last executing test programs:

1m10.798500684s ago: executing program 0 (id=3671):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0) (fail_nth: 1)

1m10.388760211s ago: executing program 0 (id=3680):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000003c0)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = syz_io_uring_setup(0x832, &(0x7f0000000580)={0x0, 0x4cd1c, 0x10100, 0x3}, &(0x7f0000000000)=<r1=>0x0, 0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)='%pS    \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
syz_io_uring_submit(r1, 0x0, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x20, 0x0, @fd_index=0x5, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
io_uring_enter(r0, 0x26c3, 0xdffffffb, 0x4c, 0x0, 0x0)

1m10.327488151s ago: executing program 0 (id=3683):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000280), &(0x7f0000000080)=r1}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bf"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r3, 0x0, 0x8000000000000}, 0x18)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000400)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xc}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x0)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$inet_udp(0x2, 0x2, 0x0)
close(r6)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000680001ed0200000000000080000000"], 0x2c}}, 0x4000)
write$binfmt_misc(r5, &(0x7f0000000000), 0xfffffecc)
splice(r4, 0x0, r6, 0x0, 0x4ffe6, 0x0)

1m9.501912734s ago: executing program 0 (id=3696):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1}, [@printk={@ld}, @call={0x85, 0x0, 0x0, 0x7}]}, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdce, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]})
shutdown(0xffffffffffffffff, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r4=>r3}, './file0\x00'})
setsockopt$MRT_DEL_VIF(r4, 0x0, 0xcb, &(0x7f0000000080)={0x0, 0x8, 0x2, 0x7, @vifc_lcl_ifindex, @local}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x51f, &(0x7f0000000700)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
read(0xffffffffffffffff, &(0x7f0000000240)=""/195, 0xc3)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='pids.events\x00', 0x275a, 0x0)
fadvise64(r6, 0x7, 0x4, 0x4)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r7, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x109)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94)

1m9.144867329s ago: executing program 0 (id=3699):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmsg(r1, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r2, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

1m8.596034577s ago: executing program 0 (id=3713):
r0 = socket(0x10, 0x803, 0x0)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x30, 0x0, 0xa3}, 0x9c)
sendto$inet6(r2, &(0x7f0000000140)="89", 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}}, 0x1c)
shutdown(r2, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRES8=r0, @ANYRES64=r0, @ANYRES32=r1, @ANYRESOCT=r2, @ANYRESHEX=r1, @ANYRESOCT=r0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x1, 0x0, 0x0, 0x41000, 0x37, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r5, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x2000)
ioctl$TUNSETNOCSUM(r6, 0xff0a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getsockname$packet(r0, 0x0, &(0x7f0000000200))

1m8.595433627s ago: executing program 32 (id=3713):
r0 = socket(0x10, 0x803, 0x0)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x30, 0x0, 0xa3}, 0x9c)
sendto$inet6(r2, &(0x7f0000000140)="89", 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}}, 0x1c)
shutdown(r2, 0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRES8=r0, @ANYRES64=r0, @ANYRES32=r1, @ANYRESOCT=r2, @ANYRESHEX=r1, @ANYRESOCT=r0], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x1, 0x0, 0x0, 0x41000, 0x37, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r5, 0x1, 0x4c, &(0x7f0000000000), 0x4)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x14, 0x1, 0x1, [<r6=>0xffffffffffffffff]}}], 0x18}, 0x2000)
ioctl$TUNSETNOCSUM(r6, 0xff0a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getsockname$packet(r0, 0x0, &(0x7f0000000200))

3.631879446s ago: executing program 1 (id=5163):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b7"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

3.611810846s ago: executing program 1 (id=5164):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
clock_nanosleep(0xfffffff2, 0xca9a3b, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000060000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000086c0000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r4}, 0x10)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioperm(0x0, 0x44, 0x7)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
accept4(r2, 0x0, &(0x7f0000000200), 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r5)
fcntl$setlease(r2, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8)

2.64791931s ago: executing program 1 (id=5178):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r2)
syz_clone(0x80200, &(0x7f0000000cc0)="ad3e33cb8ed14489a89beb837b80b0c44c90805e9602220855d140c9c4a642393772e44add1d6c9e3c9951c246596d70f015b8127be65d555d120dd583dc7059b1458c0f6fe6637be55553b0778e0ec10108da79ba5942288f45f6ba84dc2589bd1fec2bae71", 0x66, &(0x7f0000000d40), &(0x7f0000000d80), &(0x7f0000000dc0)="ce06b634a5d74a459d7c277fb7e07d77229d003219274fad822260ceb6ca41da0bd1a2e62adb")
sendmsg$NFC_CMD_DEP_LINK_UP(r2, &(0x7f0000000600)={0x0, 0xffffffffffffff24, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40)

2.621095101s ago: executing program 1 (id=5179):
setresgid(0x0, 0x0, 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x9, 0x7ffc1ffb}]})
statfs(&(0x7f0000000200)='.\x00', &(0x7f0000000440)=""/137)
getpeername$packet(0xffffffffffffffff, &(0x7f00000006c0)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000700)=0x14)
r1 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000008c0), 0x121200, 0x0)
r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r3, 0x8953, &(0x7f0000000180)={{0x2, 0x0, @multicast1}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xf}}, 0x2a, {0x2, 0x0, @multicast1=0xe000cc02}})
splice(r2, 0x0, r3, 0x0, 0x2, 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x6, 0x5, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000005000000000000000400000018220000", @ANYRES32=0x1, @ANYBLOB="0003fed87800009c08444c0000000000bfdc2557d07e0f2562cede33e8455577ee01b9bb24c86a6045bc1fa2bd25f901cc4a7133bd945c957935ece6116eff8a009508f6edecffbd3f814eccd24e1090e6d0ad3d9a18e96265218c5efe72f66d10b0393e9254314be65abb"], &(0x7f00000005c0)='syzkaller\x00', 0x90000000, 0x95, &(0x7f0000000600)=""/149, 0x41000, 0x50, '\x00', r0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000840)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000880)={0x5, 0xc, 0x4, 0x7}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000900)=[r1, 0x1, 0x1, r2, 0x1], &(0x7f0000000940)=[{0x3, 0x1, 0x8, 0xa}, {0x5, 0x4, 0xd, 0x8}, {0x4, 0x3, 0x2, 0x4}, {0x1, 0x5, 0xa, 0x8}, {0x2, 0x1, 0x3}, {0x5, 0x1, 0x3, 0x9}], 0x10, 0x3, @void, @value}, 0x94)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x67, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x6, 0x14, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000045000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r5, 0x0, 0x2d, 0x0, &(0x7f0000000380)="e00000e8680d85ff978208200000405c6f0a248205e0d472ec91ab8de7eccd83f62d2c0cae1c8b83260535120d", 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)
r6 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x106, 0x40001, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x2, @perf_config_ext={0x0, 0x10000}, 0x1320, 0xfffffffd, 0x3, 0x7, 0x4, 0x1088f105, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x8, 0x7, 0xa, 0x4}, {0xd7, 0x40, 0x9, 0x2}]})
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r7)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
sendmsg$IPSET_CMD_DESTROY(r10, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0)
setgroups(0x0, 0x0)

1.762979484s ago: executing program 3 (id=5202):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r2)
syz_clone(0x80200, &(0x7f0000000cc0)="ad3e33cb8ed14489a89beb837b80b0c44c90805e9602220855d140c9c4a642393772e44add1d6c9e3c9951c246596d70f015b8127be65d555d120dd583dc7059b1458c0f6fe6637be55553b0778e0ec10108da79ba5942288f45f6ba84dc2589bd1fec2bae71", 0x66, &(0x7f0000000d40), &(0x7f0000000d80), &(0x7f0000000dc0)="ce06b634a5d74a459d7c277fb7e07d77229d003219274fad822260ceb6ca41da0bd1a2e62adb")
sendmsg$NFC_CMD_DEP_LINK_UP(r2, &(0x7f0000000600)={0x0, 0xffffffffffffff24, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40)

1.464687168s ago: executing program 3 (id=5207):
creat(&(0x7f0000000040)='./file0\x00', 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001"], 0x48) (async)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000340)={@cgroup=r1, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) (async)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r2}, 0x10)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])

1.277303761s ago: executing program 5 (id=5211):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
r3 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r3, 0x0)
recvfrom$unix(r2, &(0x7f0000000140)=""/263, 0x40000, 0x0, 0x0, 0x0) (fail_nth: 7)

935.926036ms ago: executing program 5 (id=5212):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x114df, 0x80, 0x1, 0x89}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000200)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r4 = perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x95, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xf9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r4, 0x4008240b, &(0x7f0000000180)={0x2, 0x80, 0x0, 0x8, 0x7, 0x25, 0x0, 0x24, 0x1c004, 0xb, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xfff, 0x0, @perf_bp={0x0, 0x2}, 0x4000, 0xfffffffffffffffc, 0x7f, 0x5, 0x6c555f15, 0x18, 0x0, 0x0, 0x401, 0x0, 0x100})
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r7, 0x0, 0x2}, 0x18)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000a00)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x8040)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x12, 0x0, 0xffffffffffffffff, 0x0, r1, 0x2, 0x0, 0x1, {0x0, r5}})
io_uring_enter(r1, 0x3516, 0xaddf, 0x2, 0x0, 0x1517f)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000003, 0x4c831, 0xffffffffffffffff, 0x0)
r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r9}, 0x10)
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r10, 0x400448ca, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'nr0\x00'})
r11 = socket$inet_udp(0x2, 0x2, 0x0)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r12}, 0x10)
bind$inet(r11, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
connect$inet(r11, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10)

933.599886ms ago: executing program 3 (id=5213):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000020000000000002000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010700000000000000002000000004"], 0x1c}, 0x1, 0x0, 0x0, 0x8041}, 0x0)

883.372957ms ago: executing program 3 (id=5214):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket(0xa, 0x80000, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000580), 0x5, 0x4f3, &(0x7f00000005c0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000800000000005e002200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
open(0x0, 0x143862, 0x0)
mount(0x0, 0x0, 0x0, 0x1000000, 0x0)
socket$inet6(0xa, 0x5, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
sendmmsg(r3, 0x0, 0x0, 0x844)
socket$inet6(0xa, 0x5, 0x0)
r4 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r4, 0x402, 0x8000003d)
fcntl$notify(r4, 0x402, 0x20)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000006000200010000001ffe02000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r5], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)

854.106387ms ago: executing program 1 (id=5216):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmsg(r1, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r2, 0x0, 0x0)

745.908399ms ago: executing program 4 (id=5221):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa00"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

721.874189ms ago: executing program 4 (id=5222):
fstat(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x100)
lchown(&(0x7f0000000000)='./file0\x00', r0, r1)
setxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)={0x0, 0xfb, 0x80, 0x0, 0xac, "affff81387363f7d0912bb4bf0bfb2c3", "854b457b13d0733471040619a50094f891f4cbd720e55065226c88f64b23e5088bc7b738bfd77e67bfae4ee42113488ea697494bdd26077812d34f9f4a1e36081f7ae3e4922ec4eca4a024a5ebd6f6f67b016f8f43bf92e575727284a1134d523c51e0582b4bd8fd0ca576"}, 0x80, 0x2)
r2 = fsmount(0xffffffffffffffff, 0x1, 0x2)
setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x30, &(0x7f0000000280)={0xb, {{0xa, 0x4e24, 0xc92e, @mcast2, 0x1}}, 0x1, 0x4, [{{0xa, 0x4e22, 0x7fffffff, @rand_addr=' \x01\x00', 0x2}}, {{0xa, 0x4e24, 0x1, @empty, 0xfffffff6}}, {{0xa, 0x4e23, 0x8, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7ff}}, {{0xa, 0x4e21, 0x5, @remote, 0xc19}}]}, 0x290)
renameat2(r2, &(0x7f0000000540)='./file0\x00', r2, &(0x7f0000000580)='./file0\x00', 0x0)
connect$inet6(r2, &(0x7f00000005c0)={0xa, 0x4e21, 0x34f0, @dev={0xfe, 0x80, '\x00', 0x30}, 0x6}, 0x1c)
setxattr$incfs_size(&(0x7f0000000600)='./file0\x00', &(0x7f0000000640), &(0x7f0000000680)=0x8, 0x8, 0x5)
r3 = accept$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @empty}, &(0x7f0000000700)=0x10)
r4 = accept4(r3, 0x0, &(0x7f0000000740), 0x800)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000840)={'ip6gre0\x00', &(0x7f00000007c0)={'ip6_vti0\x00', <r5=>0x0, 0x29, 0x9, 0x1, 0x9, 0x1a, @ipv4={'\x00', '\xff\xff', @empty}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0x7, 0x3, 0x808c}})
sendmsg$nl_route_sched(r2, &(0x7f0000000900)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1080800}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)=@deltclass={0x34, 0x29, 0x20, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xc, 0xfff1}, {0x5, 0x2}, {0xfff3, 0x3}}, [@tclass_kind_options=@c_mq={0x7}, @TCA_RATE={0x6, 0x5, {0xfb, 0x8}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000004}, 0x80)
sendmsg$rds(r4, &(0x7f0000001dc0)={&(0x7f0000000940)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10, &(0x7f0000001d40)=[{&(0x7f0000000980)=""/42, 0x2a}, {&(0x7f00000009c0)=""/134, 0x86}, {&(0x7f0000000a80)=""/198, 0xc6}, {&(0x7f0000000b80)=""/192, 0xc0}, {&(0x7f0000000c40)=""/4096, 0x1000}, {&(0x7f0000001c40)=""/202, 0xca}], 0x6, 0x0, 0x0, 0x10}, 0x40810)
r6 = socket(0x9, 0x6, 0x5)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = open(&(0x7f0000001e00)='./file0\x00', 0x22400, 0xa)
sendmsg$nl_route_sched(r7, &(0x7f0000001f40)={&(0x7f0000001e40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001f00)={&(0x7f0000001e80)=@getchain={0x74, 0x66, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r5, {0xc, 0xfff2}, {0xc, 0xfff2}, {0xb, 0xb}}, [{0x8, 0xb, 0x7}, {0x8, 0xb, 0x4}, {0x8, 0xb, 0x5}, {0x8, 0xb, 0x7}, {0x8, 0xb, 0x800}, {0x8, 0xb, 0x5}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0xfffffffa}, {0x8, 0xb, 0x4}]}, 0x74}, 0x1, 0x0, 0x0, 0x60804}, 0x4000014)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001fc0)={&(0x7f0000001f80)='svcrdma_qp_error\x00', r7, 0x0, 0x5}, 0x18)
shmctl$SHM_UNLOCK(0xffffffffffffffff, 0xc)
r9 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TLS_TX(r9, 0x6, 0x1, &(0x7f0000002000)=@ccm_128={{0x303}, "6c475e8901adad1b", "ab77d06972f1dff4540fb3566d94c7fc", "cd67db3e", "4c1e6b6ded16a9da"}, 0x28)
fcntl$setlease(r6, 0x400, 0x1)
ioctl$BTRFS_IOC_START_SYNC(r8, 0x80089418, &(0x7f0000002040))
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000002080), 0x401, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000002300)={0xd7a9, <r10=>0x0}, 0x8)
r11 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000002600)=@bpf_lsm={0x1d, 0x2a, &(0x7f0000002340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x28b}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@call={0x85, 0x0, 0x0, 0x3f}, @map_fd={0x18, 0x1, 0x1, 0x0, r7}, @printk={@x}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r7}}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xff}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000024c0)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x8, '\x00', r5, 0x1b, r7, 0x8, &(0x7f0000002500)={0xa, 0x3}, 0x8, 0x10, &(0x7f0000002540)={0x4, 0x8, 0xfffffff8, 0xe6}, 0x10, 0xffffffffffffffff, 0x0, 0x4, &(0x7f0000002580)=[r7, r2, r9, r2, r2, r2, r2, 0x1, r7, r7], &(0x7f00000025c0)=[{0x5, 0x3, 0x10, 0xa}, {0x5, 0x3, 0x0, 0xc}, {0x0, 0x1, 0x2, 0x5}, {0x5, 0x2, 0x6, 0xe}], 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000002740)={0xf, 0x11, &(0x7f00000020c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x77e}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@map_idx_val={0x18, 0x8, 0x6, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000002180)='syzkaller\x00', 0x1a, 0x85, &(0x7f00000021c0)=""/133, 0x41100, 0x1, '\x00', r5, @fallback=0x32, r7, 0x8, &(0x7f0000002280)={0x0, 0x4}, 0x8, 0x10, &(0x7f00000022c0)={0x2, 0x7, 0x1, 0xffff}, 0x10, r10, r11, 0x2, &(0x7f00000026c0)=[r2, r2, r7, r2, r7], &(0x7f0000002700)=[{0x2, 0x2, 0xf, 0x2}, {0x0, 0x5, 0x8, 0x2}], 0x10, 0x7, @void, @value}, 0x94)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r6, 0x111, 0x1, 0x0, 0x4)
write$cgroup_subtree(r3, &(0x7f0000002800)={[{0x2d, 'rlimit'}, {0x2b, 'cpuset'}, {0x2b, 'cpu'}, {0x2b, 'freezer'}, {0x2d, 'cpuacct'}, {0x2b, 'cpuset'}, {0x2b, 'rlimit'}, {0x48e812189703475c, 'net_cls'}]}, 0x40)

660.15731ms ago: executing program 4 (id=5223):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000001000000ff0f000007"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r1, 0x227b, &(0x7f00000001c0)=0x2001)
r2 = fcntl$dupfd(r1, 0x0, r1)
write$sndseq(r2, &(0x7f0000000180)=[{0xff, 0x0, 0x0, 0x0, @tick=0x4, {}, {}, @result={0x1, 0x2}}, {0x0, 0x0, 0xff, 0x3, @tick=0xf27, {0x1, 0x31}, {}, @addr={0x2a, 0x5}}], 0x38)
readv(r2, &(0x7f0000000000)=[{&(0x7f0000001140)=""/136, 0x88}], 0x1)

659.51952ms ago: executing program 3 (id=5224):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x4}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x20008000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x400000000}, 0x18)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x5, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9, 0xffff}, {0xc}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x1, 0x0, 0x1, 0x2}}, {0x8, 0x1b, [0x0, 0x7]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x84}, 0x40)
ioctl$sock_inet_SIOCGIFPFLAGS(r2, 0x8935, &(0x7f0000000040)={'ip_vti0\x00'})
sendmsg$RDMA_NLDEV_CMD_STAT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="30000000101401002cbd7000fedbdf25080003000100000008004a0001000000080001000000000008004b00139ea4"], 0x30}, 0x1, 0x0, 0x0, 0x24044836}, 0xc094)

655.10685ms ago: executing program 3 (id=5225):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) (async)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) (async)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000001080)={0xa, 0x4e20, 0x0, @empty}, 0x1c) (async)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000000)=0x40000005, 0x4) (async)
recvmmsg(r0, &(0x7f0000000640)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=""/21, 0x15}, 0x80dc}], 0x1, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0xffffffff, @mcast1}, 0x1c) (async)
r1 = syz_clone(0x20a00000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x200, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x100002, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6f}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r3}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10) (async)
umount2(&(0x7f0000000000)='./file0\x00', 0x0)

653.86872ms ago: executing program 4 (id=5226):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000100)=<r0=>0x0)
getgroups(0x4, &(0x7f0000000140)=[0x0, <r1=>0xffffffffffffffff, 0xee00, 0xffffffffffffffff])
chown(&(0x7f0000000080)='./file0\x00', r0, r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x24, 0x0, "43cad7244bde5bbd8035d89034a56bad61a87c614899a37c5d0d7da4d7fc948375f3593dbd21eb7618ffb4ff4984e01eedc37998dd16526edb40eaadabe6cd2bd9f9dfeade7787ea64309c01ae05fb70"}, 0xd8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000000)=@sg0, 0x0, &(0x7f0000000040)='./file0\x00')

549.558642ms ago: executing program 4 (id=5228):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r2)
syz_clone(0x80200, &(0x7f0000000cc0)="ad3e33cb8ed14489a89beb837b80b0c44c90805e9602220855d140c9c4a642393772e44add1d6c9e3c9951c246596d70f015b8127be65d555d120dd583dc7059b1458c0f6fe6637be55553b0778e0ec10108da79ba5942288f45f6ba84dc2589bd1fec2bae71", 0x66, &(0x7f0000000d40), &(0x7f0000000d80), &(0x7f0000000dc0)="ce06b634a5d74a459d7c277fb7e07d77229d003219274fad822260ceb6ca41da0bd1a2e62adb")
sendmsg$NFC_CMD_DEP_LINK_UP(r2, &(0x7f0000000600)={0x0, 0xffffffffffffff24, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40)

