
[   73.433648][ T5150] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   73.433712][ T5150] RSP: 002b:00007f5f9b407028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   73.433731][ T5150] RAX: ffffffffffffffda RBX: 00007f5f9cc25fa0 RCX: 00007f5f9c9aacb9
[   73.433748][ T5150] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   73.433765][ T5150] RBP: 00007f5f9b407090 R08: 0000000000000000 R09: 0000000000000000
[   73.433781][ T5150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   73.433797][ T5150] R13: 00007f5f9cc26038 R14: 00007f5f9cc25fa0 R15: 00007fffb343a028
[   73.433846][ T5150]  </TASK>
[   73.757267][ T5157] loop2: detected capacity change from 0 to 764
[   73.875656][ T5160] netlink: 20 bytes leftover after parsing attributes in process `syz.3.555'.
[   73.917045][ T5165] netlink: 160 bytes leftover after parsing attributes in process `syz.5.557'.
[   74.002045][ T5169] loop5: detected capacity change from 0 to 8192
[   74.022606][ T5169] netlink: 8 bytes leftover after parsing attributes in process `syz.5.559'.
[   74.031511][ T5169] netlink: 4 bytes leftover after parsing attributes in process `syz.5.559'.
[   74.040902][ T5169] netlink: 'syz.5.559': attribute type 18 has an invalid length.
[   74.048779][ T5169] netlink: 8 bytes leftover after parsing attributes in process `syz.5.559'.
[   74.059088][ T5171] 9pnet: p9_errstr2errno: server reported unknown error 0x000
[   74.067392][ T5172] netlink: 20 bytes leftover after parsing attributes in process `syz.2.560'.
[   74.139789][ T5174] FAULT_INJECTION: forcing a failure.
[   74.139789][ T5174] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   74.153302][ T5174] CPU: 1 UID: 0 PID: 5174 Comm: syz.2.561 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   74.153334][ T5174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   74.153368][ T5174] Call Trace:
[   74.153375][ T5174]  <TASK>
[   74.153382][ T5174]  __dump_stack+0x1d/0x30
[   74.153405][ T5174]  dump_stack_lvl+0x95/0xd0
[   74.153474][ T5174]  dump_stack+0x15/0x1b
[   74.153501][ T5174]  should_fail_ex+0x263/0x280
[   74.153569][ T5174]  should_fail_alloc_page+0xf2/0x100
[   74.153599][ T5174]  __alloc_frozen_pages_noprof+0x108/0x350
[   74.153673][ T5174]  alloc_pages_mpol+0xb3/0x260
[   74.153699][ T5174]  ? css_rstat_updated+0xbb/0x280
[   74.153729][ T5174]  vma_alloc_folio_noprof+0x1a9/0x300
[   74.153810][ T5174]  handle_mm_fault+0x111f/0x3030
[   74.153839][ T5174]  ? _raw_spin_lock+0x52/0xa0
[   74.153895][ T5174]  ? __pte_offset_map_lock+0x1d9/0x240
[   74.153985][ T5174]  __get_user_pages+0x1023/0x1ea0
[   74.154047][ T5174]  __mm_populate+0x242/0x390
[   74.154075][ T5174]  do_mlock+0x47c/0x520
[   74.154137][ T5174]  ? mutex_unlock+0x4e/0x90
[   74.154162][ T5174]  ? fput+0x8f/0xc0
[   74.154184][ T5174]  ? ksys_write+0x194/0x1a0
[   74.154201][ T5174]  __x64_sys_mlock+0x36/0x50
[   74.154259][ T5174]  x64_sys_call+0x1794/0x3000
[   74.154281][ T5174]  do_syscall_64+0xc0/0x2a0
[   74.154300][ T5174]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.154344][ T5174] RIP: 0033:0x7f46fa0bacb9
[   74.154358][ T5174] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   74.154374][ T5174] RSP: 002b:00007f46f8b17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   74.154460][ T5174] RAX: ffffffffffffffda RBX: 00007f46fa335fa0 RCX: 00007f46fa0bacb9
[   74.154491][ T5174] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   74.154503][ T5174] RBP: 00007f46f8b17090 R08: 0000000000000000 R09: 0000000000000000
[   74.154514][ T5174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.154525][ T5174] R13: 00007f46fa336038 R14: 00007f46fa335fa0 R15: 00007ffe73471f78
[   74.154542][ T5174]  </TASK>
[   74.385754][ T3557] Bluetooth: hci1: command 0x1003 tx timeout
[   74.388392][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   74.499614][ T5184] FAULT_INJECTION: forcing a failure.
[   74.499614][ T5184] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   74.512999][ T5184] CPU: 1 UID: 0 PID: 5184 Comm: syz.5.564 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   74.513026][ T5184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   74.513119][ T5184] Call Trace:
[   74.513128][ T5184]  <TASK>
[   74.513137][ T5184]  __dump_stack+0x1d/0x30
[   74.513169][ T5184]  dump_stack_lvl+0x95/0xd0
[   74.513322][ T5184]  dump_stack+0x15/0x1b
[   74.513344][ T5184]  should_fail_ex+0x263/0x280
[   74.513369][ T5184]  should_fail_alloc_page+0xf2/0x100
[   74.513396][ T5184]  __alloc_frozen_pages_noprof+0x108/0x350
[   74.513517][ T5184]  alloc_pages_mpol+0xb3/0x260
[   74.513612][ T5184]  ? css_rstat_updated+0xbb/0x280
[   74.513649][ T5184]  vma_alloc_folio_noprof+0x1a9/0x300
[   74.513748][ T5184]  handle_mm_fault+0x111f/0x3030
[   74.513786][ T5184]  ? _raw_spin_lock+0x52/0xa0
[   74.513832][ T5184]  ? __pte_offset_map_lock+0x1d9/0x240
[   74.513937][ T5184]  __get_user_pages+0x1023/0x1ea0
[   74.514020][ T5184]  __mm_populate+0x242/0x390
[   74.514055][ T5184]  do_mlock+0x47c/0x520
[   74.514077][ T5184]  ? mutex_unlock+0x4e/0x90
[   74.514127][ T5184]  ? fput+0x8f/0xc0
[   74.514161][ T5184]  ? ksys_write+0x194/0x1a0
[   74.514181][ T5184]  __x64_sys_mlock+0x36/0x50
[   74.514200][ T5184]  x64_sys_call+0x1794/0x3000
[   74.514264][ T5184]  do_syscall_64+0xc0/0x2a0
[   74.514292][ T5184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.514322][ T5184] RIP: 0033:0x7fa03d2eacb9
[   74.514340][ T5184] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   74.514362][ T5184] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   74.514389][ T5184] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   74.514465][ T5184] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   74.514479][ T5184] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   74.514492][ T5184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.514504][ T5184] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   74.514523][ T5184]  </TASK>
[   74.733495][ T5186] loop2: detected capacity change from 0 to 1024
[   74.840996][ T5193] loop1: detected capacity change from 0 to 764
[   74.944767][ T5201] loop3: detected capacity change from 0 to 8192
[   75.016967][ T5201] FAT-fs (loop3): error, corrupted directory (invalid entries)
[   75.024813][ T5201] FAT-fs (loop3): Filesystem has been set read-only
[   75.064189][  T565] Bluetooth: hci1: Frame reassembly failed (-84)
[   75.163626][ T5215] loop1: detected capacity change from 0 to 2048
[   75.191605][ T5215] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   75.243547][ T3318] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.287711][ T5223] FAULT_INJECTION: forcing a failure.
