last executing test programs:

3m11.430043553s ago: executing program 4 (id=2003):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)={0x78, r1, 0xacf5e67dd0b583a1, 0x0, 0x0, {{0x5}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0xffffffff}}}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x50, 0xe, {{{0x0, 0x2}, {}, @device_a, @broadcast, @from_mac=@device_b}, 0x1, @default, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @val, @val={0x3, 0x1}, @void, @void, @void, @val={0x25, 0x3, {0x1, 0x4, 0x6}}, @void, @val={0x3c, 0x4, {0x0, 0x8}}, @void, @val={0x72, 0x6}, @void, @val={0x76, 0x6}}}]]}, 0x78}}, 0x0)

3m11.428234303s ago: executing program 4 (id=2005):
sched_setscheduler(0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0xf, &(0x7f00000000c0)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x3d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f0000000fc0), &(0x7f0000000400)='./file1\x00', 0x841, &(0x7f0000000180)=ANY=[], 0x1f, 0x7fc, &(0x7f0000002000)="$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")
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)

3m11.329673873s ago: executing program 4 (id=2009):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000c80)='kmem_cache_free\x00', r0}, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000b80)=[{0x6}]}, 0x10)
bind$bt_hci(r2, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
setgroups(0x4f6911aee2d71f71, 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
linkat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file0\x00', 0x1400)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
ftruncate(0xffffffffffffffff, 0x3)
r3 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000080)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x4, 0x4, 0x53, 0x5, 0x7b, @local, @mcast2={0xff, 0x5}, 0x7, 0x8, 0x10, 0x6}})

3m11.231917382s ago: executing program 4 (id=2010):
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000001640)=[{&(0x7f0000000500)="ae1cd9382bb365fa9e40905bed18f4b16ef02c102f3fb1bb3f9ff83ad3c3ad0af9dfd4d1e7a68c5e472fa0d9ff8421d3001cf919a07643988dacb956ced48ca5347f21a33639594868dc5205eae88f0b8217cef4da3499e398f3bd739f76c26285f26a2f8f97ce54dca811db9bbce9a59c2d1f8584b301f70a22635ba7d1230c829042b98678f8a6fae14e19d5e9d41ddeeb9d2c", 0x94}], 0x1, 0x1)
readv(r0, &(0x7f0000000080)=[{&(0x7f00000078c0)=""/110, 0x94}], 0x1)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f0000000800), &(0x7f0000000c80)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[], 0x2, 0x875, &(0x7f0000001880)="$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")
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x12, 0x8, &(0x7f00000009c0)=ANY=[], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x49}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
newfstatat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', &(0x7f0000000440), 0x2000)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x84)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='memory.oom.group\x00', 0x2, 0x0)
sendfile(r5, r5, 0x0, 0x5)
perf_event_open(0x0, r4, 0x4, 0xffffffffffffffff, 0x2)
ptrace$getregset(0x4205, r4, 0x202, &(0x7f0000000240)={0x0})
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000011c0)=ANY=[@ANYRESDEC, @ANYBLOB], 0x57)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, 0x0, 0x0)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
getrlimit(0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x804)
r7 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r7, 0x0)
openat(0xffffffffffffffff, 0x0, 0x40, 0x20)
perf_event_open(&(0x7f0000000a40)={0x3, 0x80, 0x0, 0x4, 0x0, 0x7, 0x2, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xf}, 0x800, 0x0, 0x0, 0x5, 0x7, 0x0, 0x2, 0x0, 0x2, 0x0, 0x7fffffe}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x500, &(0x7f00000012c0)={[{@errors_remount}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x9}}, {@noauto_da_alloc}, {@bsdgroups}, {@jqfmt_vfsv1}, {@abort}, {@nombcache}]}, 0x1, 0x476, &(0x7f0000000540)="$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")
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

3m11.115594184s ago: executing program 4 (id=2011):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)

3m10.880281047s ago: executing program 4 (id=2017):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f00000001c0)='system.posix_acl_access\x00', &(0x7f0000000380)=ANY=[], 0x24, 0x0)
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = getpid()
syz_pidfd_open(r0, 0x0) (async)
r1 = syz_pidfd_open(r0, 0x0)
r2 = pidfd_getfd(r1, r1, 0x0)
setns(r2, 0x66020000)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00', 0x4}, 0x94) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00', r4}, 0x10)
dup(r3) (async)
r5 = dup(r3)
ioctl$TIOCL_SETVESABLANK(r5, 0x560e, &(0x7f0000000140))
mount$9p_fd(0x0, 0x0, 0x0, 0x104000, 0x0) (async)
mount$9p_fd(0x0, 0x0, 0x0, 0x104000, 0x0)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB='!\x00'/12], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
umount2(&(0x7f0000000040)='.\x00', 0x2) (async)
umount2(&(0x7f0000000040)='.\x00', 0x2)

3m10.879445687s ago: executing program 32 (id=2017):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f00000001c0)='system.posix_acl_access\x00', &(0x7f0000000380)=ANY=[], 0x24, 0x0)
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = getpid()
syz_pidfd_open(r0, 0x0) (async)
r1 = syz_pidfd_open(r0, 0x0)
r2 = pidfd_getfd(r1, r1, 0x0)
setns(r2, 0x66020000)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00', 0x4}, 0x94) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00', 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00', r4}, 0x10)
dup(r3) (async)
r5 = dup(r3)
ioctl$TIOCL_SETVESABLANK(r5, 0x560e, &(0x7f0000000140))
mount$9p_fd(0x0, 0x0, 0x0, 0x104000, 0x0) (async)
mount$9p_fd(0x0, 0x0, 0x0, 0x104000, 0x0)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB='!\x00'/12], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80000}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
umount2(&(0x7f0000000040)='.\x00', 0x2) (async)
umount2(&(0x7f0000000040)='.\x00', 0x2)

2.462295556s ago: executing program 5 (id=5471):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
fallocate(r1, 0x0, 0xbf5, 0x1)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, r1, 0x18, 0x0, 0x0, 0xfffffffffdffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
modify_ldt$write(0x1, &(0x7f0000000040)={0xd35, 0x1000, 0x4000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = geteuid()
setresuid(r4, 0xee01, r4)
newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2000)
setresuid(r5, r5, 0x0)
stat(&(0x7f0000000400)='./file1\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
mount$cgroup(0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x4400, &(0x7f00000004c0)={[{@noprefix}, {@favordynmods}, {@none}, {@favordynmods}], [{@obj_type={'obj_type', 0x3d, '/dev/bus/usb/00#/00#\x00'}}, {@uid_eq={'uid', 0x3d, r4}}, {@fowner_lt={'fowner<', r5}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@seclabel}, {@smackfsroot}, {@uid_lt={'uid<', r6}}, {@obj_user={'obj_user', 0x3d, 'GPL\x00'}}]})
r7 = gettid()
tkill(r7, 0x1b)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$lock(r8, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r8, 0x26, &(0x7f00000031c0)={0x1})

1.672234064s ago: executing program 3 (id=5475):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000005600)='sys_enter\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000240)='netlink_extack\x00', r4}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='netlink_extack\x00', r5}, 0x18)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4, 0x2}, {0xc}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xfffffffffffffffe}}}]}, {0x25}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw6\x00')
unshare(0x22020600)
mq_timedreceive(r7, 0x0, 0x0, 0xfc4, 0x0)
getdents64(r6, &(0x7f0000001280)=""/4089, 0xff9)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r8}, 0x18)
mmap$perf(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xe, 0x10010, r9, 0x6)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0xc000, &(0x7f0000000380), 0x2, 0x24d, &(0x7f0000000440)="$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")
r10 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r10, &(0x7f0000000240)=@reiserfs_2={0x8, 0x2, {0xb}}, 0x0)

1.642223747s ago: executing program 5 (id=5476):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_usbip_server_init(0x2)

1.636418728s ago: executing program 3 (id=5477):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
pivot_root(&(0x7f00000000c0)='./file0\x00', 0x0)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x15}}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x56}}], 0x30, 0x8004}, 0x0)

1.605771321s ago: executing program 3 (id=5478):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r0=>0x0})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xd, 0x8, &(0x7f0000000c00)=ANY=[@ANYBLOB="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", @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095", @ANYRES8=<r2=>r0], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x24, '\x00', r0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES16=r2, @ANYBLOB="0000000004000000b703000008000040850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r3}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000240)='io_uring_cqe_overflow\x00', r1}, 0x18)
r4 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r4, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r4, 0x0)
socket(0x5, 0x5, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r6}, 0x18)
capset(&(0x7f0000000640)={0x19980330}, &(0x7f0000000040)={0x200000, 0x40200003, 0x4, 0xe, 0x1007})
setrlimit(0x40000000000008, &(0x7f0000000080)={0x0, 0x6})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

1.582816883s ago: executing program 0 (id=5479):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x5}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008900000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r3, r1}, 0x14)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)=r3}, 0x20)

1.568964214s ago: executing program 3 (id=5480):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_usbip_server_init(0x2)

1.51278198s ago: executing program 0 (id=5483):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x80, 0x5, 0x2b0})
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f00000000c0), 0x0, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000a00)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r2, 0x0, 0x10000008ebc, 0x0)
splice(r1, 0x0, r4, 0x0, 0x25a5, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.347813756s ago: executing program 0 (id=5484):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680))
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000380)=0x20000, 0x4)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000100)={&(0x7f0000000000)=""/5, 0x1216000, 0x1000, 0x8, 0x2}, 0x20)
r1 = socket$phonet(0x23, 0x2, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a0103000000000000000001000000d000010073797a30000000002c000000030a01020000000000000000010000000900030073797a31000000000900010073797a300000000028000000060a010400000000000000000107000508000b40000000020900010073797a3000000000140000001100010000000000000000000000000a"], 0x9c}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9ce}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000040)=0x4000, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006debff00850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10)
getgroups(0x0, 0x0)
bind$xdp(r0, &(0x7f00000002c0)={0x2c, 0x4, r4, 0x30, r0}, 0x10)
timerfd_create(0x1, 0x800)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0b000000080000007b0800000500000001000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="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"], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r6}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x109}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kfree\x00', r6, 0x0, 0xffffffffffffffff}, 0x18)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='attr/exec\x00')
writev(r7, &(0x7f0000000240)=[{&(0x7f0000000080)='=', 0x1}], 0x1)
socket$netlink(0x10, 0x3, 0x14)
r8 = gettid()
timer_create(0x0, &(0x7f0000000400)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb08230001080006040001000000000000000000000180c200000e00000000"], 0x0)

1.135211388s ago: executing program 0 (id=5486):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
fallocate(r1, 0x0, 0xbf5, 0x1)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, r1, 0x18, 0x0, 0x0, 0xfffffffffdffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
modify_ldt$write(0x1, &(0x7f0000000040)={0xd35, 0x1000, 0x4000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = geteuid()
setresuid(r4, 0xee01, r4)
newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2000)
setresuid(r5, r5, 0x0)
stat(&(0x7f0000000400)='./file1\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
mount$cgroup(0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x4400, &(0x7f00000004c0)={[{@noprefix}, {@favordynmods}, {@none}, {@favordynmods}], [{@obj_type={'obj_type', 0x3d, '/dev/bus/usb/00#/00#\x00'}}, {@uid_eq={'uid', 0x3d, r4}}, {@fowner_lt={'fowner<', r5}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@seclabel}, {@smackfsroot}, {@uid_lt={'uid<', r6}}, {@obj_user={'obj_user', 0x3d, 'GPL\x00'}}]})
r7 = gettid()
sendmsg$nl_generic(r1, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000300)={&(0x7f0000000880)={0x110, 0x10, 0x20, 0x70bd2a, 0x25dfdbfc, {0x2a}, [@nested={0xc, 0x2f, 0x0, 0x1, [@typed={0x8, 0xb4, 0x0, 0x0, @pid=r7}]}, @typed={0xc2, 0x6, 0x0, 0x0, @str='\xe7\x9a\xe5\x8e\xa3\xcc9\xdd\x90\x1f\xad\x15\xc0\n\xbch\x0e\xfe=\xa3\xffZ\xdc\\\x80\xf91\xfe\x00\xa9I\xac\x00\xcaO>\xbbc\x02`\x9b\xf2\xa2(}\x14P\x9b\x8c\x16\xd0\xfd\xf7\xe9\x85\xda#\xc0\xb3|\xf3\xd9\x00\x11\x90\xf9\xc8\xd0@\xce\xb7\xc0\x90P\xcel/X\xa2\xc7>\x11T\xca\\\xae\xb9\x8a\xf8\xa1\xcf\x80{\xf6\x157\xc6\x1bf\x9887\x9b\x96x{\xaaZ%\xcf\x87\x8d\xceqpi\'\xa6\xca\x1cM\xbb\x8az?\xaaK}\xf9\xa1\xe9\x7fK\xf6 \a\x05\f\x01\xc0\x9e\xdbP_\x92\xf1yf;\x01\x8e-\xc2.\xdae.[\x14\xc8\xa7\xb2\xca\xe2Yu\xad\x86euz\xc5\xd8x\xe8m\x1c\xa7B t]\xc5\xbd\'\xf5u\xea?\xd8'}, @generic="deffa254137bcfd795ffe74528946aadd8e10b2b76b10571afd0ccaedf08e840f400a762f55925cebc0f"]}, 0x110}, 0x1, 0x0, 0x0, 0x4881}, 0x2000000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$lock(r8, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r8, 0x26, &(0x7f00000031c0)={0x1})

1.092197972s ago: executing program 5 (id=5487):
r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000280)=0x14)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x40, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0xa045}, 0x1})
io_uring_enter(r1, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)

1.039412187s ago: executing program 5 (id=5488):
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0xb, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x2, @perf_config_ext={0xd07, 0x40}, 0xc887ca4744539764, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfe, 0x0, 0x7ffc0002}]})
r1 = dup3(r0, r0, 0x80000)
sendmsg$key(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)={0x2, 0x12, 0x8c, 0x9, 0x23, 0x0, 0x70bd26, 0x25dfdbff, [@sadb_x_sec_ctx={0xa, 0x18, 0x7, 0x0, 0x43, "08fee132a718c219f5804888ef537bd32bd8be37b7f0480e7004da9bb5322432f485124c6f59c36d09b5f457e95485bf1de5c0ce861620b97e3825885f3d933de662d5"}, @sadb_lifetime={0x4, 0x3, 0x0, 0x10, 0xdb, 0x100000000}, @sadb_x_nat_t_port={0x1, 0x16, 0x4e20}, @sadb_sa={0x2, 0x1, 0x4d6, 0x0, 0x2, 0xa4, 0x4, 0xa0000000}, @sadb_x_sec_ctx={0xb, 0x18, 0x0, 0x3, 0x4f, "9d4b06bfbd91299a5c34f46b1b0fedfb92e3cb0f5f914f41753fb0e8d7540d5cc70e41a239a6cf150b7ad9c502af9eb055250db14287328f05273f833ce39e853c5077940216b30dd0e4d62a20566b"}, @sadb_x_filter={0x5, 0x1a, @in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x21, 0x4}]}, 0x118}}, 0x4040814)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x0, &(0x7f0000000180)=0x6, 0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x80, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
close(r3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r3}, 0x18)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x33, &(0x7f00000a2000)={0x1, &(0x7f0000000200)=[{0x6}]}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_emit_ethernet(0xfe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYRES16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="2e00000011008b88040f80ee59acbc04130800480f0000005e2900421803001825800000000000000280000c0012", 0x2e}], 0x1}, 0x0)

1.01415628s ago: executing program 3 (id=5489):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r3, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)

814.182799ms ago: executing program 3 (id=5490):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001004900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYRESOCT], 0x48)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000240)={0xa, 0x4e20, 0x16e, @empty, 0x5}, 0x2)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x0, 0x2, 0x7}]}]}}, 0x0, 0x32}, 0x28)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="500000d31605ba46bc50b02ba28d08535e63ca00ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="83200000ca0007001c0012800b00010067656e65766500000c00028005000a00010000001400030067656e65766531000000000000000000"], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x4000080)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r3=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
epoll_create1(0x80000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000300))
timer_create(0x0, 0x0, 0x0)
pipe(&(0x7f0000000000))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r6, 0x0, r7, 0x0, 0xf3a, 0x0)