499.235163ms ago: executing program 4 (id=5229):
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000280)=@assoc_value, 0x8)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000002080)={@local, @empty, <r1=>0x0}, &(0x7f00000020c0)=0xc)
sendmmsg$inet6(r0, &(0x7f0000002dc0)=[{{&(0x7f0000000200)={0xa, 0x4e23, 0xffffffff, @private2={0xfc, 0x2, '\x00', 0x1}, 0xef}, 0x1c, &(0x7f00000004c0)=[{&(0x7f0000000540)="c229aefd87d825560f5b083f4e8619559558fd2414b8ebd263dca04b4d367304e2bf3665a8c47e8666757b08631290199a4ddf6cfc7253b82fd488caa6e951dd0a6a88d1c2382566a25a4b456f15cb2a904c53b5bce1f038ef0aea0ad840536fbea2f68c52d8650fed7b617d860fb62bc40d48062c44af550549e93d1d0b56c876415d188b44cc2608852687cdc53c58c47c2a2e9f0d47a895206414a2e3d474a10633f990cc17d7fcb0571e08b81139257c96ce0051007c08cc6f40b7b946924e60", 0xc2}, {&(0x7f0000000240)="459d59b6", 0x4}, {&(0x7f00000003c0)="8fabac801267b71cd1c5b4d1eaccde44001e7dfead3b980cb98cab0cc9c92524fc069bebec7fef6c9343f7de2242cea3910ca3843a0988e8dac5a8997f9d0671f40ca1c8d2d5e5f27ba79ac30c1914b4ff0289ecbd3305e840a0419aee0b7c76e46b36a5158efcbd0a7bed8569dc35b5d4c45f10eb7f24bd46d0269d526b9e8ce19718438cd3b8f739520058842bfd", 0x8f}, {&(0x7f0000000640)="539666dfa19fb476fcfc63b415ab8282c0d3cb1d398f8e785eb969511be19adc378a5eea53b3693dfd1934aab7c16e9f8b5c950768818610df105ffde00b49d46d79e2f3dde4327977019b5ebc65dc03f103bcf5b06a2053ed7a133602cd7e39689cb0ca9dd3ce3391a1afe4c33941483db4a5bff9cbd17cbb5796a8cc019a6b6d1603aebc53cd8d4bb22f85a79cc7c6cfab0141d40826568f52f08b4d02f56049b078dea23c8ffedf08dfd258ea043e6000d6b905019c45e424aba81e1b3fbf964181c1987f66c462320591f60c00", 0xcf}], 0x4, &(0x7f0000000740)=[@dstopts_2292={{0x80, 0x29, 0x4, {0x3c, 0xc, '\x00', [@ra={0x5, 0x2, 0x4}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x18, {0x1, 0x4, 0x81, 0x4, [0x2, 0x0]}}, @hao={0xc9, 0x10, @loopback}, @calipso={0x7, 0x28, {0x2, 0x8, 0x40, 0x6, [0x10001, 0x7, 0xc, 0x8]}}, @ra={0x5, 0x2, 0xf392}]}}}], 0x80}}, {{&(0x7f00000007c0)={0xa, 0x4e20, 0xc279, @remote, 0x2207e5ab}, 0x1c, &(0x7f0000000800)=[{&(0x7f0000000dc0)="6aaa434f2015fefdc636a999c522b2660b866894a62f73afa6b38203428563dbf575b488dc35652caaf9d1c9177e8896ea9822e1449810b4f602d785109ea2c3dcbc3099c6d7c432932ddc5b611536e1d3939a4a809b3a70b1353a65d53d2e8b0247aa56ba07996f2d0fada28e907ae7d44f130fa34ad1ae6046490a473a9f9a059637aec7ec3fa9a839dd69451b954dfee4d6f62a7df78bc965147135a08db63d694feae53e4bfa0ab7c10593e5375259bb8e65f2afc23ce626b81ad92e1c59a9046e81d85cfa2cb0522d4be76a23b62ac9426b4dc3a0e21cf44d44559939376b557ae4cd189b9c318fbe8c5d429268a1649a2e43543ce151fcfc9c204c5a48988c4956f5c30309697e16137dba03fbad685dde1e74ac65dd67d55d10c11f161b2031eb1666033ecde043107ca13fcd2d11574f6514bfc316fdac3b061498bd40a25a9080d0f4a6bc5e835e96efae01c1bcc87a6e3450a62570110fd5d816d23f8ff9764e719ff766629f5ab9c3b741c20414299023a44939cae27cd61f322acc98885458e1ff766e5a121b8602913643d197d21a35034257648cabf790cec4d2a6819dbdf929f9cc9e6e3bc8c5f27d428a6b454a2eeec4d8acf3510372ed1724b1a592a352b098f5ec285560bd53c801c720ad416f9d7bee48d2940f499d294820d542652b516debd49e42c4420c7d6258341c44daa364f1a2deace68c597e52744aa66c4430d9b19210821ffb575945255804884f9e704539bee67227cbb88919b49792435e9ccae11c2dfd5921f71a1b8314e29d0997404fc3971d7b666eb2878f4c7a5be697026d4ed1f9fc40857ab6010550fd66bac595893d090d7119ac040ce9906c3217dcce0ad732883f2158a823a0a6c22145aae965e2df1d9fadb6768df15ef5504e420b94fafa5eb51dc2ee79cded6995f57846df22b928c66ef2736b5ea9de67967034c0edc02e72a1586df10139f76adb2f06034378f650f5c4ece1264de39d1cd3864f82e17e59c26638c048dd740110df3ef66f8f0058585e3976e89a801846b5cbb217afa5969b0d1e17ffc05db61ad20045d3e251f94ae7b143195a8fd5ad1bb2a772921ddfb239e1da3d562e80170069adeab13c54015eb3a73161837c4fc27285a55196ddf581cb85015a32267b90172572c637918c4d94ff512c7d3a3a26fedc20daafe408d24cb5d2a0b73c3894fe0a6f1d5344d911c30cf6c95307cf39dca806f80d081f810ae22a5d3dd20f7eb22b1a99519e5b428a933a07aa01ee26edf9e1841feaccbe0ec5f2051eb9674cee479b0f921cf6bf1c7ff99de10f5153fca47512672a882bbbeed992fa858c07824396c6d600b13152e43f73d8efd13dcf61bc062f3713fad916714af12dd7e7b60225a113a8265aef8c182adceb706bf15a7d7220369b2af60c901d9dc36fab4177a9a87d6969428ebcd4f9e95683b8413b0e98d5cf3bd452f78d484953ae5a0f03abe480350463de737e9006c7750328be0da8040456c87f61e8a0ffff6a97940795efeebf2516560dea2dab9f114f2e5aeab5d3b4f3e581b1442ccfe22bdd05abc3ad332e367c1df32217d090eecaa5812a6a75ad8afe6ac8954667c44c09f7c21b2dc4c5923835a1756ebbd99cf19be02873ba48b976c69e76d71041413ee985175dea8d9c534e5a404debb5bbd59bc040984f1897acc022cff7049cd5e7dc3aae828381d78c37a47e46c412625a1159761e06f7585954f28b02941e99baa2b141d9a5ddee8a87cb75669b4070e37cb0fd8456306b14d3bd7a81c0d163b64a1413a6388f290f9554b56e853434a46c2f37d81a1fc2d73390f5cc63c4868abc84b304e9ca9428b5794471e5652734a991e4293e429b3c242750f39117a6b4fa984e0e005d63903e67fc69b845b43649acb63a868acc442d56ce48e4c6721195023d3cae1e9ba5289a0bd3017dfdde85773ee18ce66718575a4a5098e89057778f3366bf760c3da69b2919c2b686bf8f9d14b10bb9465dbe37fca795376ab4160da75f0447964e7617caf4124b68401b0a5fc641f260e90921faf78a2349badf0ade94dd282a5bb8b7eb23fed4d6b18fe333bc8ba203e26f6201bc18d49015862cf3c7bd613ae2ed8ef93503834487b3843560c4729bfc4f7ad09320028c5e2a17bf90a04cf08793cd5a5c911225605bc0267ad1c0bbe4fd6fe7b0f3113bb6e802f50dd8cc5014bc7303cebb340155eb798be33cfdc46d3f27c3359ebd4ddd37ce32f8d2649d8bc93c512cde0283980e770a6f459b88599cce85992d28f1f6adf35534a4efcc5b00024fb79e677fb44da39b120beaf2ee9cb6e25527afd70de2315cbe169149468bd5ea51180decb9168537376b153f8b9f8f3c29182d4e1bc6248c027031cf9d6ba965a747a686990f01c27b14f82c17ffba439ad63e296eebdeb793f5786f7ddd2b38cb8878eeef3c09745441672794234efd53e74bdece74aa11f7811edb3983e4d1bd95b5c52cf5ae9fad1077d7008063660a7645c12d0dcbe120ee61c6e95690c7bc48dcd7271f6baf0fa938f9b1aa63c45ff966f9029b0943aafca84df2897cb5abc2566c4d105e21fc053026a506477698ec55efa4072d5331c02b874c39b48e5f750ea1c98e355389283d79714843be12fe42b8cdac221e43fe6eaa1eae523d0acd62cc5d25e5cb6f5366c700ecf5ceb37c25f23b3900a885dd9f12a868e027c8bb4ee4809ec65b9a01b2cd6d6ddcc97c69bfc2e65165933895cfa57ef39bf9f46fcc6497c77d5f128c3d75fdf33af1496ebab81c9c4c3d7199b09d55b10b8e4517d31cafe629bf44795c90c7d7277cd0b319d0657e6f7033ca4da4ce304d67c0096e0a6d6b885b1cb1c87b99707f8c67f4ff6adc399c0da4f5a6c54e184b577956de85dc376d9222134e4acf0b508852e09297b732fdff8c38d393b2689586c333cf1888e5cec5ce4dff8bbd558a38ce80536bf2790325de5d3f121334007c791b31dda3283c8d17a35c27d7c60947ae61026dcce04ec6f4d619c50c3ea39f4f2423a2148ed29def04b953a88d9502311c0818b5601bf2a33ca37a8374efc38ae87e7adeb4c4e4e482a10d51d02c16c586082c1b4fd1bf2dff9f3d96aabf09a77fec57d15e5bd4d8d31e29424d7834271d60c3128b1cb203025999750043f290b1ed6e05bf375e485b8c9e3a0b9460b6f4efe0fee142e8d6d6c3a21b9cc27995de9fd2e7ebb6a7db490ad9435d6c7780ee5889d192f78bcc4e8066e743d627d40d7b9979defc18229d22bdc4095ce52eb7804c71bbef00879a83cb28fb431c10cbce81d3c0a65140f36068b60066e86e0e129d8c32f7c647ec28380ea22748ce84467f60a019b03655354093779a0af2bedd5fea6e095d7c7869467e688ec68f8a392a8c37905d6f2ccfca6f6f030298b61d263d1dd17d999851acdc254241c587885528138117f8d4624881caea88b0e0d723810b07f5a50f0aee46065e8b8cd427d2bb51a25ae86a781085d968d107e937b903f37c9fd3477e3cd7948a830289e9bee8f7578c0569c95a856bcef76eb5a429a70667bd3be86e35071a325d1c05d8707fc53cdce988a33110f8653fe254a086234c7eee3daaef88cdde5761e64d52f0514ff209170ac37e5a213420968ec69735c61b6db1d23a776fd097a1fd01d32f329b7b347ae32b4aa3507814cf2a9b34004330da1c8e982e98046827f2dc197f08158e14771068c2a98e2f8e3dceee22b9fdaebda6dc1b8459decf1360d144ba9758002c70cac33951cff0e1a62222f15c8a361d9642bf813304f6c63668cea50b0ce3a0ca98230f02675e11c119f27acf2b39607538e7767c814664a4e1bd7b4bbe991f990237e1b54f4d0ded8e41f3b309179730012f844f2979b7f52b8c4c48d6906ba38c9a27c96d97bc9f0ba19f1e04eafbc9a9e34dcf752f59e0ed2f82de6cea4c40ddf5c0053331f8e32431f4c0508469db88c639dbcf010dbeceac71e47f2157c25bd431d646137e7e4710657b6d01f50b71a3397e9d13c4d284fdcb576d2564c83d71758304304e96ede2d2107483510a3d8647e765c90df26ffc831fb6ea0c242768dc8c057be8154a65eb1200a05a62f87650057fb6039cb9676801b515d15bc89ae08db5c4fdcbe01db575865887c6f395ec3495eb01ac74a4f5b103db7711f6ab76829aed64d548055bd803d22b8df3d132b229b02c950899531be8dc6fb6aa787aee178b39228140a8e9551c15980248b5494416dd9826b9ce2a436786c300cc9ef4532b116e1251ca6a19542903f539774d0cae5d432761cab2a01ce2cf2bf26417b9fddf39b810b18de6628f5b4acc3bc663bebdcc0bf6ed4663ab6dd353994c1244a008f7f688b065601ef49f4197abc661c915076805f85cd2fa075ed5cc29a54d95827976aea4d2be2a604d36727890b6614c536f5d62974d516ddaae6e963f4da4ab6293f520d09da527b713b035bbe3666135683ab63a040ab8652576d0723aa04c9162509d2e1c22c7a3954009b02557c1ff9e105050f1bbd36bf23e383cada9bb2b48a8a439e2ddf805a925447beac1df40efc80e706617493bf5b67bc0e1b8edfa832b5351caa6824bd12ed259bd2beb0a673bd700ea818ddf5b3b9a853a25bcffba1815586061fdc9828200a3eb19627a3cb85dd64db91ec227043cdeab1d707636a230f6ec01911ab7a16fe55e1da2c1f7335c702705fb92932c818b1371ab4c0efea9f65dfadb6e03d8e8758bfc96348342d086f5ccc1813a6960185d1d6920a90724fd46cec3b042229b9ed4a67570a9f88c10bc0b6b3e42f778abc1ae457185641db21cb62df6a0e74a66405a627a0e05d9a0f1f568838b45867cce62e5a945cdb6243cfa1629095ff56e86fe72d18e2ea70a5381eb05150bc30ee173eeafe27121c5d342c610f239259e05bb9c2a28ccc75b23ee011f6e86b249f6d3d72aa6dadb0f10c17942b146bbfa77e454a662ec2c08679b014be5b1bc881dbbf6cc281cb15e5971488075477030713bd131a4afc91934d772f475f9049a904fefab7f989160a97846119359b6668fd7b278108abe18d25bb73c9332908671984023029f1cb18c3c9dfeda4976c5a1f009d206dc29ed5de4bddc3ba2cd3ba19d6aa9854eace9db1fd0b6bbb1b66dc7bb61918273bac419299defa2a73a549cb4e02e805b8673734c67b60a7ebddb6a7f7b506872aa805d898a818fedfa8e0748525902be6a3abee594aa1a370be745e46a4dae3e2a891f4359ebf5320442030878e87f33006635b4ce22778d9b796f2dc65d0c44096e16401d747f89787242b01d2f1f489c65014ba615cfa44196b058093f655d15e019c9279fb882b8f69bc476b7f7ff1b492b2e3f978bef61e1dfdfbb95dc796ca21a2cdd3abfad841ed92c661ad948e9acf62ddd1c1ab974ef5b7090de738e08f877f2b43cc70e19971e7dd236a363db89be55a7896b658b4eb25da3a75fdaa00632191cf93a75ceb1ea5ef0c3ea1b358a4e5bae405e3b45b8550317a762e225f9a3f9e1f7bbf790618a37329833b269a6c5ab435491118d98723f76d761dcccad786edefae38c09d04c15cc894e1268087b39f88d597862868a9d7cd69bd24560078067ce137b506905af051355d33c7157e3f39b0e90d1d9e9797922e10c44bd71a0f31119ef395c28b49f4bc22af725244437be5cc9efb8cda52b2c35f9e98e5b69ce315a562010f896014e0c1b8151da2ff230feaef03ef40d9505e69f096fca173355a24efd4254ce8e9e06fd3e40e5e13dcf73e44b", 0x1000}], 0x1, &(0x7f0000000840)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x401}}, @dstopts={{0x1b8, 0x29, 0x37, {0x3a, 0x33, '\x00', [@ra={0x5, 0x2, 0x8}, @enc_lim={0x4, 0x1, 0xea}, @pad1, @generic={0x6, 0xd0, "6c4225bfa08d3b27eda909a929ccc41139f9787a9a9141aba53fecbc8f9473b4346961c14f233963d6d60845af973ff343ce72e90b7550725d1f393db04222f2ca3c027de8d7872198fe31b36278777e8d59ea166db9435951abc156e8d26577ffc6ec3815342f27b40423f447022447bc207fd7372280cae81724664087870f97559af5d2964348e56e8dcaa7f97e687fb70ad857fe8fd7cba3dca30407bd6cab54afafc5c6ab5658f7011ffe2dea9f34a874ef14e968663d66f462e3b08d37a5a194331be86203f1f3476df61438e6"}, @calipso={0x7, 0x30, {0x2, 0xa, 0x80, 0xa88, [0x1, 0x1, 0x7, 0x0, 0xf]}}, @enc_lim={0x4, 0x1, 0x6}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @generic={0x8, 0x55, "f22b1b333e19987164562c7d9d09cd89c53e064530b3532655b4593fc6c97f6c53d669dd5c602b973fde69dcae5332469923222648ebbac12725d3846a0a7c9c0c7354a6fe7b8992aa06543c126f4b5bd45bc25317"}, @calipso={0x7, 0x28, {0x0, 0x8, 0x10, 0x10, [0x3, 0xff, 0xda, 0xb]}}]}}}, @hopopts={{0xc8, 0x29, 0x36, {0x4, 0x15, '\x00', [@pad1, @hao={0xc9, 0x10, @mcast2}, @hao={0xc9, 0x10, @empty}, @enc_lim={0x4, 0x1, 0x9}, @jumbo={0xc2, 0x4, 0xd}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x8}}, @hao={0xc9, 0x10, @private0}, @hao={0xc9, 0x10, @mcast1}, @generic={0xf2, 0x43, "15f9763883c9a8fc8488cf297934dcdb6cc090d8207da477df17aa549b1c9af1211066eec5da359099b8c1b18647a324346522db70c111620f2773687211f45b49c51a"}]}}}], 0x298}}, {{&(0x7f0000000b00)={0xa, 0x4e22, 0x8, @private1, 0x8}, 0x1c, &(0x7f0000001dc0)=[{&(0x7f0000000b40)="837099", 0x3}, {&(0x7f0000000b80)="273e8b4fa2f5c3e2bd0a8169fc24e48c8136df191665e1d0dc71c361a5abf68da8568efb86", 0x25}, {&(0x7f0000000bc0)="96241341a0493337417c2abc79f484a01fd38c11fe3a0d995252d452f7f898468c862305630f70bdb2d8454be74fb7d3db9c2818b44925d71f65773065b10099", 0x40}, {&(0x7f0000000c00)="2eb8dbe9", 0x4}, {&(0x7f0000000c80)="40ce120b107c188764a3000e93a21694dc44696ea17a93cb19ec615ea4dc6d46f31200d7dc801ae1bd507f1360fd3ef24dd0f4aa5581fe481b1f42f1571e12725ea26aa514ba0e40a034ae5036153a2b67c076952618245b702ee5405f7e6d08de3fa44333930d7ba46985522310dccfb077e8be2d75a8b6c0b7b33c01be73928dcbc1dca9", 0x85}], 0x5}}, {{&(0x7f0000000d40)={0xa, 0x4e24, 0x0, @mcast2, 0x1}, 0x1c, &(0x7f0000002040)=[{&(0x7f0000001e40)="13951a8a989b3aba401227c13e32007c659993dce2d7e064aaa07a44863be375e3d03350791bdc74d43dabb205a05fb4df85f8453e328ae64f87e03753ef67d9181b53be4acf0123e9e74e9ca3eeda9a612b77928073daf92388e3d9db6ff85b896ff4cd7225544020e18ec062e13df1e4f48b2ae766d2d0300c251607", 0x7d}, {&(0x7f0000001ec0)="299e184e1b8874682ecc670efcd7184ce226fe1b3b73856663231d6ae1e253164f1ec1204ba9cabbeffe7820203cbac6e253b7506e461c915856975b972371a0d3d37f7a1ec279314ad096bc8d7d7fbe7be4c1d42339cd933d7be09260104b75959ff38de23566f8725ebc3b3c0b2b37a86f6838826c8120ad9c375ce9273eecb9d1350a61deb678208b0072a95d3ca7c5b6ba4eefbb77aa7b517436e9b19b738e59f4dda2fd56fb7bc9aa601a97ca804d5d3fe63a712c96b282215b58bf99da2fbfe2945ca2788e69c020159b7916a664", 0xd1}, {&(0x7f0000001fc0)="822d8c0ca552e373802f6f117a7a41dc7351504bbd852d8fcf68184fe985f5e48db2bb79536282d7f39a23b91ca06e7faf8886a65c410a5f24a1718ea57b9611e66115fa8b333077", 0x48}], 0x3, &(0x7f0000002100)=ANY=[@ANYBLOB="500000000000000029000000370000003a06000000000000c910fc0000000000000000000000000000000100071000000001020dffff950000000000000000010001050000000000c2040000000500001400000000000000290000000b00000000004be1000000004000000000000000290000003700000002040000000000000502037907200000000106030800020000000000000003000000000000000700000000000000000024000000000000002900000032000000fe8000000000000000000000000000aa", @ANYRES32=r1, @ANYBLOB="0000000028000000000000002900000037000000870100000000000000010001040000000000000000000000680000000000000029000000040000003a0900000000000007480000000210c90002010000000000000004000000abb400000000000000000000000000000f0000000000000009000000000000007f000000000000000100000000000000000100000000"], 0x160}}, {{&(0x7f0000002280)={0xa, 0x4e22, 0x1ff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2}, 0x1c, &(0x7f00000025c0)=[{&(0x7f00000022c0)="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", 0xff}, {&(0x7f00000023c0)="31c59798e44b95332b5960030fe12c01d912d85b6d47102e7ec121a9424f2ac8d8964d5114d76532dff16841bc0e6df42a51c64d4f04d56ace665de634e011f8c5f7d801241beed8fd111e66daa853ee", 0x50}, {&(0x7f0000002440)="26d2b35902e491a3118ad6afd917d1bb7b36ff36b9afde3aa54cb88c8b8cb6422ac5e8586b48fbfafd7b2f59589833a9d58894d8ff021edff7a6c612dddf4063e0bd98f88e26b15710fb33b40dc5ce6efe2d1be4091b4c79c210fee1eff68513756d69a91798d50edf88228bfd679468246a9426e132889eb676891b1f23a90d270114102ba6fda6839fdf03d21a330b151e3b27", 0x94}, {&(0x7f0000002500)="e91e52ea3c267259c9408784e521e8c03cf44f64db4eb648f5595cf760ac19407052f510c6180c64427efbbc56f34044787c924a835158086676a115a3e14d96d27c065239f8c71a480af1d0ce906e5ee3bf2578f53b13f665e8f3d1b0aa15dcbd819a88960de5fdc18cccd7f9eaf81ae68d6644d0e3a579631c9d25025c41f97650c3c4458506544b19cac17ac063", 0x8f}], 0x4}}, {{&(0x7f0000002600)={0xa, 0x4e21, 0x7, @empty, 0x7644}, 0x1c, &(0x7f0000002900)=[{&(0x7f0000002640)="6ad58e1becfff02e1e7c16055fe9c3b88da6392eee44bee0e0ccc4582648adb0b2d039a0ff6501a9cb4143e71f7604487e2eebbe2c42cfd58c44fab009c43db70e7efd24a83dcbb05ccf124f34111cf498eed809aed6e97371edc022da5c2bbb844fabfd958a08f266c7ffd86a2c4b3099bb2b9e7be1bbe6bf2c30016783b732d3953a6620", 0x85}, {&(0x7f0000002700)="d3fc7189cd09c0b6961a05a3a4d412e693a33c26aab982a1b843b61adb4351c6d0a425ce338a70642cc5d181df5859a6f963bb35c6ebd8b4c6b7a2a5d8c8d27c96a5d7620a2443581ef66f9346aaf67dd4d064ae54811e63a2b8a0ee8d1d1c54a55ff130f459b2cbe9d529f42a68dd34b4d51a658a0baae538f06ad120fec2db0cac7899e9", 0x85}, {&(0x7f00000027c0)="ec457ee20a664d8554f02f6f07447a67c9187de9080616795b16ccfb11d626e855ff89c62b8c1c43d391299b526871ff46fa5e4517c47579ab15d8d3b00ce31caeb544100288", 0x46}, {&(0x7f0000002840)="19680add5bc3740494228c1673a557719e09a52cf6a9a57d944e8dec8c101b68d330a8f00301591021ddb69ce375240a29c157e39a0c55e84a1e5585448891acd51182b47306663a35f90875bf071efcb2de631492486bc00b2ef3404d9c1a0757280bf01c4aad587c2aadd096a14fff555b1ce2e02c4906bcc869bee42c15fa91622d554b68bbd4b140f3e49eb35df3", 0x90}], 0x4, &(0x7f0000002940)=[@dstopts_2292={{0x238, 0x29, 0x4, {0x3b, 0x43, '\x00', [@generic={0xff, 0xb8, "968a0f4d1f2f3d5f431ca8a6cb109fe76866d37801de05fb8367d8847184e2c05cd4528a4fc5afdfb0a2f21632cb493df1b78dddc26f0f5a619225d846bb747e3f03dc34c75299f2a25a64b066dfdaba2d89052296101acffdd556278037d8914df23dd0310ff2b79caaa61ec8f3a114501a3ec310d1d554862436f72feddaa65b75b6354df2ee35dc5dabbb501ef44c8088fbe00af96bb9026805d9ca1c20521bd4e66ec79350f4e461be244693d0689f55133ea7df5f32"}, @generic={0x0, 0x40, "4dcdba6b08c47d484002e2063093383b4ce368841ba68e8b7c607b3057c3a09912ffdf4122e848426900116c1a2f361502ffd5d954e4c7f78547002f9c90c012"}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0xcf1}, @generic={0x9, 0xc7, "e45c5c912d7889e458a6d8de6db7e854ae20097951c9b08291283e3a8e95c73bde5243e5d0f9bc2cb48106a16ab3eaace0aa587c6ae08b6400c18455cc9f6e4067142cd15f302fcda77775ca3b718abff31ef3d74395d3f6dbaa4ef01126ad1e7d93701fda975d770c8dda16260c6e08dd689728cb17e74eaf9cf131080514c2fb5bff7d61da0e32096d86470eb990f4927be640f8cf6ee5641740d88ad6ff3d00d019f67050127f84fdcac802a156446d33779f551a84b7a417156301af68e5ca6108f9f5508e"}, @jumbo={0xc2, 0x4, 0x6}, @generic={0x1, 0x46, "3bb88904b087893c873a5daceffa4afe96a82dd0d416d523eecea33d7c3d34cee2caa4ce1582f9df93b023097e03dc618a0533b95323603191557f94de1f61860961c319d8e3"}]}}}, @hopopts_2292={{0x100, 0x29, 0x36, {0x48, 0x1c, '\x00', [@generic={0x9, 0xcc, "da8c89b43263c019f0c498f143152f5704ca77624c019c8f73e94f1e41dada59f326c796f5b54990565db42ebf74f3e609f3d01dc0e58a770d19fea40de26f4960c06b455997db7248e1d57537ec7d8354c5d890c7cffaccb08d6d1eec27e874be7d989d7d51129e6cbaba3fc11062684c2f3ea14b066307af2a2b1c92bca4b5a65eacf688712b6e0bdcda0f4550db55c45b819756ebe3856ac1549263cd15e3ba1d58e65034234206188c6307a35aafc8c3e1b9c52af921b436d4fa69819f0bdcd1507376c22ad647223fce"}, @pad1, @ra={0x5, 0x2, 0x3}, @hao={0xc9, 0x10, @remote}]}}}, @rthdr={{0xa8, 0x29, 0x39, {0x23, 0x12, 0x2, 0x8, 0x0, [@private0, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @dev={0xfe, 0x80, '\x00', 0x26}, @dev={0xfe, 0x80, '\x00', 0x34}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0x12}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4={'\x00', '\xff\xff', @multicast2}]}}}, @rthdr={{0x48, 0x29, 0x39, {0x0, 0x6, 0x0, 0x1, 0x0, [@empty, @local, @mcast2]}}}, @rthdrdstopts={{0x30, 0x29, 0x37, {0x0, 0x2, '\x00', [@hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}]}}}], 0x458}}], 0x6, 0x800)
sendmmsg$inet6(r0, &(0x7f0000004cc0)=[{{&(0x7f0000000480)={0xa, 0x4e24, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8e}, 0x1c, &(0x7f0000000d80)=[{&(0x7f0000000c40)="ea", 0x1}], 0x1}}], 0x1, 0x40)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x4e24, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}}}, 0x0, 0x1, 0x3bf8580d, 0x0, 0xb3550aa4ba878396, 0x2}, 0x9c)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'team_slave_1\x00'})
r2 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x2}}]}, &(0x7f00000002c0)=0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000080)="da", 0x1}], 0x1, 0x0, 0xd0}}], 0x1, 0x0)
getsockopt$bt_hci(r2, 0x84, 0x0, &(0x7f0000000080)=""/4076, &(0x7f0000000040)=0xfec)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="500000001000010400000000000000000000ffff", @ANYRES32=0x0, @ANYBLOB="421c0000000000001c00128009000100786697a64e3d00000c0002800800020001000000140003007866726d30"], 0x50}}, 0x0)
r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x106, 0x40001, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x2, @perf_config_ext={0x0, 0x10000}, 0x1320, 0xfffffffd, 0x3, 0x7, 0x4, 0x1088f105, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5)
getgroups(0x0, 0x0)