[   75.287711][ T5223] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   75.301297][ T5223] CPU: 1 UID: 0 PID: 5223 Comm: syz.1.576 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   75.301324][ T5223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   75.301336][ T5223] Call Trace:
[   75.301344][ T5223]  <TASK>
[   75.301351][ T5223]  __dump_stack+0x1d/0x30
[   75.301383][ T5223]  dump_stack_lvl+0x95/0xd0
[   75.301465][ T5223]  dump_stack+0x15/0x1b
[   75.301492][ T5223]  should_fail_ex+0x263/0x280
[   75.301563][ T5223]  should_fail_alloc_page+0xf2/0x100
[   75.301608][ T5223]  __alloc_frozen_pages_noprof+0x108/0x350
[   75.301697][ T5223]  alloc_pages_mpol+0xb3/0x260
[   75.301729][ T5223]  ? css_rstat_updated+0xbb/0x280
[   75.301828][ T5223]  vma_alloc_folio_noprof+0x1a9/0x300
[   75.301916][ T5223]  handle_mm_fault+0x111f/0x3030
[   75.302016][ T5223]  ? _raw_spin_lock+0x52/0xa0
[   75.302041][ T5223]  ? __pte_offset_map_lock+0x1d9/0x240
[   75.302072][ T5223]  __get_user_pages+0x1023/0x1ea0
[   75.302180][ T5223]  __mm_populate+0x242/0x390
[   75.302222][ T5223]  do_mlock+0x47c/0x520
[   75.302245][ T5223]  ? mutex_unlock+0x4e/0x90
[   75.302318][ T5223]  ? fput+0x8f/0xc0
[   75.302348][ T5223]  ? ksys_write+0x194/0x1a0
[   75.302371][ T5223]  __x64_sys_mlock+0x36/0x50
[   75.302396][ T5223]  x64_sys_call+0x1794/0x3000
[   75.302494][ T5223]  do_syscall_64+0xc0/0x2a0
[   75.302521][ T5223]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.302549][ T5223] RIP: 0033:0x7fdcd846acb9
[   75.302569][ T5223] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   75.302610][ T5223] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   75.302635][ T5223] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   75.302654][ T5223] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   75.302733][ T5223] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   75.302750][ T5223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   75.302794][ T5223] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   75.302813][ T5223]  </TASK>
[   75.469098][ T3558] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   75.663279][ T5237] FAULT_INJECTION: forcing a failure.
[   75.663279][ T5237] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   75.676679][ T5237] CPU: 1 UID: 0 PID: 5237 Comm: syz.4.581 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   75.676711][ T5237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   75.676724][ T5237] Call Trace:
[   75.676729][ T5237]  <TASK>
[   75.676770][ T5237]  __dump_stack+0x1d/0x30
[   75.676800][ T5237]  dump_stack_lvl+0x95/0xd0
[   75.676844][ T5237]  dump_stack+0x15/0x1b
[   75.676875][ T5237]  should_fail_ex+0x263/0x280
[   75.676899][ T5237]  should_fail_alloc_page+0xf2/0x100
[   75.676983][ T5237]  __alloc_frozen_pages_noprof+0x108/0x350
[   75.677086][ T5237]  alloc_pages_mpol+0xb3/0x260
[   75.677176][ T5237]  ? css_rstat_updated+0xbb/0x280
[   75.677295][ T5237]  vma_alloc_folio_noprof+0x1a9/0x300
[   75.677328][ T5237]  handle_mm_fault+0x111f/0x3030
[   75.677360][ T5237]  ? _raw_spin_lock+0x52/0xa0
[   75.677401][ T5237]  ? __pte_offset_map_lock+0x1d9/0x240
[   75.677432][ T5237]  __get_user_pages+0x1023/0x1ea0
[   75.677494][ T5237]  __mm_populate+0x242/0x390
[   75.677526][ T5237]  do_mlock+0x47c/0x520
[   75.677548][ T5237]  ? mutex_unlock+0x4e/0x90
[   75.677588][ T5237]  ? fput+0x8f/0xc0
[   75.677614][ T5237]  ? ksys_write+0x194/0x1a0
[   75.677634][ T5237]  __x64_sys_mlock+0x36/0x50
[   75.677655][ T5237]  x64_sys_call+0x1794/0x3000
[   75.677681][ T5237]  do_syscall_64+0xc0/0x2a0
[   75.677752][ T5237]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.677775][ T5237] RIP: 0033:0x7f4d86feacb9
[   75.677791][ T5237] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   75.677851][ T5237] RSP: 002b:00007f4d85a47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   75.677873][ T5237] RAX: ffffffffffffffda RBX: 00007f4d87265fa0 RCX: 00007f4d86feacb9
[   75.678058][ T5237] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   75.678072][ T5237] RBP: 00007f4d85a47090 R08: 0000000000000000 R09: 0000000000000000
[   75.678085][ T5237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   75.678097][ T5237] R13: 00007f4d87266038 R14: 00007f4d87265fa0 R15: 00007fff119ed2b8
[   75.678117][ T5237]  </TASK>
[   75.911222][   T29] kauditd_printk_skb: 389 callbacks suppressed
[   75.911244][   T29] audit: type=1400 audit(1768773620.850:2674): avc:  denied  { setopt } for  pid=5238 comm="syz.1.582" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   75.972472][   T29] audit: type=1400 audit(1768773620.910:2675): avc:  denied  { bind } for  pid=5238 comm="syz.1.582" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   75.993408][ T5239] loop1: detected capacity change from 0 to 128
[   76.009595][   T29] audit: type=1400 audit(1768773620.950:2676): avc:  denied  { watch watch_reads } for  pid=5238 comm="syz.1.582" path="/142/file1/file2" dev="loop1" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1
[   76.055194][ T5245] msdos: Unknown parameter ''
[   76.117824][ T5247] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[   76.201030][ T3634] Bluetooth: hci0: Frame reassembly failed (-84)
[   76.248996][ T5260] FAULT_INJECTION: forcing a failure.