761.542344ms ago: executing program 5 (id=5491):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00', <r0=>0x0})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xd, 0x8, &(0x7f0000000c00)=ANY=[@ANYBLOB="c139e6c2a9b3b0abf2aaea472d36cd498c86e3e8ab1a96f014f9a931b18404e23596360e757d5040b6cc6e7b0f3bd9293b8dbeb2aae655bae14c8f6aad43c2a23fb17256ce12a6ad3735297193723eca2a2edd4ff2b8ee11329dfe39a784c946d8468bfac726e78120130b09e43a5b0ec5cc70451a0b995fd359e9eb182022c4a07c42ec34beba9013a40674058522d7b7f9f639e08cfca1b778059f43afb6187e05ccf630c853d56dbbbb36d3809c94882f135c758220555081e5e366e143c19113f9ca8034ea0cfc1a8e0ca2ee8685745a54aac96d9b9181233a78dfa28d1123592cbd1fdb97fdc65d8dd08aa9768fcb5e79592567afc5145cf4a8e16edc2c1d9ef77f58f892817e6f1c9afea3930b9cc0874bdb440bcfb7b98fe983519c68f3c10ccbc126d4f4c2a422142efb89032194144bc5458379e5fde62ce15aecf89d154e6d9cc2302fce8fdf05ff89a2dd9585e6d230daf83364b48011ea1a5eef941cc9075d21ca79d7c8dc394dc2ce0ea80e14f0c2d1fdf4228300a62d84c8f850808b40350fc0f6b0f96b25c12ca27c8d7fbc9e21335a32be5b2230355fe5751af7ee8da10f19ef72a83c769fb3331721137808a7c23bec19667bd0a4684e5051dd2bb03a2db2e2b7f5956d1cb018874709665aa83245aad1d92005e31f409768011bccf18700632ce1057b370c27fe61b21da9e4ad86136cd7dd9edcb2a5f6ef255b31fae3979a8a5762ff6a54aee1c6e9ff2113fccfc69ef120ea2706f9d4ed6d3c03f8ef7b0b66c7c0b3143cdd29a4fe2b6d7f3c040eaafaa3e7d5888d205ddad839180972c2cf893256c8207a718ec1ca2844353d0287d4ddd83de53064177c478f86e085eadd4efcad48b863eb7678057422f412de7280f98ebe51a404a4de1d8a6e1211b3c191fe10e106ad04860e3235268ac9a1424063196884cee22e00d68bb0c7e19168e8ccb5a373290fa4f847e14690204b8c70e2e4fb69fa0c5dac0e402e8f445b002470600bff76131dc22345bcd38c863ba0e0ae8e3f74b8048af69a1963c3594ed84d258b06f6f8915f3afb58ee29b8db3281492aee25a5032da84e723783f3ce280db01e78472e260281d1b41b39e81c6f3bc9e1ad1540f4bfb48055fe09cbe02dfdc2d8ae8c6e2f411805719381fd2ea13f9f55a24d0183d1bc4a48163aca6b37ca2d904b17597fd633fea0c8cf871fc33214c5a54c981085402321d6b6bb72a36edc7bd0f1cd249ec723d491af3ca46c3780fee42056ac8244c79bf6e8d482949427894755c699b92ae2cff18bf7b1a7bde06acefe4a1ad47bcff857ba9830224563a20b62636715d20665a8fa4546e8f9b7cf0162be2b6e00a4031009f81368aa2fa6c978a21b729dd0112b8467df00ca9de4d3f8c794a80258557dca3c7fa7c5a2da30bb0238c02917cd739582b571098385707c11ef80ecdc0b72dd9b6018a820fd5e0547b97c365010ad249c594af8b1186cc9990c51b3bbfe67fdf0ddb2dd5879f9345d4a5b1a5db39ba8dba50032e1e11945f46f4a0d098d71f7adde341c77ac7ca0afb3a07aa1f8cf2aa7a248d5a7df3542077eda082ee2376259df82c39c687386138210a75420f09c55ac928d95e375a5de3b61a2bf124f9c160464204cbddc0ec555d7f0c303a00492cf257b6ab01668b2a072f343ec42b45a81e3fe8600e53f8d0ce5fdc004355a426c0efa8248d36f79dfaea558e7eb93d7934296426f32edd83731e2229915ee7c780df669814bce1d8138fc0be323df45f8de11aca392d87ed5c7de29e31f1e0d7de2c02e27a912ea030f4bd9dfae04fe6a8226acf6af7f210a3661326c2cbd690c43fca38af76b62f3c8bd64e0540924c1caaa03b18f80e65b2f97708f8aed3990be606b97eeb238e840f533c077f5f6b4f326bde8d811d753a94666f8b729d3df5f7e4765d222a4dd5ceeedd97bc3f8cfaff9f42026646909ffabbc491b1f7ec81b4ba44a7eb47ad23791fd5329bc7d82aa5566436fe3d42053671353944dcbb7430476ee0add9196112239da3e6b70c99a520cb6c870e789d470930bbbcad41eb3f8c32b4d7e50134d091e96baf1cce5daeb76533aa19418a6d179ea97273844cbc294269089995b7bf87e1981ea71110d3580b0d71267d7ac1bcbfd6e1a90edb5be7c7aa2dcf3535196d6809eb74f2fc2456239890d79ffd615b082daf34be7643af6ae586eab8f0adb65437524d1d2b673a36d039a86d49198cf9064bbe8258c678fd7a956148f5d88eced5ac76ce056603b9b52f1eaf91158c3a756f9aa67be76ac2e64e90157408552d8d5538aeb88807ba56a19dc2113adff9afe171d43c8611261e9c070bbbdbbaa24470bfd30a673c49e7edbfed6ec944499fb05627eb58b367f8964521f2e5df4844b422b00d4bab0f38eba913211b31b0804e50db99f413242f9cfeec2910252cb6d14a956e1506037b1600060baa2290f33109e5f7370ceebf919dcf6ba66e4c986ad2c9d651780713456de714b3ffc1e1e13b9978d77e697198ab2dacaef070eb2c99b74eb3bbf61ba2fe8d950119a0cdae0235d29458e35a903ed28a42ffd9b16b2878d7da6aa299b31a6dc722d747b32f29ddfc91ff4ef3c201cbed19c7bf26faab3c637380a21b0282cdb6e866c0b0b67444fa08587e5ae3df4fa44eb3872ac54642d8e6b6d5cad86f338b973f27e963f5fcde82b0b7310cd0da4de788d54a422d8e7edcc13a1e1d01ba0522d4a3412809cbb91110ab350b7c33ecb2054bc8ef1ba56a472740e9160b8fc669455abae1e228b7e1b2082163297ed20fe8c96cbfdb4bdb2936259a662d9ee6e4e4b6debecddc5a1859adeeb2c3338f1b8f553ccb09248b5d9b33ecfcd392f5dcdba791652656fa1db068a4fc6ecef9485193a898edd53ea992eae070013874a5efac2d886e74f6cae660ddf0b4336e26fa855fda7c6fe48a099c8d63e1b94fa1e1994c34ff7525012cd3bb2358d21d5f046f665a303ab1549d0cc01a4f7c8da9d9aea0d00976985b3b3acfea47b7d7144070ac35a96079403be11f2283cca10f56d1266f73cc867841ac6ca5915fe131eb668a3681216418c990e0d97a29e3dae08f20f8d48644e7da4bcf8f66079293e1ba4fc7e61f31ccdad5da43bb1d4978fc7abb5395978cc51a1d9f892b8f882b86c2aff390aaa0cf9c08a9bf254ab9b20998baee8407c1ec4f44c19171d96a918739279e91d8338652319baea0220cc3651f0592f2e47d4eb593da222ed678c525206bb4252392a52cf9545e0f8fea3af8d1e2097487c951cdb277df6c3a5899c2a68d682dcc89fcce6186ee06bfed80c7fdb659b07396e178b92e2b334d5fadfe79f42efec5c6ad084029190a6d961d20f64091e3a9023fbe0ea56b47ec2b7e1ab4cb3a97482a545146edce77dcc8f0c50e2eae6b8c04d22396814df50e1f90d9084c5ed84b96f11aeb5f77036882b8899e85a4147db36367cd52f2a56733bb9a0789cc3537f9d599e54e524d2ce00954a270c41cd0278a3b35c9a9835f5bfcf0173001a66e8e339ad4f5fecca716c7537036a5e07f3d6176dd157a896322328743dae86cf2d483166d61d35b76fc4f44c851316a4af95421874d07d29ce4021f2e0e21385d3ba48faea9d5a1f53fce1fe0124ddcdd0554ad4e5c8ddce19fc3045591bd454fa10f776828a56e431f3d40a1654b4477d4e39abd244a1185db6cd5f4b8bf7e3bc1322555b5f1ce291a3b558fdf2a85f8e38715bd3c87e803a5e7a0d99f3e672242951a9e8eb6a3bc821b2a384d29bf8e0310b52f4791f1d603c37614e8ab0e50160e6eb10a62f734aff12a254d3bd40d5cc3c4c60ea85920b79727efe8c5eec5c2407027e7927f23010d5a3ae78342dd93251069cf961a24413079f0d82a249620537b5a584d76345eb2de2676a3ce3ce6dfd0078a875eade9022dddb6b7c7548806f267b68f947d4e02c1b84caf6eb1eabecee5ecd7daee1aee09849047509c07d439fbdb08252c05d08cca8193b8c52245b21f37d5553a20c680cfd3a2f88daca15d570d71c88693996bbf4415b5173bf05449099a7ed8e49666783ff723880e3725265bc47c1e59408beb87bba3fb8a86c5ff87d4c836fe3f5bc144044e28ae00806a1b4c07c24eaec982d313b630741057827deae0fc4644b1a7a07ae6497ad1824c0d5e51ef66cbb12c7e991ea5319ec78cec3db056e2ae7b2e544c019aba6503edef1915ef3dd89d7881dc6ee0f5805f15832f7e9aa11bc225757ecb6d21e47bfe284772e325064e98af43a6396853e9fc985d4b85d537cb2a855eff652df1bb3f7e9defd1667290b381cb358ac7efc4455a5be6d828d81a4b8471e7689774941d4839f4cae76f907a58ad1778264309f3a55e67712905e7bccc380246f8cd2ab81df47c7bf17436b775c41225ef137e62c196e4eac92add3697b11899aa525db61c55117b28296ec7b99a421cdc2fbe623e3e515020687e8a0cc008df901a357fc529ca07f50e2f6e0f10d1537d5b5edce7e82da79543045b302853674ffb787027ec2df03996e616f2e4f2cb2d159ea6961ee43d4c3cc079ebecd4efd756e47d8eaa66da82482e4a48da34f521c0123075c72ccbd6eea22ca6f8feb186001eddcc36ebf0a5cb440f4f34fcde8de713c3902a1d86a69b2b2743bd93cc37c714f46f9f91fb86ff5d0856595c4c28f2c7c9e7d7cea7788e528989608107cb4807abe7c97ee7d57312f1cec75f8a9da7de63b3626e45fb615068947d3347cb919d52311b92b624073c6e608a64e916d8c4a53f6ca2657e2f51fd7f3d28aa2ce18b24f2660432fd8ae319e60663034879484a9de7332c6921bdff0f0a3659e1162b997a536a6720ad23002dc5852b2552296d452a53eace85ddf31107ae7df4daa26c5ea07ec130f0f24870f53f9f579434721aa6b50286a01f261e166cf0f2424bea6b023d3d8dc81858259fe85f66ad567c5246e15519ee09624e9702e305a23a3d8c8d896b6a907185306d2972c1dd928cb8ad3332456772f47a357e77b000231111e209744257c799b05252d55b0f53f1221fe67499f22db14467f416b13ce0b6e30dc70c8005f6e465f85176882a5d9adb56642ff3979888609a34717f19a606ab2645835c3a0a0fac4aa6ababb58e35bf8ca167fdef21b1bd6fff82eac21843432f4e08d81ee2d3b8a4b7e089e136d580d93e2d0b07d6679bdd7f0a77dc96807482a22a8bf9ac06ac26725caceb09c0e7d1d4836d1869ff38200c8df8400a3761c1a6556ef54d43b7332d8d91734d7403339b37fc1e3789f9998ee9e1a55a40d72c11ed3bf567d8c060334920b0b48a28cc525da5fc5225182e6f88699c1d2b962c5ee653395c18832fea803e648f1215ba252eae7eebb1ad93c4797e4a5dca68e6ad6cd93b8e75e97cf09b9d4ea6b93ff62f55b112d1b38685323a3c4f8cd2ab88ea78ccc84c769b896d25d6d37d567e0fc99deb3222addd64a9d78696f829d1b75719eb4796e7bd6d68b25882dd3620c8acec2e77514dbd4006ee72b0b9edc5418828674af7881b09bc1885b29c001b01d6b6973a986c4449ac8328919d1eaeffb113a01e09952eeb580ca2464049e2d2d8ad8bec524073df6e4dee3a4d4aec8a88089a9976ca899d191366bcf549a404271474b0f2bc80dfdd5a7f2ca83fea076688c2df381d906c9cc75339efe8380a587b1ee9e466d2f6ba246f4c4a2edd832372fad8fc7feaad5994da93096245fa171d6c212c6d1021adef5ad0c0ddc2847b561fa0b76ca6ed332c0da2cc68612df93", @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095", @ANYRES8=<r2=>r0], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x24, '\x00', r0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES16=r2, @ANYBLOB="0000000004000000b703000008000040850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r3}, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000240)='io_uring_cqe_overflow\x00', r1}, 0x18)
r4 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r4, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r4, 0x0)
socket(0x5, 0x5, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r6}, 0x18)
capset(&(0x7f0000000640)={0x19980330}, &(0x7f0000000040)={0x200000, 0x40200003, 0x4, 0xe, 0x1007})
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

736.633967ms ago: executing program 5 (id=5492):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
r2 = perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4}, 0x40db, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000000)='cpu~=0||!')
r3 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r3, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000100)='a', 0x1}], 0x1, 0x0, 0x0, 0x44}], 0x1, 0x0)
setsockopt$inet_sctp_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x20, 0x8f, 0x2, 0x0, 0x0, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x4}, 0xe)
sendmmsg$inet_sctp(r3, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="300000000000000084000000010000000000000004"], 0x30}], 0x1, 0x0)
ioctl$SIOCGSTAMP(r3, 0x8906, 0x0)
recvfrom$packet(r3, 0x0, 0x0, 0x61, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@user_xattr}, {@lazytime}, {@quota}]}, 0x3, 0x441, &(0x7f0000000440)="$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")
openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xa, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1a085000000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6e, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x95, 0x3}, 0x100002, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
syz_usb_connect(0x2, 0x64, 0x0, 0x0)
r5 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x10}}, @dev={0xfe, 0x80, '\x00', 0x17}}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000480)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty, 0x0, 0x0, 0x3}})
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000003c0)=ANY=[@ANYBLOB="02070005020000002dbd7000ffdbdf254bf8e7dfbcba059d8ef2d8355a29e1"], 0x10}}, 0x4040014)
r7 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
pwritev2(r7, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)

451.180795ms ago: executing program 1 (id=5495):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x80, 0x5, 0x2b0})
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
vmsplice(r2, &(0x7f00000000c0)=[{0x0}], 0x1, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000a00)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r2, 0x0, 0x10000008ebc, 0x0)
splice(r1, 0x0, r4, 0x0, 0x25a5, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

423.782438ms ago: executing program 2 (id=5496):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000080000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000c40)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = dup2(r0, r1)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x5}, 0x50)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r7=>r0, {0x803}}, './file0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x1e, &(0x7f0000000040)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x800}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @func={0x85, 0x0, 0x1, 0x0, 0x5}, @ringbuf_query, @alu={0x4, 0x1, 0x6, 0xb, 0xa, 0x0, 0x4}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000180)='GPL\x00', 0x4, 0xf5, &(0x7f0000000500)=""/245, 0x41100, 0x28, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0xa, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000600)=[r4, r5, r6, r7], &(0x7f0000000640)=[{0x1, 0x1, 0x8, 0xc}, {0x5, 0x4, 0x2}, {0x0, 0x3, 0xd, 0x6}], 0x10, 0xa}, 0x94)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
r9 = syz_io_uring_setup(0xbe0, &(0x7f00000007c0)={0x0, 0x6c21, 0x8, 0x40000002, 0x3e6}, &(0x7f00000005c0)=<r10=>0x0, &(0x7f0000000600)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f0000000200)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x26, 0x4004, @fd, 0x1, 0x0, 0x0, 0x0, 0x0, {0x2}})
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000101"], 0x50)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r12}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r13}, 0x18)
io_uring_enter(r9, 0x847ba, 0x2000, 0xe, 0x0, 0x0)
sendmsg$nl_xfrm(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000240)=ANY=[@ANYBLOB="240100001600010428bd700000000000fe8000000000000000000000000000bbfc01000000000000000000000000000100040000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0)

304.69895ms ago: executing program 0 (id=5497):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680))
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000380)=0x20000, 0x4)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000100)={&(0x7f0000000000)=""/5, 0x1216000, 0x1000, 0x8, 0x2}, 0x20)
r1 = socket$phonet(0x23, 0x2, 0x1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a0103000000000000000001000000d000010073797a30000000002c000000030a01020000000000000000010000000900030073797a31000000000900010073797a300000000028000000060a010400000000000000000107000508000b40000000020900010073797a3000000000140000001100010000000000000000000000000a"], 0x9c}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9ce}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r3}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000040)=0x4000, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006debff00850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r5}, 0x10)
getgroups(0x0, 0x0)
bind$xdp(r0, &(0x7f00000002c0)={0x2c, 0x4, r4, 0x30, r0}, 0x10)
timerfd_create(0x1, 0x800)

284.207082ms ago: executing program 1 (id=5498):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000080)={0x0, 0x12, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd29, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8081}, 0x20000010)