368.882674ms ago: executing program 2 (id=5231):
pipe2(&(0x7f0000000000)={<r0=>0x0, <r1=>0x0}, 0x0)
r2 = socket(0x2c, 0x3, 0x0)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setopts(0x4206, 0x0, 0x0, 0x20004f)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000007c0)='./file1\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x786, &(0x7f0000001900)="$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")
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r4, &(0x7f0000000080)=[{&(0x7f0000000300)='4', 0x1}], 0x1)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@bloom_filter={0x1e, 0x0, 0xd, 0x8, 0x40000, r0, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x0, 0xf, @void, @value, @void, @value}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120011", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r6}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[], 0x48)
creat(&(0x7f0000000000)='./file0\x00', 0xecf86c37d53049cc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r7 = syz_pidfd_open(r3, 0x0)
pidfd_send_signal(r7, 0x0, 0x0, 0x4)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r8, &(0x7f0000000140), &(0x7f0000000080)=@udp6=r2}, 0x20)
close_range(r1, 0xffffffffffffffff, 0x0)

368.083264ms ago: executing program 5 (id=5232):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa00"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

345.512635ms ago: executing program 5 (id=5233):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa00"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'})

319.783535ms ago: executing program 5 (id=5234):
r0 = gettid()
r1 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_user(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='system_u:object_r:auth_cache_t r'], 0x27)
ppoll(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
tkill(r0, 0x7) (async)
tkill(r0, 0x7)
r2 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x82}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0xfffffffffffffffd}, 0x18)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000000180)={&(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x79}}], 0x30, 0x8000}, 0x0) (async)
sendmsg$rds(r4, &(0x7f0000000180)={&(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x79}}], 0x30, 0x8000}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x60800) (async)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x60800)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r6, &(0x7f0000000a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000940)=""/3, 0x3, 0x0, 0x4, 0x0, 0x0, 0xc08}}, 0x120) (async)
write$UHID_CREATE(r6, &(0x7f0000000a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000940)=""/3, 0x3, 0x0, 0x4, 0x0, 0x0, 0xc08}}, 0x120)
readv(r6, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}, {0x0, 0x4}], 0x2) (async)
readv(r6, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}, {0x0, 0x4}], 0x2)
write$UHID_DESTROY(r6, &(0x7f0000000200), 0x4) (async)
write$UHID_DESTROY(r6, &(0x7f0000000200), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYRES16=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYRES16=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', 0xffffffffffffffff, 0x0, 0x5}, 0x18)
sync_file_range(0xffffffffffffffff, 0x2, 0xac50, 0x1) (async)
sync_file_range(0xffffffffffffffff, 0x2, 0xac50, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0600000004000000008000005c00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)
sendmsg$nl_route(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000006c0)=@ipv6_getaddr={0x20, 0x16, 0x1, 0x0, 0x25dfdbfc, {}, [@IFA_FLAGS={0x8, 0x8, 0x64}]}, 0x20}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000a40)={0x170, 0xa, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFTA_SET_USERDATA={0xd4, 0xd, 0x1, 0x0, "edac8061d8dd03230c5eb1cfc0d899370260ed08dbede9e62869e1d2d234fe3980d65fb88c1e520e6df1f7a67a5a5556cdc0247b2b134f035346f73d683744d86d1b6ef6c3a95ccd43281e1942174ee6634da96f2b57d9f1bccdd2bdda0ca9922af876168bdf0aba1c825012fda4389c1b53f023eb57a2f2456ac273b77e8ec3fdcd8784afe970ba16680b77c675f01cb107e5d624fd8bbdc7555b8c8e5320491a398fcdbe0bc381daa4481d2078e9978742fa87f93661b5d98f034b486510ef484b5d67c7d6cefe5965aa5f28d5b27d"}, @NFTA_SET_EXPR={0x50, 0x11, 0x0, 0x1, @osf={{0x8}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_TTL={0x5, 0x2, 0xb}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_OSF_TTL={0x5, 0x2, 0x5}]}}}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x4}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0xc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x52}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x8}, @NFTA_SET_DATA_TYPE={0x8}]}, 0x170}, 0x1, 0x0, 0x0, 0x840}, 0x8840) (async)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000a40)={0x170, 0xa, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFTA_SET_USERDATA={0xd4, 0xd, 0x1, 0x0, "edac8061d8dd03230c5eb1cfc0d899370260ed08dbede9e62869e1d2d234fe3980d65fb88c1e520e6df1f7a67a5a5556cdc0247b2b134f035346f73d683744d86d1b6ef6c3a95ccd43281e1942174ee6634da96f2b57d9f1bccdd2bdda0ca9922af876168bdf0aba1c825012fda4389c1b53f023eb57a2f2456ac273b77e8ec3fdcd8784afe970ba16680b77c675f01cb107e5d624fd8bbdc7555b8c8e5320491a398fcdbe0bc381daa4481d2078e9978742fa87f93661b5d98f034b486510ef484b5d67c7d6cefe5965aa5f28d5b27d"}, @NFTA_SET_EXPR={0x50, 0x11, 0x0, 0x1, @osf={{0x8}, @val={0x44, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_TTL={0x5, 0x2, 0xb}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x10}, @NFTA_OSF_FLAGS={0x8}, @NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_OSF_TTL={0x5, 0x2, 0x5}]}}}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x4}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0xc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x52}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x8}, @NFTA_SET_DATA_TYPE={0x8}]}, 0x170}, 0x1, 0x0, 0x0, 0x840}, 0x8840)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)

196.031067ms ago: executing program 2 (id=5235):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x4}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x20008000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x400000000}, 0x18)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x5, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9, 0xffff}, {0xc}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x1, 0x0, 0x1, 0x2}}, {0x8, 0x1b, [0x0, 0x7]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x84}, 0x40)
ioctl$sock_inet_SIOCGIFPFLAGS(r2, 0x8935, &(0x7f0000000040)={'ip_vti0\x00'})
sendmsg$RDMA_NLDEV_CMD_STAT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="30000000101401002cbd7000fedbdf25080003000100000008004a0001000000080001000000000008004b00139ea4"], 0x30}, 0x1, 0x0, 0x0, 0x24044836}, 0xc094)

195.241547ms ago: executing program 5 (id=5236):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x4000, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f00000006c0)={0x2, 0x1, 0xaa5, 0x8}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)={0x34, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x24044815}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[], 0x50)
socket(0x2, 0x80805, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0xfffffffffffffff5]}, 0x8, 0x0)
ppoll(&(0x7f0000000000)=[{r5, 0x4180}, {r5, 0x100}], 0x2, 0x0, 0x0, 0x0)
signalfd4(r5, &(0x7f0000000040)={[0x2]}, 0x8, 0x800)
write$UHID_CREATE2(r5, &(0x7f0000000300)={0xb, {'syz0\x00', 'syz0\x00', 'syz0\x00', 0x40, 0x4000, 0x3, 0x3, 0xac, 0x1ff, "c71cfcd854dae96717db23060b3976a4006072f56ea7e242c417286f9e5fd759858e2e9c0d5b534530b16aede6a76977ee201ca6003b484bb07a88fff195f252"}}, 0x158)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
fcntl$lock(r6, 0x5, &(0x7f00000002c0)={0x0, 0x2, 0xa, 0x8000000000000001})
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000700)=@raw={'raw\x00', 0x3c1, 0x3, 0x418, 0x0, 0x940c, 0x3002, 0x210, 0x2c0, 0x348, 0x3d8, 0x3d8, 0x348, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1c8, 0x210, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x2, 0x1, 0x0, 'syz0\x00'}}, @common=@eui64={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@ipv6={@loopback, @empty, [0xffffff00, 0xffff00, 0xff, 0xffffff00], [0xff, 0xff000000, 0x0, 0xff000000], 'syzkaller1\x00', 'macvtap0\x00', {}, {}, 0x1, 0x9, 0x1, 0x8}, 0x0, 0xd0, 0x138, 0x0, {0x700}, [@common=@inet=@socket2={{0x28}, 0x2}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x478)

193.976427ms ago: executing program 2 (id=5237):
ftruncate(0xffffffffffffffff, 0xc17a)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000d00000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="80000000000000000000d9ef92"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r3, 0x0, 0x200000000000006}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffc}]})
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xc000, 0x0)
faccessat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1, 0x0, 0x1f}, 0x18)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_read_part_table(0x5f7, &(0x7f0000001240)="$eJzs209ok2ccB/BfYl+CyvCykyf1IGPsouxoGE6SqCh00V6GDAVFxJwiCJEVOvSgYSgGNrpbL10hl7Y7Nc2hp5YVetqhlB46Cj30stFeCr0sI+m70XV/IKPbGH4+hPzeJ8/veb/PA7k+wf9aNn7sdDqZiOh890W739VDzULxyqnBi+WbEZm4FRGffPXO192ZTNrRye3VM+l4LR2Pjx1rv9i+nDRXb+ycvT1fz/7yypHeJ45PtIb63g7/usn8womnz6qll7X8g5XS8Mbz5aXrU1uFcutavTF9Nbl0N+37Nq0DaX0UtXgSD+NODMRncS+q+96Z3ff8eZ/5o831c8nJUnPm/oXdYvvV3Ple15E/Wpr9u2c+mN/7w0ZEN//x6dcfN4Y/fO+bt798vza7WN5Moyu5Aws/yhxGPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAhyyJhRNPn1VLL2v5Byul4Y3ny0vXp7YK5da1emP6anLpbq8r+2v/QFofRS2exMO4E5WoxL2o/mnCW/sHuYOzk/nf5o8218/9dLLUnLl/YbfYfjV3Pu0bPKTz/kV+p5v/+PTrDxpH08nZxfLmkb3Hyu923pUk/9C2AAAAAAAAAAAAAAAAAAAAeMMUildODV4s34zIxK2IePeHT3uX/TvpffdM9+toxJm0fy239+P42LH2i+3LSXP1xs7Z2/P179P+kcjESEQcn2gN/UdHog8/BwAA//9uYJDa")
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYRES8=r4, @ANYRES64=r4, @ANYBLOB="68b719610a7fb8f2533d08de4f018c914784cf7488742f8157e7ff7bbd0d05e2307e1463892e7890d86bbf76c434ad7bbc66df0839f341087849167d3e477433dd5ff5de2163a8c0263752bb4417c2f0d2b91a69afab241d814306d241cf6faa0c1e31f12e1bd5821507ab838dad30e450ba6e0fd773be4d1c7574b1c11ec83ce811103e57ed3965869baee760aaf42683ee5fc1f78219853d4d0b3cfb735a0e747bddb38f7cfa8d38159d1d24", @ANYRES32=r4, @ANYRES32=r4, @ANYBLOB="92620e08acd221398cb4c8e84615381428f47ba1898b78b0ba85c96c169fe644a647e574280c04d81f22726b6db49f5fac6f05ae6331fdb09d5e76f647add71c62f41f9facd30d0b012d9e3595dbac043af5175494f0669ad94841e4710f839192328bf2cfa7130f645bc1fc9596889c04d392672ae5f67da01fd8a9a9a5599f2bfe150a520eb6"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000006500000008"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='nilfs2_segment_usage_freed\x00', r4}, 0x18)
socket$inet6(0xa, 0x2, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r8 = fcntl$dupfd(r7, 0x0, r7)
write$sndseq(r8, &(0x7f0000000180), 0x0)
bpf$LINK_DETACH(0x22, &(0x7f0000000080)=r8, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r6, 0x0, 0x2000000000000000}, 0x18)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0xfed, 0x8, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff})

115.706838ms ago: executing program 2 (id=5238):
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000340), &(0x7f00000004c0)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='page_pool_release\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r4, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="b9ff03076804268c989e14f088a8", 0x0, 0x2, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
faccessat2(0xffffffffffffffff, &(0x7f0000000040)='\x00', 0x1, 0x1300)

114.862958ms ago: executing program 2 (id=5239):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r2)
syz_clone(0x80200, &(0x7f0000000cc0)="ad3e33cb8ed14489a89beb837b80b0c44c90805e9602220855d140c9c4a642393772e44add1d6c9e3c9951c246596d70f015b8127be65d555d120dd583dc7059b1458c0f6fe6637be55553b0778e0ec10108da79ba5942288f45f6ba84dc2589bd1fec2bae71", 0x66, &(0x7f0000000d40), &(0x7f0000000d80), &(0x7f0000000dc0)="ce06b634a5d74a459d7c277fb7e07d77229d003219274fad822260ceb6ca41da0bd1a2e62adb")
sendmsg$NFC_CMD_DEP_LINK_UP(r2, &(0x7f0000000600)={0x0, 0xffffffffffffff24, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40)

114.127539ms ago: executing program 2 (id=5240):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = io_uring_setup(0x37ae, &(0x7f00000003c0)={0x0, 0x800000, 0x0, 0x2, 0x22a})
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000740)={&(0x7f0000002000)={[{0x0, 0x0, 0x3}, {0x0}, {0x0, 0x0, 0xfffe}, {0x0}]}, 0x4}, 0x1)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
io_uring_register$IORING_UNREGISTER_PBUF_RING(r1, 0x17, &(0x7f0000000300)={0x0, 0x0, 0xffff}, 0x1)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x8000000}, 0x18)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000680)={0x2, 0x4e21, @remote}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x4, 0xe, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x67a, 0x1, 0xfffffffe, 0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYRES16=r3], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r6}, &(0x7f0000000180), &(0x7f00000001c0)=r5}, 0x20)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000640)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
r9 = socket$inet6(0x10, 0x2, 0x6)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x16}]}, 0x10)
sendto$inet6(r9, &(0x7f00000002c0)="100000001200050f0c1000000049b23e", 0x10, 0x0, 0x0, 0x0)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b000000000000", @ANYRES32=r9, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00-1\x00\x00', @ANYRES32=r8, @ANYRES8=r5, @ANYBLOB='\x00'/28], 0x50)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000181100009b53", @ANYRES32=r10, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r11}, 0x10)
setregid(0xffffffffffffffff, 0x0)
sendmsg$rds(r4, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
r12 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$TIOCMSET(r12, 0x5418, &(0x7f0000000000)=0xbb3)
setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

0s ago: executing program 1 (id=5241):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfe, 0x47c, &(0x7f0000000a80)="$eJzs3M1vFOUfAPDvTLulwI9fK+ILCFJFI/GlpeVFDl40mnDQxEQPGE+1LaRSqKE1EUK0esCjIfFu/C+MJ70Y9aKJV70bEmK4gHpZMzsztLS77ZZud4H9fJLZfZ6Z2X2e78w8O8/Ms7sBdK2h7CGJ+F9E/B4RA3n29hWG8qeb1y9N/H390kQS1epbfyW19W5cvzRRrlq+bnueqVaL/JY65V5+N2J8ZmbqfJEfmT/7wcjchYsvTJ8dPz11eurc2PHjRw7v6zs2drQlcWZx3djz8eze3SfeufLGxMkr7/2UpJHHHcviaJWhfOvW9XSrC+uwHUvSSW/22F/k9v+yuKTekUAn9UREtrsqtfY/ED2x9daygXjts45WDthU1Wq1usqn8kIVuI8l0ekaAJ1Rnuiz699yalPX465w7eX8AiiL+2Yx5Ut6I80T+yvLrm9baSgiTi7881U2xSbdhwAAWOq7rP/zfL3+XxoP54m+7OH/xRjKYEQ8EBE7I+LBiNgVEQ9F1NZ9JCIeXWf5y0dIVvZ/0qt3HFwTsv7fS8XY1u39v7RcZbCnyO2oxV9JTk3PTB0qtsnBqGw5NZ1Mja5Sxvev/vZFo2VL+3/ZlJVf9gWLelztXXaDbnJ8fnwjMS917dOIPb314k9q4wJRjOvtjog9d1jG9LO9DZetHf8qGr9t06pfRzyT7/+FWBZ/KWk4Pjn64rGxoyP9MTN1aKQ8Klb6+dfLbzYqf0Pxt0C2/7fVPf5vxT+Y9EfMXbh4pjZeO7f+Mi7/8XnDa5p1Hv8ndhTHf1/ydm1GX7Hgo/H5+fOjEX3J6yvnjy2+W5kv18/iP3igfvvfGYtb4rGI2BsR+yLi8eyisKj7ExHxZEQcWCX+H1956v31x9+esdIs/sm19n8s3f/rT/Sc+eHbtePvj4hG+/9ILXWwmNPM51+zFdzItgMAAIB7Rf4d+CQdXkwnw8P5d/h3xbZ0ZnZu/rlTsx+em8y/Kz8YlbS80zWw5H7oaHFvuMyPLcsfLu4bf9mztZYfnpidmex08NDltq9o/2matf/Mnz2drh2w6Vowjgbco7R/6F7aP3SnZM32X2lbXYD2c/6H7lWv/X/ScO3hbza1MkBbOf9D92qi/S/kT417BcC9yfkfupf2D12p4W/j0w395L/tiX+L/zO8W+pz/ycivSuqcf8nepv+M4tGicrKtlwdyNt/NmdL3Vd1+pMJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgNf4LAAD///R05PQ=") (async)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfe, 0x47c, &(0x7f0000000a80)="$eJzs3M1vFOUfAPDvTLulwI9fK+ILCFJFI/GlpeVFDl40mnDQxEQPGE+1LaRSqKE1EUK0esCjIfFu/C+MJ70Y9aKJV70bEmK4gHpZMzsztLS77ZZud4H9fJLZfZ6Z2X2e78w8O8/Ms7sBdK2h7CGJ+F9E/B4RA3n29hWG8qeb1y9N/H390kQS1epbfyW19W5cvzRRrlq+bnueqVaL/JY65V5+N2J8ZmbqfJEfmT/7wcjchYsvTJ8dPz11eurc2PHjRw7v6zs2drQlcWZx3djz8eze3SfeufLGxMkr7/2UpJHHHcviaJWhfOvW9XSrC+uwHUvSSW/22F/k9v+yuKTekUAn9UREtrsqtfY/ED2x9daygXjts45WDthU1Wq1usqn8kIVuI8l0ekaAJ1Rnuiz699yalPX465w7eX8AiiL+2Yx5Ut6I80T+yvLrm9baSgiTi7881U2xSbdhwAAWOq7rP/zfL3+XxoP54m+7OH/xRjKYEQ8EBE7I+LBiNgVEQ9F1NZ9JCIeXWf5y0dIVvZ/0qt3HFwTsv7fS8XY1u39v7RcZbCnyO2oxV9JTk3PTB0qtsnBqGw5NZ1Mja5Sxvev/vZFo2VL+3/ZlJVf9gWLelztXXaDbnJ8fnwjMS917dOIPb314k9q4wJRjOvtjog9d1jG9LO9DZetHf8qGr9t06pfRzyT7/+FWBZ/KWk4Pjn64rGxoyP9MTN1aKQ8Klb6+dfLbzYqf0Pxt0C2/7fVPf5vxT+Y9EfMXbh4pjZeO7f+Mi7/8XnDa5p1Hv8ndhTHf1/ydm1GX7Hgo/H5+fOjEX3J6yvnjy2+W5kv18/iP3igfvvfGYtb4rGI2BsR+yLi8eyisKj7ExHxZEQcWCX+H1956v31x9+esdIs/sm19n8s3f/rT/Sc+eHbtePvj4hG+/9ILXWwmNPM51+zFdzItgMAAIB7Rf4d+CQdXkwnw8P5d/h3xbZ0ZnZu/rlTsx+em8y/Kz8YlbS80zWw5H7oaHFvuMyPLcsfLu4bf9mztZYfnpidmex08NDltq9o/2matf/Mnz2drh2w6Vowjgbco7R/6F7aP3SnZM32X2lbXYD2c/6H7lWv/X/ScO3hbza1MkBbOf9D92qi/S/kT417BcC9yfkfupf2D12p4W/j0w395L/tiX+L/zO8W+pz/ycivSuqcf8nepv+M4tGicrKtlwdyNt/NmdL3Vd1+pMJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgNf4LAAD///R05PQ=")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000140)=@base={0x1b, 0x0, 0x0, 0x2000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {0x4, 0x1, 0xb, 0x9, 0xa}}}, &(0x7f0000000200)='syzkaller\x00', 0x9, 0x1003, &(0x7f0000001e40)=""/4099, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = open(&(0x7f00000000c0)='.\x00', 0x10000, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040)) (async)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000040))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r2, 0x0, 0x533401)
capget(&(0x7f0000000240)={0x20080522}, 0x0)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8) (async)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)

kernel console output (not intermixed with test programs):