[   76.248996][ T5260] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   76.262561][ T5260] CPU: 1 UID: 0 PID: 5260 Comm: syz.1.590 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   76.262593][ T5260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   76.262610][ T5260] Call Trace:
[   76.262618][ T5260]  <TASK>
[   76.262626][ T5260]  __dump_stack+0x1d/0x30
[   76.262659][ T5260]  dump_stack_lvl+0x95/0xd0
[   76.262700][ T5260]  dump_stack+0x15/0x1b
[   76.262802][ T5260]  should_fail_ex+0x263/0x280
[   76.262874][ T5260]  should_fail_alloc_page+0xf2/0x100
[   76.262905][ T5260]  __alloc_frozen_pages_noprof+0x108/0x350
[   76.262946][ T5260]  alloc_pages_mpol+0xb3/0x260
[   76.263021][ T5260]  ? css_rstat_updated+0xbb/0x280
[   76.263068][ T5260]  vma_alloc_folio_noprof+0x1a9/0x300
[   76.263115][ T5260]  handle_mm_fault+0x111f/0x3030
[   76.263157][ T5260]  ? _raw_spin_lock+0x52/0xa0
[   76.263255][ T5260]  ? __pte_offset_map_lock+0x1d9/0x240
[   76.263296][ T5260]  __get_user_pages+0x1023/0x1ea0
[   76.263364][ T5260]  __mm_populate+0x242/0x390
[   76.263402][ T5260]  do_mlock+0x47c/0x520
[   76.263471][ T5260]  ? mutex_unlock+0x4e/0x90
[   76.263571][ T5260]  ? fput+0x8f/0xc0
[   76.263604][ T5260]  ? ksys_write+0x194/0x1a0
[   76.263631][ T5260]  __x64_sys_mlock+0x36/0x50
[   76.263700][ T5260]  x64_sys_call+0x1794/0x3000
[   76.263734][ T5260]  do_syscall_64+0xc0/0x2a0
[   76.263763][ T5260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.263800][ T5260] RIP: 0033:0x7fdcd846acb9
[   76.263828][ T5260] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   76.263924][ T5260] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   76.263950][ T5260] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   76.263989][ T5260] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   76.264006][ T5260] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   76.264023][ T5260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   76.264040][ T5260] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   76.264116][ T5260]  </TASK>
[   76.572465][   T29] audit: type=1326 audit(1768773621.510:2677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5265 comm="syz.5.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   76.628126][   T29] audit: type=1326 audit(1768773621.510:2678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5265 comm="syz.5.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   76.651728][   T29] audit: type=1326 audit(1768773621.540:2679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5265 comm="syz.5.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   76.675436][   T29] audit: type=1326 audit(1768773621.540:2680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5265 comm="syz.5.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   76.699047][   T29] audit: type=1326 audit(1768773621.540:2681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5265 comm="syz.5.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   76.723030][   T29] audit: type=1326 audit(1768773621.540:2682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5265 comm="syz.5.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   76.748682][   T29] audit: type=1326 audit(1768773621.540:2684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5265 comm="syz.5.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa03d2eacb9 code=0x7ffc0000
[   76.858486][ T5274] EXT4-fs: Ignoring removed mblk_io_submit option
[   76.882251][ T5274] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.918161][ T5274] 9p: Bad value for 'rfdno'
[   76.928594][ T5274] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.595: bg 0: block 234: padding at end of block bitmap is not set
[   76.987760][ T5274] EXT4-fs (loop5): Remounting filesystem read-only
[   77.009495][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.032014][ T5279] __nla_validate_parse: 2 callbacks suppressed
[   77.032032][ T5279] netlink: 160 bytes leftover after parsing attributes in process `syz.4.597'.
[   77.077175][ T5283] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   77.088564][ T5283] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   77.088681][ T5283] EXT4-fs: failed to create workqueue
[   77.103867][ T5283] EXT4-fs (loop4): mount failed
[   77.110169][ T5281] FAULT_INJECTION: forcing a failure.
[   77.110169][ T5281] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   77.124477][ T5281] CPU: 1 UID: 0 PID: 5281 Comm: syz.5.596 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.124534][ T5281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   77.124628][ T5281] Call Trace:
[   77.124636][ T5281]  <TASK>
[   77.124644][ T5281]  __dump_stack+0x1d/0x30
[   77.124680][ T5281]  dump_stack_lvl+0x95/0xd0
[   77.124707][ T5281]  dump_stack+0x15/0x1b
[   77.124808][ T5281]  should_fail_ex+0x263/0x280
[   77.124836][ T5281]  should_fail_alloc_page+0xf2/0x100
[   77.124861][ T5281]  __alloc_frozen_pages_noprof+0x108/0x350
[   77.124927][ T5281]  alloc_pages_mpol+0xb3/0x260
[   77.124962][ T5281]  ? css_rstat_updated+0xbb/0x280
[   77.124999][ T5281]  vma_alloc_folio_noprof+0x1a9/0x300
[   77.125182][ T5281]  handle_mm_fault+0x111f/0x3030
[   77.125302][ T5281]  ? _raw_spin_lock+0x52/0xa0
[   77.125328][ T5281]  ? __pte_offset_map_lock+0x1d9/0x240
[   77.125368][ T5281]  __get_user_pages+0x1023/0x1ea0
[   77.125416][ T5281]  __mm_populate+0x242/0x390
[   77.125503][ T5281]  do_mlock+0x47c/0x520
[   77.125524][ T5281]  ? mutex_unlock+0x4e/0x90
[   77.125570][ T5281]  ? fput+0x8f/0xc0
[   77.125632][ T5281]  ? ksys_write+0x194/0x1a0
[   77.125664][ T5281]  __x64_sys_mlock+0x36/0x50
[   77.125717][ T5281]  x64_sys_call+0x1794/0x3000
[   77.125880][ T5281]  do_syscall_64+0xc0/0x2a0
[   77.125904][ T5281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.125931][ T5281] RIP: 0033:0x7fa03d2eacb9
[   77.126016][ T5281] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   77.126035][ T5281] RSP: 002b:00007fa03bd47028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   77.126059][ T5281] RAX: ffffffffffffffda RBX: 00007fa03d565fa0 RCX: 00007fa03d2eacb9
[   77.126073][ T5281] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   77.126088][ T5281] RBP: 00007fa03bd47090 R08: 0000000000000000 R09: 0000000000000000
[   77.126226][ T5281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   77.126311][ T5281] R13: 00007fa03d566038 R14: 00007fa03d565fa0 R15: 00007fff406574a8
[   77.126330][ T5281]  </TASK>
[   77.126424][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   77.128570][ T3557] Bluetooth: hci1: command 0x1003 tx timeout
[   77.371600][ T5289] set_capacity_and_notify: 5 callbacks suppressed
[   77.371654][ T5289] loop4: detected capacity change from 0 to 764
[   77.451354][ T5300] FAULT_INJECTION: forcing a failure.