252.563026ms ago: executing program 1 (id=5499):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_mreqn(r0, 0x0, 0x33, 0x0, &(0x7f00000001c0))
mlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000)
mincore(&(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000)=""/128)
munlock(&(0x7f0000ff8000/0x4000)=nil, 0x4000)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x3, &(0x7f0000000040)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = syz_io_uring_setup(0x44cd, &(0x7f00000004c0)={0x0, 0x5331, 0x10100, 0x1000006, 0xfffefffe}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
openat(r0, &(0x7f00000002c0)='./file0\x00', 0x2400, 0x88)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
io_uring_enter(r1, 0x2d3e, 0xec84, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000780)='./file0/../file0\x00', 0x0, 0xa06002, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'veth0\x00', <r6=>0x0})
bind$packet(r5, &(0x7f0000000040)={0x11, 0x1, r6, 0x1, 0x9}, 0x14)
r7 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=@getchain={0x24, 0x11, 0x1, 0x70bd2a, 0x2000001, {0x0, 0x0, 0x0, r6, {0x7, 0xa}, {0xd, 0xffe0}, {0x8, 0x9}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x20048054)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000100)={<r8=>0x0, @broadcast, @remote}, &(0x7f0000000140)=0xc)
sendmsg$nl_route(r7, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000200)=@ipv6_newaddrlabel={0x6c, 0x48, 0x300, 0x70bd28, 0x25dfdbfc, {0xa, 0x0, 0x1, 0x0, r8, 0xff}, [@IFAL_LABEL={0x8, 0x2, 0x5}, @IFAL_ADDRESS={0x14, 0x1, @private2}, @IFAL_LABEL={0x8}, @IFAL_ADDRESS={0x14, 0x1, @mcast1}, @IFAL_LABEL={0x8, 0x2, 0x4}, @IFAL_LABEL={0x8}, @IFAL_LABEL={0x8, 0x2, 0x7}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4}, 0x24040004)

204.33207ms ago: executing program 2 (id=5500):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, 0x0}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r4}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r3, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)

168.143213ms ago: executing program 2 (id=5501):
r0 = socket$inet(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
setsockopt$inet_msfilter(r0, 0x0, 0x29, 0x0, 0x57)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
pread64(r3, &(0x7f0000000200)=""/4087, 0xff7, 0xd37)

161.884754ms ago: executing program 1 (id=5502):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x2, &(0x7f0000000d40)=[{0x0, 0xa8, 0x1, 0xc}, {0x401, 0xfb, 0xa, 0x8001}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000600)=ANY=[@ANYBLOB="00000000000000943e00000000000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x94)
unlinkat(r1, &(0x7f0000000800)='./file0\x00', 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000900)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001", @ANYBLOB], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r2}, &(0x7f0000000180), &(0x7f0000000280)}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{0x1}, &(0x7f0000000080), &(0x7f00000000c0)=r0}, 0x20)
socket(0x10, 0x3, 0x0)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000cc0)={0x0, 0x9}, &(0x7f0000000d00)=0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfe, 0x0, 0x7ffc0002}]})
sync_file_range(0xffffffffffffffff, 0x6, 0x6, 0x1)

130.603987ms ago: executing program 2 (id=5503):
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000500)='kfree\x00', r1}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xd82, &(0x7f0000001c00)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xd74, 0x2, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0xd60, 0x0, @wg=@data={0x4, 0x7407, 0x522a, "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"}}}}}}, 0x0)
recvmmsg(r2, &(0x7f0000001ac0)=[{{0x0, 0x0, 0x0}, 0xe61b}], 0x1, 0x40000000, 0x0)

115.233969ms ago: executing program 1 (id=5504):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7fff}, 0x18)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000003000000000000"], 0x24}}, 0x0)

94.583111ms ago: executing program 2 (id=5505):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r2}, 0x10)
pivot_root(&(0x7f00000000c0)='./file0\x00', 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r3, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x15}}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0, 0x56}}], 0x30, 0x8004}, 0x0)

71.364213ms ago: executing program 0 (id=5506):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a6970"], 0x60}}, 0x0)
r2 = semget$private(0x0, 0x20000000102, 0x200)
semop(r2, &(0x7f0000000240)=[{0x1, 0x20, 0x800}, {0x0, 0xe65b}], 0x2)
semctl$GETALL(r2, 0x0, 0xd, &(0x7f0000000700)=""/236)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0xff, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa, 0x1ff}, 0x1100, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_COMPLETION_RING(r5, 0x11b, 0x6, &(0x7f0000000040)=0x1000000, 0x4)
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0xa0800, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r10}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r9}, &(0x7f0000000000), &(0x7f00000005c0)=r10}, 0x20)
close(r8)

69.278853ms ago: executing program 1 (id=5507):
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b000000050000000004"], 0x48)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x2041, 0x0)
write$binfmt_aout(r0, &(0x7f0000000300)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x4, 0xfe, "0062ba7d82000000160000000000f738096304"})
syz_open_pts(r0, 0x80)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x40000333}, &(0x7f00000006c0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000100)=[{&(0x7f0000000240)=""/216, 0xd8}], 0x1})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x14)

0s ago: executing program 2 (id=5508):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
fallocate(r1, 0x0, 0xbf5, 0x1)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, r1, 0x18, 0x0, 0x0, 0xfffffffffdffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
modify_ldt$write(0x1, &(0x7f0000000040)={0xd35, 0x1000, 0x4000}, 0x10)
syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = geteuid()
setresuid(r4, 0xee01, r4)
newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2000)
setresuid(r5, r5, 0x0)
stat(&(0x7f0000000400)='./file1\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
mount$cgroup(0x0, &(0x7f0000000380)='./bus\x00', &(0x7f00000003c0), 0x4400, &(0x7f00000004c0)={[{@noprefix}, {@favordynmods}, {@none}, {@favordynmods}], [{@obj_type={'obj_type', 0x3d, '/dev/bus/usb/00#/00#\x00'}}, {@uid_eq={'uid', 0x3d, r4}}, {@fowner_lt={'fowner<', r5}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@seclabel}, {@smackfsroot}, {@uid_lt={'uid<', r6}}, {@obj_user={'obj_user', 0x3d, 'GPL\x00'}}]})
r7 = gettid()
sendmsg$nl_generic(r1, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000300)={&(0x7f0000000880)={0x110, 0x10, 0x20, 0x70bd2a, 0x25dfdbfc, {0x2a}, [@nested={0xc, 0x2f, 0x0, 0x1, [@typed={0x8, 0xb4, 0x0, 0x0, @pid=r7}]}, @typed={0xc2, 0x6, 0x0, 0x0, @str='\xe7\x9a\xe5\x8e\xa3\xcc9\xdd\x90\x1f\xad\x15\xc0\n\xbch\x0e\xfe=\xa3\xffZ\xdc\\\x80\xf91\xfe\x00\xa9I\xac\x00\xcaO>\xbbc\x02`\x9b\xf2\xa2(}\x14P\x9b\x8c\x16\xd0\xfd\xf7\xe9\x85\xda#\xc0\xb3|\xf3\xd9\x00\x11\x90\xf9\xc8\xd0@\xce\xb7\xc0\x90P\xcel/X\xa2\xc7>\x11T\xca\\\xae\xb9\x8a\xf8\xa1\xcf\x80{\xf6\x157\xc6\x1bf\x9887\x9b\x96x{\xaaZ%\xcf\x87\x8d\xceqpi\'\xa6\xca\x1cM\xbb\x8az?\xaaK}\xf9\xa1\xe9\x7fK\xf6 \a\x05\f\x01\xc0\x9e\xdbP_\x92\xf1yf;\x01\x8e-\xc2.\xdae.[\x14\xc8\xa7\xb2\xca\xe2Yu\xad\x86euz\xc5\xd8x\xe8m\x1c\xa7B t]\xc5\xbd\'\xf5u\xea?\xd8'}, @generic="deffa254137bcfd795ffe74528946aadd8e10b2b76b10571afd0ccaedf08e840f400a762f55925cebc0f"]}, 0x110}, 0x1, 0x0, 0x0, 0x4881}, 0x2000000)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
fcntl$lock(r8, 0x6, &(0x7f0000002000)={0x1})
fcntl$lock(r8, 0x26, &(0x7f00000031c0)={0x1})

kernel console output (not intermixed with test programs):