0006
[  256.355405][T15960] RBP: 00007fe445256090 R08: 0000000000000000 R09: 0000000000000000
[  256.355418][T15960] R10: 0000000000002101 R11: 0000000000000293 R12: 0000000000000001
[  256.355430][T15960] R13: 0000000000000000 R14: 00007fe446e36080 R15: 00007ffebb96ec98
[  256.355450][T15960]  </TASK>
[  256.618147][T15963] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4735'.
[  256.736938][T15973] loop5: detected capacity change from 0 to 4096
[  256.745951][T15973] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  256.771987][T15977] xt_hashlimit: overflow, rate too high: 1125899906842624
[  256.782285][T13340] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.810290][T15986] FAULT_INJECTION: forcing a failure.
[  256.810290][T15986] name failslab, interval 1, probability 0, space 0, times 0
[  256.823004][T15986] CPU: 1 UID: 0 PID: 15986 Comm: syz.1.4744 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  256.823038][T15986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  256.823055][T15986] Call Trace:
[  256.823064][T15986]  <TASK>
[  256.823074][T15986]  __dump_stack+0x1d/0x30
[  256.823101][T15986]  dump_stack_lvl+0xe8/0x140
[  256.823125][T15986]  dump_stack+0x15/0x1b
[  256.823146][T15986]  should_fail_ex+0x265/0x280
[  256.823167][T15986]  should_failslab+0x8c/0xb0
[  256.823192][T15986]  kmem_cache_alloc_noprof+0x50/0x310
[  256.823226][T15986]  ? mas_alloc_nodes+0x265/0x520
[  256.823252][T15986]  mas_alloc_nodes+0x265/0x520
[  256.823283][T15986]  mas_preallocate+0x32b/0x510
[  256.823316][T15986]  __split_vma+0x240/0x650
[  256.823351][T15986]  ? terminate_walk+0x27f/0x2a0
[  256.823385][T15986]  ? path_openat+0x1bf8/0x2170
[  256.823422][T15986]  vms_gather_munmap_vmas+0x172/0x7a0
[  256.823455][T15986]  ? _parse_integer+0x27/0x40
[  256.823500][T15986]  ? kstrtoull+0x111/0x140
[  256.823541][T15986]  do_vmi_align_munmap+0x1a4/0x3d0
[  256.823581][T15986]  __se_sys_brk+0x43c/0x7f0
[  256.823621][T15986]  __x64_sys_brk+0x1f/0x30
[  256.823661][T15986]  x64_sys_call+0x282e/0x2fb0
[  256.823688][T15986]  do_syscall_64+0xd2/0x200
[  256.823716][T15986]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  256.823749][T15986]  ? clear_bhb_loop+0x40/0x90
[  256.823777][T15986]  ? clear_bhb_loop+0x40/0x90
[  256.823799][T15986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.823820][T15986] RIP: 0033:0x7fb43908e929
[  256.823840][T15986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  256.823863][T15986] RSP: 002b:00007fb4376f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000000c
[  256.823894][T15986] RAX: ffffffffffffffda RBX: 00007fb4392b5fa0 RCX: 00007fb43908e929
[  256.823911][T15986] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000001000
[  256.823927][T15986] RBP: 00007fb4376f7090 R08: 0000000000000000 R09: 0000000000000000
[  256.823939][T15986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  256.823954][T15986] R13: 0000000000000000 R14: 00007fb4392b5fa0 R15: 00007ffd442a5e38
[  256.823979][T15986]  </TASK>
[  257.044270][T15984] loop5: detected capacity change from 0 to 2048
[  257.065356][T15984] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.081633][T15992] netlink: 'syz.2.4746': attribute type 27 has an invalid length.
[  257.085180][T15984] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.136020][T15984] FAULT_INJECTION: forcing a failure.
[  257.136020][T15984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  257.149270][T15984] CPU: 1 UID: 0 PID: 15984 Comm: syz.5.4743 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  257.149306][T15984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  257.149389][T15984] Call Trace:
[  257.149397][T15984]  <TASK>
[  257.149407][T15984]  __dump_stack+0x1d/0x30
[  257.149433][T15984]  dump_stack_lvl+0xe8/0x140
[  257.149457][T15984]  dump_stack+0x15/0x1b
[  257.149479][T15984]  should_fail_ex+0x265/0x280
[  257.149506][T15984]  should_fail+0xb/0x20
[  257.149555][T15984]  should_fail_usercopy+0x1a/0x20
[  257.149581][T15984]  _copy_from_user+0x1c/0xb0
[  257.149613][T15984]  copy_from_sockptr_offset+0x66/0xa0
[  257.149670][T15984]  do_ipt_set_ctl+0x5c8/0x820
[  257.149705][T15984]  nf_setsockopt+0x199/0x1b0
[  257.149739][T15984]  ip_setsockopt+0x102/0x110
[  257.149784][T15984]  sock_common_setsockopt+0x69/0x80
[  257.149894][T15984]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  257.149935][T15984]  __sys_setsockopt+0x184/0x200
[  257.149961][T15984]  ? __secure_computing+0x82/0x150
[  257.149987][T15984]  __x64_sys_setsockopt+0x64/0x80
[  257.150019][T15984]  x64_sys_call+0x2bd5/0x2fb0
[  257.150044][T15984]  do_syscall_64+0xd2/0x200
[  257.150070][T15984]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  257.150104][T15984]  ? clear_bhb_loop+0x40/0x90
[  257.150132][T15984]  ? clear_bhb_loop+0x40/0x90
[  257.150262][T15984]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.150289][T15984] RIP: 0033:0x7f7cd08fe929
[  257.150310][T15984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.150349][T15984] RSP: 002b:00007f7ccef67038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  257.150375][T15984] RAX: ffffffffffffffda RBX: 00007f7cd0b25fa0 RCX: 00007f7cd08fe929
[  257.150392][T15984] RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000004
[  257.150409][T15984] RBP: 00007f7ccef67090 R08: 0000000000000500 R09: 0000000000000000
[  257.150426][T15984] R10: 0000200000000400 R11: 0000000000000246 R12: 0000000000000001
[  257.150442][T15984] R13: 0000000000000000 R14: 00007f7cd0b25fa0 R15: 00007ffc24400e28
[  257.150519][T15984]  </TASK>
[  257.385170][T16008] netlink: 'syz.5.4750': attribute type 3 has an invalid length.
[  257.423583][T16011] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4751'.
[  257.441747][T16016] netlink: 64 bytes leftover after parsing attributes in process `syz.5.4753'.
[  257.539055][T16025] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4757'.
[  257.548296][T16025] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4757'.
[  257.591314][T16036] loop4: detected capacity change from 0 to 512
[  257.605525][T16036] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  257.620590][T16036] EXT4-fs (loop4): mount failed
[  257.661876][T16042] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4763'.
[  257.689658][T16034] macsec0: entered promiscuous mode
[  257.717942][T16046] FAULT_INJECTION: forcing a failure.
[  257.717942][T16046] name failslab, interval 1, probability 0, space 0, times 0
[  257.730693][T16046] CPU: 1 UID: 0 PID: 16046 Comm: syz.2.4764 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  257.730723][T16046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  257.730739][T16046] Call Trace:
[  257.730746][T16046]  <TASK>
[  257.730755][T16046]  __dump_stack+0x1d/0x30
[  257.730791][T16046]  dump_stack_lvl+0xe8/0x140
[  257.730813][T16046]  dump_stack+0x15/0x1b
[  257.730835][T16046]  should_fail_ex+0x265/0x280
[  257.730861][T16046]  ? nl80211_dump_wiphy_parse+0x4b/0x2e0
[  257.730971][T16046]  should_failslab+0x8c/0xb0
[  257.730998][T16046]  __kmalloc_cache_noprof+0x4c/0x320
[  257.731066][T16046]  nl80211_dump_wiphy_parse+0x4b/0x2e0
[  257.731113][T16046]  nl80211_dump_interface+0xc1/0x4c0
[  257.731175][T16046]  ? should_failslab+0x8c/0xb0
[  257.731200][T16046]  ? __kmalloc_node_track_caller_noprof+0x1e5/0x410
[  257.731268][T16046]  ? __alloc_skb+0x1b2/0x320
[  257.731322][T16046]  ? __alloc_skb+0x1b2/0x320
[  257.731349][T16046]  genl_dumpit+0xa9/0x110
[  257.731387][T16046]  netlink_dump+0x38f/0x7f0
[  257.731425][T16046]  __netlink_dump_start+0x43e/0x520
[  257.731454][T16046]  genl_family_rcv_msg_dumpit+0x115/0x180
[  257.731551][T16046]  ? __pfx_genl_start+0x10/0x10
[  257.731578][T16046]  ? __pfx_genl_dumpit+0x10/0x10
[  257.731676][T16046]  ? __pfx_genl_done+0x10/0x10
[  257.731731][T16046]  genl_rcv_msg+0x3f0/0x460
[  257.731770][T16046]  ? __pfx_nl80211_dump_interface+0x10/0x10
[  257.731818][T16046]  netlink_rcv_skb+0x120/0x220
[  257.731878][T16046]  ? __pfx_genl_rcv_msg+0x10/0x10
[  257.731965][T16046]  genl_rcv+0x28/0x40
[  257.732029][T16046]  netlink_unicast+0x5a1/0x670
[  257.732058][T16046]  netlink_sendmsg+0x58b/0x6b0
[  257.732092][T16046]  ? __pfx_netlink_sendmsg+0x10/0x10
[  257.732126][T16046]  __sock_sendmsg+0x142/0x180
[  257.732164][T16046]  ____sys_sendmsg+0x31e/0x4e0
[  257.732191][T16046]  ___sys_sendmsg+0x17b/0x1d0
[  257.732277][T16046]  __x64_sys_sendmsg+0xd4/0x160
[  257.732312][T16046]  x64_sys_call+0x2999/0x2fb0
[  257.732339][T16046]  do_syscall_64+0xd2/0x200
[  257.732366][T16046]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  257.732401][T16046]  ? clear_bhb_loop+0x40/0x90
[  257.732461][T16046]  ? clear_bhb_loop+0x40/0x90
[  257.732489][T16046]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.732510][T16046] RIP: 0033:0x7fd21339e929
[  257.732532][T16046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.732561][T16046] RSP: 002b:00007fd211a07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  257.732644][T16046] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339e929
[  257.732661][T16046] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  257.732675][T16046] RBP: 00007fd211a07090 R08: 0000000000000000 R09: 0000000000000000
[  257.732688][T16046] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  257.732699][T16046] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  257.732739][T16046]  </TASK>
[  258.025468][T16042] macsec0: entered promiscuous mode
[  258.108563][T16055] FAULT_INJECTION: forcing a failure.
[  258.108563][T16055] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.121817][T16055] CPU: 0 UID: 0 PID: 16055 Comm: syz.4.4768 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  258.121916][T16055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  258.121933][T16055] Call Trace:
[  258.121942][T16055]  <TASK>
[  258.121953][T16055]  __dump_stack+0x1d/0x30
[  258.121980][T16055]  dump_stack_lvl+0xe8/0x140
[  258.122005][T16055]  dump_stack+0x15/0x1b
[  258.122027][T16055]  should_fail_ex+0x265/0x280
[  258.122126][T16055]  should_fail+0xb/0x20
[  258.122143][T16055]  should_fail_usercopy+0x1a/0x20
[  258.122179][T16055]  _copy_from_user+0x1c/0xb0
[  258.122205][T16055]  kstrtouint_from_user+0x69/0xf0
[  258.122225][T16055]  ? 0xffffffff81000000
[  258.122296][T16055]  ? selinux_file_permission+0x1e4/0x320
[  258.122335][T16055]  proc_fail_nth_write+0x50/0x160
[  258.122366][T16055]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  258.122402][T16055]  vfs_write+0x266/0x8e0
[  258.122496][T16055]  ? vfs_read+0x47f/0x6f0
[  258.122566][T16055]  ? __rcu_read_unlock+0x4f/0x70
[  258.122595][T16055]  ? __fget_files+0x184/0x1c0
[  258.122630][T16055]  ksys_write+0xda/0x1a0
[  258.122653][T16055]  __x64_sys_write+0x40/0x50
[  258.122722][T16055]  x64_sys_call+0x2cdd/0x2fb0
[  258.122748][T16055]  do_syscall_64+0xd2/0x200
[  258.122777][T16055]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  258.122812][T16055]  ? clear_bhb_loop+0x40/0x90
[  258.122897][T16055]  ? clear_bhb_loop+0x40/0x90
[  258.122919][T16055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.122944][T16055] RIP: 0033:0x7fe446c0d3df
[  258.122963][T16055] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  258.122997][T16055] RSP: 002b:00007fe445277030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  258.123023][T16055] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe446c0d3df
[  258.123040][T16055] RDX: 0000000000000001 RSI: 00007fe4452770a0 RDI: 0000000000000005
[  258.123056][T16055] RBP: 00007fe445277090 R08: 0000000000000000 R09: 0000000000000000
[  258.123073][T16055] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  258.123085][T16055] R13: 0000000000000000 R14: 00007fe446e35fa0 R15: 00007ffebb96ec98
[  258.123105][T16055]  </TASK>
[  258.133103][T16057] tmpfs: Bad value for 'mpol'
[  258.186063][T16059] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4769'.
[  258.374545][T16064] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4770'.
[  258.403711][   T29] kauditd_printk_skb: 350 callbacks suppressed
[  258.403730][   T29] audit: type=1326 audit(1749395381.898:27292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.433641][   T29] audit: type=1326 audit(1749395381.898:27293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.457472][   T29] audit: type=1326 audit(1749395381.898:27294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.481303][   T29] audit: type=1326 audit(1749395381.898:27295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.504934][   T29] audit: type=1326 audit(1749395381.898:27296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.528567][   T29] audit: type=1326 audit(1749395381.898:27297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.552197][   T29] audit: type=1326 audit(1749395381.898:27298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.575767][   T29] audit: type=1326 audit(1749395381.898:27299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.599425][   T29] audit: type=1326 audit(1749395381.898:27300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.623026][   T29] audit: type=1326 audit(1749395381.898:27301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16066 comm="syz.3.4772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  258.753192][T16078] netlink: 'syz.5.4774': attribute type 3 has an invalid length.
[  258.814710][T16084] netlink: 'syz.5.4778': attribute type 3 has an invalid length.
[  259.720603][T16104] loop5: detected capacity change from 0 to 128
[  259.724880][T16102] loop4: detected capacity change from 0 to 1024
[  259.727845][T16104] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  259.760979][T16106] netlink: 'syz.4.4785': attribute type 13 has an invalid length.
[  259.779914][T16108] netlink: 'syz.2.4786': attribute type 3 has an invalid length.
[  259.840181][T16116] SELinux:  policydb magic number 0x6e616376 does not match expected magic number 0xf97cff8c
[  259.850762][T16116] SELinux: failed to load policy
[  260.081806][T16133] loop4: detected capacity change from 0 to 512
[  260.090108][T16133] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  260.186688][T16133] loop4: detected capacity change from 0 to 512
[  260.195096][T16133] ext4: Unknown parameter 'noinit_itable."'
[  260.326730][T16138] validate_nla: 1 callbacks suppressed
[  260.326743][T16138] netlink: 'syz.4.4798': attribute type 13 has an invalid length.
[  261.295017][T16151] netlink: 'syz.4.4804': attribute type 27 has an invalid length.
[  261.309749][T16151] macsec0: left promiscuous mode
[  261.358187][T16157] loop5: detected capacity change from 0 to 1024
[  261.365817][T16157] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (12806!=20869)
[  261.387556][T16157] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842c018, mo2=0002]
[  261.401950][T16157] System zones: 0-1, 3-36
[  261.410179][T16157] EXT4-fs (loop5): orphan cleanup on readonly fs
[  261.441649][T16163] __nla_validate_parse: 2 callbacks suppressed
[  261.441672][T16163] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4806'.
[  261.464875][T16157] EXT4-fs (loop5): 1 orphan inode deleted
[  261.482191][T16157] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  261.500147][T16167] netlink: 'syz.4.4807': attribute type 27 has an invalid length.
[  261.676839][T16182] netlink: 'syz.5.4813': attribute type 10 has an invalid length.
[  261.710825][T16182] team0 (unregistering): Port device team_slave_0 removed
[  261.729683][T16188] loop4: detected capacity change from 0 to 512
[  261.736585][T16188] EXT4-fs: Ignoring removed bh option
[  261.736749][T16182] team0 (unregistering): Port device team_slave_1 removed
[  261.750243][T16188] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  261.759388][T16188] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  261.768358][T16186] FAULT_INJECTION: forcing a failure.
[  261.768358][T16186] name failslab, interval 1, probability 0, space 0, times 0
[  261.781050][T16186] CPU: 1 UID: 0 PID: 16186 Comm: syz.2.4815 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  261.781170][T16186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  261.781188][T16186] Call Trace:
[  261.781196][T16186]  <TASK>
[  261.781284][T16186]  __dump_stack+0x1d/0x30
[  261.781340][T16186]  dump_stack_lvl+0xe8/0x140
[  261.781368][T16186]  dump_stack+0x15/0x1b
[  261.781390][T16186]  should_fail_ex+0x265/0x280
[  261.781418][T16186]  should_failslab+0x8c/0xb0
[  261.781511][T16186]  kmem_cache_alloc_noprof+0x50/0x310
[  261.781619][T16186]  ? getname_flags+0x80/0x3b0
[  261.781652][T16186]  getname_flags+0x80/0x3b0
[  261.781722][T16186]  user_path_at+0x28/0x130
[  261.781765][T16186]  __se_sys_mount+0x25b/0x2e0
[  261.781814][T16186]  ? fput+0x8f/0xc0
[  261.781852][T16186]  __x64_sys_mount+0x67/0x80
[  261.781916][T16186]  x64_sys_call+0xd36/0x2fb0
[  261.781945][T16186]  do_syscall_64+0xd2/0x200
[  261.781973][T16186]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  261.782005][T16186]  ? clear_bhb_loop+0x40/0x90
[  261.782112][T16186]  ? clear_bhb_loop+0x40/0x90
[  261.782139][T16186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.782194][T16186] RIP: 0033:0x7fd21339e929
[  261.782215][T16186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.782239][T16186] RSP: 002b:00007fd211a07038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  261.782264][T16186] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339e929
[  261.782281][T16186] RDX: 0000200000000240 RSI: 0000200000000200 RDI: 0000000000000000
[  261.782298][T16186] RBP: 00007fd211a07090 R08: 0000200000000480 R09: 0000000000000000
[  261.782400][T16186] R10: 000000000021004a R11: 0000000000000246 R12: 0000000000000001
[  261.782417][T16186] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  261.782444][T16186]  </TASK>
[  261.980283][T16188] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  262.001851][T16191] netlink: 'syz.2.4817': attribute type 27 has an invalid length.
[  262.009854][T16188] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  262.010457][T16191] macsec0: left promiscuous mode
[  262.024423][T16188] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  262.029176][T13340] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.154838][T11915] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.220375][T16209] netlink: 'syz.4.4820': attribute type 13 has an invalid length.
[  262.290618][T16217] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4822'.
[  262.300572][T16174] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4810'.
[  262.310611][T16180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4812'.
[  262.398346][T16224] netlink: 'syz.5.4825': attribute type 27 has an invalid length.
[  262.687664][T16258] random: crng reseeded on system resumption
[  262.691094][T16260] netlink: 'syz.5.4838': attribute type 27 has an invalid length.
[  262.704838][T16263] FAULT_INJECTION: forcing a failure.
[  262.704838][T16263] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  262.718159][T16263] CPU: 1 UID: 0 PID: 16263 Comm: syz.4.4839 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  262.718196][T16263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  262.718283][T16263] Call Trace:
[  262.718292][T16263]  <TASK>
[  262.718302][T16263]  __dump_stack+0x1d/0x30
[  262.718328][T16263]  dump_stack_lvl+0xe8/0x140
[  262.718363][T16254] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4835'.
[  262.718372][T16263]  dump_stack+0x15/0x1b
[  262.718395][T16263]  should_fail_ex+0x265/0x280
[  262.718415][T16263]  should_fail_alloc_page+0xf2/0x100
[  262.718447][T16263]  __alloc_frozen_pages_noprof+0xff/0x360
[  262.718526][T16263]  alloc_pages_mpol+0xb3/0x250
[  262.718576][T16263]  alloc_pages_noprof+0x90/0x130
[  262.718671][T16263]  __pmd_alloc+0x47/0x470
[  262.718702][T16263]  ? mas_state_walk+0x574/0x650
[  262.718733][T16263]  handle_mm_fault+0x19d1/0x2be0
[  262.718768][T16263]  ? mas_walk+0xf2/0x120
[  262.718833][T16263]  do_user_addr_fault+0x636/0x1090
[  262.718883][T16263]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  262.718982][T16263]  exc_page_fault+0x62/0xa0
[  262.719030][T16263]  asm_exc_page_fault+0x26/0x30
[  262.719059][T16263] RIP: 0033:0x7fe446ad0d46
[  262.719080][T16263] Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
[  262.719134][T16263] RSP: 002b:00007fe4452764a0 EFLAGS: 00010246
[  262.719157][T16263] RAX: 0000000000000001 RBX: 00007fe445276540 RCX: 0000000000000101
[  262.719176][T16263] RDX: 0000000000000010 RSI: 0000000000000001 RDI: 00007fe4452765e0
[  262.719194][T16263] RBP: 0000000000000102 R08: 00007fe43ce57000 R09: 0000000000000000
[  262.719220][T16263] R10: 0000000000000000 R11: 00007fe445276550 R12: 0000000000000001
[  262.719238][T16263] R13: 00007fe446cac020 R14: 0000000000000000 R15: 00007fe4452765e0
[  262.719305][T16263]  </TASK>
[  262.719320][T16263] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  262.836022][T16269] netlink: 'syz.1.4840': attribute type 5 has an invalid length.
[  262.872631][T16263] loop4: detected capacity change from 0 to 512
[  262.910327][T16271] FAULT_INJECTION: forcing a failure.
[  262.910327][T16271] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  262.942712][T16271] CPU: 0 UID: 0 PID: 16271 Comm: syz.2.4841 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  262.942748][T16271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  262.942764][T16271] Call Trace:
[  262.942823][T16271]  <TASK>
[  262.942831][T16271]  __dump_stack+0x1d/0x30
[  262.942921][T16271]  dump_stack_lvl+0xe8/0x140
[  262.942945][T16271]  dump_stack+0x15/0x1b
[  262.943030][T16271]  should_fail_ex+0x265/0x280
[  262.943056][T16271]  should_fail+0xb/0x20
[  262.943078][T16271]  should_fail_usercopy+0x1a/0x20
[  262.943223][T16271]  _copy_to_user+0x20/0xa0
[  262.943255][T16271]  simple_read_from_buffer+0xb5/0x130
[  262.943301][T16271]  proc_fail_nth_read+0x100/0x140
[  262.943454][T16271]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  262.943480][T16271]  vfs_read+0x1a0/0x6f0
[  262.943509][T16271]  ? __rcu_read_unlock+0x4f/0x70
[  262.943605][T16271]  ? __fget_files+0x184/0x1c0
[  262.943638][T16271]  ksys_read+0xda/0x1a0
[  262.943717][T16271]  __x64_sys_read+0x40/0x50
[  262.943825][T16271]  x64_sys_call+0x2d77/0x2fb0
[  262.943848][T16271]  do_syscall_64+0xd2/0x200
[  262.943905][T16271]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  262.943940][T16271]  ? clear_bhb_loop+0x40/0x90
[  262.943968][T16271]  ? clear_bhb_loop+0x40/0x90
[  262.944072][T16271]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.944093][T16271] RIP: 0033:0x7fd21339d33c
[  262.944113][T16271] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  262.944211][T16271] RSP: 002b:00007fd211a07030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  262.944236][T16271] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339d33c