[   77.451354][ T5300] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   77.464697][ T5300] CPU: 1 UID: 0 PID: 5300 Comm: syz.2.604 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.464747][ T5300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   77.464765][ T5300] Call Trace:
[   77.464774][ T5300]  <TASK>
[   77.464789][ T5300]  __dump_stack+0x1d/0x30
[   77.464822][ T5300]  dump_stack_lvl+0x95/0xd0
[   77.464850][ T5300]  dump_stack+0x15/0x1b
[   77.464979][ T5300]  should_fail_ex+0x263/0x280
[   77.465012][ T5300]  should_fail_alloc_page+0xf2/0x100
[   77.465116][ T5300]  __alloc_frozen_pages_noprof+0x108/0x350
[   77.465156][ T5300]  alloc_pages_mpol+0xb3/0x260
[   77.465247][ T5300]  ? css_rstat_updated+0xbb/0x280
[   77.465289][ T5300]  vma_alloc_folio_noprof+0x1a9/0x300
[   77.465328][ T5300]  handle_mm_fault+0x111f/0x3030
[   77.465372][ T5300]  ? _raw_spin_lock+0x52/0xa0
[   77.465403][ T5300]  ? __pte_offset_map_lock+0x1d9/0x240
[   77.465489][ T5300]  __get_user_pages+0x1023/0x1ea0
[   77.465530][ T5300]  __mm_populate+0x242/0x390
[   77.465586][ T5300]  do_mlock+0x47c/0x520
[   77.465612][ T5300]  ? mutex_unlock+0x4e/0x90
[   77.465663][ T5300]  ? fput+0x8f/0xc0
[   77.465773][ T5300]  ? ksys_write+0x194/0x1a0
[   77.465852][ T5300]  __x64_sys_mlock+0x36/0x50
[   77.465874][ T5300]  x64_sys_call+0x1794/0x3000
[   77.465906][ T5300]  do_syscall_64+0xc0/0x2a0
[   77.465927][ T5300]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.465995][ T5300] RIP: 0033:0x7f46fa0bacb9
[   77.466012][ T5300] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   77.466042][ T5300] RSP: 002b:00007f46f8b17028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   77.466068][ T5300] RAX: ffffffffffffffda RBX: 00007f46fa335fa0 RCX: 00007f46fa0bacb9
[   77.466086][ T5300] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   77.466103][ T5300] RBP: 00007f46f8b17090 R08: 0000000000000000 R09: 0000000000000000
[   77.466171][ T5300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   77.466184][ T5300] R13: 00007f46fa336038 R14: 00007f46fa335fa0 R15: 00007ffe73471f78
[   77.466210][ T5300]  </TASK>
[   77.762174][ T5311] netlink: 160 bytes leftover after parsing attributes in process `syz.4.609'.
[   77.772120][ T5312] netlink: 56537 bytes leftover after parsing attributes in process `syz.5.608'.
[   77.785469][ T5315] netlink: 16 bytes leftover after parsing attributes in process `syz.2.610'.
[   77.795852][ T5315] netlink: 20 bytes leftover after parsing attributes in process `syz.2.610'.
[   77.807701][ T5315] loop2: detected capacity change from 0 to 512
[   77.847996][ T5121] Bluetooth: hci1: Frame reassembly failed (-84)
[   77.979474][ T5324] FAULT_INJECTION: forcing a failure.
[   77.979474][ T5324] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   77.993105][ T5324] CPU: 0 UID: 0 PID: 5324 Comm: syz.1.614 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.993139][ T5324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   77.993152][ T5324] Call Trace:
[   77.993158][ T5324]  <TASK>
[   77.993165][ T5324]  __dump_stack+0x1d/0x30
[   77.993216][ T5324]  dump_stack_lvl+0x95/0xd0
[   77.993310][ T5324]  dump_stack+0x15/0x1b
[   77.993406][ T5324]  should_fail_ex+0x263/0x280
[   77.993428][ T5324]  should_fail_alloc_page+0xf2/0x100
[   77.993449][ T5324]  __alloc_frozen_pages_noprof+0x108/0x350
[   77.993531][ T5324]  alloc_pages_mpol+0xb3/0x260
[   77.993556][ T5324]  ? css_rstat_updated+0xbb/0x280
[   77.993673][ T5324]  vma_alloc_folio_noprof+0x1a9/0x300
[   77.993779][ T5324]  handle_mm_fault+0x111f/0x3030
[   77.993807][ T5324]  ? _raw_spin_lock+0x52/0xa0
[   77.993828][ T5324]  ? __pte_offset_map_lock+0x1d9/0x240
[   77.993929][ T5324]  __get_user_pages+0x1023/0x1ea0
[   77.993978][ T5324]  __mm_populate+0x242/0x390
[   77.994017][ T5324]  do_mlock+0x47c/0x520
[   77.994035][ T5324]  ? mutex_unlock+0x4e/0x90
[   77.994061][ T5324]  ? fput+0x8f/0xc0
[   77.994107][ T5324]  ? ksys_write+0x194/0x1a0
[   77.994125][ T5324]  __x64_sys_mlock+0x36/0x50
[   77.994150][ T5324]  x64_sys_call+0x1794/0x3000
[   77.994241][ T5324]  do_syscall_64+0xc0/0x2a0
[   77.994260][ T5324]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.994346][ T5324] RIP: 0033:0x7fdcd846acb9
[   77.994409][ T5324] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   77.994425][ T5324] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   77.994505][ T5324] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   77.994517][ T5324] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   77.994529][ T5324] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   77.994568][ T5324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   77.994579][ T5324] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   77.994596][ T5324]  </TASK>
[   78.238025][ T3558] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   78.291228][ T5328] netlink: 'syz.1.616': attribute type 10 has an invalid length.
[   78.299360][ T5328] macvlan1: entered allmulticast mode
[   78.321464][ T5328] veth1_vlan: entered allmulticast mode
[   78.337193][ T5328] team0: Port device macvlan1 added
[   78.343285][ T5330] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5330 comm=syz.3.617
[   78.373954][ T5330] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5330 comm=syz.3.617
[   78.400286][ T5335] ------------[ cut here ]------------
[   78.405796][ T5335] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xffffdfcd, 0xffffffffffffdfcc] s64=[0x80000000ffffdfcd, 0x7fffffffffffdfcc] u32=[0xffffdfcd, 0xffffdfcc] s32=[0xffffdfcd, 0xffffdfcc] var_off=(0xffffdfcc, 0xffffffff00000000)
[   78.430502][ T5335] WARNING: kernel/bpf/verifier.c:2748 at reg_bounds_sanity_check+0x15b/0x660, CPU#1: syz.1.619/5335
[   78.441525][ T5335] Modules linked in:
[   78.445543][ T5335] CPU: 1 UID: 0 PID: 5335 Comm: syz.1.619 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.455303][ T5335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   78.465664][ T5335] RIP: 0010:reg_bounds_sanity_check+0x27d/0x660
[   78.471983][ T5335] Code: 24 78 4c 8b 44 24 70 4c 8b 4c 24 60 41 ff 74 24 20 41 55 53 ff 74 24 68 ff 74 24 78 ff b4 24 90 00 00 00 ff b4 24 b0 00 00 00 <67> 48 0f b9 3a 48 83 c4 38 4c 8b ac 24 98 00 00 00 49 8d 85 80 08