6][T16093] vhci_hcd: connection closed
[  296.547355][ T9560] vhci_hcd: stop threads
[  296.556363][ T9560] vhci_hcd: release socket
[  296.560845][ T9560] vhci_hcd: disconnect device
[  296.731523][T16097] siw: device registration error -23
[  296.794837][T16099] sctp: [Deprecated]: syz.5.4565 (pid 16099) Use of int in maxseg socket option.
[  296.794837][T16099] Use struct sctp_assoc_value instead
[  296.902144][T16107] loop5: detected capacity change from 0 to 512
[  296.912381][T16107] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.925191][T16107] ext4 filesystem being mounted at /452/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.058490][ T9034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.080950][T16116] syz!: rxe_newlink: already configured on team_slave_0
[  297.624010][T16127] FAULT_INJECTION: forcing a failure.
[  297.624010][T16127] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  297.637130][T16127] CPU: 0 UID: 0 PID: 16127 Comm: syz.2.4576 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  297.637229][T16127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  297.637242][T16127] Call Trace:
[  297.637248][T16127]  <TASK>
[  297.637257][T16127]  __dump_stack+0x1d/0x30
[  297.637359][T16127]  dump_stack_lvl+0xe8/0x140
[  297.637383][T16127]  dump_stack+0x15/0x1b
[  297.637406][T16127]  should_fail_ex+0x265/0x280
[  297.637447][T16127]  should_fail+0xb/0x20
[  297.637500][T16127]  should_fail_usercopy+0x1a/0x20
[  297.637528][T16127]  _copy_from_user+0x1c/0xb0
[  297.637563][T16127]  ___sys_sendmsg+0xc1/0x1d0
[  297.637615][T16127]  __x64_sys_sendmsg+0xd4/0x160
[  297.637710][T16127]  x64_sys_call+0x191e/0x3000
[  297.637740][T16127]  do_syscall_64+0xd2/0x200
[  297.637774][T16127]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  297.637812][T16127]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  297.637873][T16127]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.637905][T16127] RIP: 0033:0x7ffb8a9feec9
[  297.637920][T16127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.637939][T16127] RSP: 002b:00007ffb89467038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.637958][T16127] RAX: ffffffffffffffda RBX: 00007ffb8ac55fa0 RCX: 00007ffb8a9feec9
[  297.637979][T16127] RDX: 0000000000004004 RSI: 00002000000035c0 RDI: 0000000000000006
[  297.637997][T16127] RBP: 00007ffb89467090 R08: 0000000000000000 R09: 0000000000000000
[  297.638015][T16127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.638065][T16127] R13: 00007ffb8ac56038 R14: 00007ffb8ac55fa0 R15: 00007ffcdee10818
[  297.638084][T16127]  </TASK>
[  297.639387][T16127] netlink: 'syz.2.4576': attribute type 3 has an invalid length.
[  297.794627][T12689] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  297.799678][ T3512] Bluetooth: hci0: command 0x1003 tx timeout
[  297.895991][T16137] geneve2: entered promiscuous mode
[  297.901323][T16137] geneve2: entered allmulticast mode
[  297.963237][T16146] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  298.017593][T16151] serio: Serial port ptm0
[  298.167901][T16148] __nla_validate_parse: 24 callbacks suppressed
[  298.167919][T16148] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4584'.
[  298.376330][T16167] FAULT_INJECTION: forcing a failure.
[  298.376330][T16167] name failslab, interval 1, probability 0, space 0, times 0
[  298.388969][T16167] CPU: 0 UID: 0 PID: 16167 Comm: syz.0.4591 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  298.389000][T16167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  298.389013][T16167] Call Trace:
[  298.389020][T16167]  <TASK>
[  298.389029][T16167]  __dump_stack+0x1d/0x30
[  298.389100][T16167]  dump_stack_lvl+0xe8/0x140
[  298.389121][T16167]  dump_stack+0x15/0x1b
[  298.389174][T16167]  should_fail_ex+0x265/0x280
[  298.389207][T16167]  should_failslab+0x8c/0xb0
[  298.389234][T16167]  kmem_cache_alloc_noprof+0x50/0x480
[  298.389311][T16167]  ? audit_log_start+0x342/0x720
[  298.389352][T16167]  audit_log_start+0x342/0x720
[  298.389375][T16167]  ? kstrtouint+0x76/0xc0
[  298.389413][T16167]  audit_seccomp+0x48/0x100
[  298.389449][T16167]  ? __seccomp_filter+0x82d/0x1250
[  298.389497][T16167]  __seccomp_filter+0x83e/0x1250
[  298.389583][T16167]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  298.389631][T16167]  ? vfs_write+0x7e8/0x960
[  298.389658][T16167]  ? __rcu_read_unlock+0x4f/0x70
[  298.389708][T16167]  ? __fget_files+0x184/0x1c0
[  298.389768][T16167]  __secure_computing+0x82/0x150
[  298.389800][T16167]  syscall_trace_enter+0xcf/0x1e0
[  298.389865][T16167]  do_syscall_64+0xac/0x200
[  298.389894][T16167]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  298.389927][T16167]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  298.390023][T16167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  298.390043][T16167] RIP: 0033:0x7f9377c0eec9
[  298.390057][T16167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  298.390075][T16167] RSP: 002b:00007f9376677038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  298.390158][T16167] RAX: ffffffffffffffda RBX: 00007f9377e65fa0 RCX: 00007f9377c0eec9
[  298.390247][T16167] RDX: 0000000000000010 RSI: 00002000000006c0 RDI: 000000000000000a
[  298.390259][T16167] RBP: 00007f9376677090 R08: 0000000000000000 R09: 0000000000000000
[  298.390271][T16167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  298.390282][T16167] R13: 00007f9377e66038 R14: 00007f9377e65fa0 R15: 00007ffcc33bb4c8
[  298.390301][T16167]  </TASK>
[  298.713474][T16173] loop5: detected capacity change from 0 to 2048
[  298.737726][T16173] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.203101][T16197] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  299.245667][T16200] siw: device registration error -23
[  299.595340][T16215] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4610'.
[  299.604437][T16215] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4610'.
[  299.682493][T16217] serio: Serial port ptm0
[  299.720108][T16173] syz.5.4594 (16173) used greatest stack depth: 7304 bytes left
[  299.732099][ T9034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.790620][T16223] syz!: rxe_newlink: already configured on team_slave_0
[  299.832375][T16226] loop5: detected capacity change from 0 to 1024
[  299.871972][T16226] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.955712][T16238] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4619'.
[  299.964798][T16238] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4619'.
[  299.982646][ T9034] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.050227][T16238] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4619'.
[  300.059233][T16238] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4619'.
[  300.090928][   T29] kauditd_printk_skb: 232 callbacks suppressed
[  300.090943][   T29] audit: type=1400 audit(1760620440.403:20499): avc:  denied  { create } for  pid=16236 comm="syz.3.4619" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  300.116813][   T29] audit: type=1400 audit(1760620440.403:20500): avc:  denied  { name_bind } for  pid=16250 comm="syz.5.4623" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  300.138744][   T29] audit: type=1400 audit(1760620440.403:20501): avc:  denied  { node_bind } for  pid=16250 comm="syz.5.4623" saddr=255.255.255.255 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  300.161924][   T29] audit: type=1400 audit(1760620440.403:20502): avc:  denied  { bind } for  pid=16236 comm="syz.3.4619" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  300.181742][   T29] audit: type=1400 audit(1760620440.403:20503): avc:  denied  { setopt } for  pid=16236 comm="syz.3.4619" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  300.230109][T16238] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4619'.
[  300.239122][T16238] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4619'.
[  300.315539][   T29] audit: type=1326 audit(1760620440.634:20504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16263 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb8a9feec9 code=0x7ffc0000
[  300.339220][   T29] audit: type=1400 audit(1760620440.634:20505): avc:  denied  { create } for  pid=16262 comm="syz.3.4627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  300.340736][T16265] netlink: 14 bytes leftover after parsing attributes in process `syz.3.4627'.
[  300.359706][   T29] audit: type=1326 audit(1760620440.634:20506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16263 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb8a9feec9 code=0x7ffc0000
[  300.419186][T16265] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  300.438812][T16265] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  300.455364][T16265] bond0 (unregistering): Released all slaves
[  300.456425][   T29] audit: type=1326 audit(1760620440.738:20507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16263 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7ffb8a9feec9 code=0x7ffc0000
[  300.484965][   T29] audit: type=1326 audit(1760620440.738:20508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16263 comm="syz.2.4628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb8a9feec9 code=0x7ffc0000
[  300.609695][T16277] loop2: detected capacity change from 0 to 512
[  300.619278][T16277] EXT4-fs: Ignoring removed i_version option
[  300.630232][T16277] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  301.519674][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.626315][T16312] siw: device registration error -23
[  301.811380][T16334] loop2: detected capacity change from 0 to 512
[  301.833802][T16334] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  301.914336][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.938174][T16349] FAULT_INJECTION: forcing a failure.
[  301.938174][T16349] name failslab, interval 1, probability 0, space 0, times 0
[  301.950823][T16349] CPU: 0 UID: 0 PID: 16349 Comm: syz.5.4660 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  301.950850][T16349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  301.950905][T16349] Call Trace:
[  301.950910][T16349]  <TASK>
[  301.950917][T16349]  __dump_stack+0x1d/0x30
[  301.950938][T16349]  dump_stack_lvl+0xe8/0x140
[  301.951034][T16349]  dump_stack+0x15/0x1b
[  301.951049][T16349]  should_fail_ex+0x265/0x280
[  301.951091][T16349]  should_failslab+0x8c/0xb0
[  301.951178][T16349]  kmem_cache_alloc_noprof+0x50/0x480
[  301.951225][T16349]  ? dst_alloc+0xbd/0x100
[  301.951278][T16349]  dst_alloc+0xbd/0x100
[  301.951338][T16349]  ? ip_vs_mh_state_free+0x22/0x30
[  301.951429][T16349]  ip_route_output_key_hash_rcu+0xf29/0x1380
[  301.951458][T16349]  ip_route_output_key_hash+0x63/0xa0
[  301.951488][T16349]  tcp_v4_connect+0x3e2/0xad0
[  301.951525][T16349]  __inet_stream_connect+0x169/0x7d0
[  301.951597][T16349]  ? tcp_sendmsg_fastopen+0x172/0x520
[  301.951625][T16349]  ? should_failslab+0x8c/0xb0
[  301.951661][T16349]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  301.951776][T16349]  tcp_sendmsg_fastopen+0x43a/0x520
[  301.951803][T16349]  tcp_sendmsg_locked+0x26e1/0x2c00
[  301.951930][T16349]  ? mntput_no_expire+0x6f/0x440
[  301.952029][T16349]  ? __rcu_read_unlock+0x4f/0x70
[  301.952054][T16349]  ? avc_has_perm_noaudit+0x1b1/0x200
[  301.952145][T16349]  ? avc_has_perm+0xf7/0x180
[  301.952192][T16349]  ? _raw_spin_unlock_bh+0x36/0x40
[  301.952229][T16349]  ? __pfx_tcp_sendmsg+0x10/0x10
[  301.952319][T16349]  tcp_sendmsg+0x2f/0x50
[  301.952348][T16349]  inet_sendmsg+0x76/0xd0
[  301.952450][T16349]  __sock_sendmsg+0x102/0x180
[  301.952478][T16349]  __sys_sendto+0x268/0x330
[  301.952525][T16349]  __x64_sys_sendto+0x76/0x90
[  301.952588][T16349]  x64_sys_call+0x2d14/0x3000
[  301.952659][T16349]  do_syscall_64+0xd2/0x200
[  301.952719][T16349]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  301.952811][T16349]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  301.952841][T16349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.952865][T16349] RIP: 0033:0x7f69cd09eec9
[  301.952881][T16349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.952900][T16349] RSP: 002b:00007f69cbaff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  301.952920][T16349] RAX: ffffffffffffffda RBX: 00007f69cd2f5fa0 RCX: 00007f69cd09eec9
[  301.952974][T16349] RDX: ffffffffffffff58 RSI: 0000200000000140 RDI: 0000000000000003
[  301.952987][T16349] RBP: 00007f69cbaff090 R08: 0000200000000100 R09: 0000000000000010
[  301.953000][T16349] R10: 0000000020008005 R11: 0000000000000246 R12: 0000000000000001
[  301.953074][T16349] R13: 00007f69cd2f6038 R14: 00007f69cd2f5fa0 R15: 00007ffd007e7488
[  301.953095][T16349]  </TASK>
[  302.316955][T16368] FAULT_INJECTION: forcing a failure.
[  302.316955][T16368] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  302.330135][T16368] CPU: 1 UID: 0 PID: 16368 Comm: syz.0.4666 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  302.330173][T16368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  302.330189][T16368] Call Trace:
[  302.330195][T16368]  <TASK>
[  302.330202][T16368]  __dump_stack+0x1d/0x30
[  302.330256][T16368]  dump_stack_lvl+0xe8/0x140
[  302.330284][T16368]  dump_stack+0x15/0x1b
[  302.330301][T16368]  should_fail_ex+0x265/0x280
[  302.330361][T16368]  should_fail+0xb/0x20
[  302.330403][T16368]  should_fail_usercopy+0x1a/0x20
[  302.330432][T16368]  _copy_from_user+0x1c/0xb0
[  302.330466][T16368]  __sys_bpf+0x183/0x7c0
[  302.330538][T16368]  __x64_sys_bpf+0x41/0x50
[  302.330581][T16368]  x64_sys_call+0x2aee/0x3000
[  302.330608][T16368]  do_syscall_64+0xd2/0x200
[  302.330632][T16368]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  302.330676][T16368]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  302.330702][T16368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.330728][T16368] RIP: 0033:0x7f9377c0eec9
[  302.330743][T16368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.330813][T16368] RSP: 002b:00007f9376677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  302.330839][T16368] RAX: ffffffffffffffda RBX: 00007f9377e65fa0 RCX: 00007f9377c0eec9
[  302.330856][T16368] RDX: 0000000000000010 RSI: 0000200000000180 RDI: 000000000000000f
[  302.330874][T16368] RBP: 00007f9376677090 R08: 0000000000000000 R09: 0000000000000000
[  302.330888][T16368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.330900][T16368] R13: 00007f9377e66038 R14: 00007f9377e65fa0 R15: 00007ffcc33bb4c8
[  302.330921][T16368]  </TASK>
[  302.531010][T16371] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  302.537684][T16371] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  302.545342][T16371] vhci_hcd vhci_hcd.0: Device attached
[  302.577895][T16373] vhci_hcd: connection closed
[  302.578138][ T9540] vhci_hcd: stop threads
[  302.587118][ T9540] vhci_hcd: release socket
[  302.591665][ T9540] vhci_hcd: disconnect device
[  302.716667][T16393] loop2: detected capacity change from 0 to 512
[  302.737401][T16393] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.4674: corrupted in-inode xattr: invalid ea_ino
[  302.762579][T16393] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.4674: couldn't read orphan inode 15 (err -117)
[  302.775240][T16393] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  302.805823][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  302.886777][T16408] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  302.948223][T16415] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  303.108416][T16433] siw: device registration error -23
[  303.120238][T16432] __nla_validate_parse: 9 callbacks suppressed
[  303.120255][T16432] netlink: 48 bytes leftover after parsing attributes in process `syz.2.4683'.
[  303.145646][T16436] serio: Serial port ptm0
[  303.497863][T16455] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4698'.
[  303.506964][T16455] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4698'.
[  303.523597][T16455] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4698'.
[  303.532656][T16455] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4698'.
[  303.532885][T16451] loop5: detected capacity change from 0 to 128
[  303.570021][T16455] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4698'.
[  303.579237][T16455] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4698'.
[  303.607987][T16457] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4696'.
[  303.811924][T16474] serio: Serial port ptm0
[  303.847022][T16478] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4705'.
[  303.856053][T16478] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4705'.
[  304.046440][T16498] serio: Serial port ptm0
[  304.105652][T16509] loop2: detected capacity change from 0 to 512
[  304.134812][T16509] EXT4-fs (loop2): too many log groups per flexible block group
[  304.144651][T16509] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  304.149986][T16518] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  304.151567][T16509] EXT4-fs (loop2): mount failed
[  304.157929][T16518] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  304.158050][T16518] vhci_hcd vhci_hcd.0: Device attached
[  304.178772][T16519] vhci_hcd: connection closed
[  304.178986][ T9546] vhci_hcd: stop threads
[  304.187973][ T9546] vhci_hcd: release socket
[  304.192393][ T9546] vhci_hcd: disconnect device
[  304.394835][T16543] serio: Serial port ptm0
[  304.399525][T16545] FAULT_INJECTION: forcing a failure.
[  304.399525][T16545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  304.412687][T16545] CPU: 0 UID: 0 PID: 16545 Comm: syz.3.4729 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  304.412719][T16545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  304.412736][T16545] Call Trace:
[  304.412795][T16545]  <TASK>
[  304.412802][T16545]  __dump_stack+0x1d/0x30
[  304.412821][T16545]  dump_stack_lvl+0xe8/0x140
[  304.412838][T16545]  dump_stack+0x15/0x1b
[  304.412853][T16545]  should_fail_ex+0x265/0x280
[  304.412885][T16545]  should_fail+0xb/0x20
[  304.412999][T16545]  should_fail_usercopy+0x1a/0x20
[  304.413025][T16545]  _copy_from_iter+0xd2/0xe80
[  304.413048][T16545]  ? _copy_from_iter+0x170/0xe80
[  304.413072][T16545]  copy_page_from_iter+0x178/0x2a0
[  304.413155][T16545]  skb_copy_datagram_from_iter+0x232/0x490
[  304.413185][T16545]  tun_get_user+0xafa/0x26e0
[  304.413213][T16545]  ? ref_tracker_alloc+0x1f2/0x2f0
[  304.413251][T16545]  ? selinux_file_permission+0x2f0/0x320
[  304.413276][T16545]  tun_chr_write_iter+0x15e/0x210
[  304.413331][T16545]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  304.413355][T16545]  vfs_write+0x52a/0x960
[  304.413379][T16545]  ksys_write+0xda/0x1a0
[  304.413404][T16545]  __x64_sys_write+0x40/0x50
[  304.413481][T16545]  x64_sys_call+0x2802/0x3000
[  304.413499][T16545]  do_syscall_64+0xd2/0x200
[  304.413519][T16545]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  304.413542][T16545]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  304.413623][T16545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.413641][T16545] RIP: 0033:0x7f8a6c5cd97f
[  304.413653][T16545] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  304.413707][T16545] RSP: 002b:00007f8a6b02f000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  304.413799][T16545] RAX: ffffffffffffffda RBX: 00007f8a6c825fa0 RCX: 00007f8a6c5cd97f
[  304.413844][T16545] RDX: 000000000000fdef RSI: 0000200000000180 RDI: 00000000000000c8
[  304.413855][T16545] RBP: 00007f8a6b02f090 R08: 0000000000000000 R09: 0000000000000000
[  304.413865][T16545] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000002
[  304.413911][T16545] R13: 00007f8a6c826038 R14: 00007f8a6c825fa0 R15: 00007ffe76f55618
[  304.413963][T16545]  </TASK>
[  304.698794][T16557] syz!: rxe_newlink: already configured on team_slave_0
[  304.788728][T16564] loop2: detected capacity change from 0 to 1024
[  304.800719][T16564] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  305.001580][   T29] kauditd_printk_skb: 138 callbacks suppressed
[  305.001598][   T29] audit: type=1400 audit(1760620445.419:20647): avc:  denied  { execute } for  pid=16553 comm="syz.3.4734" name="file0" dev="tmpfs" ino=2207 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  305.037500][   T29] audit: type=1400 audit(1760620445.587:20648): avc:  denied  { mount } for  pid=16561 comm="syz.5.4737" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  305.059849][   T29] audit: type=1400 audit(1760620445.587:20649): avc:  denied  { unmount } for  pid=16561 comm="syz.5.4737" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  305.209705][T16578] serio: Serial port ptm0