[  262.944253][T16271] RDX: 000000000000000f RSI: 00007fd211a070a0 RDI: 0000000000000008
[  262.944269][T16271] RBP: 00007fd211a07090 R08: 0000000000000000 R09: 0000000000000000
[  262.944286][T16271] R10: 0000000004000080 R11: 0000000000000246 R12: 0000000000000001
[  262.944302][T16271] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  262.944324][T16271]  </TASK>
[  263.166569][T16263] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  263.202856][T16263] EXT4-fs (loop4): mount failed
[  263.258852][T16292] netlink: 24 bytes leftover after parsing attributes in process `gtp'.
[  263.331429][T16301] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4851'.
[  263.474222][   T29] kauditd_printk_skb: 162 callbacks suppressed
[  263.474242][   T29] audit: type=1326 audit(2000000003.609:27463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.515600][   T29] audit: type=1326 audit(2000000003.609:27464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.517587][T16289] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4847'.
[  263.539289][   T29] audit: type=1326 audit(2000000003.639:27465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.539340][   T29] audit: type=1326 audit(2000000003.639:27466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.539377][   T29] audit: type=1326 audit(2000000003.639:27467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.539414][   T29] audit: type=1326 audit(2000000003.639:27468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.539552][   T29] audit: type=1326 audit(2000000003.639:27469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb43908d290 code=0x7ffc0000
[  263.539585][   T29] audit: type=1326 audit(2000000003.639:27470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.539633][   T29] audit: type=1326 audit(2000000003.639:27471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.539671][   T29] audit: type=1326 audit(2000000003.639:27472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16310 comm="syz.1.4854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  263.677289][T16315] netlink: 'syz.1.4855': attribute type 27 has an invalid length.
[  263.841161][T16324] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4857'.
[  263.999704][T16340] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4863'.
[  264.135996][T16361] SELinux: failed to load policy
[  264.167328][T16366] SELinux: failed to load policy
[  264.197259][T16370] FAULT_INJECTION: forcing a failure.
[  264.197259][T16370] name failslab, interval 1, probability 0, space 0, times 0
[  264.210018][T16370] CPU: 0 UID: 0 PID: 16370 Comm: syz.2.4873 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  264.210055][T16370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  264.210143][T16370] Call Trace:
[  264.210152][T16370]  <TASK>
[  264.210162][T16370]  __dump_stack+0x1d/0x30
[  264.210189][T16370]  dump_stack_lvl+0xe8/0x140
[  264.210215][T16370]  dump_stack+0x15/0x1b
[  264.210236][T16370]  should_fail_ex+0x265/0x280
[  264.210293][T16370]  should_failslab+0x8c/0xb0
[  264.210376][T16370]  __kmalloc_cache_node_noprof+0x54/0x320
[  264.210416][T16370]  ? __get_vm_area_node+0x106/0x1d0
[  264.210455][T16370]  __get_vm_area_node+0x106/0x1d0
[  264.210492][T16370]  __vmalloc_node_range_noprof+0x273/0xe00
[  264.210575][T16370]  ? sel_write_load+0x158/0x380
[  264.210612][T16370]  ? __rcu_read_unlock+0x4f/0x70
[  264.210637][T16370]  ? sel_write_load+0x158/0x380
[  264.210703][T16370]  vmalloc_noprof+0x82/0xc0
[  264.210745][T16370]  ? sel_write_load+0x158/0x380
[  264.210783][T16370]  sel_write_load+0x158/0x380
[  264.210878][T16370]  ? __pfx_sel_write_load+0x10/0x10
[  264.210919][T16370]  vfs_write+0x266/0x8e0
[  264.211004][T16370]  ? __rcu_read_unlock+0x4f/0x70
[  264.211034][T16370]  ? __fget_files+0x184/0x1c0
[  264.211069][T16370]  ksys_write+0xda/0x1a0
[  264.211105][T16370]  __x64_sys_write+0x40/0x50
[  264.211169][T16370]  x64_sys_call+0x2cdd/0x2fb0
[  264.211198][T16370]  do_syscall_64+0xd2/0x200
[  264.211226][T16370]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  264.211261][T16370]  ? clear_bhb_loop+0x40/0x90
[  264.211342][T16370]  ? clear_bhb_loop+0x40/0x90
[  264.211365][T16370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.211387][T16370] RIP: 0033:0x7fd21339e929
[  264.211401][T16370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.211422][T16370] RSP: 002b:00007fd211a07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  264.211512][T16370] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339e929
[  264.211529][T16370] RDX: 0000000000000010 RSI: 00002000000002c0 RDI: 0000000000000003
[  264.211547][T16370] RBP: 00007fd211a07090 R08: 0000000000000000 R09: 0000000000000000
[  264.211564][T16370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  264.211581][T16370] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  264.211605][T16370]  </TASK>
[  264.211641][T16370] syz.2.4873: vmalloc error: size 16, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0
[  264.462747][T16370] CPU: 0 UID: 0 PID: 16370 Comm: syz.2.4873 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  264.462785][T16370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  264.462801][T16370] Call Trace:
[  264.462808][T16370]  <TASK>
[  264.462817][T16370]  __dump_stack+0x1d/0x30
[  264.462865][T16370]  dump_stack_lvl+0xe8/0x140
[  264.462892][T16370]  dump_stack+0x15/0x1b
[  264.462965][T16370]  warn_alloc+0x12b/0x1a0
[  264.463009][T16370]  __vmalloc_node_range_noprof+0x297/0xe00
[  264.463058][T16370]  ? __rcu_read_unlock+0x4f/0x70
[  264.463178][T16370]  ? sel_write_load+0x158/0x380
[  264.463219][T16370]  vmalloc_noprof+0x82/0xc0
[  264.463261][T16370]  ? sel_write_load+0x158/0x380
[  264.463387][T16370]  sel_write_load+0x158/0x380
[  264.463452][T16370]  ? __pfx_sel_write_load+0x10/0x10
[  264.463496][T16370]  vfs_write+0x266/0x8e0
[  264.463521][T16370]  ? __rcu_read_unlock+0x4f/0x70
[  264.463622][T16370]  ? __fget_files+0x184/0x1c0
[  264.463650][T16370]  ksys_write+0xda/0x1a0
[  264.463675][T16370]  __x64_sys_write+0x40/0x50
[  264.463703][T16370]  x64_sys_call+0x2cdd/0x2fb0
[  264.463730][T16370]  do_syscall_64+0xd2/0x200
[  264.463782][T16370]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  264.463815][T16370]  ? clear_bhb_loop+0x40/0x90
[  264.463894][T16370]  ? clear_bhb_loop+0x40/0x90
[  264.463926][T16370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  264.463956][T16370] RIP: 0033:0x7fd21339e929
[  264.463975][T16370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  264.463993][T16370] RSP: 002b:00007fd211a07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  264.464012][T16370] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339e929
[  264.464024][T16370] RDX: 0000000000000010 RSI: 00002000000002c0 RDI: 0000000000000003
[  264.464037][T16370] RBP: 00007fd211a07090 R08: 0000000000000000 R09: 0000000000000000
[  264.464049][T16370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  264.464145][T16370] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  264.464170][T16370]  </TASK>
[  264.673884][T16370] Mem-Info:
[  264.677031][T16370] active_anon:24229 inactive_anon:0 isolated_anon:0
[  264.677031][T16370]  active_file:18433 inactive_file:2702 isolated_file:0
[  264.677031][T16370]  unevictable:627 dirty:180 writeback:0
[  264.677031][T16370]  slab_reclaimable:3203 slab_unreclaimable:17342
[  264.677031][T16370]  mapped:32522 shmem:16578 pagetables:1166
[  264.677031][T16370]  sec_pagetables:0 bounce:0
[  264.677031][T16370]  kernel_misc_reclaimable:0
[  264.677031][T16370]  free:1834217 free_pcp:18106 free_cma:0
[  264.722508][T16370] Node 0 active_anon:97008kB inactive_anon:0kB active_file:73732kB inactive_file:10808kB unevictable:2964kB isolated(anon):0kB isolated(file):0kB mapped:130008kB dirty:724kB writeback:0kB shmem:66312kB writeback_tmp:0kB kernel_stack:4672kB pagetables:4628kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  264.751810][T16370] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  264.780457][T16370] lowmem_reserve[]: 0 2882 7861 7861
[  264.785945][T16370] Node 0 DMA32 free:2947932kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951460kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[  264.816483][T16370] lowmem_reserve[]: 0 0 4978 4978
[  264.821662][T16370] Node 0 Normal free:4374088kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:97008kB inactive_anon:0kB active_file:73732kB inactive_file:10808kB unevictable:3776kB writepending:724kB present:5242880kB managed:5098232kB mlocked:3740kB bounce:0kB free_pcp:67904kB local_pcp:53704kB free_cma:0kB
[  264.854278][T16370] lowmem_reserve[]: 0 0 0 0
[  264.858846][T16370] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  264.871880][T16370] Node 0 DMA32: 5*4kB (M) 5*8kB (M) 4*16kB (M) 3*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947932kB
[  264.888289][T16370] Node 0 Normal: 1164*4kB (UM) 387*8kB (UME) 254*16kB (UME) 477*32kB (UM) 316*64kB (UM) 295*128kB (UME) 126*256kB (UME) 82*512kB (UM) 114*1024kB (UM) 87*2048kB (UME) 957*4096kB (UM) = 4374088kB
[  264.907812][T16370] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  264.917237][T16370] 37612 total pagecache pages
[  264.921952][T16370] 0 pages in swap cache
[  264.926180][T16370] Free swap  = 124996kB
[  264.930358][T16370] Total swap = 124996kB
[  264.934554][T16370] 2097051 pages RAM
[  264.938451][T16370] 0 pages HighMem/MovableOnly
[  264.943147][T16370] 80788 pages reserved
[  265.032356][T16398] loop4: detected capacity change from 0 to 512
[  265.072095][T16398] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  265.088239][T16398] EXT4-fs (loop4): mount failed
[  266.489684][T16439] validate_nla: 2 callbacks suppressed
[  266.489700][T16439] netlink: 'syz.2.4892': attribute type 27 has an invalid length.
[  266.526587][T16441] FAULT_INJECTION: forcing a failure.
[  266.526587][T16441] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  266.539798][T16441] CPU: 0 UID: 0 PID: 16441 Comm: syz.4.4893 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  266.539876][T16441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  266.539891][T16441] Call Trace:
[  266.539898][T16441]  <TASK>
[  266.539906][T16441]  __dump_stack+0x1d/0x30
[  266.539941][T16441]  dump_stack_lvl+0xe8/0x140
[  266.539966][T16441]  dump_stack+0x15/0x1b
[  266.539985][T16441]  should_fail_ex+0x265/0x280
[  266.540005][T16441]  should_fail+0xb/0x20
[  266.540022][T16441]  should_fail_usercopy+0x1a/0x20
[  266.540082][T16441]  _copy_from_user+0x1c/0xb0
[  266.540110][T16441]  set_selection_user+0x4a/0xe0
[  266.540139][T16441]  tioclinux+0x347/0x460
[  266.540235][T16441]  vt_ioctl+0x75f/0x1880
[  266.540317][T16441]  ? tty_jobctrl_ioctl+0x29e/0x810
[  266.540347][T16441]  tty_ioctl+0x7de/0xb80
[  266.540442][T16441]  ? __pfx_tty_ioctl+0x10/0x10
[  266.540465][T16441]  __se_sys_ioctl+0xce/0x140
[  266.540499][T16441]  __x64_sys_ioctl+0x43/0x50
[  266.540561][T16441]  x64_sys_call+0x19a8/0x2fb0
[  266.540606][T16441]  do_syscall_64+0xd2/0x200
[  266.540634][T16441]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  266.540669][T16441]  ? clear_bhb_loop+0x40/0x90
[  266.540692][T16441]  ? clear_bhb_loop+0x40/0x90
[  266.540714][T16441]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.540814][T16441] RIP: 0033:0x7fe446c0e929
[  266.540834][T16441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.540852][T16441] RSP: 002b:00007fe445277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  266.540871][T16441] RAX: ffffffffffffffda RBX: 00007fe446e35fa0 RCX: 00007fe446c0e929
[  266.540888][T16441] RDX: 0000200000000100 RSI: 000000000000541c RDI: 0000000000000004
[  266.540903][T16441] RBP: 00007fe445277090 R08: 0000000000000000 R09: 0000000000000000
[  266.540916][T16441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.541014][T16441] R13: 0000000000000000 R14: 00007fe446e35fa0 R15: 00007ffebb96ec98
[  266.541038][T16441]  </TASK>
[  266.954006][T16449] __nla_validate_parse: 12 callbacks suppressed
[  266.954026][T16449] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4895'.
[  267.001827][T16449] vlan2: entered allmulticast mode
[  267.007085][T16449] gretap0: entered allmulticast mode
[  267.365598][T16472] netlink: 'syz.4.4904': attribute type 13 has an invalid length.
[  267.586173][T16480] netlink: 'syz.4.4907': attribute type 27 has an invalid length.
[  267.614919][T16480] vlan2: left allmulticast mode
[  267.619911][T16480] gretap0: left allmulticast mode
[  267.692891][T16484] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4894'.
[  267.877420][T16502] FAULT_INJECTION: forcing a failure.
[  267.877420][T16502] name failslab, interval 1, probability 0, space 0, times 0
[  267.890279][T16502] CPU: 1 UID: 0 PID: 16502 Comm: syz.4.4914 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  267.890369][T16502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  267.890382][T16502] Call Trace:
[  267.890390][T16502]  <TASK>
[  267.890399][T16502]  __dump_stack+0x1d/0x30
[  267.890471][T16502]  dump_stack_lvl+0xe8/0x140
[  267.890491][T16502]  dump_stack+0x15/0x1b
[  267.890526][T16502]  should_fail_ex+0x265/0x280
[  267.890598][T16502]  should_failslab+0x8c/0xb0
[  267.890627][T16502]  kmem_cache_alloc_node_noprof+0x57/0x320
[  267.890658][T16502]  ? __alloc_skb+0x101/0x320
[  267.890685][T16502]  __alloc_skb+0x101/0x320
[  267.890732][T16502]  netlink_alloc_large_skb+0xba/0xf0
[  267.890782][T16502]  netlink_sendmsg+0x3cf/0x6b0
[  267.890816][T16502]  ? __pfx_netlink_sendmsg+0x10/0x10
[  267.890900][T16502]  __sock_sendmsg+0x142/0x180
[  267.890935][T16502]  ____sys_sendmsg+0x31e/0x4e0
[  267.890961][T16502]  ___sys_sendmsg+0x17b/0x1d0
[  267.890998][T16502]  __x64_sys_sendmsg+0xd4/0x160
[  267.891089][T16502]  x64_sys_call+0x2999/0x2fb0
[  267.891118][T16502]  do_syscall_64+0xd2/0x200
[  267.891140][T16502]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  267.891167][T16502]  ? clear_bhb_loop+0x40/0x90
[  267.891213][T16502]  ? clear_bhb_loop+0x40/0x90
[  267.891243][T16502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.891271][T16502] RIP: 0033:0x7fe446c0e929
[  267.891289][T16502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  267.891378][T16502] RSP: 002b:00007fe445277038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  267.891416][T16502] RAX: ffffffffffffffda RBX: 00007fe446e35fa0 RCX: 00007fe446c0e929
[  267.891463][T16502] RDX: 0000000000000080 RSI: 00002000000003c0 RDI: 0000000000000003
[  267.891475][T16502] RBP: 00007fe445277090 R08: 0000000000000000 R09: 0000000000000000
[  267.891521][T16502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  267.891537][T16502] R13: 0000000000000000 R14: 00007fe446e35fa0 R15: 00007ffebb96ec98
[  267.891560][T16502]  </TASK>
[  267.902086][T16504] netlink: 'syz.3.4915': attribute type 13 has an invalid length.
[  267.907201][T16502] vhci_hcd: invalid port number 96
[  268.028274][T16511] netlink: 'syz.5.4918': attribute type 27 has an invalid length.
[  268.030352][T16502] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  268.130046][T16512] futex_wake_op: syz.3.4917 tries to shift op by -1; fix this program
[  268.131363][T16502] futex_wake_op: syz.4.4914 tries to shift op by -1; fix this program
[  268.307102][T16528] FAULT_INJECTION: forcing a failure.
[  268.307102][T16528] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  268.320317][T16528] CPU: 0 UID: 0 PID: 16528 Comm: syz.1.4923 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  268.320387][T16528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  268.320399][T16528] Call Trace:
[  268.320404][T16528]  <TASK>
[  268.320410][T16528]  __dump_stack+0x1d/0x30
[  268.320486][T16528]  dump_stack_lvl+0xe8/0x140
[  268.320503][T16528]  dump_stack+0x15/0x1b
[  268.320517][T16528]  should_fail_ex+0x265/0x280
[  268.320535][T16528]  should_fail+0xb/0x20
[  268.320611][T16528]  should_fail_usercopy+0x1a/0x20
[  268.320631][T16528]  _copy_from_iter+0xcf/0xe40
[  268.320668][T16528]  ? __build_skb_around+0x1a0/0x200
[  268.320700][T16528]  ? __alloc_skb+0x223/0x320
[  268.320719][T16528]  netlink_sendmsg+0x471/0x6b0
[  268.320764][T16528]  ? __pfx_netlink_sendmsg+0x10/0x10
[  268.320785][T16528]  __sock_sendmsg+0x142/0x180
[  268.320830][T16528]  __sys_sendto+0x268/0x330
[  268.320855][T16528]  __x64_sys_sendto+0x76/0x90
[  268.320873][T16528]  x64_sys_call+0x2eb6/0x2fb0
[  268.320910][T16528]  do_syscall_64+0xd2/0x200
[  268.321015][T16528]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  268.321052][T16528]  ? clear_bhb_loop+0x40/0x90
[  268.321080][T16528]  ? clear_bhb_loop+0x40/0x90
[  268.321106][T16528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.321125][T16528] RIP: 0033:0x7fb43908e929
[  268.321201][T16528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.321217][T16528] RSP: 002b:00007fb4376f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  268.321336][T16528] RAX: ffffffffffffffda RBX: 00007fb4392b5fa0 RCX: 00007fb43908e929
[  268.321347][T16528] RDX: 0000000000000012 RSI: 00002000000005c0 RDI: 0000000000000003
[  268.321360][T16528] RBP: 00007fb4376f7090 R08: 0000000000000000 R09: 0000000000000000
[  268.321376][T16528] R10: 0000000020000090 R11: 0000000000000246 R12: 0000000000000001
[  268.321394][T16528] R13: 0000000000000000 R14: 00007fb4392b5fa0 R15: 00007ffd442a5e38
[  268.321419][T16528]  </TASK>
[  268.617339][   T29] kauditd_printk_skb: 123 callbacks suppressed
[  268.617357][   T29] audit: type=1326 audit(2000000008.749:27595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.649079][   T29] audit: type=1326 audit(2000000008.749:27596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.659042][T16536] netlink: 'syz.1.4927': attribute type 13 has an invalid length.
[  268.672869][   T29] audit: type=1326 audit(2000000008.749:27597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.704156][   T29] audit: type=1326 audit(2000000008.749:27598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.727890][   T29] audit: type=1326 audit(2000000008.749:27599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.751553][   T29] audit: type=1326 audit(2000000008.749:27600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.775327][   T29] audit: type=1326 audit(2000000008.749:27601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.798959][   T29] audit: type=1326 audit(2000000008.749:27602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.822708][   T29] audit: type=1326 audit(2000000008.749:27603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.846342][   T29] audit: type=1326 audit(2000000008.749:27604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16533 comm="syz.1.4926" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb43908e929 code=0x7ffc0000
[  268.888466][T16542] netlink: 'syz.1.4930': attribute type 27 has an invalid length.
[  268.988293][T16555] netlink: 'syz.3.4933': attribute type 5 has an invalid length.
[  268.996212][T16555] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4933'.
[  269.007015][T16555] : renamed from bond0
[  269.095602][T16570] netlink: 'syz.2.4935': attribute type 5 has an invalid length.
[  269.103586][T16570] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4935'.
[  269.119481][T16574] FAULT_INJECTION: forcing a failure.
[  269.119481][T16574] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  269.132776][T16574] CPU: 0 UID: 0 PID: 16574 Comm: syz.3.4937 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  269.132813][T16574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  269.132896][T16574] Call Trace:
[  269.132905][T16574]  <TASK>
[  269.132916][T16574]  __dump_stack+0x1d/0x30
[  269.132942][T16574]  dump_stack_lvl+0xe8/0x140
[  269.132997][T16574]  dump_stack+0x15/0x1b
[  269.133016][T16574]  should_fail_ex+0x265/0x280
[  269.133038][T16574]  should_fail+0xb/0x20
[  269.133055][T16574]  should_fail_usercopy+0x1a/0x20
[  269.133108][T16574]  _copy_from_user+0x1c/0xb0
[  269.133135][T16574]  ___sys_sendmsg+0xc1/0x1d0
[  269.133175][T16574]  __x64_sys_sendmsg+0xd4/0x160
[  269.133259][T16574]  x64_sys_call+0x2999/0x2fb0
[  269.133286][T16574]  do_syscall_64+0xd2/0x200
[  269.133307][T16574]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  269.133333][T16574]  ? clear_bhb_loop+0x40/0x90
[  269.133412][T16574]  ? clear_bhb_loop+0x40/0x90
[  269.133434][T16574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.133498][T16574] RIP: 0033:0x7f764bd7e929
[  269.133514][T16574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.133556][T16574] RSP: 002b:00007f764a3c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  269.133579][T16574] RAX: ffffffffffffffda RBX: 00007f764bfa6080 RCX: 00007f764bd7e929
[  269.133593][T16574] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000005
[  269.133606][T16574] RBP: 00007f764a3c6090 R08: 0000000000000000 R09: 0000000000000000
[  269.133618][T16574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  269.133669][T16574] R13: 0000000000000000 R14: 00007f764bfa6080 R15: 00007ffd3bb18808
[  269.133689][T16574]  </TASK>
[  269.322090][T16576] FAULT_INJECTION: forcing a failure.
[  269.322090][T16576] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  269.335245][T16576] CPU: 0 UID: 0 PID: 16576 Comm: syz.5.4940 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  269.335444][T16576] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  269.335455][T16576] Call Trace:
[  269.335461][T16576]  <TASK>
[  269.335468][T16576]  __dump_stack+0x1d/0x30
[  269.335539][T16576]  dump_stack_lvl+0xe8/0x140
[  269.335556][T16576]  dump_stack+0x15/0x1b
[  269.335570][T16576]  should_fail_ex+0x265/0x280
[  269.335588][T16576]  should_fail+0xb/0x20
[  269.335639][T16576]  should_fail_usercopy+0x1a/0x20
[  269.335669][T16576]  _copy_to_user+0x20/0xa0
[  269.335701][T16576]  simple_read_from_buffer+0xb5/0x130
[  269.335798][T16576]  proc_fail_nth_read+0x100/0x140
[  269.335833][T16576]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  269.335853][T16576]  vfs_read+0x1a0/0x6f0
[  269.335930][T16576]  ? __rcu_read_unlock+0x4f/0x70
[  269.335950][T16576]  ? __fget_files+0x184/0x1c0
[  269.335974][T16576]  ksys_read+0xda/0x1a0
[  269.335993][T16576]  __x64_sys_read+0x40/0x50
[  269.336053][T16576]  x64_sys_call+0x2d77/0x2fb0
[  269.336072][T16576]  do_syscall_64+0xd2/0x200
[  269.336100][T16576]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  269.336124][T16576]  ? clear_bhb_loop+0x40/0x90
[  269.336197][T16576]  ? clear_bhb_loop+0x40/0x90
[  269.336285][T16576]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.336303][T16576] RIP: 0033:0x7f7cd08fd33c
[  269.336317][T16576] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  269.336332][T16576] RSP: 002b:00007f7ccef67030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  269.336382][T16576] RAX: ffffffffffffffda RBX: 00007f7cd0b25fa0 RCX: 00007f7cd08fd33c