[   78.491880][ T5335] RSP: 0018:ffffc900086bf3a0 EFLAGS: 00010246
[   78.498266][ T5335] RAX: ffff88810a19cc90 RBX: 00000000ffffdfcc RCX: 00000000ffffdfcd
[   78.506270][ T5335] RDX: ffffffff867fcb34 RSI: ffffffff866c6dc8 RDI: ffffffff86fb6f20
[   78.514330][ T5335] RBP: ffff88811a268a70 R08: ffffffffffffdfcc R09: 80000000ffffdfcd
[   78.522363][ T5335] R10: 00000000000000d0 R11: 0000000000000002 R12: ffff88811a268a30
[   78.530624][ T5335] R13: 00000000ffffdfcc R14: ffff88811a268a7c R15: ffff88811a268a68
[   78.538862][ T5335] FS:  00007fdcd6ec76c0(0000) GS:ffff8882aec79000(0000) knlGS:0000000000000000
[   78.548104][ T5335] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   78.554784][ T5335] CR2: 0000200000001000 CR3: 0000000113872000 CR4: 00000000003506f0
[   78.563019][ T5335] Call Trace:
[   78.566425][ T5335]  <TASK>
[   78.569449][ T5335]  reg_set_min_max+0x1c8/0x260
[   78.574366][ T5335]  check_cond_jmp_op+0x13bd/0x1a80
[   78.579670][ T5335]  do_check+0x3356/0x8250
[   78.584143][ T5335]  do_check_common+0xccf/0x1300
[   78.589183][ T5335]  bpf_check+0x2f85/0xc890
[   78.593773][ T5335]  ? __alloc_frozen_pages_noprof+0x18a/0x350
[   78.599839][ T5335]  ? __vmap_pages_range_noflush+0xb9c/0xcc0
[   78.605854][ T5335]  ? pcpu_block_update+0x24e/0x3b0
[   78.611084][ T5335]  ? pcpu_block_refresh_hint+0x157/0x170
[   78.616834][ T5335]  ? pcpu_block_update_hint_alloc+0x640/0x660
[   78.623000][ T5335]  ? css_rstat_updated+0xbb/0x280
[   78.628231][ T5335]  ? mod_memcg_state+0x182/0x260
[   78.633213][ T5335]  ? __rcu_read_unlock+0x4e/0x70
[   78.638308][ T5335]  ? pcpu_memcg_post_alloc_hook+0xec/0x170
[   78.644168][ T5335]  ? pcpu_alloc_noprof+0xd18/0x1210
[   78.649495][ T5335]  ? should_fail_ex+0x30/0x280
[   78.654508][ T5335]  ? __kmalloc_noprof+0x2a3/0x580
[   78.659715][ T5335]  ? security_bpf_prog_load+0x60/0x140
[   78.665384][ T5335]  ? selinux_bpf_prog_load+0xac/0xd0
[   78.670783][ T5335]  ? security_bpf_prog_load+0x9e/0x140
[   78.676405][ T5335]  bpf_prog_load+0xf76/0x1140
[   78.681197][ T5335]  ? security_bpf+0x2b/0x90
[   78.685764][ T5335]  __sys_bpf+0x469/0x7b0
[   78.690125][ T5335]  __x64_sys_bpf+0x41/0x50
[   78.694669][ T5335]  x64_sys_call+0x28e1/0x3000
[   78.699445][ T5335]  do_syscall_64+0xc0/0x2a0
[   78.704170][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.710365][ T5335] RIP: 0033:0x7fdcd846acb9
[   78.714849][ T5335] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   78.734649][ T5335] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   78.743303][ T5335] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   78.751638][ T5335] RDX: 0000000000000049 RSI: 0000200000000140 RDI: 0000000000000005
[   78.759908][ T5335] RBP: 00007fdcd84d8bf7 R08: 0000000000000000 R09: 0000000000000000
[   78.767989][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   78.776031][ T5335] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   78.784099][ T5335]  </TASK>
[   78.787179][ T5335] ---[ end trace 0000000000000000 ]---
[   78.793110][ T5341] loop5: detected capacity change from 0 to 512
[   78.811608][ T5341] EXT4-fs: Ignoring removed bh option
[   78.837340][ T5343] FAULT_INJECTION: forcing a failure.
[   78.837340][ T5343] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   78.850932][ T5343] CPU: 0 UID: 0 PID: 5343 Comm: syz.3.623 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   78.850970][ T5343] Tainted: [W]=WARN
[   78.850978][ T5343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   78.850991][ T5343] Call Trace:
[   78.850998][ T5343]  <TASK>
[   78.851005][ T5343]  __dump_stack+0x1d/0x30
[   78.851072][ T5343]  dump_stack_lvl+0x95/0xd0
[   78.851099][ T5343]  dump_stack+0x15/0x1b
[   78.851124][ T5343]  should_fail_ex+0x263/0x280
[   78.851155][ T5343]  should_fail_alloc_page+0xf2/0x100
[   78.851213][ T5343]  __alloc_frozen_pages_noprof+0x108/0x350
[   78.851244][ T5343]  alloc_pages_mpol+0xb3/0x260
[   78.851272][ T5343]  ? css_rstat_updated+0xbb/0x280
[   78.851309][ T5343]  vma_alloc_folio_noprof+0x1a9/0x300
[   78.851346][ T5343]  handle_mm_fault+0x111f/0x3030
[   78.851387][ T5343]  ? _raw_spin_lock+0x52/0xa0
[   78.851418][ T5343]  ? __pte_offset_map_lock+0x1d9/0x240
[   78.851465][ T5343]  __get_user_pages+0x1023/0x1ea0
[   78.851559][ T5343]  __mm_populate+0x242/0x390
[   78.851600][ T5343]  do_mlock+0x47c/0x520
[   78.851622][ T5343]  ? mutex_unlock+0x4e/0x90
[   78.851706][ T5343]  ? fput+0x8f/0xc0
[   78.851739][ T5343]  ? ksys_write+0x194/0x1a0
[   78.851765][ T5343]  __x64_sys_mlock+0x36/0x50
[   78.851789][ T5343]  x64_sys_call+0x1794/0x3000
[   78.851856][ T5343]  do_syscall_64+0xc0/0x2a0
[   78.851883][ T5343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.851942][ T5343] RIP: 0033:0x7f5f9c9aacb9
[   78.851958][ T5343] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   78.851976][ T5343] RSP: 002b:00007f5f9b407028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   78.852022][ T5343] RAX: ffffffffffffffda RBX: 00007f5f9cc25fa0 RCX: 00007f5f9c9aacb9
[   78.852040][ T5343] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   78.852056][ T5343] RBP: 00007f5f9b407090 R08: 0000000000000000 R09: 0000000000000000
[   78.852132][ T5343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   78.852200][ T5343] R13: 00007f5f9cc26038 R14: 00007f5f9cc25fa0 R15: 00007fffb343a028
[   78.852232][ T5343]  </TASK>
[   79.080147][ T5341] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[   79.089597][ T5341] EXT4-fs (loop5): 1 truncate cleaned up
[   79.095738][ T5341] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.131105][ T5348] netlink: 160 bytes leftover after parsing attributes in process `syz.1.625'.
[   79.180887][ T5353] sock: sock_set_timeout: `syz.2.626' (pid 5353) tries to set negative timeout
[   79.194671][ T5351] loop1: detected capacity change from 0 to 736
[   79.277195][ T5359] capability: warning: `syz.2.629' uses deprecated v2 capabilities in a way that may be insecure
[   79.313547][ T3634] Bluetooth: hci0: Frame reassembly failed (-84)
[   79.352883][ T4374] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.411659][ T5367] FAULT_INJECTION: forcing a failure.