[  305.431939][T16588] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  305.459722][   T29] audit: type=1326 audit(1760620446.028:20650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16587 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  305.482792][   T29] audit: type=1326 audit(1760620446.028:20651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16587 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  305.505848][   T29] audit: type=1326 audit(1760620446.028:20652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16587 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  305.529012][   T29] audit: type=1326 audit(1760620446.028:20653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16587 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  305.552350][   T29] audit: type=1326 audit(1760620446.028:20654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16587 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  305.629608][   T29] audit: type=1400 audit(1760620446.196:20655): avc:  denied  { bind } for  pid=16592 comm="syz.5.4748" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  305.650100][   T29] audit: type=1400 audit(1760620446.196:20656): avc:  denied  { setopt } for  pid=16592 comm="syz.5.4748" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  305.673627][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.740715][T16603] siw: device registration error -23
[  305.781796][T16614] syz!: rxe_newlink: already configured on team_slave_0
[  305.815608][T16617] loop5: detected capacity change from 0 to 1024
[  305.829094][T16620] FAULT_INJECTION: forcing a failure.
[  305.829094][T16620] name failslab, interval 1, probability 0, space 0, times 0
[  305.841867][T16620] CPU: 0 UID: 0 PID: 16620 Comm: syz.0.4758 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  305.841903][T16620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  305.841919][T16620] Call Trace:
[  305.841927][T16620]  <TASK>
[  305.842023][T16620]  __dump_stack+0x1d/0x30
[  305.842051][T16620]  dump_stack_lvl+0xe8/0x140
[  305.842105][T16620]  dump_stack+0x15/0x1b
[  305.842128][T16620]  should_fail_ex+0x265/0x280
[  305.842171][T16620]  should_failslab+0x8c/0xb0
[  305.842261][T16620]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  305.842294][T16620]  ? __alloc_skb+0x101/0x320
[  305.842323][T16620]  __alloc_skb+0x101/0x320
[  305.842348][T16620]  ? audit_log_start+0x342/0x720
[  305.842371][T16620]  audit_log_start+0x3a0/0x720
[  305.842432][T16620]  ? __rcu_read_unlock+0x4f/0x70
[  305.842462][T16620]  audit_log+0x5e/0xd0
[  305.842487][T16620]  sel_write_enforce+0x260/0x2d0
[  305.842566][T16620]  vfs_writev+0x406/0x8b0
[  305.842667][T16620]  ? __pfx_sel_write_enforce+0x10/0x10
[  305.842712][T16620]  ? mutex_lock+0xd/0x30
[  305.842732][T16620]  do_writev+0xe7/0x210
[  305.842800][T16620]  __x64_sys_writev+0x45/0x50
[  305.842830][T16620]  x64_sys_call+0x1e9a/0x3000
[  305.842854][T16620]  do_syscall_64+0xd2/0x200
[  305.842881][T16620]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  305.842961][T16620]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  305.843061][T16620]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  305.843085][T16620] RIP: 0033:0x7f9377c0eec9
[  305.843160][T16620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  305.843194][T16620] RSP: 002b:00007f9376677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  305.843216][T16620] RAX: ffffffffffffffda RBX: 00007f9377e65fa0 RCX: 00007f9377c0eec9
[  305.843230][T16620] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000005
[  305.843244][T16620] RBP: 00007f9376677090 R08: 0000000000000000 R09: 0000000000000000
[  305.843314][T16620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  305.843329][T16620] R13: 00007f9377e66038 R14: 00007f9377e65fa0 R15: 00007ffcc33bb4c8
[  305.843349][T16620]  </TASK>
[  306.062054][T16617] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  306.078861][T16617] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.198025][T16635] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  306.206465][T16635] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  306.589869][T16645] serio: Serial port ptm0
[  306.678499][T16651] siw: device registration error -23
[  306.879413][T16653] loop2: detected capacity change from 0 to 164
[  306.886974][T16653] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  306.988559][T16667] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  306.995085][T16667] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  307.002728][T16667] vhci_hcd vhci_hcd.0: Device attached
[  307.010827][T16668] vhci_hcd: connection closed
[  307.010893][ T9540] vhci_hcd: stop threads
[  307.019962][ T9540] vhci_hcd: release socket
[  307.024379][ T9540] vhci_hcd: disconnect device
[  307.029391][T16665] FAULT_INJECTION: forcing a failure.
[  307.029391][T16665] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  307.042547][T16665] CPU: 0 UID: 0 PID: 16665 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[  307.042571][T16665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  307.042583][T16665] Call Trace:
[  307.042588][T16665]  <TASK>
[  307.042595][T16665]  __dump_stack+0x1d/0x30
[  307.042614][T16665]  dump_stack_lvl+0xe8/0x140
[  307.042631][T16665]  dump_stack+0x15/0x1b
[  307.042680][T16665]  should_fail_ex+0x265/0x280
[  307.042712][T16665]  should_fail+0xb/0x20
[  307.042740][T16665]  should_fail_usercopy+0x1a/0x20
[  307.042840][T16665]  _copy_to_user+0x20/0xa0
[  307.042942][T16665]  simple_read_from_buffer+0xb5/0x130
[  307.042964][T16665]  proc_fail_nth_read+0x10e/0x150
[  307.043036][T16665]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  307.043072][T16665]  vfs_read+0x1a8/0x770
[  307.043093][T16665]  ? __rcu_read_unlock+0x4f/0x70
[  307.043115][T16665]  ? __fget_files+0x184/0x1c0
[  307.043222][T16665]  ksys_read+0xda/0x1a0
[  307.043281][T16665]  __x64_sys_read+0x40/0x50
[  307.043299][T16665]  x64_sys_call+0x27c0/0x3000
[  307.043316][T16665]  do_syscall_64+0xd2/0x200
[  307.043336][T16665]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  307.043425][T16665]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  307.043492][T16665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  307.043509][T16665] RIP: 0033:0x7f8a6c5cd8dc
[  307.043521][T16665] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  307.043535][T16665] RSP: 002b:00007f8a6b02f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  307.043550][T16665] RAX: ffffffffffffffda RBX: 00007f8a6c825fa0 RCX: 00007f8a6c5cd8dc
[  307.043560][T16665] RDX: 000000000000000f RSI: 00007f8a6b02f0a0 RDI: 0000000000000006
[  307.043586][T16665] RBP: 00007f8a6b02f090 R08: 0000000000000000 R09: 0000000000000000
[  307.043595][T16665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  307.043605][T16665] R13: 00007f8a6c826038 R14: 00007f8a6c825fa0 R15: 00007ffe76f55618
[  307.043619][T16665]  </TASK>
[  307.275072][T16677] serio: Serial port ptm0
[  307.439575][T16685] siw: device registration error -23
[  307.782234][T16708] serio: Serial port ptm0
[  307.896872][T16721] __nla_validate_parse: 18 callbacks suppressed
[  307.896887][T16721] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4798'.
[  307.912362][T16721] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4798'.
[  307.923839][T16723] hub 9-0:1.0: USB hub found
[  307.931367][T16721] loop2: detected capacity change from 0 to 128
[  307.933948][T16723] hub 9-0:1.0: 8 ports detected
[  307.963313][T16721] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  307.978798][T16721] ext4 filesystem being mounted at /345/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  307.997416][T16729] FAULT_INJECTION: forcing a failure.
[  307.997416][T16729] name failslab, interval 1, probability 0, space 0, times 0
[  308.010218][T16729] CPU: 0 UID: 0 PID: 16729 Comm: syz.5.4801 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  308.010299][T16729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  308.010315][T16729] Call Trace:
[  308.010323][T16729]  <TASK>
[  308.010332][T16729]  __dump_stack+0x1d/0x30
[  308.010368][T16729]  dump_stack_lvl+0xe8/0x140
[  308.010393][T16729]  dump_stack+0x15/0x1b
[  308.010415][T16729]  should_fail_ex+0x265/0x280
[  308.010543][T16729]  should_failslab+0x8c/0xb0
[  308.010571][T16729]  __kmalloc_noprof+0xa5/0x570
[  308.010604][T16729]  ? sel_write_relabel+0x18c/0x360
[  308.010673][T16729]  sel_write_relabel+0x18c/0x360
[  308.010717][T16729]  selinux_transaction_write+0xc6/0x110
[  308.010769][T16729]  ? __pfx_selinux_transaction_write+0x10/0x10
[  308.010871][T16729]  vfs_write+0x269/0x960
[  308.010897][T16729]  ? __rcu_read_unlock+0x4f/0x70
[  308.010930][T16729]  ? __fget_files+0x184/0x1c0
[  308.010964][T16729]  ksys_write+0xda/0x1a0
[  308.011021][T16729]  __x64_sys_write+0x40/0x50
[  308.011053][T16729]  x64_sys_call+0x2802/0x3000
[  308.011081][T16729]  do_syscall_64+0xd2/0x200
[  308.011114][T16729]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  308.011175][T16729]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  308.011224][T16729]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.011251][T16729] RIP: 0033:0x7f69cd09eec9
[  308.011269][T16729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.011335][T16729] RSP: 002b:00007f69cbaff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  308.011357][T16729] RAX: ffffffffffffffda RBX: 00007f69cd2f5fa0 RCX: 00007f69cd09eec9
[  308.011373][T16729] RDX: 0000000000000056 RSI: 0000200000001a80 RDI: 0000000000000006
[  308.011388][T16729] RBP: 00007f69cbaff090 R08: 0000000000000000 R09: 0000000000000000
[  308.011404][T16729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.011484][T16729] R13: 00007f69cd2f6038 R14: 00007f69cd2f5fa0 R15: 00007ffd007e7488
[  308.011509][T16729]  </TASK>
[  308.232315][T16721] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  308.257391][T16735] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4803'.
[  308.319305][T16741] loop2: detected capacity change from 0 to 736
[  308.360184][T16741] isofs: Unable to find the ".." directory for NFS.
[  308.372051][T16736] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4804'.
[  308.464162][T16733] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4802'.
[  308.505104][T16749] siw: device registration error -23
[  308.646564][T16757] netlink: 48 bytes leftover after parsing attributes in process `syz.5.4810'.
[  308.726970][T16759] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4812'.
[  308.736033][T16759] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4812'.
[  308.751477][T16759] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4812'.
[  308.760568][T16759] netlink: 60 bytes leftover after parsing attributes in process `syz.3.4812'.
[  309.446610][T16784] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6)
[  309.453264][T16784] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  309.460829][T16784] vhci_hcd vhci_hcd.0: Device attached
[  309.467907][T16784] vhci_hcd vhci_hcd.0: pdev(5) rhport(1) sockfd(8)
[  309.474492][T16784] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  309.482105][T16784] vhci_hcd vhci_hcd.0: Device attached
[  309.488578][T16784] vhci_hcd vhci_hcd.0: pdev(5) rhport(2) sockfd(10)
[  309.495197][T16784] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  309.502834][T16784] vhci_hcd vhci_hcd.0: Device attached
[  309.509237][T16784] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  309.518206][T16784] vhci_hcd vhci_hcd.0: pdev(5) rhport(4) sockfd(14)
[  309.524881][T16784] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  309.532413][T16784] vhci_hcd vhci_hcd.0: Device attached
[  309.538914][T16784] vhci_hcd vhci_hcd.0: pdev(5) rhport(5) sockfd(16)
[  309.545556][T16784] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  309.553187][T16784] vhci_hcd vhci_hcd.0: Device attached
[  309.561291][T16793] vhci_hcd: connection closed
[  309.561292][T16791] vhci_hcd: connection closed
[  309.566230][ T9560] vhci_hcd: stop threads
[  309.575250][ T9560] vhci_hcd: release socket
[  309.579742][ T9560] vhci_hcd: disconnect device
[  309.584668][T16789] vhci_hcd: connection closed
[  309.584743][T16785] vhci_hcd: connection closed
[  309.584814][T16787] vhci_hcd: connection closed
[  309.595241][ T9560] vhci_hcd: stop threads
[  309.604239][ T9560] vhci_hcd: release socket
[  309.608784][ T9560] vhci_hcd: disconnect device
[  309.615502][ T9560] vhci_hcd: stop threads
[  309.619807][ T9560] vhci_hcd: release socket
[  309.624279][ T9560] vhci_hcd: disconnect device
[  309.629476][ T9560] vhci_hcd: stop threads
[  309.633740][ T9560] vhci_hcd: release socket
[  309.638196][ T9560] vhci_hcd: disconnect device
[  309.643375][ T9560] vhci_hcd: stop threads
[  309.647648][ T9560] vhci_hcd: release socket
[  309.652080][ T9560] vhci_hcd: disconnect device
[  309.867301][T16804] serio: Serial port ptm0
[  310.194189][T16850] 9pnet_fd: Insufficient options for proto=fd
[  310.209866][T16850] siw: device registration error -23
[  310.231192][   T29] kauditd_printk_skb: 224 callbacks suppressed
[  310.231208][   T29] audit: type=1400 audit(1760620451.045:20879): avc:  denied  { read write } for  pid=16853 comm="syz.1.4841" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  310.261763][   T29] audit: type=1400 audit(1760620451.045:20880): avc:  denied  { open } for  pid=16853 comm="syz.1.4841" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  310.379585][T16860] batadv_slave_1: entered promiscuous mode
[  310.388221][T16862] FAULT_INJECTION: forcing a failure.
[  310.388221][T16862] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  310.401411][T16862] CPU: 0 UID: 0 PID: 16862 Comm: syz.5.4843 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  310.401442][T16862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  310.401457][T16862] Call Trace:
[  310.401464][T16862]  <TASK>
[  310.401490][T16862]  __dump_stack+0x1d/0x30
[  310.401515][T16862]  dump_stack_lvl+0xe8/0x140
[  310.401533][T16862]  dump_stack+0x15/0x1b
[  310.401617][T16862]  should_fail_ex+0x265/0x280
[  310.401674][T16862]  should_fail+0xb/0x20
[  310.401766][T16862]  should_fail_usercopy+0x1a/0x20
[  310.401787][T16862]  _copy_to_user+0x20/0xa0
[  310.401823][T16862]  simple_read_from_buffer+0xb5/0x130
[  310.401852][T16862]  proc_fail_nth_read+0x10e/0x150
[  310.401953][T16862]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  310.401980][T16862]  vfs_read+0x1a8/0x770
[  310.402054][T16862]  ? __rcu_read_unlock+0x4f/0x70
[  310.402083][T16862]  ? __fget_files+0x184/0x1c0
[  310.402120][T16862]  ksys_read+0xda/0x1a0
[  310.402148][T16862]  __x64_sys_read+0x40/0x50
[  310.402235][T16862]  x64_sys_call+0x27c0/0x3000
[  310.402264][T16862]  do_syscall_64+0xd2/0x200
[  310.402291][T16862]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  310.402338][T16862]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  310.402376][T16862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.402483][T16862] RIP: 0033:0x7f69cd09d8dc
[  310.402504][T16862] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  310.402530][T16862] RSP: 002b:00007f69cbaff030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  310.402553][T16862] RAX: ffffffffffffffda RBX: 00007f69cd2f5fa0 RCX: 00007f69cd09d8dc
[  310.402566][T16862] RDX: 000000000000000f RSI: 00007f69cbaff0a0 RDI: 0000000000000005
[  310.402580][T16862] RBP: 00007f69cbaff090 R08: 0000000000000000 R09: 0000000000000000
[  310.402593][T16862] R10: 0000000036c48930 R11: 0000000000000246 R12: 0000000000000001
[  310.402605][T16862] R13: 00007f69cd2f6038 R14: 00007f69cd2f5fa0 R15: 00007ffd007e7488
[  310.402699][T16862]  </TASK>
[  310.415874][T16859] batadv_slave_1: left promiscuous mode
[  310.421458][   T29] audit: type=1400 audit(1760620451.108:20881): avc:  denied  { ioctl } for  pid=16855 comm="syz.5.4842" path="socket:[52159]" dev="sockfs" ino=52159 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  310.637427][   T29] audit: type=1400 audit(1760620451.129:20882): avc:  denied  { create } for  pid=16853 comm="syz.1.4841" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_scsitransport_socket permissive=1
[  310.703838][   T29] audit: type=1400 audit(1760620451.528:20883): avc:  denied  { ioctl } for  pid=16869 comm="syz.5.4847" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  310.768307][T16876] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not ''
[  310.780869][   T29] audit: type=1400 audit(1760620451.612:20884): avc:  denied  { sqpoll } for  pid=16877 comm="syz.1.4850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  310.800302][   T29] audit: type=1400 audit(1760620451.612:20885): avc:  denied  { map } for  pid=16877 comm="syz.1.4850" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=52220 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  310.824765][   T29] audit: type=1400 audit(1760620451.612:20886): avc:  denied  { read write } for  pid=16877 comm="syz.1.4850" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=52220 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  310.854017][   T29] audit: type=1400 audit(1760620451.622:20887): avc:  denied  { prog_load } for  pid=16877 comm="syz.1.4850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  310.873338][   T29] audit: type=1400 audit(1760620451.622:20888): avc:  denied  { bpf } for  pid=16877 comm="syz.1.4850" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  310.992403][T16889] bond1: Removing last arp target with arp_interval on
[  310.999774][T16889] bond1: entered allmulticast mode
[  311.005099][T16889] 8021q: adding VLAN 0 to HW filter on device bond1
[  311.092765][T16898] netlink: 'syz.0.4857': attribute type 1 has an invalid length.
[  311.100971][T16894] infiniband syz0: set active
[  311.105775][T16894] infiniband syz0: added bond_slave_0
[  311.120150][T16894] RDS/IB: syz0: added
[  311.188024][T16908] FAULT_INJECTION: forcing a failure.
[  311.188024][T16908] name failslab, interval 1, probability 0, space 0, times 0
[  311.200898][T16908] CPU: 0 UID: 0 PID: 16908 Comm: syz.0.4860 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  311.200970][T16908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  311.200981][T16908] Call Trace:
[  311.200987][T16908]  <TASK>
[  311.200992][T16908]  __dump_stack+0x1d/0x30
[  311.201011][T16908]  dump_stack_lvl+0xe8/0x140
[  311.201028][T16908]  dump_stack+0x15/0x1b
[  311.201109][T16908]  should_fail_ex+0x265/0x280
[  311.201144][T16908]  should_failslab+0x8c/0xb0
[  311.201250][T16908]  __kvmalloc_node_noprof+0x12e/0x670
[  311.201281][T16908]  ? page_pool_create_percpu+0x22d/0x630
[  311.201370][T16908]  page_pool_create_percpu+0x22d/0x630
[  311.201393][T16908]  page_pool_create+0x1a/0x30
[  311.201412][T16908]  bpf_test_run_xdp_live+0x138/0x1050
[  311.201482][T16908]  ? __pfx_autoremove_wake_function+0x10/0x10
[  311.201527][T16908]  ? 0xffffffffa02054c0
[  311.201542][T16908]  ? 0xffffffffa02054c0
[  311.201554][T16908]  ? 0xffffffffa02054c0
[  311.201565][T16908]  ? bpf_dispatcher_change_prog+0x6ec/0x7f0
[  311.201590][T16908]  ? 0xffffffffa02054c0
[  311.201686][T16908]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  311.201720][T16908]  bpf_prog_test_run_xdp+0x59a/0x970
[  311.201747][T16908]  ? __rcu_read_unlock+0x4f/0x70
[  311.201831][T16908]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  311.201934][T16908]  bpf_prog_test_run+0x22a/0x390
[  311.201960][T16908]  __sys_bpf+0x4c0/0x7c0
[  311.202026][T16908]  __x64_sys_bpf+0x41/0x50
[  311.202087][T16908]  x64_sys_call+0x2aee/0x3000
[  311.202113][T16908]  do_syscall_64+0xd2/0x200
[  311.202145][T16908]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  311.202204][T16908]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  311.202282][T16908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.202311][T16908] RIP: 0033:0x7f9377c0eec9
[  311.202327][T16908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.202352][T16908] RSP: 002b:00007f9376677038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  311.202378][T16908] RAX: ffffffffffffffda RBX: 00007f9377e65fa0 RCX: 00007f9377c0eec9
[  311.202396][T16908] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  311.202442][T16908] RBP: 00007f9376677090 R08: 0000000000000000 R09: 0000000000000000
[  311.202460][T16908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  311.202473][T16908] R13: 00007f9377e66038 R14: 00007f9377e65fa0 R15: 00007ffcc33bb4c8
[  311.202501][T16908]  </TASK>