[  269.336393][T16576] RDX: 000000000000000f RSI: 00007f7ccef670a0 RDI: 0000000000000006
[  269.336404][T16576] RBP: 00007f7ccef67090 R08: 0000000000000000 R09: 0000000000000000
[  269.336415][T16576] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000001
[  269.336425][T16576] R13: 0000000000000000 R14: 00007f7cd0b25fa0 R15: 00007ffc24400e28
[  269.336493][T16576]  </TASK>
[  269.688283][T16603] FAULT_INJECTION: forcing a failure.
[  269.688283][T16603] name failslab, interval 1, probability 0, space 0, times 0
[  269.701055][T16603] CPU: 1 UID: 0 PID: 16603 Comm: syz.2.4951 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  269.701090][T16603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  269.701106][T16603] Call Trace:
[  269.701113][T16603]  <TASK>
[  269.701120][T16603]  __dump_stack+0x1d/0x30
[  269.701203][T16603]  dump_stack_lvl+0xe8/0x140
[  269.701250][T16603]  dump_stack+0x15/0x1b
[  269.701270][T16603]  should_fail_ex+0x265/0x280
[  269.701296][T16603]  should_failslab+0x8c/0xb0
[  269.701378][T16603]  kmem_cache_alloc_noprof+0x50/0x310
[  269.701405][T16603]  ? fcntl_getlk+0x3d/0x6e0
[  269.701425][T16603]  fcntl_getlk+0x3d/0x6e0
[  269.701443][T16603]  ? should_fail_ex+0xdb/0x280
[  269.701469][T16603]  do_fcntl+0x6d5/0xdf0
[  269.701597][T16603]  ? selinux_file_fcntl+0x1cb/0x1e0
[  269.701631][T16603]  __se_sys_fcntl+0xb1/0x120
[  269.701739][T16603]  __x64_sys_fcntl+0x43/0x50
[  269.701774][T16603]  x64_sys_call+0x1f1d/0x2fb0
[  269.701801][T16603]  do_syscall_64+0xd2/0x200
[  269.701825][T16603]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  269.701865][T16603]  ? clear_bhb_loop+0x40/0x90
[  269.701892][T16603]  ? clear_bhb_loop+0x40/0x90
[  269.701920][T16603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  269.702000][T16603] RIP: 0033:0x7fd21339e929
[  269.702015][T16603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  269.702033][T16603] RSP: 002b:00007fd211a07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  269.702111][T16603] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339e929
[  269.702128][T16603] RDX: 00002000000000c0 RSI: 0000000000000024 RDI: 0000000000000006
[  269.702144][T16603] RBP: 00007fd211a07090 R08: 0000000000000000 R09: 0000000000000000
[  269.702159][T16603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  269.702172][T16603] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  269.702208][T16603]  </TASK>
[  269.955091][T16611] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4953'.
[  269.983592][T16611] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4953'.
[  270.028977][T16632] serio: Serial port ptm0
[  270.366034][T16651] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  270.375058][T16651] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  270.474013][T16654] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4969'.
[  270.582605][T16660] bond0: entered promiscuous mode
[  270.587834][T16660] bond0: entered allmulticast mode
[  270.593271][T16660] 8021q: adding VLAN 0 to HW filter on device bond0
[  270.602296][T16660] bond0 (unregistering): Released all slaves
[  270.671671][T16663] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=4179 sclass=netlink_audit_socket pid=16663 comm=syz.3.4972
[  270.921437][T16675] netlink: 8 bytes leftover after parsing attributes in process `wg1'.
[  270.931552][T16678] FAULT_INJECTION: forcing a failure.
[  270.931552][T16678] name failslab, interval 1, probability 0, space 0, times 0
[  270.944286][T16678] CPU: 1 UID: 0 PID: 16678 Comm: syz.3.4976 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  270.944322][T16678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  270.944338][T16678] Call Trace:
[  270.944353][T16678]  <TASK>
[  270.944384][T16678]  __dump_stack+0x1d/0x30
[  270.944409][T16678]  dump_stack_lvl+0xe8/0x140
[  270.944484][T16678]  dump_stack+0x15/0x1b
[  270.944501][T16678]  should_fail_ex+0x265/0x280
[  270.944521][T16678]  should_failslab+0x8c/0xb0
[  270.944549][T16678]  kmem_cache_alloc_node_noprof+0x57/0x320
[  270.944698][T16678]  ? __alloc_skb+0x101/0x320
[  270.944724][T16678]  __alloc_skb+0x101/0x320
[  270.944747][T16678]  netlink_ack+0xfd/0x500
[  270.944773][T16678]  netlink_rcv_skb+0x192/0x220
[  270.944844][T16678]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  270.944881][T16678]  rtnetlink_rcv+0x1c/0x30
[  270.944905][T16678]  netlink_unicast+0x5a1/0x670
[  270.944943][T16678]  netlink_sendmsg+0x58b/0x6b0
[  270.944970][T16678]  ? __pfx_netlink_sendmsg+0x10/0x10
[  270.944994][T16678]  __sock_sendmsg+0x142/0x180
[  270.945029][T16678]  ____sys_sendmsg+0x31e/0x4e0
[  270.945170][T16678]  ___sys_sendmsg+0x17b/0x1d0
[  270.945216][T16678]  __x64_sys_sendmsg+0xd4/0x160
[  270.945251][T16678]  x64_sys_call+0x2999/0x2fb0
[  270.945310][T16678]  do_syscall_64+0xd2/0x200
[  270.945374][T16678]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  270.945408][T16678]  ? clear_bhb_loop+0x40/0x90
[  270.945571][T16678]  ? clear_bhb_loop+0x40/0x90
[  270.945613][T16678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.945682][T16678] RIP: 0033:0x7f764bd7e929
[  270.945702][T16678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  270.945727][T16678] RSP: 002b:00007f764a3e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  270.945750][T16678] RAX: ffffffffffffffda RBX: 00007f764bfa5fa0 RCX: 00007f764bd7e929
[  270.945767][T16678] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  270.945784][T16678] RBP: 00007f764a3e7090 R08: 0000000000000000 R09: 0000000000000000
[  270.945839][T16678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  270.945851][T16678] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  270.945871][T16678]  </TASK>
[  271.226950][T16687] netlink: 'syz.5.4981': attribute type 27 has an invalid length.
[  271.238618][T16683] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4979'.
[  271.423749][T16708] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4989'.
[  271.723693][T16725] FAULT_INJECTION: forcing a failure.
[  271.723693][T16725] name failslab, interval 1, probability 0, space 0, times 0
[  271.737082][T16725] CPU: 0 UID: 0 PID: 16725 Comm: syz.4.4994 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  271.737119][T16725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  271.737134][T16725] Call Trace:
[  271.737142][T16725]  <TASK>
[  271.737153][T16725]  __dump_stack+0x1d/0x30
[  271.737180][T16725]  dump_stack_lvl+0xe8/0x140
[  271.737203][T16725]  dump_stack+0x15/0x1b
[  271.737288][T16725]  should_fail_ex+0x265/0x280
[  271.737313][T16725]  should_failslab+0x8c/0xb0
[  271.737338][T16725]  __kmalloc_noprof+0xa5/0x3e0
[  271.737374][T16725]  ? alloc_pipe_info+0x1c9/0x350
[  271.737407][T16725]  alloc_pipe_info+0x1c9/0x350
[  271.737445][T16725]  splice_direct_to_actor+0x592/0x680
[  271.737615][T16725]  ? strncpy_from_user+0x1eb/0x230
[  271.737648][T16725]  ? __pfx_direct_splice_actor+0x10/0x10
[  271.737687][T16725]  ? __rcu_read_unlock+0x4f/0x70
[  271.737755][T16725]  ? avc_policy_seqno+0x15/0x30
[  271.737850][T16725]  ? selinux_file_permission+0x1e4/0x320
[  271.737940][T16725]  do_splice_direct+0xda/0x150
[  271.737984][T16725]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  271.738015][T16725]  do_sendfile+0x380/0x650
[  271.738089][T16725]  __x64_sys_sendfile64+0x105/0x150
[  271.738139][T16725]  x64_sys_call+0xb39/0x2fb0
[  271.738168][T16725]  do_syscall_64+0xd2/0x200
[  271.738191][T16725]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  271.738223][T16725]  ? clear_bhb_loop+0x40/0x90
[  271.738268][T16725]  ? clear_bhb_loop+0x40/0x90
[  271.738327][T16725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.738374][T16725] RIP: 0033:0x7fe446c0e929
[  271.738393][T16725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  271.738416][T16725] RSP: 002b:00007fe445277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  271.738496][T16725] RAX: ffffffffffffffda RBX: 00007fe446e35fa0 RCX: 00007fe446c0e929
[  271.738512][T16725] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 0000000000000006
[  271.738528][T16725] RBP: 00007fe445277090 R08: 0000000000000000 R09: 0000000000000000
[  271.738544][T16725] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[  271.738559][T16725] R13: 0000000000000000 R14: 00007fe446e35fa0 R15: 00007ffebb96ec98
[  271.738585][T16725]  </TASK>
[  271.999546][T16729] netlink: 'syz.4.4996': attribute type 13 has an invalid length.
[  272.030456][T16731] loop4: detected capacity change from 0 to 2048
[  272.045410][T16731] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  272.285491][T16741] FAULT_INJECTION: forcing a failure.
[  272.285491][T16741] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  272.298666][T16741] CPU: 1 UID: 0 PID: 16741 Comm: syz.3.5000 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  272.298696][T16741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  272.298767][T16741] Call Trace:
[  272.298777][T16741]  <TASK>
[  272.298806][T16741]  __dump_stack+0x1d/0x30
[  272.298827][T16741]  dump_stack_lvl+0xe8/0x140
[  272.298849][T16741]  dump_stack+0x15/0x1b
[  272.298933][T16741]  should_fail_ex+0x265/0x280
[  272.299015][T16741]  should_fail+0xb/0x20
[  272.299038][T16741]  should_fail_usercopy+0x1a/0x20
[  272.299068][T16741]  strncpy_from_user+0x25/0x230
[  272.299119][T16741]  ? 0xffffffff81000000
[  272.299133][T16741]  ? __rcu_read_unlock+0x4f/0x70
[  272.299159][T16741]  strncpy_from_user_nofault+0x68/0xf0
[  272.299251][T16741]  bpf_probe_read_user_str+0x2a/0x70
[  272.299294][T16741]  bpf_prog_860dce4575eb4f0a+0x3e/0x44
[  272.299311][T16741]  bpf_trace_run2+0x107/0x1c0
[  272.299419][T16741]  __bpf_trace_sys_enter+0x10/0x30
[  272.299447][T16741]  trace_sys_enter+0x86/0x110
[  272.299495][T16741]  syscall_trace_enter+0x13e/0x1e0
[  272.299523][T16741]  do_syscall_64+0xac/0x200
[  272.299552][T16741]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  272.299654][T16741]  ? clear_bhb_loop+0x40/0x90
[  272.299752][T16741]  ? clear_bhb_loop+0x40/0x90
[  272.299777][T16741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.299801][T16741] RIP: 0033:0x7f764bd7e929
[  272.299821][T16741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  272.299912][T16741] RSP: 002b:00007f764a3e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  272.299946][T16741] RAX: ffffffffffffffda RBX: 00007f764bfa5fa0 RCX: 00007f764bd7e929
[  272.299978][T16741] RDX: 00000000000005dc RSI: 0000200000000000 RDI: 0000000000000004
[  272.299991][T16741] RBP: 00007f764a3e7090 R08: 0000200000000340 R09: 0000000000000014
[  272.300004][T16741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  272.300017][T16741] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  272.300039][T16741]  </TASK>
[  272.581125][T16756] netlink: 'syz.1.5006': attribute type 27 has an invalid length.
[  272.593297][T16757] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5005'.
[  272.606398][T16757] netlink: 'syz.3.5005': attribute type 1 has an invalid length.
[  272.614241][T16757] netlink: 32 bytes leftover after parsing attributes in process `syz.3.5005'.
[  272.627746][T16758] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5004'.
[  272.696154][T16767] loop5: detected capacity change from 0 to 1024
[  272.725517][T16772] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5012'.
[  272.811923][T16784] FAULT_INJECTION: forcing a failure.
[  272.811923][T16784] name failslab, interval 1, probability 0, space 0, times 0
[  272.816947][T10061] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, 
[  272.824672][T16784] CPU: 1 UID: 0 PID: 16784 Comm: syz.3.5015 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  272.824701][T16784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  272.824798][T16784] Call Trace:
[  272.824808][T16784]  <TASK>
[  272.824822][T16784]  __dump_stack+0x1d/0x30
[  272.824854][T16784]  dump_stack_lvl+0xe8/0x140
[  272.824955][T16784]  dump_stack+0x15/0x1b
[  272.824980][T16784]  should_fail_ex+0x265/0x280
[  272.825009][T16784]  ? audit_log_d_path+0x8d/0x150
[  272.825057][T16784]  should_failslab+0x8c/0xb0
[  272.825133][T16784]  __kmalloc_cache_noprof+0x4c/0x320
[  272.825201][T16784]  audit_log_d_path+0x8d/0x150
[  272.825249][T16784]  audit_log_d_path_exe+0x42/0x70
[  272.825366][T16784]  audit_log_task+0x1e9/0x250
[  272.825412][T16784]  audit_seccomp+0x61/0x100
[  272.825454][T16784]  ? __seccomp_filter+0x68c/0x10d0
[  272.825488][T16784]  __seccomp_filter+0x69d/0x10d0
[  272.825524][T16784]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  272.825558][T16784]  ? vfs_write+0x75e/0x8e0
[  272.825668][T16784]  ? __rcu_read_unlock+0x4f/0x70
[  272.825701][T16784]  ? __fget_files+0x184/0x1c0
[  272.825739][T16784]  __secure_computing+0x82/0x150
[  272.825802][T16784]  syscall_trace_enter+0xcf/0x1e0
[  272.825838][T16784]  do_syscall_64+0xac/0x200
[  272.825871][T16784]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  272.825960][T16784]  ? clear_bhb_loop+0x40/0x90
[  272.825992][T16784]  ? clear_bhb_loop+0x40/0x90
[  272.826137][T16784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.826168][T16784] RIP: 0033:0x7f764bd7d33c
[  272.826191][T16784] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  272.826219][T16784] RSP: 002b:00007f764a3e7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  272.826270][T16784] RAX: ffffffffffffffda RBX: 00007f764bfa5fa0 RCX: 00007f764bd7d33c
[  272.826289][T16784] RDX: 000000000000000f RSI: 00007f764a3e70a0 RDI: 0000000000000003
[  272.826307][T16784] RBP: 00007f764a3e7090 R08: 0000000000000000 R09: 0000000000000000
[  272.826326][T16784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  272.826344][T16784] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  272.826371][T16784]  </TASK>
[  272.944050][T16786] loop5: detected capacity change from 0 to 2048
[  272.948830][T10061] block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  273.070840][T10061] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  273.083532][T10061] EXT4-fs (loop4): This should not happen!! Data will be lost
[  273.083532][T10061] 
[  273.093192][T10061] EXT4-fs (loop4): Total free blocks count 0
[  273.099294][T10061] EXT4-fs (loop4): Free/Dirty block details
[  273.105369][T10061] EXT4-fs (loop4): free_blocks=2415919504
[  273.111153][T10061] EXT4-fs (loop4): dirty_blocks=16400
[  273.116559][T10061] EXT4-fs (loop4): Block reservation details
[  273.122538][T10061] EXT4-fs (loop4): i_reserved_data_blocks=1025
[  273.142508][T10046] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[  273.175303][T16786] Alternate GPT is invalid, using primary GPT.
[  273.181741][T16786]  loop5: p2 p3 p7
[  273.228325][T16795] netlink: 'syz.3.5020': attribute type 27 has an invalid length.
[  273.248111][T16797] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5021'.
[  273.287432][T16802] FAULT_INJECTION: forcing a failure.
[  273.287432][T16802] name failslab, interval 1, probability 0, space 0, times 0
[  273.300148][T16802] CPU: 0 UID: 0 PID: 16802 Comm: syz.1.5022 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  273.300228][T16802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  273.300243][T16802] Call Trace:
[  273.300250][T16802]  <TASK>
[  273.300258][T16802]  __dump_stack+0x1d/0x30
[  273.300283][T16802]  dump_stack_lvl+0xe8/0x140
[  273.300344][T16802]  dump_stack+0x15/0x1b
[  273.300361][T16802]  should_fail_ex+0x265/0x280
[  273.300382][T16802]  should_failslab+0x8c/0xb0
[  273.300408][T16802]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  273.300463][T16802]  ? sidtab_sid2str_get+0xa0/0x130
[  273.300510][T16802]  kmemdup_noprof+0x2b/0x70
[  273.300554][T16802]  sidtab_sid2str_get+0xa0/0x130
[  273.300618][T16802]  security_sid_to_context_core+0x1eb/0x2e0
[  273.300655][T16802]  security_sid_to_context+0x27/0x40
[  273.300685][T16802]  selinux_lsmprop_to_secctx+0x67/0xf0
[  273.300741][T16802]  security_lsmprop_to_secctx+0x43/0x80
[  273.300784][T16802]  audit_log_task_context+0x77/0x190
[  273.300829][T16802]  audit_log_task+0xf4/0x250
[  273.300947][T16802]  audit_seccomp+0x61/0x100
[  273.300983][T16802]  ? __seccomp_filter+0x68c/0x10d0
[  273.301014][T16802]  __seccomp_filter+0x69d/0x10d0
[  273.301102][T16802]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  273.301204][T16802]  ? vfs_write+0x75e/0x8e0
[  273.301230][T16802]  ? __rcu_read_unlock+0x4f/0x70
[  273.301259][T16802]  ? __fget_files+0x184/0x1c0
[  273.301293][T16802]  __secure_computing+0x82/0x150
[  273.301316][T16802]  syscall_trace_enter+0xcf/0x1e0
[  273.301381][T16802]  do_syscall_64+0xac/0x200
[  273.301407][T16802]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  273.301484][T16802]  ? clear_bhb_loop+0x40/0x90
[  273.301505][T16802]  ? clear_bhb_loop+0x40/0x90
[  273.301581][T16802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.301609][T16802] RIP: 0033:0x7fb43908d33c
[  273.301629][T16802] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  273.301711][T16802] RSP: 002b:00007fb4376f7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  273.301734][T16802] RAX: ffffffffffffffda RBX: 00007fb4392b5fa0 RCX: 00007fb43908d33c
[  273.301752][T16802] RDX: 000000000000000f RSI: 00007fb4376f70a0 RDI: 0000000000000005
[  273.301768][T16802] RBP: 00007fb4376f7090 R08: 0000000000000000 R09: 0000000000000000
[  273.301784][T16802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  273.301800][T16802] R13: 0000000000000000 R14: 00007fb4392b5fa0 R15: 00007ffd442a5e38
[  273.301824][T16802]  </TASK>
[  273.624542][   T29] kauditd_printk_skb: 559 callbacks suppressed
[  273.624557][   T29] audit: type=1326 audit(2000000013.759:28161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f764bd758e7 code=0x7ffc0000
[  273.679315][   T29] audit: type=1326 audit(2000000013.789:28162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f764bd1ab19 code=0x7ffc0000
[  273.702925][   T29] audit: type=1326 audit(2000000013.789:28163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  273.726594][   T29] audit: type=1326 audit(2000000013.789:28164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f764bd758e7 code=0x7ffc0000
[  273.750232][   T29] audit: type=1326 audit(2000000013.789:28165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f764bd1ab19 code=0x7ffc0000
[  273.773833][   T29] audit: type=1326 audit(2000000013.789:28166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f764bd758e7 code=0x7ffc0000
[  273.797467][   T29] audit: type=1326 audit(2000000013.789:28167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f764bd1ab19 code=0x7ffc0000
[  273.821079][   T29] audit: type=1326 audit(2000000013.789:28168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f764bd758e7 code=0x7ffc0000
[  273.844633][   T29] audit: type=1326 audit(2000000013.789:28169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f764bd1ab19 code=0x7ffc0000
[  273.868175][   T29] audit: type=1326 audit(2000000013.789:28170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16811 comm="syz.3.5025" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f764bd758e7 code=0x7ffc0000
[  273.893252][T16815] wireguard0: entered promiscuous mode
[  273.895149][T16813] FAULT_INJECTION: forcing a failure.
[  273.895149][T16813] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  273.900131][T16815] wireguard0: entered allmulticast mode
[  273.912752][T16813] CPU: 1 UID: 0 PID: 16813 Comm: syz.3.5025 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  273.912862][T16813] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  273.912879][T16813] Call Trace:
[  273.912887][T16813]  <TASK>
[  273.912896][T16813]  __dump_stack+0x1d/0x30
[  273.912991][T16813]  dump_stack_lvl+0xe8/0x140
[  273.913012][T16813]  dump_stack+0x15/0x1b
[  273.913034][T16813]  should_fail_ex+0x265/0x280
[  273.913096][T16813]  should_fail+0xb/0x20
[  273.913164][T16813]  should_fail_usercopy+0x1a/0x20
[  273.913239][T16813]  copy_fpstate_to_sigframe+0x628/0x7d0
[  273.913284][T16813]  ? copy_fpstate_to_sigframe+0xe6/0x7d0
[  273.913330][T16813]  ? x86_task_fpu+0x36/0x60
[  273.913453][T16813]  get_sigframe+0x34d/0x490
[  273.913530][T16813]  ? get_signal+0xdc8/0xf70
[  273.913576][T16813]  x64_setup_rt_frame+0xa8/0x580
[  273.913604][T16813]  arch_do_signal_or_restart+0x27c/0x480
[  273.913661][T16813]  exit_to_user_mode_loop+0x7a/0x100
[  273.913694][T16813]  do_syscall_64+0x1d6/0x200
[  273.913775][T16813]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  273.913811][T16813]  ? clear_bhb_loop+0x40/0x90
[  273.913894][T16813]  ? clear_bhb_loop+0x40/0x90
[  273.913928][T16813]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.913960][T16813] RIP: 0033:0x7f764bd7d3df
[  273.914045][T16813] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  273.914072][T16813] RSP: 002b:00007f764a3e7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  273.914100][T16813] RAX: 0000000000000001 RBX: 0000000000000005 RCX: 00007f764bd7d3df
[  273.914117][T16813] RDX: 0000000000000001 RSI: 00007f764a3e7090 RDI: 0000000000000005
[  273.914135][T16813] RBP: 00007f764a3e7090 R08: 0000000000000000 R09: 00007f764a3e6df7
[  273.914152][T16813] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  273.914170][T16813] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  273.914275][T16813]  </TASK>
[  274.142767][T16836] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5030'.
[  274.423227][T16842] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5031'.
[  274.535933][T16849] netlink: 256 bytes leftover after parsing attributes in process `syz.1.5030'.
[  274.545714][T16853] random: crng reseeded on system resumption
[  274.618931][T16859] FAULT_INJECTION: forcing a failure.
[  274.618931][T16859] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.632114][T16859] CPU: 1 UID: 0 PID: 16859 Comm: syz.2.5037 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  274.632148][T16859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  274.632164][T16859] Call Trace:
[  274.632173][T16859]  <TASK>
[  274.632183][T16859]  __dump_stack+0x1d/0x30
[  274.632210][T16859]  dump_stack_lvl+0xe8/0x140
[  274.632235][T16859]  dump_stack+0x15/0x1b
[  274.632264][T16859]  should_fail_ex+0x265/0x280
[  274.632291][T16859]  should_fail+0xb/0x20
[  274.632313][T16859]  should_fail_usercopy+0x1a/0x20
[  274.632396][T16859]  _copy_to_user+0x20/0xa0
[  274.632431][T16859]  poll_select_finish+0x2da/0x3f0
[  274.632468][T16859]  __se_sys_select+0x1da/0x210
[  274.632505][T16859]  __x64_sys_select+0x67/0x80
[  274.632535][T16859]  x64_sys_call+0x2beb/0x2fb0
[  274.632678][T16859]  do_syscall_64+0xd2/0x200
[  274.632769][T16859]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  274.632805][T16859]  ? clear_bhb_loop+0x40/0x90
[  274.632906][T16859]  ? clear_bhb_loop+0x40/0x90
[  274.632930][T16859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.632956][T16859] RIP: 0033:0x7fd21339e929