[   79.411659][ T5367] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   79.425053][ T5367] CPU: 0 UID: 0 PID: 5367 Comm: syz.1.631 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   79.425151][ T5367] Tainted: [W]=WARN
[   79.425157][ T5367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   79.425173][ T5367] Call Trace:
[   79.425181][ T5367]  <TASK>
[   79.425190][ T5367]  __dump_stack+0x1d/0x30
[   79.425215][ T5367]  dump_stack_lvl+0x95/0xd0
[   79.425265][ T5367]  dump_stack+0x15/0x1b
[   79.425291][ T5367]  should_fail_ex+0x263/0x280
[   79.425343][ T5367]  should_fail_alloc_page+0xf2/0x100
[   79.425439][ T5367]  __alloc_frozen_pages_noprof+0x108/0x350
[   79.425545][ T5367]  alloc_pages_mpol+0xb3/0x260
[   79.425575][ T5367]  ? css_rstat_updated+0xbb/0x280
[   79.425690][ T5367]  vma_alloc_folio_noprof+0x1a9/0x300
[   79.425789][ T5367]  handle_mm_fault+0x111f/0x3030
[   79.425827][ T5367]  ? _raw_spin_lock+0x52/0xa0
[   79.425917][ T5367]  ? __pte_offset_map_lock+0x1d9/0x240
[   79.425951][ T5367]  __get_user_pages+0x1023/0x1ea0
[   79.426031][ T5367]  __mm_populate+0x242/0x390
[   79.426064][ T5367]  do_mlock+0x47c/0x520
[   79.426091][ T5367]  ? mutex_unlock+0x4e/0x90
[   79.426129][ T5367]  ? fput+0x8f/0xc0
[   79.426192][ T5367]  ? ksys_write+0x194/0x1a0
[   79.426330][ T5367]  __x64_sys_mlock+0x36/0x50
[   79.426356][ T5367]  x64_sys_call+0x1794/0x3000
[   79.426384][ T5367]  do_syscall_64+0xc0/0x2a0
[   79.426405][ T5367]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.426463][ T5367] RIP: 0033:0x7fdcd846acb9
[   79.426479][ T5367] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   79.426561][ T5367] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   79.426586][ T5367] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   79.426602][ T5367] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   79.426618][ T5367] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   79.426630][ T5367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   79.426704][ T5367] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   79.426729][ T5367]  </TASK>
[   79.595519][ T5368] loop2: detected capacity change from 0 to 256
[   79.917883][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   79.918143][ T3558] Bluetooth: hci1: command 0x1003 tx timeout
[   79.961169][ T5386] loop4: detected capacity change from 0 to 128
[   79.970111][ T5386] vfat: Unknown parameter '18446744073709551615���:	x�{��%o�8o4�.�ž/�
[   79.970111][ T5386] $��/��rM�jU%��iڟ����u� ��R4��� :d�>g;����ß�'��˗�\K�R %Pr��;8�gF�0x0000000000000010'
[   80.057645][ T5399] loop4: detected capacity change from 0 to 512
[   80.066281][ T5399] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   80.086527][ T5399] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[   80.095342][ T5399] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.641: bad orphan inode 4
[   80.106506][ T5399] EXT4-fs (loop4): 1 orphan inode deleted
[   80.113145][ T5399] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.137098][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.187636][ T5387] chnl_net:caif_netlink_parms(): no params data found
[   80.243268][ T5414] FAULT_INJECTION: forcing a failure.
[   80.243268][ T5414] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   80.256600][ T5414] CPU: 1 UID: 0 PID: 5414 Comm: syz.1.644 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   80.256638][ T5414] Tainted: [W]=WARN
[   80.256667][ T5414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   80.256683][ T5414] Call Trace:
[   80.256690][ T5414]  <TASK>
[   80.256704][ T5414]  __dump_stack+0x1d/0x30
[   80.256730][ T5414]  dump_stack_lvl+0x95/0xd0
[   80.256756][ T5414]  dump_stack+0x15/0x1b
[   80.256779][ T5414]  should_fail_ex+0x263/0x280
[   80.256850][ T5414]  should_fail_alloc_page+0xf2/0x100
[   80.256880][ T5414]  __alloc_frozen_pages_noprof+0x108/0x350
[   80.256951][ T5414]  alloc_pages_mpol+0xb3/0x260
[   80.256987][ T5414]  ? css_rstat_updated+0xbb/0x280
[   80.257029][ T5414]  vma_alloc_folio_noprof+0x1a9/0x300
[   80.257088][ T5414]  handle_mm_fault+0x111f/0x3030
[   80.257145][ T5414]  ? _raw_spin_lock+0x52/0xa0
[   80.257176][ T5414]  ? __pte_offset_map_lock+0x1d9/0x240
[   80.257212][ T5414]  __get_user_pages+0x1023/0x1ea0
[   80.257328][ T5414]  __mm_populate+0x242/0x390
[   80.257410][ T5414]  do_mlock+0x47c/0x520
[   80.257436][ T5414]  ? mutex_unlock+0x4e/0x90
[   80.257467][ T5414]  ? fput+0x8f/0xc0
[   80.257562][ T5414]  ? ksys_write+0x194/0x1a0
[   80.257607][ T5414]  __x64_sys_mlock+0x36/0x50
[   80.257678][ T5414]  x64_sys_call+0x1794/0x3000
[   80.257718][ T5414]  do_syscall_64+0xc0/0x2a0
[   80.257796][ T5414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.257835][ T5414] RIP: 0033:0x7fdcd846acb9
[   80.257859][ T5414] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   80.257878][ T5414] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   80.257902][ T5414] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   80.257920][ T5414] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   80.257935][ T5414] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   80.257992][ T5414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   80.258007][ T5414] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   80.258032][ T5414]  </TASK>
[   80.264732][ T5387] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.478844][ T5387] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.486412][ T5387] bridge_slave_0: entered allmulticast mode
[   80.493125][ T5387] bridge_slave_0: entered promiscuous mode
[   80.500086][ T5387] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.507228][ T5387] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.514554][ T5387] bridge_slave_1: entered allmulticast mode
[   80.524065][ T5387] bridge_slave_1: entered promiscuous mode
[   80.555234][ T5387] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.565886][ T5387] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.587422][ T5387] team0: Port device team_slave_0 added
[   80.594942][ T5387] team0: Port device team_slave_1 added
[   80.635030][ T5387] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.642083][ T5387] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   80.668514][ T5387] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.679959][ T5387] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.687071][ T5387] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   80.713167][ T5387] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.746554][ T5387] hsr_slave_0: entered promiscuous mode
[   80.752798][ T5387] hsr_slave_1: entered promiscuous mode
[   80.759036][ T5387] debugfs: 'hsr0' already exists in 'hsr'
[   80.764914][ T5387] Cannot create hsr debugfs directory
[   80.938552][ T5449] netlink: 160 bytes leftover after parsing attributes in process `syz.1.653'.