[  311.202701][T16908] page_pool_create_percpu() gave up with errno -12
[  311.818499][T16938] bridge_slave_1: left allmulticast mode
[  311.824386][T16938] bridge_slave_1: left promiscuous mode
[  311.830180][T16938] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.867140][T16938] bridge_slave_0: left allmulticast mode
[  311.872832][T16938] bridge_slave_0: left promiscuous mode
[  311.878767][T16938] bridge0: port 1(bridge_slave_0) entered disabled state
[  313.021743][T16998] loop2: detected capacity change from 0 to 512
[  313.074488][T16998] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.4889: corrupted in-inode xattr: invalid ea_ino
[  313.097693][T16998] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.4889: couldn't read orphan inode 15 (err -117)
[  313.107995][T17006] __nla_validate_parse: 29 callbacks suppressed
[  313.108015][T17006] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4893'.
[  313.125663][T16998] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.220800][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.263900][T17016] siw: device registration error -23
[  313.298508][T17018] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4897'.
[  313.307553][T17018] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4897'.
[  313.319472][T17018] loop2: detected capacity change from 0 to 128
[  313.325393][T17018] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  313.363790][T17018] ext4 filesystem being mounted at /354/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  313.447676][T17018] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  313.686679][T17035] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4905'.
[  313.705565][T17037] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4907'.
[  313.778218][T17048] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4911'.
[  313.787330][T17048] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4911'.
[  313.826817][T17048] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4911'.
[  313.835899][T17048] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4911'.
[  313.915245][T17048] netlink: 60 bytes leftover after parsing attributes in process `syz.5.4911'.
[  314.071000][T17085] siw: device registration error -23
[  314.164841][T17092] loop2: detected capacity change from 0 to 1024
[  314.182780][T17092] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  314.340213][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.431359][T17111] loop2: detected capacity change from 0 to 764
[  314.575277][T17124] serio: Serial port ptm0
[  314.985092][T17148] SELinux:  Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped).
[  315.093636][T17156] siw: device registration error -23
[  315.144571][   T29] kauditd_printk_skb: 206 callbacks suppressed
[  315.144588][   T29] audit: type=1326 audit(1760620456.198:21095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.186088][   T29] audit: type=1326 audit(1760620456.229:21096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=277 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.209810][   T29] audit: type=1326 audit(1760620456.229:21097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.233439][   T29] audit: type=1326 audit(1760620456.229:21098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.257045][   T29] audit: type=1326 audit(1760620456.240:21099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.280620][   T29] audit: type=1326 audit(1760620456.240:21100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.304341][   T29] audit: type=1326 audit(1760620456.240:21101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.327926][   T29] audit: type=1326 audit(1760620456.240:21102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.351516][   T29] audit: type=1326 audit(1760620456.240:21103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.375241][   T29] audit: type=1326 audit(1760620456.240:21104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17158 comm="syz.5.4948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  315.480476][T17165] loop2: detected capacity change from 0 to 1024
[  315.514732][T17168] FAULT_INJECTION: forcing a failure.
[  315.514732][T17168] name failslab, interval 1, probability 0, space 0, times 0
[  315.527422][T17168] CPU: 1 UID: 0 PID: 17168 Comm: syz.1.4952 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  315.527469][T17168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  315.527485][T17168] Call Trace:
[  315.527493][T17168]  <TASK>
[  315.527502][T17168]  __dump_stack+0x1d/0x30
[  315.527594][T17168]  dump_stack_lvl+0xe8/0x140
[  315.527619][T17168]  dump_stack+0x15/0x1b
[  315.527640][T17168]  should_fail_ex+0x265/0x280
[  315.527683][T17168]  ? __se_sys_memfd_create+0x1cc/0x590
[  315.527744][T17168]  should_failslab+0x8c/0xb0
[  315.527878][T17168]  __kmalloc_cache_noprof+0x4c/0x4a0
[  315.527943][T17168]  __se_sys_memfd_create+0x1cc/0x590
[  315.528038][T17168]  __x64_sys_memfd_create+0x31/0x40
[  315.528064][T17168]  x64_sys_call+0x2ac2/0x3000
[  315.528090][T17168]  do_syscall_64+0xd2/0x200
[  315.528120][T17168]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  315.528288][T17168]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  315.528315][T17168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.528410][T17168] RIP: 0033:0x7ff58512eec9
[  315.528429][T17168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.528451][T17168] RSP: 002b:00007ff583b96e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  315.528474][T17168] RAX: ffffffffffffffda RBX: 000000000000036e RCX: 00007ff58512eec9
[  315.528490][T17168] RDX: 00007ff583b96ef0 RSI: 0000000000000000 RDI: 00007ff5851b2960
[  315.528505][T17168] RBP: 00002000000007c0 R08: 00007ff583b96bb7 R09: 00007ff583b96e40
[  315.528519][T17168] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000180
[  315.528619][T17168] R13: 00007ff583b96ef0 R14: 00007ff583b96eb0 R15: 0000200000003240
[  315.528670][T17168]  </TASK>
[  315.789182][T17174] FAULT_INJECTION: forcing a failure.
[  315.789182][T17174] name failslab, interval 1, probability 0, space 0, times 0
[  315.801867][T17174] CPU: 1 UID: 0 PID: 17174 Comm: syz.1.4955 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  315.801949][T17174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  315.801964][T17174] Call Trace:
[  315.802021][T17174]  <TASK>
[  315.802032][T17174]  __dump_stack+0x1d/0x30
[  315.802059][T17174]  dump_stack_lvl+0xe8/0x140
[  315.802093][T17174]  dump_stack+0x15/0x1b
[  315.802116][T17174]  should_fail_ex+0x265/0x280
[  315.802175][T17174]  ? audit_log_d_path+0x8d/0x150
[  315.802200][T17174]  should_failslab+0x8c/0xb0
[  315.802237][T17174]  __kmalloc_cache_noprof+0x4c/0x4a0
[  315.802280][T17174]  audit_log_d_path+0x8d/0x150
[  315.802368][T17174]  audit_log_d_path_exe+0x42/0x70
[  315.802397][T17174]  audit_log_task+0x1e9/0x250
[  315.802516][T17174]  ? kstrtouint+0x76/0xc0
[  315.802558][T17174]  audit_seccomp+0x61/0x100
[  315.802600][T17174]  ? __seccomp_filter+0x82d/0x1250
[  315.802677][T17174]  __seccomp_filter+0x83e/0x1250
[  315.802712][T17174]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  315.802751][T17174]  ? vfs_write+0x7e8/0x960
[  315.802797][T17174]  __secure_computing+0x82/0x150
[  315.802830][T17174]  syscall_trace_enter+0xcf/0x1e0
[  315.802921][T17174]  do_syscall_64+0xac/0x200
[  315.802954][T17174]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  315.803010][T17174]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  315.803041][T17174]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.803076][T17174] RIP: 0033:0x7ff58512eec9
[  315.803097][T17174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  315.803120][T17174] RSP: 002b:00007ff583b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000047
[  315.803192][T17174] RAX: ffffffffffffffda RBX: 00007ff585385fa0 RCX: 00007ff58512eec9
[  315.803209][T17174] RDX: 0000200000000500 RSI: 0000000000000001 RDI: 0000000000000000
[  315.803226][T17174] RBP: 00007ff583b97090 R08: 0000000000000000 R09: 0000000000000000
[  315.803255][T17174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  315.803271][T17174] R13: 00007ff585386038 R14: 00007ff585385fa0 R15: 00007fffe6fb8c18
[  315.803295][T17174]  </TASK>
[  315.805132][T17165] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.124237][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.176535][T17193] serio: Serial port ptm0
[  316.288226][T17209] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  316.569900][T17228] FAULT_INJECTION: forcing a failure.
[  316.569900][T17228] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  316.583053][T17228] CPU: 0 UID: 0 PID: 17228 Comm: syz.3.4978 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  316.583150][T17228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  316.583162][T17228] Call Trace:
[  316.583168][T17228]  <TASK>
[  316.583175][T17228]  __dump_stack+0x1d/0x30
[  316.583201][T17228]  dump_stack_lvl+0xe8/0x140
[  316.583237][T17228]  dump_stack+0x15/0x1b
[  316.583268][T17228]  should_fail_ex+0x265/0x280
[  316.583310][T17228]  should_fail+0xb/0x20
[  316.583390][T17228]  should_fail_usercopy+0x1a/0x20
[  316.583480][T17228]  _copy_to_user+0x20/0xa0
[  316.583506][T17228]  simple_read_from_buffer+0xb5/0x130
[  316.583533][T17228]  proc_fail_nth_read+0x10e/0x150
[  316.583629][T17228]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  316.583662][T17228]  vfs_read+0x1a8/0x770
[  316.583684][T17228]  ? __rcu_read_unlock+0x4f/0x70
[  316.583755][T17228]  ? __fget_files+0x184/0x1c0
[  316.583780][T17228]  ksys_read+0xda/0x1a0
[  316.583802][T17228]  __x64_sys_read+0x40/0x50
[  316.583881][T17228]  x64_sys_call+0x27c0/0x3000
[  316.583900][T17228]  do_syscall_64+0xd2/0x200
[  316.583923][T17228]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  316.583955][T17228]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  316.584055][T17228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.584085][T17228] RIP: 0033:0x7f8a6c5cd8dc
[  316.584099][T17228] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  316.584138][T17228] RSP: 002b:00007f8a6b02f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  316.584156][T17228] RAX: ffffffffffffffda RBX: 00007f8a6c825fa0 RCX: 00007f8a6c5cd8dc
[  316.584168][T17228] RDX: 000000000000000f RSI: 00007f8a6b02f0a0 RDI: 0000000000000003
[  316.584181][T17228] RBP: 00007f8a6b02f090 R08: 0000000000000000 R09: 0000000000000000
[  316.584206][T17228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  316.584223][T17228] R13: 00007f8a6c826038 R14: 00007f8a6c825fa0 R15: 00007ffe76f55618
[  316.584243][T17228]  </TASK>
[  317.050583][T17238] FAULT_INJECTION: forcing a failure.
[  317.050583][T17238] name failslab, interval 1, probability 0, space 0, times 0
[  317.063313][T17238] CPU: 0 UID: 0 PID: 17238 Comm: syz.5.4982 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  317.063339][T17238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  317.063365][T17238] Call Trace:
[  317.063371][T17238]  <TASK>
[  317.063378][T17238]  __dump_stack+0x1d/0x30
[  317.063398][T17238]  dump_stack_lvl+0xe8/0x140
[  317.063418][T17238]  dump_stack+0x15/0x1b
[  317.063508][T17238]  should_fail_ex+0x265/0x280
[  317.063548][T17238]  should_failslab+0x8c/0xb0
[  317.063613][T17238]  kmem_cache_alloc_noprof+0x50/0x480
[  317.063637][T17238]  ? prepare_creds+0x37/0x4c0
[  317.063739][T17238]  prepare_creds+0x37/0x4c0
[  317.063787][T17238]  copy_creds+0x8f/0x3f0
[  317.063812][T17238]  copy_process+0x658/0x2000
[  317.063843][T17238]  ? kstrtouint+0x76/0xc0
[  317.063898][T17238]  ? __rcu_read_unlock+0x4f/0x70
[  317.063926][T17238]  kernel_clone+0x16c/0x5c0
[  317.064066][T17238]  ? vfs_write+0x7e8/0x960
[  317.064091][T17238]  __x64_sys_clone+0xe6/0x120
[  317.064128][T17238]  x64_sys_call+0x119c/0x3000
[  317.064194][T17238]  do_syscall_64+0xd2/0x200
[  317.064221][T17238]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  317.064248][T17238]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  317.064271][T17238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.064293][T17238] RIP: 0033:0x7f69cd09eec9
[  317.064318][T17238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.064336][T17238] RSP: 002b:00007f69cbafefe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  317.064427][T17238] RAX: ffffffffffffffda RBX: 00007f69cd2f5fa0 RCX: 00007f69cd09eec9
[  317.064439][T17238] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000026801000
[  317.064451][T17238] RBP: 00007f69cbaff090 R08: 0000000000000000 R09: 0000000000000000
[  317.064533][T17238] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  317.064544][T17238] R13: 00007f69cd2f6038 R14: 00007f69cd2f5fa0 R15: 00007ffd007e7488
[  317.064565][T17238]  </TASK>
[  317.681334][T17257] FAULT_INJECTION: forcing a failure.
[  317.681334][T17257] name failslab, interval 1, probability 0, space 0, times 0
[  317.694089][T17257] CPU: 1 UID: 0 PID: 17257 Comm: syz.1.4988 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  317.694116][T17257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  317.694128][T17257] Call Trace:
[  317.694134][T17257]  <TASK>
[  317.694141][T17257]  __dump_stack+0x1d/0x30
[  317.694165][T17257]  dump_stack_lvl+0xe8/0x140
[  317.694185][T17257]  dump_stack+0x15/0x1b
[  317.694204][T17257]  should_fail_ex+0x265/0x280
[  317.694323][T17257]  should_failslab+0x8c/0xb0
[  317.694410][T17257]  __kmalloc_cache_node_noprof+0x54/0x4a0
[  317.694453][T17257]  ? __get_vm_area_node+0x106/0x1d0
[  317.694479][T17257]  __get_vm_area_node+0x106/0x1d0
[  317.694536][T17257]  __vmalloc_node_range_noprof+0x28c/0xed0
[  317.694573][T17257]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  317.694644][T17257]  ? __rcu_read_unlock+0x4f/0x70
[  317.694677][T17257]  ? cred_has_capability+0x210/0x280
[  317.694759][T17257]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  317.694832][T17257]  __vmalloc_noprof+0x83/0xc0
[  317.694867][T17257]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  317.694897][T17257]  bpf_prog_alloc_no_stats+0x47/0x3b0
[  317.694942][T17257]  ? bpf_prog_alloc+0x2a/0x150
[  317.695132][T17257]  bpf_prog_alloc+0x3c/0x150
[  317.695228][T17257]  bpf_prog_load+0x506/0x1100
[  317.695314][T17257]  ? security_bpf+0x2b/0x90
[  317.695359][T17257]  __sys_bpf+0x469/0x7c0
[  317.695428][T17257]  __x64_sys_bpf+0x41/0x50
[  317.695536][T17257]  x64_sys_call+0x2aee/0x3000
[  317.695573][T17257]  do_syscall_64+0xd2/0x200
[  317.695673][T17257]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  317.695697][T17257]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  317.695716][T17257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.695760][T17257] RIP: 0033:0x7ff58512eec9
[  317.695778][T17257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.695798][T17257] RSP: 002b:00007ff583b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  317.695881][T17257] RAX: ffffffffffffffda RBX: 00007ff585385fa0 RCX: 00007ff58512eec9
[  317.695892][T17257] RDX: 0000000000000094 RSI: 00002000000003c0 RDI: 0000000000000005
[  317.695903][T17257] RBP: 00007ff583b97090 R08: 0000000000000000 R09: 0000000000000000
[  317.695915][T17257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.695928][T17257] R13: 00007ff585386038 R14: 00007ff585385fa0 R15: 00007fffe6fb8c18
[  317.695950][T17257]  </TASK>
[  317.695972][T17257] syz.1.4988: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0
[  317.949985][T17257] CPU: 1 UID: 0 PID: 17257 Comm: syz.1.4988 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  317.950009][T17257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  317.950021][T17257] Call Trace:
[  317.950028][T17257]  <TASK>
[  317.950036][T17257]  __dump_stack+0x1d/0x30
[  317.950115][T17257]  dump_stack_lvl+0xe8/0x140
[  317.950138][T17257]  dump_stack+0x15/0x1b
[  317.950165][T17257]  warn_alloc+0x12b/0x1a0
[  317.950208][T17257]  __vmalloc_node_range_noprof+0x2b1/0xed0
[  317.950320][T17257]  ? __rcu_read_unlock+0x4f/0x70
[  317.950375][T17257]  ? cred_has_capability+0x210/0x280
[  317.950410][T17257]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  317.950446][T17257]  __vmalloc_noprof+0x83/0xc0
[  317.950478][T17257]  ? bpf_prog_alloc_no_stats+0x47/0x3b0
[  317.950562][T17257]  bpf_prog_alloc_no_stats+0x47/0x3b0
[  317.950597][T17257]  ? bpf_prog_alloc+0x2a/0x150
[  317.950628][T17257]  bpf_prog_alloc+0x3c/0x150
[  317.950680][T17257]  bpf_prog_load+0x506/0x1100
[  317.950770][T17257]  ? security_bpf+0x2b/0x90
[  317.950793][T17257]  __sys_bpf+0x469/0x7c0
[  317.950875][T17257]  __x64_sys_bpf+0x41/0x50
[  317.950908][T17257]  x64_sys_call+0x2aee/0x3000
[  317.950933][T17257]  do_syscall_64+0xd2/0x200
[  317.950960][T17257]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  317.951098][T17257]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  317.951191][T17257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  317.951215][T17257] RIP: 0033:0x7ff58512eec9
[  317.951231][T17257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  317.951251][T17257] RSP: 002b:00007ff583b97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  317.951293][T17257] RAX: ffffffffffffffda RBX: 00007ff585385fa0 RCX: 00007ff58512eec9
[  317.951304][T17257] RDX: 0000000000000094 RSI: 00002000000003c0 RDI: 0000000000000005
[  317.951332][T17257] RBP: 00007ff583b97090 R08: 0000000000000000 R09: 0000000000000000
[  317.951345][T17257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  317.951359][T17257] R13: 00007ff585386038 R14: 00007ff585385fa0 R15: 00007fffe6fb8c18
[  317.951382][T17257]  </TASK>
[  317.951394][T17257] Mem-Info:
[  318.165622][T17257] active_anon:29307 inactive_anon:48 isolated_anon:0
[  318.165622][T17257]  active_file:22682 inactive_file:2636 isolated_file:0
[  318.165622][T17257]  unevictable:2 dirty:17 writeback:0
[  318.165622][T17257]  slab_reclaimable:3590 slab_unreclaimable:17600
[  318.165622][T17257]  mapped:32480 shmem:23599 pagetables:1264
[  318.165622][T17257]  sec_pagetables:0 bounce:0
[  318.165622][T17257]  kernel_misc_reclaimable:0
[  318.165622][T17257]  free:1815621 free_pcp:32107 free_cma:0
[  318.210795][T17257] Node 0 active_anon:118156kB inactive_anon:192kB active_file:90728kB inactive_file:10544kB unevictable:8kB isolated(anon):0kB isolated(file):0kB mapped:129920kB dirty:68kB writeback:0kB shmem:94396kB kernel_stack:4256kB pagetables:5056kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  318.238322][T17257] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  318.268070][T17257] lowmem_reserve[]: 0 2883 7862 7862
[  318.273703][T17257] Node 0 DMA32 free:2949056kB boost:0kB min:4132kB low:7064kB high:9996kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:3129332kB managed:2952688kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  318.305094][T17257] lowmem_reserve[]: 0 0 4978 4978
[  318.310241][T17257] Node 0 Normal free:4296212kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB free_highatomic:0KB active_anon:118736kB inactive_anon:192kB active_file:90728kB inactive_file:10544kB unevictable:8kB writepending:68kB zspages:0kB present:5242880kB managed:5098240kB mlocked:8kB bounce:0kB free_pcp:124532kB local_pcp:19464kB free_cma:0kB
[  318.343512][T17257] lowmem_reserve[]: 0 0 0 0
[  318.348261][T17257] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  318.361218][T17257] Node 0 DMA32: 2*4kB (M) 3*8kB (M) 4*16kB (M) 1*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 3*1024kB (M) 3*2048kB (M) 717*4096kB (M) = 2949056kB
[  318.369257][T17268] serio: Serial port ptm0
[  318.377346][T17257] Node 0 Normal: 2188*4kB (UE) 1131*8kB (UME) 552*16kB (UM) 325*32kB (UME) 182*64kB (UE) 118*128kB (UME) 78*256kB (UME) 113*512kB (UME) 75*1024kB (UM) 53*2048kB (UM) 969*4096kB (UM) = 4295976kB
[  318.401110][T17257] Node 0 hugepages_total=4 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  318.410614][T17257] 48961 total pagecache pages
[  318.415395][T17257] 92 pages in swap cache
[  318.419633][T17257] Free swap  = 124544kB
[  318.423856][T17257] Total swap = 124996kB
[  318.428013][T17257] 2097051 pages RAM
[  318.431910][T17257] 0 pages HighMem/MovableOnly
[  318.436585][T17257] 80479 pages reserved
[  318.607221][ T2967] IPVS: starting estimator thread 0...
[  318.640900][T17287] netlink: 'syz.1.4999': attribute type 10 has an invalid length.
[  318.704972][T17277] IPVS: using max 2640 ests per chain, 132000 per kthread
[  318.767900][T17289] __nla_validate_parse: 14 callbacks suppressed
[  318.767919][T17289] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5000'.