[  274.633049][T16859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.633075][T16859] RSP: 002b:00007fd211a07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  274.633106][T16859] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339e929
[  274.633121][T16859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  274.633136][T16859] RBP: 00007fd211a07090 R08: 0000200000000140 R09: 0000000000000000
[  274.633149][T16859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  274.633230][T16859] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  274.633255][T16859]  </TASK>
[  274.643233][T16862] netlink: 'syz.3.5036': attribute type 27 has an invalid length.
[  274.680526][T16860] loop4: detected capacity change from 0 to 1764
[  274.933221][T16874] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5040'.
[  274.946216][T16874] FAULT_INJECTION: forcing a failure.
[  274.946216][T16874] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  274.959416][T16874] CPU: 0 UID: 0 PID: 16874 Comm: syz.3.5040 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  274.959483][T16874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  274.959547][T16874] Call Trace:
[  274.959554][T16874]  <TASK>
[  274.959562][T16874]  __dump_stack+0x1d/0x30
[  274.959583][T16874]  dump_stack_lvl+0xe8/0x140
[  274.959606][T16874]  dump_stack+0x15/0x1b
[  274.959622][T16874]  should_fail_ex+0x265/0x280
[  274.959701][T16874]  should_fail+0xb/0x20
[  274.959769][T16874]  should_fail_usercopy+0x1a/0x20
[  274.959791][T16874]  _copy_from_user+0x1c/0xb0
[  274.959819][T16874]  kstrtouint_from_user+0x69/0xf0
[  274.959864][T16874]  ? 0xffffffff81000000
[  274.959882][T16874]  ? selinux_file_permission+0x1e4/0x320
[  274.959920][T16874]  proc_fail_nth_write+0x50/0x160
[  274.959952][T16874]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  274.959976][T16874]  vfs_write+0x266/0x8e0
[  274.960059][T16874]  ? __rcu_read_unlock+0x4f/0x70
[  274.960090][T16874]  ? __fget_files+0x184/0x1c0
[  274.960165][T16874]  ksys_write+0xda/0x1a0
[  274.960195][T16874]  __x64_sys_write+0x40/0x50
[  274.960223][T16874]  x64_sys_call+0x2cdd/0x2fb0
[  274.960252][T16874]  do_syscall_64+0xd2/0x200
[  274.960275][T16874]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  274.960335][T16874]  ? clear_bhb_loop+0x40/0x90
[  274.960380][T16874]  ? clear_bhb_loop+0x40/0x90
[  274.960410][T16874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  274.960432][T16874] RIP: 0033:0x7f764bd7d3df
[  274.960446][T16874] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  274.960610][T16874] RSP: 002b:00007f764a3e7030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  274.960637][T16874] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f764bd7d3df
[  274.960655][T16874] RDX: 0000000000000001 RSI: 00007f764a3e70a0 RDI: 0000000000000008
[  274.960699][T16874] RBP: 00007f764a3e7090 R08: 0000000000000000 R09: 0000000000000000
[  274.960712][T16874] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  274.960724][T16874] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  274.960747][T16874]  </TASK>
[  275.210633][T16877] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5039'.
[  275.788841][T16911] netlink: 'syz.1.5053': attribute type 13 has an invalid length.
[  275.883674][T16915] hsr_slave_0: left promiscuous mode
[  275.899462][T16915] hsr_slave_1: left promiscuous mode
[  276.137857][   T10] IPVS: starting estimator thread 0...
[  276.140722][T16928] veth0_vlan: entered allmulticast mode
[  276.191563][T16928] ÿÿÿÿÿÿ: renamed from vlan1
[  276.233983][T16926] IPVS: using max 2304 ests per chain, 115200 per kthread
[  276.355522][T16947] netlink: 'syz.1.5067': attribute type 13 has an invalid length.
[  276.488181][T16955] FAULT_INJECTION: forcing a failure.
[  276.488181][T16955] name failslab, interval 1, probability 0, space 0, times 0
[  276.500941][T16955] CPU: 1 UID: 0 PID: 16955 Comm: syz.1.5072 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  276.500978][T16955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  276.500995][T16955] Call Trace:
[  276.501003][T16955]  <TASK>
[  276.501012][T16955]  __dump_stack+0x1d/0x30
[  276.501047][T16955]  dump_stack_lvl+0xe8/0x140
[  276.501072][T16955]  dump_stack+0x15/0x1b
[  276.501094][T16955]  should_fail_ex+0x265/0x280
[  276.501119][T16955]  ? pkcs7_parse_message+0x3b/0x350
[  276.501218][T16955]  should_failslab+0x8c/0xb0
[  276.501249][T16955]  __kmalloc_cache_noprof+0x4c/0x320
[  276.501309][T16955]  pkcs7_parse_message+0x3b/0x350
[  276.501337][T16955]  verify_pkcs7_signature+0x30/0x90
[  276.501405][T16955]  valid_regdb+0x16b/0x3a0
[  276.501438][T16955]  reg_reload_regdb+0x9b/0x250
[  276.501531][T16955]  nl80211_reload_regdb+0xe/0x20
[  276.501559][T16955]  genl_family_rcv_msg_doit+0x143/0x1b0
[  276.501606][T16955]  genl_rcv_msg+0x422/0x460
[  276.501705][T16955]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  276.501744][T16955]  ? __pfx_nl80211_reload_regdb+0x10/0x10
[  276.501779][T16955]  ? __pfx_nl80211_post_doit+0x10/0x10
[  276.501839][T16955]  netlink_rcv_skb+0x120/0x220
[  276.501938][T16955]  ? __pfx_genl_rcv_msg+0x10/0x10
[  276.501984][T16955]  genl_rcv+0x28/0x40
[  276.502018][T16955]  netlink_unicast+0x5a1/0x670
[  276.502042][T16955]  netlink_sendmsg+0x58b/0x6b0
[  276.502078][T16955]  ? __pfx_netlink_sendmsg+0x10/0x10
[  276.502110][T16955]  __sock_sendmsg+0x142/0x180
[  276.502167][T16955]  ____sys_sendmsg+0x31e/0x4e0
[  276.502311][T16955]  ___sys_sendmsg+0x17b/0x1d0
[  276.502356][T16955]  __x64_sys_sendmsg+0xd4/0x160
[  276.502389][T16955]  x64_sys_call+0x2999/0x2fb0
[  276.502418][T16955]  do_syscall_64+0xd2/0x200
[  276.502448][T16955]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  276.502545][T16955]  ? clear_bhb_loop+0x40/0x90
[  276.502616][T16955]  ? clear_bhb_loop+0x40/0x90
[  276.502641][T16955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.502669][T16955] RIP: 0033:0x7fb43908e929
[  276.502746][T16955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.502827][T16955] RSP: 002b:00007fb4376f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  276.502860][T16955] RAX: ffffffffffffffda RBX: 00007fb4392b5fa0 RCX: 00007fb43908e929
[  276.502877][T16955] RDX: 0000000004000054 RSI: 0000200000000480 RDI: 0000000000000003
[  276.502891][T16955] RBP: 00007fb4376f7090 R08: 0000000000000000 R09: 0000000000000000
[  276.502908][T16955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  276.502925][T16955] R13: 0000000000000000 R14: 00007fb4392b5fa0 R15: 00007ffd442a5e38
[  276.502949][T16955]  </TASK>
[  277.116481][T16984] netlink: 'syz.4.5080': attribute type 13 has an invalid length.
[  277.146876][T16986] netlink: 'syz.4.5081': attribute type 1 has an invalid length.
[  277.157511][T16986] FAULT_INJECTION: forcing a failure.
[  277.157511][T16986] name failslab, interval 1, probability 0, space 0, times 0
[  277.170378][T16986] CPU: 0 UID: 0 PID: 16986 Comm: syz.4.5081 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  277.170416][T16986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  277.170433][T16986] Call Trace:
[  277.170440][T16986]  <TASK>
[  277.170449][T16986]  __dump_stack+0x1d/0x30
[  277.170532][T16986]  dump_stack_lvl+0xe8/0x140
[  277.170552][T16986]  dump_stack+0x15/0x1b
[  277.170568][T16986]  should_fail_ex+0x265/0x280
[  277.170594][T16986]  should_failslab+0x8c/0xb0
[  277.170626][T16986]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  277.170712][T16986]  ? kvasprintf_const+0xb3/0x130
[  277.170743][T16986]  kvasprintf+0x8a/0x110
[  277.170819][T16986]  ? finish_task_switch+0xad/0x2b0
[  277.170850][T16986]  kvasprintf_const+0xb3/0x130
[  277.170888][T16986]  kobject_set_name_vargs+0x44/0xe0
[  277.170926][T16986]  dev_set_name+0x83/0xb0
[  277.171009][T16986]  ? wpan_phy_new+0xbe/0x190
[  277.171066][T16986]  ? device_initialize+0x1fe/0x210
[  277.171100][T16986]  wpan_phy_new+0xd0/0x190
[  277.171176][T16986]  ieee802154_alloc_hw+0xbb/0x540
[  277.171198][T16986]  hwsim_add_one+0x4a/0xa80
[  277.171285][T16986]  ? genl_family_rcv_msg_attrs_parse+0x13b/0x190
[  277.171327][T16986]  ? genl_family_rcv_msg_attrs_parse+0x184/0x190
[  277.171366][T16986]  hwsim_new_radio_nl+0x2e/0x40
[  277.171498][T16986]  genl_family_rcv_msg_doit+0x143/0x1b0
[  277.171622][T16986]  genl_rcv_msg+0x422/0x460
[  277.171660][T16986]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  277.171747][T16986]  netlink_rcv_skb+0x120/0x220
[  277.171850][T16986]  ? __pfx_genl_rcv_msg+0x10/0x10
[  277.171886][T16986]  genl_rcv+0x28/0x40
[  277.171914][T16986]  netlink_unicast+0x5a1/0x670
[  277.171997][T16986]  netlink_sendmsg+0x58b/0x6b0
[  277.172029][T16986]  ? __pfx_netlink_sendmsg+0x10/0x10
[  277.172052][T16986]  __sock_sendmsg+0x142/0x180
[  277.172160][T16986]  ____sys_sendmsg+0x31e/0x4e0
[  277.172193][T16986]  ___sys_sendmsg+0x17b/0x1d0
[  277.172365][T16986]  __x64_sys_sendmsg+0xd4/0x160
[  277.172395][T16986]  x64_sys_call+0x2999/0x2fb0
[  277.172497][T16986]  do_syscall_64+0xd2/0x200
[  277.172527][T16986]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  277.172554][T16986]  ? clear_bhb_loop+0x40/0x90
[  277.172575][T16986]  ? clear_bhb_loop+0x40/0x90
[  277.172644][T16986]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.172671][T16986] RIP: 0033:0x7fe446c0e929
[  277.172689][T16986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.172762][T16986] RSP: 002b:00007fe445277038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  277.172782][T16986] RAX: ffffffffffffffda RBX: 00007fe446e35fa0 RCX: 00007fe446c0e929
[  277.172794][T16986] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000004
[  277.172809][T16986] RBP: 00007fe445277090 R08: 0000000000000000 R09: 0000000000000000
[  277.172825][T16986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.172841][T16986] R13: 0000000000000000 R14: 00007fe446e35fa0 R15: 00007ffebb96ec98
[  277.172865][T16986]  </TASK>
[  277.526989][T16998] FAULT_INJECTION: forcing a failure.
[  277.526989][T16998] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  277.540197][T16998] CPU: 1 UID: 0 PID: 16998 Comm: syz.3.5084 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  277.540232][T16998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  277.540248][T16998] Call Trace:
[  277.540256][T16998]  <TASK>
[  277.540265][T16998]  __dump_stack+0x1d/0x30
[  277.540292][T16998]  dump_stack_lvl+0xe8/0x140
[  277.540322][T16998]  dump_stack+0x15/0x1b
[  277.540343][T16998]  should_fail_ex+0x265/0x280
[  277.540398][T16998]  should_fail+0xb/0x20
[  277.540420][T16998]  should_fail_usercopy+0x1a/0x20
[  277.540449][T16998]  _copy_from_iter+0xcf/0xe40
[  277.540523][T16998]  ? __build_skb_around+0x1a0/0x200
[  277.540557][T16998]  ? __alloc_skb+0x223/0x320
[  277.540576][T16998]  netlink_sendmsg+0x471/0x6b0
[  277.540693][T16998]  ? __pfx_netlink_sendmsg+0x10/0x10
[  277.540717][T16998]  __sock_sendmsg+0x142/0x180
[  277.540751][T16998]  ____sys_sendmsg+0x31e/0x4e0
[  277.540830][T16998]  ___sys_sendmsg+0x17b/0x1d0
[  277.540878][T16998]  __x64_sys_sendmsg+0xd4/0x160
[  277.540914][T16998]  x64_sys_call+0x2999/0x2fb0
[  277.540988][T16998]  do_syscall_64+0xd2/0x200
[  277.541012][T16998]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  277.541104][T16998]  ? clear_bhb_loop+0x40/0x90
[  277.541193][T16998]  ? clear_bhb_loop+0x40/0x90
[  277.541243][T16998]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.541271][T16998] RIP: 0033:0x7f764bd7e929
[  277.541291][T16998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.541344][T16998] RSP: 002b:00007f764a3e7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  277.541369][T16998] RAX: ffffffffffffffda RBX: 00007f764bfa5fa0 RCX: 00007f764bd7e929
[  277.541386][T16998] RDX: 0000000024040084 RSI: 0000200000006040 RDI: 0000000000000004
[  277.541403][T16998] RBP: 00007f764a3e7090 R08: 0000000000000000 R09: 0000000000000000
[  277.541420][T16998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.541438][T16998] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  277.541463][T16998]  </TASK>
[  277.542282][T17000] FAULT_INJECTION: forcing a failure.
[  277.542282][T17000] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  277.761913][T17000] CPU: 0 UID: 0 PID: 17000 Comm: syz.4.5085 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  277.761988][T17000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  277.762005][T17000] Call Trace:
[  277.762013][T17000]  <TASK>
[  277.762022][T17000]  __dump_stack+0x1d/0x30
[  277.762116][T17000]  dump_stack_lvl+0xe8/0x140
[  277.762142][T17000]  dump_stack+0x15/0x1b
[  277.762162][T17000]  should_fail_ex+0x265/0x280
[  277.762202][T17000]  should_fail+0xb/0x20
[  277.762222][T17000]  should_fail_usercopy+0x1a/0x20
[  277.762244][T17000]  _copy_to_user+0x20/0xa0
[  277.762269][T17000]  rng_dev_read+0x3ef/0x740
[  277.762351][T17000]  ? __pfx_rng_dev_read+0x10/0x10
[  277.762378][T17000]  vfs_readv+0x3f8/0x690
[  277.762427][T17000]  __x64_sys_preadv+0xfd/0x1c0
[  277.762501][T17000]  x64_sys_call+0x1503/0x2fb0
[  277.762522][T17000]  do_syscall_64+0xd2/0x200
[  277.762544][T17000]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  277.762636][T17000]  ? clear_bhb_loop+0x40/0x90
[  277.762663][T17000]  ? clear_bhb_loop+0x40/0x90
[  277.762692][T17000]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.762716][T17000] RIP: 0033:0x7fe446c0e929
[  277.762732][T17000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  277.762781][T17000] RSP: 002b:00007fe445277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  277.762875][T17000] RAX: ffffffffffffffda RBX: 00007fe446e35fa0 RCX: 00007fe446c0e929
[  277.762925][T17000] RDX: 0000000000000001 RSI: 0000200000000240 RDI: 0000000000000003
[  277.762939][T17000] RBP: 00007fe445277090 R08: 0000000000000000 R09: 0000000000000000
[  277.762951][T17000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.762963][T17000] R13: 0000000000000000 R14: 00007fe446e35fa0 R15: 00007ffebb96ec98
[  277.762985][T17000]  </TASK>
[  277.998359][T17009] __nla_validate_parse: 7 callbacks suppressed
[  277.998379][T17009] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5089'.
[  278.023441][T17009] vlan2: entered promiscuous mode
[  278.028848][T17009] bridge0: entered promiscuous mode
[  278.104309][T17020] netlink: 'syz.2.5092': attribute type 13 has an invalid length.
[  278.175955][T17027] batadv_slave_1: entered promiscuous mode
[  278.227250][T17026] batadv_slave_1: left promiscuous mode
[  278.246679][T17029] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5096'.
[  278.296783][T17037] FAULT_INJECTION: forcing a failure.
[  278.296783][T17037] name failslab, interval 1, probability 0, space 0, times 0
[  278.309572][T17037] CPU: 0 UID: 0 PID: 17037 Comm: syz.3.5099 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  278.309610][T17037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  278.309626][T17037] Call Trace:
[  278.309636][T17037]  <TASK>
[  278.309646][T17037]  __dump_stack+0x1d/0x30
[  278.309690][T17037]  dump_stack_lvl+0xe8/0x140
[  278.309714][T17037]  dump_stack+0x15/0x1b
[  278.309736][T17037]  should_fail_ex+0x265/0x280
[  278.309763][T17037]  should_failslab+0x8c/0xb0
[  278.309795][T17037]  kmem_cache_alloc_noprof+0x50/0x310
[  278.309859][T17037]  ? audit_log_start+0x365/0x6c0
[  278.309904][T17037]  audit_log_start+0x365/0x6c0
[  278.310030][T17037]  audit_seccomp+0x48/0x100
[  278.310061][T17037]  ? __seccomp_filter+0x68c/0x10d0
[  278.310162][T17037]  __seccomp_filter+0x69d/0x10d0
[  278.310196][T17037]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  278.310222][T17037]  ? vfs_write+0x75e/0x8e0
[  278.310243][T17037]  ? __rcu_read_unlock+0x4f/0x70
[  278.310265][T17037]  ? __fget_files+0x184/0x1c0
[  278.310369][T17037]  __secure_computing+0x82/0x150
[  278.310399][T17037]  syscall_trace_enter+0xcf/0x1e0
[  278.310453][T17037]  do_syscall_64+0xac/0x200
[  278.310477][T17037]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  278.310537][T17037]  ? clear_bhb_loop+0x40/0x90
[  278.310630][T17037]  ? clear_bhb_loop+0x40/0x90
[  278.310689][T17037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  278.310712][T17037] RIP: 0033:0x7f764bd7e929
[  278.310727][T17037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  278.310749][T17037] RSP: 002b:00007f764a3e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000073
[  278.310772][T17037] RAX: ffffffffffffffda RBX: 00007f764bfa5fa0 RCX: 00007f764bd7e929
[  278.310847][T17037] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  278.310862][T17037] RBP: 00007f764a3e7090 R08: 0000000000000000 R09: 0000000000000000
[  278.310876][T17037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  278.310888][T17037] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  278.310908][T17037]  </TASK>
[  278.579095][T17044] loop4: detected capacity change from 0 to 512
[  278.599572][T17044] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  278.611136][T17044] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.5102: iget: bogus i_mode (5)
[  278.636325][   T29] kauditd_printk_skb: 441 callbacks suppressed
[  278.636374][   T29] audit: type=1400 audit(2000000018.769:28610): avc:  denied  { map } for  pid=17048 comm="syz.3.5103" path="socket:[52945]" dev="sockfs" ino=52945 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  278.667147][T17044] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.5102: couldn't read orphan inode 15 (err -117)
[  278.684890][T17044] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.697446][T17044] ext2 filesystem being mounted at /358/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.699124][T17051] netlink: 'syz.5.5104': attribute type 1 has an invalid length.
[  278.715823][T17051] netlink: 224 bytes leftover after parsing attributes in process `syz.5.5104'.
[  278.754961][T17051] random: crng reseeded on system resumption
[  278.765199][T17051] loop5: detected capacity change from 0 to 512
[  278.773323][T17051] EXT4-fs error (device loop5): ext4_orphan_get:1393: comm syz.5.5104: inode #15: comm syz.5.5104: iget: illegal inode #
[  278.786326][T17051] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.5104: couldn't read orphan inode 15 (err -117)
[  278.798781][T17051] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  278.830399][   T29] audit: type=1400 audit(2000000018.959:28611): avc:  denied  { mount } for  pid=17040 comm="syz.2.5101" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  278.883847][T13340] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  278.903030][   T29] audit: type=1400 audit(2000000019.029:28612): avc:  denied  { lock } for  pid=17056 comm="syz.5.5105" path="socket:[52958]" dev="sockfs" ino=52958 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  278.927714][T17057] No such timeout policy "syz0"
[  278.990051][T17063] loop5: detected capacity change from 0 to 1024
[  279.000082][T17065] FAULT_INJECTION: forcing a failure.
[  279.000082][T17065] name failslab, interval 1, probability 0, space 0, times 0
[  279.012846][T17065] CPU: 1 UID: 0 PID: 17065 Comm: syz.3.5109 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  279.012895][T17065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  279.012954][T17065] Call Trace:
[  279.012960][T17065]  <TASK>
[  279.012968][T17065]  __dump_stack+0x1d/0x30
[  279.012993][T17065]  dump_stack_lvl+0xe8/0x140
[  279.013018][T17065]  dump_stack+0x15/0x1b
[  279.013115][T17065]  should_fail_ex+0x265/0x280
[  279.013139][T17065]  should_failslab+0x8c/0xb0
[  279.013165][T17065]  __kmalloc_noprof+0xa5/0x3e0
[  279.013193][T17065]  ? sock_kmalloc+0x85/0xc0
[  279.013293][T17065]  ? iovec_from_user+0x5e/0x210
[  279.013324][T17065]  sock_kmalloc+0x85/0xc0
[  279.013355][T17065]  ____sys_sendmsg+0xf8/0x4e0
[  279.013405][T17065]  ___sys_sendmsg+0x17b/0x1d0
[  279.013449][T17065]  __sys_sendmmsg+0x178/0x300
[  279.013496][T17065]  __x64_sys_sendmmsg+0x57/0x70
[  279.013527][T17065]  x64_sys_call+0x2f2f/0x2fb0
[  279.013555][T17065]  do_syscall_64+0xd2/0x200
[  279.013619][T17065]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  279.013649][T17065]  ? clear_bhb_loop+0x40/0x90
[  279.013676][T17065]  ? clear_bhb_loop+0x40/0x90
[  279.013781][T17065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.013867][T17065] RIP: 0033:0x7f764bd7e929
[  279.013930][T17065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  279.013954][T17065] RSP: 002b:00007f764a3e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  279.013977][T17065] RAX: ffffffffffffffda RBX: 00007f764bfa5fa0 RCX: 00007f764bd7e929
[  279.013989][T17065] RDX: 0000000000000001 RSI: 0000200000000780 RDI: 0000000000000003
[  279.014076][T17065] RBP: 00007f764a3e7090 R08: 0000000000000000 R09: 0000000000000000
[  279.014091][T17065] R10: 0000000004008804 R11: 0000000000000246 R12: 0000000000000001
[  279.014103][T17065] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  279.014122][T17065]  </TASK>
[  279.016997][T17063] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  279.093242][T17069] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5110'.
[  279.241600][T11915] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.277345][   T29] audit: type=1326 audit(2000000019.409:28613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17077 comm="syz.3.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  279.301098][   T29] audit: type=1326 audit(2000000019.419:28614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17077 comm="syz.3.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  279.304334][T13340] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.324604][   T29] audit: type=1326 audit(2000000019.419:28615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17077 comm="syz.3.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  279.357159][   T29] audit: type=1326 audit(2000000019.419:28616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17077 comm="syz.3.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  279.380878][   T29] audit: type=1326 audit(2000000019.419:28617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17077 comm="syz.3.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  279.404481][   T29] audit: type=1326 audit(2000000019.419:28618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17077 comm="syz.3.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  279.428209][   T29] audit: type=1326 audit(2000000019.419:28619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17077 comm="syz.3.5113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f764bd7e929 code=0x7ffc0000
[  279.452008][T17081] netlink: 'syz.4.5115': attribute type 13 has an invalid length.
[  279.523639][T17085] program syz.1.5116 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  279.558907][T17095] program syz.3.5119 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  279.571683][T17097] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5121'.