[   80.950136][ T5450] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5450 comm=syz.4.651
[   80.960661][ T5387] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   80.986547][ T5387] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   81.002255][   T29] kauditd_printk_skb: 105 callbacks suppressed
[   81.002275][   T29] audit: type=1326 audit(1768773625.940:2789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5454 comm="syz.1.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcd846acb9 code=0x7ffc0000
[   81.037057][   T29] audit: type=1326 audit(1768773625.940:2790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5454 comm="syz.1.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcd846acb9 code=0x7ffc0000
[   81.058575][ T5387] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   81.060744][   T29] audit: type=1326 audit(1768773625.940:2791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5454 comm="syz.1.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fdcd846acb9 code=0x7ffc0000
[   81.090627][   T29] audit: type=1326 audit(1768773625.940:2792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5454 comm="syz.1.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcd846acb9 code=0x7ffc0000
[   81.114426][   T29] audit: type=1326 audit(1768773625.940:2793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5454 comm="syz.1.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdcd846acb9 code=0x7ffc0000
[   81.147167][   T29] audit: type=1326 audit(1768773625.990:2794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5454 comm="syz.1.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcd846acb9 code=0x7ffc0000
[   81.173878][ T5387] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   81.181918][ T5465] FAULT_INJECTION: forcing a failure.
[   81.181918][ T5465] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   81.195512][ T5465] CPU: 1 UID: 0 PID: 5465 Comm: syz.1.655 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   81.195551][ T5465] Tainted: [W]=WARN
[   81.195559][ T5465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   81.195575][ T5465] Call Trace:
[   81.195582][ T5465]  <TASK>
[   81.195592][ T5465]  __dump_stack+0x1d/0x30
[   81.195624][ T5465]  dump_stack_lvl+0x95/0xd0
[   81.195680][ T5465]  dump_stack+0x15/0x1b
[   81.195700][ T5465]  should_fail_ex+0x263/0x280
[   81.195731][ T5465]  should_fail_alloc_page+0xf2/0x100
[   81.195762][ T5465]  __alloc_frozen_pages_noprof+0x108/0x350
[   81.195847][ T5465]  alloc_pages_mpol+0xb3/0x260
[   81.195877][ T5465]  ? css_rstat_updated+0xbb/0x280
[   81.195988][ T5465]  vma_alloc_folio_noprof+0x1a9/0x300
[   81.196109][ T5465]  handle_mm_fault+0x111f/0x3030
[   81.196150][ T5465]  ? _raw_spin_lock+0x52/0xa0
[   81.196179][ T5465]  ? __pte_offset_map_lock+0x1d9/0x240
[   81.196253][ T5465]  __get_user_pages+0x1023/0x1ea0
[   81.196328][ T5465]  __mm_populate+0x242/0x390
[   81.196438][ T5465]  do_mlock+0x47c/0x520
[   81.196521][ T5465]  ? mutex_unlock+0x4e/0x90
[   81.196554][ T5465]  ? fput+0x8f/0xc0
[   81.196587][ T5465]  ? ksys_write+0x194/0x1a0
[   81.196613][ T5465]  __x64_sys_mlock+0x36/0x50
[   81.196709][ T5465]  x64_sys_call+0x1794/0x3000
[   81.196740][ T5465]  do_syscall_64+0xc0/0x2a0
[   81.196762][ T5465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.196784][ T5465] RIP: 0033:0x7fdcd846acb9
[   81.196800][ T5465] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   81.196848][ T5465] RSP: 002b:00007fdcd6ec7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   81.196869][ T5465] RAX: ffffffffffffffda RBX: 00007fdcd86e5fa0 RCX: 00007fdcd846acb9
[   81.196885][ T5465] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[   81.196924][ T5465] RBP: 00007fdcd6ec7090 R08: 0000000000000000 R09: 0000000000000000
[   81.196941][ T5465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   81.196958][ T5465] R13: 00007fdcd86e6038 R14: 00007fdcd86e5fa0 R15: 00007ffecdc75b28
[   81.196978][ T5465]  </TASK>
[   81.416115][ T3557] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   81.450363][ T5450] ==================================================================
[   81.458501][ T5450] BUG: KCSAN: data-race in io_flush_timeouts / io_issue_sqe
[   81.465813][ T5450] 
[   81.468142][ T5450] read-write to 0xffff888121fda210 of 4 bytes by task 5467 on cpu 1:
[   81.476218][ T5450]  io_issue_sqe+0x1f9/0xa70
[   81.480746][ T5450]  io_wq_submit_work+0x3f7/0x5f0
[   81.486132][ T5450]  io_worker_handle_work+0x44d/0x9b0
[   81.491465][ T5450]  io_wq_worker+0x22d/0x860
[   81.495973][ T5450]  ret_from_fork+0x148/0x280
[   81.500590][ T5450]  ret_from_fork_asm+0x1a/0x30
[   81.505486][ T5450] 
[   81.507818][ T5450] read to 0xffff888121fda210 of 4 bytes by task 5450 on cpu 0:
[   81.515628][ T5450]  io_flush_timeouts+0x62/0x1e0
[   81.520619][ T5450]  __io_commit_cqring_flush+0xeb/0x100
[   81.526651][ T5450]  __io_submit_flush_completions+0xaf1/0xb10
[   81.532674][ T5450]  ctx_flush_and_put+0x9b/0x150
[   81.537545][ T5450]  io_handle_tw_list+0x20e/0x230
[   81.542603][ T5450]  tctx_task_work_run+0x42/0x160
[   81.547570][ T5450]  tctx_task_work+0x3f/0x80
[   81.552189][ T5450]  task_work_run+0x130/0x1a0
[   81.556806][ T5450]  get_signal+0xe09/0xf60
[   81.561172][ T5450]  arch_do_signal_or_restart+0x96/0x450
[   81.566934][ T5450]  exit_to_user_mode_loop+0x6a/0x6f0
[   81.572248][ T5450]  do_syscall_64+0x1d3/0x2a0
[   81.576853][ T5450]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.582789][ T5450] 
[   81.585127][ T5450] value changed: 0x000003db -> 0x000003dc
[   81.590871][ T5450] 
[   81.593196][ T5450] Reported by Kernel Concurrency Sanitizer on:
[   81.599439][ T5450] CPU: 0 UID: 0 PID: 5450 Comm: syz.4.651 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   81.610728][ T5450] Tainted: [W]=WARN
[   81.614543][ T5450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   81.624602][ T5450] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   81.638945][   T29] audit: type=1400 audit(1768773626.570:2795): avc:  denied  { write } for  pid=3305 comm="syz-executor" path="pipe:[1417]" dev="pipefs" ino=1417 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   81.951494][  T565] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.061095][  T565] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.141348][  T565] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.180946][  T565] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.259579][  T565] bridge_slave_1: left allmulticast mode
[   82.265306][  T565] bridge_slave_1: left promiscuous mode
[   82.271065][  T565] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.279787][  T565] bridge_slave_0: left allmulticast mode
[   82.285515][  T565] bridge_slave_0: left promiscuous mode
[   82.291319][  T565] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.390155][  T565] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   82.400611][  T565] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.410306][  T565] bond0 (unregistering): Released all slaves
[   82.484352][  T565] hsr_slave_0: left promiscuous mode
[   82.490208][  T565] hsr_slave_1: left promiscuous mode
[   82.495939][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   82.503408][  T565] batman_adv: batadv0: Removing interface: batadv_slave_0
[   82.511292][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   82.518943][  T565] batman_adv: batadv0: Removing interface: batadv_slave_1
[   82.530263][  T565] veth1_macvtap: left promiscuous mode
[   82.535882][  T565] veth0_macvtap: left promiscuous mode
[   82.548509][  T565] veth1_vlan: left allmulticast mode
[   82.553887][  T565] veth1_vlan: left promiscuous mode
[   82.559261][  T565] veth0_vlan: left promiscuous mode
[   82.609578][  T565] team0 (unregistering): Port device macvlan1 removed
[   82.637688][  T565] team0 (unregistering): Port device team_slave_1 removed
[   82.648037][  T565] team0 (unregistering): Port device team_slave_0 removed