[  318.811976][T17287] bond0: (slave dummy0): Releasing backup interface
[  318.915005][T17287] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  318.941147][T17287] team0: Failed to send options change via netlink (err -105)
[  318.948726][T17287] team0: Port device dummy0 added
[  319.608961][T17343] syz!: rxe_newlink: already configured on team_slave_0
[  319.927886][   T29] kauditd_printk_skb: 222 callbacks suppressed
[  319.927904][   T29] audit: type=1400 audit(1760620461.225:21327): avc:  denied  { map } for  pid=17349 comm="syz.5.5023" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  319.947223][T17353] vhci_hcd: invalid port number 96
[  319.963516][T17353] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  320.145239][T17359] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5025'.
[  320.154253][T17359] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5025'.
[  320.275157][   T29] audit: type=1400 audit(1760620461.582:21328): avc:  denied  { bind } for  pid=17371 comm="syz.1.5031" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  320.325874][   T29] audit: type=1400 audit(1760620461.634:21329): avc:  denied  { create } for  pid=17371 comm="syz.1.5031" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  320.385151][T17373] loop2: detected capacity change from 0 to 2048
[  320.416207][T17373] EXT4-fs (loop2): inodes count not valid: 16384 vs 32
[  320.640114][   T29] audit: type=1400 audit(1760620461.960:21330): avc:  denied  { ioctl } for  pid=17371 comm="syz.1.5031" path="socket:[54809]" dev="sockfs" ino=54809 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  320.756216][   T29] audit: type=1400 audit(1760620461.981:21331): avc:  denied  { relabelfrom } for  pid=17383 comm="syz.3.5035" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  320.776349][   T29] audit: type=1400 audit(1760620461.981:21332): avc:  denied  { relabelto } for  pid=17383 comm="syz.3.5035" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  320.796207][   T29] audit: type=1400 audit(1760620462.002:21333): avc:  denied  { create } for  pid=17381 comm="syz.5.5033" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  320.816410][   T29] audit: type=1326 audit(1760620462.002:21334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17381 comm="syz.5.5033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  320.840024][   T29] audit: type=1326 audit(1760620462.002:21335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17381 comm="syz.5.5033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  320.863577][   T29] audit: type=1326 audit(1760620462.002:21336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17381 comm="syz.5.5033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  321.000982][T17397] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5038'.
[  321.010094][T17397] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5038'.
[  321.080334][T17401] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5039'.
[  321.100605][T17401] hsr_slave_0: left promiscuous mode
[  321.112656][T17401] hsr_slave_1: left promiscuous mode
[  321.508830][T17418] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5046'.
[  321.617459][T17426] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5050'.
[  321.626893][T17426] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5050'.
[  321.731844][T17434] loop2: detected capacity change from 0 to 1024
[  321.759724][T17434] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  321.866884][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.907552][T17448] FAULT_INJECTION: forcing a failure.
[  321.907552][T17448] name failslab, interval 1, probability 0, space 0, times 0
[  321.920214][T17448] CPU: 0 UID: 0 PID: 17448 Comm: syz.2.5059 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  321.920238][T17448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  321.920250][T17448] Call Trace:
[  321.920255][T17448]  <TASK>
[  321.920261][T17448]  __dump_stack+0x1d/0x30
[  321.920284][T17448]  dump_stack_lvl+0xe8/0x140
[  321.920310][T17448]  dump_stack+0x15/0x1b
[  321.920330][T17448]  should_fail_ex+0x265/0x280
[  321.920440][T17448]  should_failslab+0x8c/0xb0
[  321.920472][T17448]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  321.920505][T17448]  ? __alloc_skb+0x101/0x320
[  321.920533][T17448]  __alloc_skb+0x101/0x320
[  321.920554][T17448]  netlink_alloc_large_skb+0xbf/0xf0
[  321.920583][T17448]  netlink_sendmsg+0x3cf/0x6b0
[  321.920643][T17448]  ? __pfx_netlink_sendmsg+0x10/0x10
[  321.920727][T17448]  __sock_sendmsg+0x145/0x180
[  321.920744][T17448]  ____sys_sendmsg+0x345/0x4e0
[  321.920844][T17448]  ___sys_sendmsg+0x17b/0x1d0
[  321.920887][T17448]  __sys_sendmmsg+0x178/0x300
[  321.920946][T17448]  __x64_sys_sendmmsg+0x57/0x70
[  321.921026][T17448]  x64_sys_call+0x1c4a/0x3000
[  321.921047][T17448]  do_syscall_64+0xd2/0x200
[  321.921122][T17448]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  321.921157][T17448]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  321.921185][T17448]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.921283][T17448] RIP: 0033:0x7ffb8a9feec9
[  321.921300][T17448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.921322][T17448] RSP: 002b:00007ffb89467038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  321.921424][T17448] RAX: ffffffffffffffda RBX: 00007ffb8ac55fa0 RCX: 00007ffb8a9feec9
[  321.921454][T17448] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000007
[  321.921466][T17448] RBP: 00007ffb89467090 R08: 0000000000000000 R09: 0000000000000000
[  321.921477][T17448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.921489][T17448] R13: 00007ffb8ac56038 R14: 00007ffb8ac55fa0 R15: 00007ffcdee10818
[  321.921558][T17448]  </TASK>
[  322.199929][T17450] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5060'.
[  322.792204][T17487] siw: device registration error -23
[  323.186451][T17494] syzkaller1: entered promiscuous mode
[  323.191980][T17494] syzkaller1: entered allmulticast mode
[  323.354114][T17511] loop2: detected capacity change from 0 to 1024
[  323.377807][T17511] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  323.577485][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.702700][T17531] FAULT_INJECTION: forcing a failure.
[  323.702700][T17531] name failslab, interval 1, probability 0, space 0, times 0
[  323.715476][T17531] CPU: 1 UID: 0 PID: 17531 Comm: wÞ£ÿ Not tainted syzkaller #0 PREEMPT(voluntary) 
[  323.715516][T17531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  323.715531][T17531] Call Trace:
[  323.715539][T17531]  <TASK>
[  323.715555][T17531]  __dump_stack+0x1d/0x30
[  323.715579][T17531]  dump_stack_lvl+0xe8/0x140
[  323.715601][T17531]  dump_stack+0x15/0x1b
[  323.715619][T17531]  should_fail_ex+0x265/0x280
[  323.715697][T17531]  should_failslab+0x8c/0xb0
[  323.715732][T17531]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  323.715765][T17531]  ? __alloc_skb+0x101/0x320
[  323.715878][T17531]  __alloc_skb+0x101/0x320
[  323.715908][T17531]  netlink_alloc_large_skb+0xbf/0xf0
[  323.715940][T17531]  netlink_sendmsg+0x3cf/0x6b0
[  323.715994][T17531]  ? __pfx_netlink_sendmsg+0x10/0x10
[  323.716093][T17531]  __sock_sendmsg+0x145/0x180
[  323.716118][T17531]  ____sys_sendmsg+0x31e/0x4e0
[  323.716157][T17531]  ___sys_sendmsg+0x17b/0x1d0
[  323.716268][T17531]  __x64_sys_sendmsg+0xd4/0x160
[  323.716308][T17531]  x64_sys_call+0x191e/0x3000
[  323.716410][T17531]  do_syscall_64+0xd2/0x200
[  323.716439][T17531]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  323.716554][T17531]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  323.716580][T17531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  323.716604][T17531] RIP: 0033:0x7ffb8a9feec9
[  323.716622][T17531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  323.716649][T17531] RSP: 002b:00007ffb89467038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  323.716670][T17531] RAX: ffffffffffffffda RBX: 00007ffb8ac55fa0 RCX: 00007ffb8a9feec9
[  323.716684][T17531] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000004
[  323.716698][T17531] RBP: 00007ffb89467090 R08: 0000000000000000 R09: 0000000000000000
[  323.716750][T17531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  323.716858][T17531] R13: 00007ffb8ac56038 R14: 00007ffb8ac55fa0 R15: 00007ffcdee10818
[  323.716892][T17531]  </TASK>
[  324.326698][T17550] FAULT_INJECTION: forcing a failure.
[  324.326698][T17550] name failslab, interval 1, probability 0, space 0, times 0
[  324.339506][T17550] CPU: 1 UID: 0 PID: 17550 Comm: syz.1.5092 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  324.339530][T17550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  324.339541][T17550] Call Trace:
[  324.339547][T17550]  <TASK>
[  324.339558][T17550]  __dump_stack+0x1d/0x30
[  324.339632][T17550]  dump_stack_lvl+0xe8/0x140
[  324.339709][T17550]  dump_stack+0x15/0x1b
[  324.339725][T17550]  should_fail_ex+0x265/0x280
[  324.339777][T17550]  should_failslab+0x8c/0xb0
[  324.339838][T17550]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  324.339865][T17550]  ? __alloc_skb+0x101/0x320
[  324.339887][T17550]  __alloc_skb+0x101/0x320
[  324.339919][T17550]  netlink_alloc_large_skb+0xbf/0xf0
[  324.339947][T17550]  netlink_sendmsg+0x3cf/0x6b0
[  324.339976][T17550]  ? __pfx_netlink_sendmsg+0x10/0x10
[  324.340096][T17550]  __sock_sendmsg+0x145/0x180
[  324.340120][T17550]  ____sys_sendmsg+0x31e/0x4e0
[  324.340194][T17550]  ___sys_sendmsg+0x17b/0x1d0
[  324.340244][T17550]  __x64_sys_sendmsg+0xd4/0x160
[  324.340320][T17550]  x64_sys_call+0x191e/0x3000
[  324.340341][T17550]  do_syscall_64+0xd2/0x200
[  324.340369][T17550]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  324.340431][T17550]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  324.340451][T17550]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.340473][T17550] RIP: 0033:0x7ff58512eec9
[  324.340498][T17550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  324.340593][T17550] RSP: 002b:00007ff583b97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  324.340615][T17550] RAX: ffffffffffffffda RBX: 00007ff585385fa0 RCX: 00007ff58512eec9
[  324.340630][T17550] RDX: 0000000000000044 RSI: 00002000000007c0 RDI: 0000000000000005
[  324.340644][T17550] RBP: 00007ff583b97090 R08: 0000000000000000 R09: 0000000000000000
[  324.340659][T17550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.340673][T17550] R13: 00007ff585386038 R14: 00007ff585385fa0 R15: 00007fffe6fb8c18
[  324.340746][T17550]  </TASK>
[  325.356837][T17526] syz.5.5086 (17526) used greatest stack depth: 7240 bytes left
[  325.475264][   T29] kauditd_printk_skb: 107 callbacks suppressed
[  325.475280][   T29] audit: type=1326 audit(1760620467.039:21444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17574 comm="syz.3.5103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a6c5ceec9 code=0x7ffc0000
[  325.565704][   T29] audit: type=1326 audit(1760620467.071:21445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17574 comm="syz.3.5103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7f8a6c5ceec9 code=0x7ffc0000
[  325.589423][   T29] audit: type=1326 audit(1760620467.071:21446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17574 comm="syz.3.5103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a6c5ceec9 code=0x7ffc0000
[  325.613177][   T29] audit: type=1326 audit(1760620467.071:21447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17574 comm="syz.3.5103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a6c5ceec9 code=0x7ffc0000
[  325.636921][   T29] audit: type=1326 audit(1760620467.081:21448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17574 comm="syz.3.5103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f8a6c5ceec9 code=0x7ffc0000
[  325.660628][   T29] audit: type=1400 audit(1760620467.081:21449): avc:  denied  { mount } for  pid=17574 comm="syz.3.5103" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  325.683043][   T29] audit: type=1326 audit(1760620467.081:21450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17574 comm="syz.3.5103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a6c5ceec9 code=0x7ffc0000
[  325.706694][   T29] audit: type=1326 audit(1760620467.081:21451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17574 comm="syz.3.5103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a6c5ceec9 code=0x7ffc0000
[  325.730303][   T29] audit: type=1326 audit(1760620467.081:21452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17574 comm="syz.3.5103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f8a6c5ceec9 code=0x7ffc0000
[  325.753918][   T29] audit: type=1400 audit(1760620467.081:21453): avc:  denied  { write } for  pid=17577 comm="syz.1.5104" name="ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  325.817060][T17583] loop2: detected capacity change from 0 to 128
[  325.880755][T17586] dvmrp4: entered allmulticast mode
[  325.979807][T17596] netlink: 'syz.2.5110': attribute type 29 has an invalid length.
[  326.002083][T17598] __nla_validate_parse: 1 callbacks suppressed
[  326.002101][T17598] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5111'.
[  326.017312][T17598] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5111'.
[  326.452504][T17622] loop2: detected capacity change from 0 to 128
[  326.489225][T17622] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  326.519670][T17622] ext4 filesystem being mounted at /393/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  326.613059][T17631] SELinux: failed to load policy
[  326.705263][T17634] xt_l2tp: missing protocol rule (udp|l2tpip)
[  327.161296][T11606] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  327.278214][T17668] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5134'.
[  327.287260][T17668] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5134'.
[  327.305862][T17668] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5134'.
[  327.315062][T17668] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5134'.
[  327.338846][T17668] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5134'.
[  327.347817][T17668] netlink: 60 bytes leftover after parsing attributes in process `syz.0.5134'.
[  327.354388][T17676] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5135'.
[  327.366795][T17669] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5135'.
[  327.387157][T17657] loop2: detected capacity change from 0 to 164
[  327.396293][T17657] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  327.659181][T17708] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  327.674267][T17708] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  327.685649][T17708] bond0 (unregistering): Released all slaves
[  327.926026][T17743] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  327.951710][T17743] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  327.970442][T17743] bond0 (unregistering): Released all slaves
[  328.005744][ T3396] syz0: Port: 1 Link DOWN
[  328.013091][T17741] siw: device registration error -23
[  328.798614][T17796] siw: device registration error -23
[  328.820415][T17795] loop2: detected capacity change from 0 to 128
[  328.849482][T17795] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  328.883847][T17795] ext4 filesystem being mounted at /397/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.956871][T17795] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  329.015191][T17809] loop2: detected capacity change from 0 to 1024
[  329.040832][T17809] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  329.154194][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.097054][T17856] siw: device registration error -23
[  330.172624][T17866] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  330.268246][T17873] loop2: detected capacity change from 0 to 1024
[  330.286269][T17874] siw: device registration error -23
[  330.320249][T17873] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  330.346611][T17879] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  330.354266][   T29] kauditd_printk_skb: 298 callbacks suppressed
[  330.354355][   T29] audit: type=1326 audit(1760620472.161:21752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17878 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  330.387615][   T29] audit: type=1326 audit(1760620472.193:21753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17878 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  330.410701][   T29] audit: type=1326 audit(1760620472.193:21754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17878 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  330.433918][   T29] audit: type=1326 audit(1760620472.193:21755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17878 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  330.492213][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.515645][   T29] audit: type=1326 audit(1760620472.329:21756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17887 comm="syz.5.5215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  330.539459][   T29] audit: type=1326 audit(1760620472.329:21757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17887 comm="syz.5.5215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  330.565195][   T29] audit: type=1326 audit(1760620472.381:21758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17887 comm="syz.5.5215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  330.588920][   T29] audit: type=1326 audit(1760620472.381:21759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17887 comm="syz.5.5215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  330.615856][   T29] audit: type=1326 audit(1760620472.434:21760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17887 comm="syz.5.5215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  330.639435][   T29] audit: type=1326 audit(1760620472.434:21761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17887 comm="syz.5.5215" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69cd09eec9 code=0x7ffc0000
[  330.670685][T17888] FAULT_INJECTION: forcing a failure.
[  330.670685][T17888] name failslab, interval 1, probability 0, space 0, times 0
[  330.683409][T17888] CPU: 0 UID: 0 PID: 17888 Comm: syz.5.5215 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  330.683434][T17888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  330.683445][T17888] Call Trace:
[  330.683450][T17888]  <TASK>
[  330.683461][T17888]  __dump_stack+0x1d/0x30
[  330.683480][T17888]  dump_stack_lvl+0xe8/0x140
[  330.683502][T17888]  dump_stack+0x15/0x1b
[  330.683592][T17888]  should_fail_ex+0x265/0x280
[  330.683624][T17888]  should_failslab+0x8c/0xb0
[  330.683655][T17888]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  330.683752][T17888]  ? __alloc_skb+0x101/0x320
[  330.683775][T17888]  __alloc_skb+0x101/0x320
[  330.683794][T17888]  ? audit_log_start+0x342/0x720
[  330.683815][T17888]  audit_log_start+0x3a0/0x720
[  330.683845][T17888]  ? kstrtouint+0x76/0xc0
[  330.683911][T17888]  audit_seccomp+0x48/0x100
[  330.683936][T17888]  ? __seccomp_filter+0x82d/0x1250
[  330.683965][T17888]  __seccomp_filter+0x83e/0x1250
[  330.684038][T17888]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  330.684142][T17888]  ? vfs_write+0x7e8/0x960
[  330.684163][T17888]  ? __rcu_read_unlock+0x4f/0x70
[  330.684184][T17888]  ? __fget_files+0x184/0x1c0
[  330.684244][T17888]  __secure_computing+0x82/0x150
[  330.684274][T17888]  syscall_trace_enter+0xcf/0x1e0
[  330.684306][T17888]  do_syscall_64+0xac/0x200
[  330.684328][T17888]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  330.684388][T17888]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  330.684449][T17888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.684475][T17888] RIP: 0033:0x7f69cd09eec9
[  330.684492][T17888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.684513][T17888] RSP: 002b:00007f69cbaff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000083
[  330.684532][T17888] RAX: ffffffffffffffda RBX: 00007f69cd2f5fa0 RCX: 00007f69cd09eec9
[  330.684543][T17888] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  330.684554][T17888] RBP: 00007f69cbaff090 R08: 0000000000000000 R09: 0000000000000000
[  330.684577][T17888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.684591][T17888] R13: 00007f69cd2f6038 R14: 00007f69cd2f5fa0 R15: 00007ffd007e7488
[  330.684613][T17888]  </TASK>
[  330.967358][T17902] siw: device registration error -23
[  331.011417][T17906] siw: device registration error -23