[  279.663534][T17103] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5123'.
[  279.697829][T17106] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1538 sclass=netlink_route_socket pid=17106 comm=syz.3.5124
[  279.699673][T17099] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5122'.
[  279.731278][T17106] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5124'.
[  279.772015][T17106] program syz.3.5124 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  279.777165][T17110] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5122'.
[  279.849680][T17115] FAULT_INJECTION: forcing a failure.
[  279.849680][T17115] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  279.862804][T17115] CPU: 1 UID: 0 PID: 17115 Comm: syz.3.5128 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  279.862881][T17115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  279.862897][T17115] Call Trace:
[  279.862906][T17115]  <TASK>
[  279.862916][T17115]  __dump_stack+0x1d/0x30
[  279.862942][T17115]  dump_stack_lvl+0xe8/0x140
[  279.863037][T17115]  dump_stack+0x15/0x1b
[  279.863057][T17115]  should_fail_ex+0x265/0x280
[  279.863131][T17115]  should_fail+0xb/0x20
[  279.863173][T17115]  should_fail_usercopy+0x1a/0x20
[  279.863202][T17115]  _copy_to_user+0x20/0xa0
[  279.863236][T17115]  simple_read_from_buffer+0xb5/0x130
[  279.863304][T17115]  proc_fail_nth_read+0x100/0x140
[  279.863330][T17115]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  279.863354][T17115]  vfs_read+0x1a0/0x6f0
[  279.863374][T17115]  ? __rcu_read_unlock+0x4f/0x70
[  279.863405][T17115]  ? __fget_files+0x184/0x1c0
[  279.863484][T17115]  ksys_read+0xda/0x1a0
[  279.863516][T17115]  __x64_sys_read+0x40/0x50
[  279.863540][T17115]  x64_sys_call+0x2d77/0x2fb0
[  279.863571][T17115]  do_syscall_64+0xd2/0x200
[  279.863595][T17115]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  279.863714][T17115]  ? clear_bhb_loop+0x40/0x90
[  279.863737][T17115]  ? clear_bhb_loop+0x40/0x90
[  279.863761][T17115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  279.863850][T17115] RIP: 0033:0x7f764bd7d33c
[  279.863866][T17115] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  279.863886][T17115] RSP: 002b:00007f764a3e7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  279.863907][T17115] RAX: ffffffffffffffda RBX: 00007f764bfa5fa0 RCX: 00007f764bd7d33c
[  279.863920][T17115] RDX: 000000000000000f RSI: 00007f764a3e70a0 RDI: 0000000000000006
[  279.863934][T17115] RBP: 00007f764a3e7090 R08: 0000000000000000 R09: 0000000000000000
[  279.863995][T17115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  279.864008][T17115] R13: 0000000000000000 R14: 00007f764bfa5fa0 R15: 00007ffd3bb18808
[  279.864029][T17115]  </TASK>
[  280.293461][T17133] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  280.300090][T17133] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  280.307961][T17133] vhci_hcd vhci_hcd.0: Device attached
[  280.335736][T17136] vhci_hcd: connection closed
[  280.343895][T10036] vhci_hcd: stop threads
[  280.352903][T10036] vhci_hcd: release socket
[  280.357402][T10036] vhci_hcd: disconnect device
[  280.377165][T17139] 9pnet_fd: Insufficient options for proto=fd
[  280.617825][T17144] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5137'.
[  280.784667][T17156] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  280.803365][T17156] loop4: detected capacity change from 0 to 2048
[  280.871247][T17161] tipc: Started in network mode
[  280.876421][T17161] tipc: Node identity a60d340778e5, cluster identity 4711
[  280.883984][T17161] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  280.891143][T17161] syzkaller0: entered promiscuous mode
[  280.896734][T17161] syzkaller0: entered allmulticast mode
[  280.904819][T17160] tipc: Resetting bearer <eth:syzkaller0>
[  280.911841][T17160] tipc: Disabling bearer <eth:syzkaller0>
[  280.914774][T17162] Cannot find add_set index 0 as target
[  281.014592][T17164] netlink: 'syz.4.5145': attribute type 10 has an invalid length.
[  281.022991][T17164] batman_adv: batadv0: Adding interface: team0
[  281.029263][T17164] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  281.054640][T17164] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  281.065111][T17164] netlink: 'syz.4.5145': attribute type 10 has an invalid length.
[  281.073221][T17164] team0: entered promiscuous mode
[  281.078373][T17164] team_slave_0: entered promiscuous mode
[  281.084353][T17164] team_slave_1: entered promiscuous mode
[  281.090543][T17164] 8021q: adding VLAN 0 to HW filter on device team0
[  281.099100][T17164] batman_adv: batadv0: Interface activated: team0
[  281.105727][T17164] batman_adv: batadv0: Interface deactivated: team0
[  281.112384][T17164] batman_adv: batadv0: Removing interface: team0
[  281.119561][T17164] bridge0: port 3(team0) entered blocking state
[  281.125904][T17164] bridge0: port 3(team0) entered disabled state
[  281.132358][T17164] team0: entered allmulticast mode
[  281.137846][T17164] team_slave_0: entered allmulticast mode
[  281.143642][T17164] team_slave_1: entered allmulticast mode
[  281.504336][T17183] loop5: detected capacity change from 0 to 512
[  281.511162][T17183] EXT4-fs: Ignoring removed bh option
[  281.517177][T17183] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  281.526375][T17183] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  281.539363][T17183] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  281.555602][T17183] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  281.567015][T17183] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  281.585039][T17183] pim6reg1: entered promiscuous mode
[  281.590410][T17183] pim6reg1: entered allmulticast mode
[  281.822230][T13340] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.902289][T17223] netlink: 'syz.5.5165': attribute type 4 has an invalid length.
[  282.123318][T17239] ÿÿÿÿ: renamed from bridge_slave_0
[  282.128730][T17239] FAULT_INJECTION: forcing a failure.
[  282.128730][T17239] name failslab, interval 1, probability 0, space 0, times 0
[  282.141487][T17239] CPU: 1 UID: 0 PID: 17239 Comm: syz.2.5172 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  282.141593][T17239] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  282.141610][T17239] Call Trace:
[  282.141618][T17239]  <TASK>
[  282.141627][T17239]  __dump_stack+0x1d/0x30
[  282.141652][T17239]  dump_stack_lvl+0xe8/0x140
[  282.141671][T17239]  dump_stack+0x15/0x1b
[  282.141699][T17239]  should_fail_ex+0x265/0x280
[  282.141732][T17239]  should_failslab+0x8c/0xb0
[  282.141763][T17239]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  282.141803][T17239]  ? kstrdup_const+0x3e/0x50
[  282.141869][T17239]  ? __schedule+0x6a8/0xb30
[  282.141937][T17239]  kstrdup+0x3e/0xd0
[  282.141961][T17239]  kstrdup_const+0x3e/0x50
[  282.141985][T17239]  kernfs_rename_ns+0x22c/0x410
[  282.142101][T17239]  sysfs_rename_link_ns+0xfc/0x120
[  282.142145][T17239]  device_rename+0xd2/0x180
[  282.142177][T17239]  netif_change_name+0x1eb/0x6b0
[  282.142208][T17239]  ? nla_strscpy+0xec/0x120
[  282.142355][T17239]  do_setlink+0x80b/0x2810
[  282.142389][T17239]  ? avc_has_perm_noaudit+0x1b1/0x200
[  282.142433][T17239]  ? selinux_capable+0x1f9/0x270
[  282.142534][T17239]  ? security_capable+0x83/0x90
[  282.142568][T17239]  ? ns_capable+0x7d/0xb0
[  282.142588][T17239]  ? netlink_ns_capable+0x86/0xa0
[  282.142634][T17239]  rtnl_newlink+0xe75/0x12d0
[  282.142681][T17239]  ? xas_load+0x413/0x430
[  282.142706][T17239]  ? xas_load+0x413/0x430
[  282.142781][T17239]  ? __list_del_entry_valid_or_report+0x65/0x130
[  282.142819][T17239]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  282.142856][T17239]  ? get_partial_node+0x2e0/0x320
[  282.142939][T17239]  ? __rcu_read_unlock+0x4f/0x70
[  282.142969][T17239]  ? avc_has_perm_noaudit+0x1b1/0x200
[  282.143012][T17239]  ? selinux_capable+0x1f9/0x270
[  282.143039][T17239]  ? security_capable+0x83/0x90
[  282.143119][T17239]  ? ns_capable+0x7d/0xb0
[  282.143146][T17239]  ? __pfx_rtnl_newlink+0x10/0x10
[  282.143180][T17239]  rtnetlink_rcv_msg+0x5fe/0x6d0
[  282.143274][T17239]  ? avc_has_perm_noaudit+0x1b1/0x200
[  282.143362][T17239]  netlink_rcv_skb+0x120/0x220
[  282.143382][T17239]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  282.143503][T17239]  rtnetlink_rcv+0x1c/0x30
[  282.143576][T17239]  netlink_unicast+0x5a1/0x670
[  282.143660][T17239]  netlink_sendmsg+0x58b/0x6b0
[  282.143694][T17239]  ? __pfx_netlink_sendmsg+0x10/0x10
[  282.143725][T17239]  __sock_sendmsg+0x142/0x180
[  282.143764][T17239]  ____sys_sendmsg+0x31e/0x4e0
[  282.143852][T17239]  ___sys_sendmsg+0x17b/0x1d0
[  282.143924][T17239]  __x64_sys_sendmsg+0xd4/0x160
[  282.144042][T17239]  x64_sys_call+0x2999/0x2fb0
[  282.144071][T17239]  do_syscall_64+0xd2/0x200
[  282.144145][T17239]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  282.144180][T17239]  ? clear_bhb_loop+0x40/0x90
[  282.144202][T17239]  ? clear_bhb_loop+0x40/0x90
[  282.144227][T17239]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.144284][T17239] RIP: 0033:0x7fd21339e929
[  282.144376][T17239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.144402][T17239] RSP: 002b:00007fd211a07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  282.144427][T17239] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339e929
[  282.144445][T17239] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  282.144462][T17239] RBP: 00007fd211a07090 R08: 0000000000000000 R09: 0000000000000000
[  282.144478][T17239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.144493][T17239] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  282.144524][T17239]  </TASK>
[  282.544752][T17245] FAULT_INJECTION: forcing a failure.
[  282.544752][T17245] name failslab, interval 1, probability 0, space 0, times 0
[  282.557558][T17245] CPU: 1 UID: 0 PID: 17245 Comm: syz.2.5175 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  282.557614][T17245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  282.557630][T17245] Call Trace:
[  282.557639][T17245]  <TASK>
[  282.557656][T17245]  __dump_stack+0x1d/0x30
[  282.557683][T17245]  dump_stack_lvl+0xe8/0x140
[  282.557708][T17245]  dump_stack+0x15/0x1b
[  282.557809][T17245]  should_fail_ex+0x265/0x280
[  282.557835][T17245]  ? __se_sys_mount+0xef/0x2e0
[  282.557859][T17245]  should_failslab+0x8c/0xb0
[  282.557889][T17245]  __kmalloc_cache_noprof+0x4c/0x320
[  282.558005][T17245]  ? memdup_user+0x99/0xd0
[  282.558041][T17245]  __se_sys_mount+0xef/0x2e0
[  282.558069][T17245]  ? fput+0x8f/0xc0
[  282.558105][T17245]  ? ksys_write+0x192/0x1a0
[  282.558186][T17245]  __x64_sys_mount+0x67/0x80
[  282.558215][T17245]  x64_sys_call+0xd36/0x2fb0
[  282.558264][T17245]  do_syscall_64+0xd2/0x200
[  282.558293][T17245]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  282.558404][T17245]  ? clear_bhb_loop+0x40/0x90
[  282.558431][T17245]  ? clear_bhb_loop+0x40/0x90
[  282.558527][T17245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.558557][T17245] RIP: 0033:0x7fd21339e929
[  282.558578][T17245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.558604][T17245] RSP: 002b:00007fd211a07038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  282.558667][T17245] RAX: ffffffffffffffda RBX: 00007fd2135c5fa0 RCX: 00007fd21339e929
[  282.558681][T17245] RDX: 0000200000000240 RSI: 0000200000000200 RDI: 0000000000000000
[  282.558693][T17245] RBP: 00007fd211a07090 R08: 0000200000000580 R09: 0000000000000000
[  282.558706][T17245] R10: 000000000021004a R11: 0000000000000246 R12: 0000000000000001
[  282.558718][T17245] R13: 0000000000000000 R14: 00007fd2135c5fa0 R15: 00007ffc02698db8
[  282.558740][T17245]  </TASK>
[  283.031690][T17284] __nla_validate_parse: 15 callbacks suppressed
[  283.031711][T17284] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5188'.
[  283.067443][T17287] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5189'.
[  283.109346][T17292] netlink: 'syz.3.5191': attribute type 13 has an invalid length.
[  283.299970][T17304] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5195'.
[  283.412044][T17311] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5197'.
[  283.426283][T17311] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5197'.
[  283.491040][T17316] !
: renamed from dummy0
[  283.596296][T17320] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5201'.
[  283.691637][T17322] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5202'.
[  283.723478][T17327] FAULT_INJECTION: forcing a failure.
[  283.723478][T17327] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  283.736683][T17327] CPU: 1 UID: 0 PID: 17327 Comm: syz.4.5204 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  283.736781][T17327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  283.736799][T17327] Call Trace:
[  283.736807][T17327]  <TASK>
[  283.736816][T17327]  __dump_stack+0x1d/0x30
[  283.736840][T17327]  dump_stack_lvl+0xe8/0x140
[  283.736860][T17327]  dump_stack+0x15/0x1b
[  283.736876][T17327]  should_fail_ex+0x265/0x280
[  283.736899][T17327]  should_fail+0xb/0x20
[  283.736972][T17327]  should_fail_usercopy+0x1a/0x20
[  283.736997][T17327]  _copy_from_user+0x1c/0xb0
[  283.737027][T17327]  __copy_msghdr+0x244/0x300
[  283.737053][T17327]  ___sys_sendmsg+0x109/0x1d0
[  283.737127][T17327]  __sys_sendmmsg+0x178/0x300
[  283.737168][T17327]  __x64_sys_sendmmsg+0x57/0x70
[  283.737195][T17327]  x64_sys_call+0x2f2f/0x2fb0
[  283.737220][T17327]  do_syscall_64+0xd2/0x200
[  283.737306][T17327]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  283.737338][T17327]  ? clear_bhb_loop+0x40/0x90
[  283.737362][T17327]  ? clear_bhb_loop+0x40/0x90
[  283.737455][T17327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.737535][T17327] RIP: 0033:0x7fe446c0e929
[  283.737553][T17327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  283.737575][T17327] RSP: 002b:00007fe445277038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  283.737597][T17327] RAX: ffffffffffffffda RBX: 00007fe446e35fa0 RCX: 00007fe446c0e929
[  283.737613][T17327] RDX: 0000000000000001 RSI: 0000200000000440 RDI: 0000000000000011
[  283.737628][T17327] RBP: 00007fe445277090 R08: 0000000000000000 R09: 0000000000000000
[  283.737706][T17327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  283.737726][T17327] R13: 0000000000000000 R14: 00007fe446e35fa0 R15: 00007ffebb96ec98
[  283.737750][T17327]  </TASK>
[  284.105772][T17338] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5209'.
[  284.119316][T17338] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5209'.
[  284.154258][T17342] FAULT_INJECTION: forcing a failure.
[  284.154258][T17342] name failslab, interval 1, probability 0, space 0, times 0
[  284.167072][T17342] CPU: 1 UID: 0 PID: 17342 Comm: syz.4.5210 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  284.167170][T17342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  284.167183][T17342] Call Trace:
[  284.167191][T17342]  <TASK>
[  284.167200][T17342]  __dump_stack+0x1d/0x30
[  284.167223][T17342]  dump_stack_lvl+0xe8/0x140
[  284.167246][T17342]  dump_stack+0x15/0x1b
[  284.167267][T17342]  should_fail_ex+0x265/0x280
[  284.167300][T17342]  should_failslab+0x8c/0xb0
[  284.167374][T17342]  kmem_cache_alloc_noprof+0x50/0x310
[  284.167406][T17342]  ? radix_tree_node_alloc+0x8a/0x1f0
[  284.167435][T17342]  radix_tree_node_alloc+0x8a/0x1f0
[  284.167462][T17342]  idr_get_free+0x1fa/0x550
[  284.167508][T17342]  idr_alloc_u32+0xca/0x180
[  284.167648][T17342]  gen_new_kid+0x5c/0x100
[  284.167683][T17342]  u32_change+0xbe6/0x14c0
[  284.167723][T17342]  ? should_fail_ex+0xdb/0x280
[  284.167752][T17342]  ? __pfx_u32_change+0x10/0x10
[  284.167858][T17342]  tc_new_tfilter+0xde1/0x10a0
[  284.167912][T17342]  ? __pfx_tc_new_tfilter+0x10/0x10
[  284.167956][T17342]  rtnetlink_rcv_msg+0x5fe/0x6d0
[  284.167990][T17342]  ? avc_has_perm_noaudit+0x1b1/0x200
[  284.168026][T17342]  netlink_rcv_skb+0x120/0x220
[  284.168050][T17342]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  284.168090][T17342]  rtnetlink_rcv+0x1c/0x30
[  284.168173][T17342]  netlink_unicast+0x5a1/0x670
[  284.168202][T17342]  netlink_sendmsg+0x58b/0x6b0
[  284.168233][T17342]  ? __pfx_netlink_sendmsg+0x10/0x10
[  284.168292][T17342]  __sock_sendmsg+0x142/0x180
[  284.168328][T17342]  ____sys_sendmsg+0x31e/0x4e0
[  284.168410][T17342]  ___sys_sendmsg+0x17b/0x1d0
[  284.168463][T17342]  __x64_sys_sendmsg+0xd4/0x160
[  284.168499][T17342]  x64_sys_call+0x2999/0x2fb0
[  284.168527][T17342]  do_syscall_64+0xd2/0x200
[  284.168550][T17342]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  284.168595][T17342]  ? clear_bhb_loop+0x40/0x90
[  284.168618][T17342]  ? clear_bhb_loop+0x40/0x90
[  284.168641][T17342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.168707][T17342] RIP: 0033:0x7fe446c0e929
[  284.168724][T17342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.168750][T17342] RSP: 002b:00007fe445277038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  284.168776][T17342] RAX: ffffffffffffffda RBX: 00007fe446e35fa0 RCX: 00007fe446c0e929
[  284.168793][T17342] RDX: 00000000200c4004 RSI: 0000200000000580 RDI: 0000000000000007
[  284.168807][T17342] RBP: 00007fe445277090 R08: 0000000000000000 R09: 0000000000000000
[  284.168880][T17342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.168896][T17342] R13: 0000000000000000 R14: 00007fe446e35fa0 R15: 00007ffebb96ec98
[  284.168939][T17342]  </TASK>
[  284.488178][T17349] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5213'.
[  284.612981][T17351] bridge0: port 4(macvlan2) entered blocking state
[  284.619705][T17351] bridge0: port 4(macvlan2) entered disabled state
[  284.626557][T17351] macvlan2: entered allmulticast mode
[  284.632228][T17351] bridge0: entered allmulticast mode
[  284.642807][T17351] macvlan2: left allmulticast mode
[  284.648125][T17351] bridge0: left allmulticast mode
[  284.694285][   T29] kauditd_printk_skb: 128 callbacks suppressed
[  284.694300][   T29] audit: type=1400 audit(2000000024.829:28748): avc:  denied  { override_creds } for  pid=17346 comm="syz.5.5212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  284.746471][T17377] netlink: 'syz.3.5224': attribute type 13 has an invalid length.
[  284.777035][T17381] lo speed is unknown, defaulting to 1000
[  284.782899][T17381] lo speed is unknown, defaulting to 1000
[  284.813827][   T29] audit: type=1400 audit(2000000024.929:28749): avc:  denied  { create } for  pid=17378 comm="syz.4.5226" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  284.819615][T17381] lo speed is unknown, defaulting to 1000
[  284.834806][   T29] audit: type=1400 audit(2000000024.929:28750): avc:  denied  { setattr } for  pid=17378 comm="syz.4.5226" name="file0" dev="tmpfs" ino=2030 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  284.871172][T17381] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  284.894749][T17381] lo speed is unknown, defaulting to 1000
[  284.901452][T17381] lo speed is unknown, defaulting to 1000
[  284.912610][T17381] lo speed is unknown, defaulting to 1000
[  284.933322][T17381] lo speed is unknown, defaulting to 1000
[  284.935332][   T29] audit: type=1400 audit(2000000024.999:28751): avc:  denied  { unlink } for  pid=11915 comm="syz-executor" name="file0" dev="tmpfs" ino=2030 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  284.940067][T17381] lo speed is unknown, defaulting to 1000
[  284.969861][T17381] lo speed is unknown, defaulting to 1000
[  285.029245][   T29] audit: type=1326 audit(2000000025.159:28752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.4.5229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe446c0e929 code=0x7ffc0000
[  285.054261][   T29] audit: type=1326 audit(2000000025.189:28753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.4.5229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe446c0e929 code=0x7ffc0000
[  285.077894][   T29] audit: type=1326 audit(2000000025.189:28754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.4.5229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe446c0e929 code=0x7ffc0000
[  285.084810][T17409] SELinux: syz.5.5234 (17409) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  285.102329][   T29] audit: type=1326 audit(2000000025.189:28755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.4.5229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe446c0e929 code=0x7ffc0000
[  285.141260][   T29] audit: type=1326 audit(2000000025.269:28756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.4.5229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe446c0e929 code=0x7ffc0000
[  285.164980][   T29] audit: type=1326 audit(2000000025.269:28757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.4.5229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe446c0e929 code=0x7ffc0000
[  285.205877][T17414] netlink: 'syz.2.5235': attribute type 13 has an invalid length.
[  285.274880][T17421] No such timeout policy "syz0"
[  285.429780][T17429] ==================================================================
[  285.437932][T17429] BUG: KCSAN: data-race in mas_state_walk / mas_wr_store_entry
[  285.445504][T17429] 
[  285.447840][T17429] write to 0xffff888103d4a418 of 8 bytes by task 17428 on cpu 0:
[  285.455568][T17429]  mas_wr_store_entry+0x1581/0x2b50
[  285.460785][T17429]  mas_store_prealloc+0x74d/0x9e0
[  285.465824][T17429]  commit_merge+0x6a5/0x730
[  285.470342][T17429]  vma_modify+0xa2f/0xca0
[  285.474688][T17429]  vma_modify_flags+0x101/0x130
[  285.479574][T17429]  mprotect_fixup+0x2cc/0x570
[  285.484272][T17429]  do_mprotect_pkey+0x6d6/0x980
[  285.489144][T17429]  __x64_sys_mprotect+0x48/0x60
[  285.494018][T17429]  x64_sys_call+0x2794/0x2fb0
[  285.498715][T17429]  do_syscall_64+0xd2/0x200
[  285.503495][T17429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.509408][T17429] 
[  285.511752][T17429] read to 0xffff888103d4a418 of 8 bytes by task 17429 on cpu 1:
[  285.519411][T17429]  mas_state_walk+0x2f5/0x650
[  285.524114][T17429]  mas_walk+0x30/0x120
[  285.528202][T17429]  lock_vma_under_rcu+0xa2/0x2f0
[  285.533172][T17429]  do_user_addr_fault+0x233/0x1090
[  285.538316][T17429]  exc_page_fault+0x62/0xa0
[  285.542850][T17429]  asm_exc_page_fault+0x26/0x30
[  285.547720][T17429] 
[  285.550055][T17429] value changed: 0x00007fb42f2d6fff -> 0x00007fb42f2b6fff
[  285.557169][T17429] 
[  285.559499][T17429] Reported by Kernel Concurrency Sanitizer on:
[  285.565659][T17429] CPU: 1 UID: 0 PID: 17429 Comm: syz.1.5241 Not tainted 6.15.0-syzkaller-13743-g8630c59e9936 #0 PREEMPT(voluntary) 
[  285.577827][T17429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  285.587901][T17429] ==================================================================