[   82.717952][ T3591] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   83.040648][  T565] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.091293][  T565] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.140888][  T565] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.210582][  T565] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.476138][  T565] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.532030][  T565] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.591123][  T565] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.631326][  T565] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.715414][  T565] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   83.725897][  T565] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.780880][  T565] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   83.791553][  T565] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.851009][  T565] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   83.861614][  T565] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.910689][  T565] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   83.921220][  T565] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.976067][  T565] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.031043][  T565] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.091064][  T565] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.141189][  T565] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.215289][  T565] bridge_slave_1: left allmulticast mode
[   84.221082][  T565] bridge_slave_1: left promiscuous mode
[   84.226955][  T565] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.235009][  T565] bridge_slave_0: left allmulticast mode
[   84.240871][  T565] bridge_slave_0: left promiscuous mode
[   84.246638][  T565] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.255099][  T565] bridge_slave_1: left allmulticast mode
[   84.260837][  T565] bridge_slave_1: left promiscuous mode
[   84.266557][  T565] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.274543][  T565] bridge_slave_0: left allmulticast mode
[   84.280303][  T565] bridge_slave_0: left promiscuous mode
[   84.286116][  T565] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.294923][  T565] bridge_slave_1: left allmulticast mode
[   84.300636][  T565] bridge_slave_1: left promiscuous mode
[   84.306317][  T565] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.314363][  T565] bridge_slave_0: left allmulticast mode
[   84.320153][  T565] bridge_slave_0: left promiscuous mode
[   84.325856][  T565] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.334761][  T565] bridge_slave_1: left allmulticast mode
[   84.340543][  T565] bridge_slave_1: left promiscuous mode
[   84.346450][  T565] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.355179][  T565] bridge_slave_0: left allmulticast mode
[   84.360961][  T565] bridge_slave_0: left promiscuous mode
[   84.366717][  T565] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.486300][  T565] team0: Port device geneve1 removed
[   84.550070][  T565] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   84.559872][  T565] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   84.569776][  T565] bond0 (unregistering): Released all slaves
[   84.640135][  T565] bond1 (unregistering): (slave bridge1): Removing an active aggregator
[   84.648890][  T565] bond1 (unregistering): (slave bridge1): Releasing backup interface
[   84.657532][  T565] bridge1 (unregistering): left promiscuous mode
[   84.664006][  T565] bridge1 (unregistering): left allmulticast mode
[   84.709786][  T565] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   84.719898][  T565] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   84.729647][  T565] bond0 (unregistering): Released all slaves
[   84.737255][  T565] bond1 (unregistering): Released all slaves
[   84.820288][  T565] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   84.830217][  T565] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   84.839652][  T565] bond0 (unregistering): Released all slaves
[   84.900383][  T565] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   84.910257][  T565] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   84.919885][  T565] bond0 (unregistering): Released all slaves
[   84.958983][  T565] tipc: Left network mode
[   84.967913][  T565] hsr_slave_0: left promiscuous mode
[   84.973761][  T565] hsr_slave_1: left promiscuous mode
[   84.979953][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   84.987386][  T565] batman_adv: batadv0: Removing interface: batadv_slave_0
[   84.995222][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   85.002707][  T565] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.013172][  T565] hsr_slave_0: left promiscuous mode
[   85.019204][  T565] hsr_slave_1: left promiscuous mode
[   85.024951][  T565] batman_adv: batadv0: Removing interface: batadv_slave_0
[   85.032790][  T565] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.045561][  T565] hsr_slave_0: left promiscuous mode
[   85.051470][  T565] hsr_slave_1: left promiscuous mode
[   85.057306][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   85.064771][  T565] batman_adv: batadv0: Removing interface: batadv_slave_0
[   85.072710][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   85.080561][  T565] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.090417][  T565] hsr_slave_0: left promiscuous mode
[   85.096136][  T565] hsr_slave_1: left promiscuous mode
[   85.102066][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   85.109514][  T565] batman_adv: batadv0: Removing interface: batadv_slave_0
[   85.117192][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   85.125121][  T565] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.134794][  T565] hsr_slave_0: left promiscuous mode
[   85.140650][  T565] hsr_slave_1: left promiscuous mode
[   85.146505][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   85.154012][  T565] batman_adv: batadv0: Removing interface: batadv_slave_0
[   85.162208][  T565] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   85.169711][  T565] batman_adv: batadv0: Removing interface: batadv_slave_1
[   85.187719][  T565] veth1_macvtap: left promiscuous mode
[   85.193378][  T565] veth0_macvtap: left promiscuous mode
[   85.198945][  T565] veth1_vlan: left promiscuous mode
[   85.204245][  T565] veth0_vlan: left promiscuous mode
[   85.210227][  T565] veth1_macvtap: left promiscuous mode
[   85.215806][  T565] veth0_macvtap: left promiscuous mode
[   85.221568][  T565] veth1_vlan: left allmulticast mode
[   85.226947][  T565] veth1_vlan: left promiscuous mode
[   85.232616][  T565] veth0_vlan: left promiscuous mode
[   85.238600][  T565] veth1_macvtap: left promiscuous mode
[   85.244270][  T565] veth0_macvtap: left promiscuous mode
[   85.250861][  T565] veth1_vlan: left promiscuous mode
[   85.256202][  T565] veth0_vlan: left promiscuous mode
[   85.262394][  T565] veth1_macvtap: left promiscuous mode
[   85.268167][  T565] veth0_macvtap: left promiscuous mode
[   85.273767][  T565] veth1_vlan: left promiscuous mode
[   85.279153][  T565] veth0_vlan: left promiscuous mode
[   85.464129][  T565] team0 (unregistering): Port device team_slave_1 removed
[   85.474450][  T565] team0 (unregistering): Port device team_slave_0 removed
[   85.533673][  T565] team0 (unregistering): Port device team_slave_1 removed
[   85.544067][  T565] team0 (unregistering): Port device team_slave_0 removed
[   85.586410][  T565] macvlan0 (unregistering): left allmulticast mode
[   85.611845][  T565] team0 (unregistering): Port device team_slave_1 removed
[   85.622360][  T565] team0 (unregistering): Port device team_slave_0 removed
[   85.682106][  T565] team0 (unregistering): Port device team_slave_1 removed
[   85.692142][  T565] team0 (unregistering): Port device team_slave_0 removed
[   85.755067][  T565] team0 (unregistering): Port device team_slave_1 removed
[   85.765678][  T565] team0 (unregistering): Port device team_slave_0 removed
[   86.918200][  T565] IPVS: stop unused estimator thread 0...