[  331.068196][T17909] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  331.074736][T17909] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  331.082406][T17909] vhci_hcd vhci_hcd.0: Device attached
[  331.118528][T17910] vhci_hcd: connection closed
[  331.118720][ T9560] vhci_hcd: stop threads
[  331.127852][ T9560] vhci_hcd: release socket
[  331.132333][ T9560] vhci_hcd: disconnect device
[  331.179097][T17915] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  331.225759][T17921] __nla_validate_parse: 32 callbacks suppressed
[  331.225776][T17921] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5224'.
[  331.293164][T17928] siw: device registration error -23
[  331.437541][T17931] cgroup: Unknown subsys name 'obj_type'
[  331.809896][T17954] syz!: rxe_newlink: already configured on team_slave_0
[  331.855749][T17957] syz!: rxe_newlink: already configured on team_slave_0
[  331.997914][T17968] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  332.007724][T17968] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.076991][T17968] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  332.086775][T17968] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.134476][T17968] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  332.144315][T17968] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.191563][T17968] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  332.201368][T17968] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.222748][T17973] siw: device registration error -23
[  332.274037][ T9560] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  332.282344][ T9560] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  332.293554][ T9546] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  332.301885][ T9546] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  332.312905][T17975] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  332.314260][ T9574] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  332.319448][T17975] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  332.327653][ T9574] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  332.335279][T17975] vhci_hcd vhci_hcd.0: Device attached
[  332.347890][ T9574] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  332.357000][ T9574] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  332.368385][T17976] vhci_hcd: connection closed
[  332.368552][ T9560] vhci_hcd: stop threads
[  332.377588][ T9560] vhci_hcd: release socket
[  332.382029][ T9560] vhci_hcd: disconnect device
[  333.162985][T18001] program syz.2.5250 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  333.246512][T18010] siw: device registration error -23
[  333.350922][T18016] netlink: 76 bytes leftover after parsing attributes in process `syz.0.5257'.
[  333.404213][T18020] 9pnet_fd: Insufficient options for proto=fd
[  333.583262][T18027] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  333.589794][T18027] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  333.597456][T18027] vhci_hcd vhci_hcd.0: Device attached
[  333.632022][T18033] vhci_hcd: connection closed
[  333.632267][ T9546] vhci_hcd: stop threads
[  333.641328][ T9546] vhci_hcd: release socket
[  333.645772][ T9546] vhci_hcd: disconnect device
[  333.883881][T18045] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  333.934380][T18050] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5269'.
[  333.970116][T18052] netlink: 14 bytes leftover after parsing attributes in process `syz.3.5270'.
[  334.090492][T18056] SELinux: ebitmap: truncated map
[  334.125814][T18056] SELinux: failed to load policy
[  334.196199][T18076] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5276'.
[  334.215074][T18074] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  334.222269][T18066] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5276'.
[  334.248670][T18066] loop2: detected capacity change from 0 to 164
[  334.322030][T18091] FAULT_INJECTION: forcing a failure.
[  334.322030][T18091] name failslab, interval 1, probability 0, space 0, times 0
[  334.335008][T18091] CPU: 0 UID: 0 PID: 18091 Comm: syz.2.5286 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  334.335036][T18091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  334.335053][T18091] Call Trace:
[  334.335060][T18091]  <TASK>
[  334.335068][T18091]  __dump_stack+0x1d/0x30
[  334.335124][T18091]  dump_stack_lvl+0xe8/0x140
[  334.335147][T18091]  dump_stack+0x15/0x1b
[  334.335167][T18091]  should_fail_ex+0x265/0x280
[  334.335312][T18091]  should_failslab+0x8c/0xb0
[  334.335337][T18091]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[  334.335363][T18091]  ? __alloc_skb+0x101/0x320
[  334.335419][T18091]  __alloc_skb+0x101/0x320
[  334.335448][T18091]  llc_establish_connection+0x184/0x2b0
[  334.335570][T18091]  llc_ui_connect+0x22c/0x6b0
[  334.335653][T18091]  ? selinux_socket_connect+0x57/0x70
[  334.335681][T18091]  ? __pfx_llc_ui_connect+0x10/0x10
[  334.335826][T18091]  __sys_connect+0x1f2/0x2b0
[  334.335863][T18091]  __x64_sys_connect+0x3f/0x50
[  334.335892][T18091]  x64_sys_call+0x2c0c/0x3000
[  334.335918][T18091]  do_syscall_64+0xd2/0x200
[  334.336005][T18091]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  334.336061][T18091]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  334.336086][T18091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.336110][T18091] RIP: 0033:0x7ffb8a9feec9
[  334.336127][T18091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.336220][T18091] RSP: 002b:00007ffb89467038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  334.336237][T18091] RAX: ffffffffffffffda RBX: 00007ffb8ac55fa0 RCX: 00007ffb8a9feec9
[  334.336255][T18091] RDX: 0000000000000010 RSI: 0000200000000240 RDI: 0000000000000006
[  334.336266][T18091] RBP: 00007ffb89467090 R08: 0000000000000000 R09: 0000000000000000
[  334.336320][T18091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.336336][T18091] R13: 00007ffb8ac56038 R14: 00007ffb8ac55fa0 R15: 00007ffcdee10818
[  334.336361][T18091]  </TASK>
[  334.635686][T18101] pimreg: entered allmulticast mode
[  334.649257][T18101] pimreg: left allmulticast mode
[  334.666672][T18103] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  334.676528][T18103] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  334.755293][T18103] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  334.765190][T18103] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  334.786657][T18113] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  334.803587][T18115] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5295'.
[  334.812619][T18115] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5295'.
[  334.851810][T18103] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  334.861728][T18103] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  334.943241][T18103] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  334.953146][T18103] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.052137][T18128] netlink: 'syz.0.5301': attribute type 1 has an invalid length.
[  335.059956][T18128] netlink: 5452 bytes leftover after parsing attributes in process `syz.0.5301'.
[  335.110316][T18131] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5302'.
[  335.275808][   T29] kauditd_printk_skb: 796 callbacks suppressed
[  335.275900][   T29] audit: type=1326 audit(1760620477.325:22556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18143 comm="syz.1.5307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  335.344026][   T29] audit: type=1326 audit(1760620477.356:22557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18143 comm="syz.1.5307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  335.367720][   T29] audit: type=1326 audit(1760620477.356:22558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18143 comm="syz.1.5307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  335.391382][   T29] audit: type=1326 audit(1760620477.356:22559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18143 comm="syz.1.5307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  335.415032][   T29] audit: type=1326 audit(1760620477.367:22560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18143 comm="syz.1.5307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  335.438560][   T29] audit: type=1400 audit(1760620477.367:22561): avc:  denied  { write } for  pid=18146 comm="syz.3.5308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  335.459187][   T29] audit: type=1400 audit(1760620477.367:22562): avc:  denied  { read } for  pid=18146 comm="syz.3.5308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  335.479667][   T29] audit: type=1326 audit(1760620477.377:22563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18143 comm="syz.1.5307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  335.503286][   T29] audit: type=1326 audit(1760620477.377:22564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18143 comm="syz.1.5307" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff58512eec9 code=0x7ffc0000
[  335.526956][   T29] audit: type=1400 audit(1760620477.377:22565): avc:  denied  { map_create } for  pid=18146 comm="syz.3.5308" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  335.638050][T18158] FAULT_INJECTION: forcing a failure.
[  335.638050][T18158] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.651180][T18158] CPU: 0 UID: 0 PID: 18158 Comm: syz.3.5313 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  335.651211][T18158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  335.651303][T18158] Call Trace:
[  335.651309][T18158]  <TASK>
[  335.651316][T18158]  __dump_stack+0x1d/0x30
[  335.651341][T18158]  dump_stack_lvl+0xe8/0x140
[  335.651399][T18158]  dump_stack+0x15/0x1b
[  335.651417][T18158]  should_fail_ex+0x265/0x280
[  335.651451][T18158]  should_fail+0xb/0x20
[  335.651482][T18158]  should_fail_usercopy+0x1a/0x20
[  335.651499][T18158]  _copy_from_iter+0xd2/0xe80
[  335.651548][T18158]  ? _copy_from_iter+0x170/0xe80
[  335.651576][T18158]  copy_page_from_iter+0x178/0x2a0
[  335.651631][T18158]  skb_copy_datagram_from_iter+0x232/0x490
[  335.651662][T18158]  unix_stream_sendmsg+0x62c/0xb90
[  335.651724][T18158]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[  335.651778][T18158]  __sock_sendmsg+0x145/0x180
[  335.651802][T18158]  ____sys_sendmsg+0x31e/0x4e0
[  335.651898][T18158]  ___sys_sendmsg+0x17b/0x1d0
[  335.651949][T18158]  __x64_sys_sendmsg+0xd4/0x160
[  335.652059][T18158]  x64_sys_call+0x191e/0x3000
[  335.652088][T18158]  do_syscall_64+0xd2/0x200
[  335.652115][T18158]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  335.652220][T18158]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  335.652310][T18158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.652373][T18158] RIP: 0033:0x7f8a6c5ceec9
[  335.652392][T18158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.652418][T18158] RSP: 002b:00007f8a6b02f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  335.652481][T18158] RAX: ffffffffffffffda RBX: 00007f8a6c825fa0 RCX: 00007f8a6c5ceec9
[  335.652494][T18158] RDX: 0000000000000003 RSI: 0000200000000980 RDI: 0000000000000003
[  335.652511][T18158] RBP: 00007f8a6b02f090 R08: 0000000000000000 R09: 0000000000000000
[  335.652534][T18158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.652551][T18158] R13: 00007f8a6c826038 R14: 00007f8a6c825fa0 R15: 00007ffe76f55618
[  335.652578][T18158]  </TASK>
[  335.868231][T18162] tmpfs: Bad value for 'mpol'
[  335.877712][T18156] loop2: detected capacity change from 0 to 164
[  337.205106][ T9574] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  337.213379][ T9574] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  337.266190][ T9574] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  337.274601][ T9574] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  337.346000][ T9574] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  337.354319][ T9574] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  337.410246][T18215] __nla_validate_parse: 4 callbacks suppressed
[  337.410264][T18215] netlink: 14 bytes leftover after parsing attributes in process `syz.2.5335'.
[  337.430730][ T9574] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  337.438920][ T9574] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  337.480204][T18215] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  337.505528][T18215] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  337.516980][T18215] bond0 (unregistering): Released all slaves
[  337.609785][T18219] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  337.616470][T18219] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  337.624185][T18219] vhci_hcd vhci_hcd.0: Device attached
[  337.638033][T18220] vhci_hcd: connection closed
[  337.638194][ T9574] vhci_hcd: stop threads
[  337.647368][ T9574] vhci_hcd: release socket
[  337.651893][ T9574] vhci_hcd: disconnect device
[  337.665595][T18223] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5338'.
[  337.674643][T18223] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5338'.
[  337.785443][T18234] netlink: 252 bytes leftover after parsing attributes in process `syz.2.5342'.
[  338.024235][T18255] netlink: 14 bytes leftover after parsing attributes in process `syz.1.5350'.
[  338.060075][T18257] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5347'.
[  338.334414][T18275] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5356'.
[  338.343541][T18275] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5356'.
[  338.446981][T18278] netlink: 252 bytes leftover after parsing attributes in process `syz.1.5357'.
[  338.600556][T18290] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5358'.
[  338.611652][T18258] chnl_net:caif_netlink_parms(): no params data found
[  338.706053][T18258] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.713191][T18258] bridge0: port 1(bridge_slave_0) entered disabled state
[  338.738453][T18258] bridge_slave_0: entered allmulticast mode
[  338.754785][T18258] bridge_slave_0: entered promiscuous mode
[  338.772493][T18300] bond0: (slave dummy0): Releasing backup interface
[  338.799041][T18300] bond0: (slave bond_slave_0): Releasing backup interface
[  338.821750][T18300] bond0: (slave bond_slave_1): Releasing backup interface
[  338.861540][T18300] team0: Port device team_slave_0 removed
[  338.896775][T18300] team0: Port device team_slave_1 removed
[  338.916414][T18300] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  338.923848][T18300] batman_adv: batadv0: Removing interface: batadv_slave_0
[  338.972109][T18300] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  338.979724][T18300] batman_adv: batadv0: Removing interface: batadv_slave_1
[  339.011828][T18300] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  339.028705][T18258] bridge0: port 2(bridge_slave_1) entered blocking state
[  339.035999][T18258] bridge0: port 2(bridge_slave_1) entered disabled state
[  339.062226][T18258] bridge_slave_1: entered allmulticast mode
[  339.079713][T18258] bridge_slave_1: entered promiscuous mode
[  339.170627][T18258] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  339.191060][T18258] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  339.242538][T18258] team0: Port device team_slave_0 added
[  339.259564][T18258] team0: Port device team_slave_1 added
[  339.321493][T18258] batman_adv: batadv0: Adding interface: batadv_slave_0
[  339.328517][T18258] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  339.337398][T18318] rdma_rxe: rxe_newlink: failed to add team_slave_0
[  339.354571][T18258] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  339.374090][T18258] batman_adv: batadv0: Adding interface: batadv_slave_1
[  339.381140][T18258] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  339.407080][T18258] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  339.465322][T18258] hsr_slave_0: entered promiscuous mode
[  339.472737][T18258] hsr_slave_1: entered promiscuous mode
[  339.478752][T18258] debugfs: 'hsr0' already exists in 'hsr'
[  339.484509][T18258] Cannot create hsr debugfs directory
[  339.592290][T18258] netdevsim netdevsim5 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  339.602251][T18258] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.643531][T18258] netdevsim netdevsim5 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  339.653378][T18258] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.701319][T18258] netdevsim netdevsim5 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  339.711374][T18258] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.747622][T18258] netdevsim netdevsim5 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  339.757422][T18258] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.034536][T18356] loop2: detected capacity change from 0 to 164
[  340.041770][T18356] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  340.404291][   T29] kauditd_printk_skb: 201 callbacks suppressed
[  340.404308][   T29] audit: type=1326 audit(1760620482.709:22767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.435041][   T29] audit: type=1326 audit(1760620482.709:22768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.458887][   T29] audit: type=1326 audit(1760620482.709:22769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.482566][   T29] audit: type=1326 audit(1760620482.709:22770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.506320][   T29] audit: type=1326 audit(1760620482.709:22771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.529873][   T29] audit: type=1326 audit(1760620482.709:22772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.553559][   T29] audit: type=1326 audit(1760620482.709:22773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.577169][   T29] audit: type=1326 audit(1760620482.709:22774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.600736][   T29] audit: type=1326 audit(1760620482.709:22775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.624323][   T29] audit: type=1326 audit(1760620482.709:22776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18366 comm="syz.0.5388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9377c0eec9 code=0x7ffc0000
[  340.791664][T18258] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  340.801377][T18258] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  340.817647][T18258] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  340.828679][T18258] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  340.872412][T18258] 8021q: adding VLAN 0 to HW filter on device bond0
[  340.884508][T18258] 8021q: adding VLAN 0 to HW filter on device team0
[  340.894540][  T995] bridge0: port 1(bridge_slave_0) entered blocking state
[  340.901622][  T995] bridge0: port 1(bridge_slave_0) entered forwarding state
[  340.915216][  T995] bridge0: port 2(bridge_slave_1) entered blocking state
[  340.922300][  T995] bridge0: port 2(bridge_slave_1) entered forwarding state
[  340.945558][T18258] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  340.956006][T18258] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  340.978365][ T9517] batadv1: left allmulticast mode
[  340.983476][ T9517] batadv1: left promiscuous mode
[  340.988567][ T9517] bridge0: port 3(batadv1) entered disabled state
[  341.003362][ T9517] bridge_slave_1: left allmulticast mode
[  341.009110][ T9517] bridge_slave_1: left promiscuous mode
[  341.014853][ T9517] bridge0: port 2(bridge_slave_1) entered disabled state
[  341.022972][ T9517] bridge_slave_0: left allmulticast mode
[  341.028639][ T9517] bridge_slave_0: left promiscuous mode
[  341.034563][ T9517] bridge0: port 1(bridge_slave_0) entered disabled state
[  341.044601][ T9517] batman_adv: batadv0: Interface deactivated: vxlan0
[  341.051330][ T9517] batadv0: mtu less than device minimum
[  341.057258][ T9517] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  341.067649][ T9517] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  341.078182][ T9517] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  341.088717][ T9517] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  341.099185][ T9517] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  341.109739][ T9517] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  341.120325][ T9517] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  341.130825][ T9517] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0)
[  341.186981][ T9517] batman_adv: batadv0: Removing interface: vxlan0
[  341.442574][T18258] 8021q: adding VLAN 0 to HW filter on device batadv0
[  341.456155][ T9517] tipc: Disabling bearer <udp:s>
[  341.461212][ T9517] tipc: Left network mode
[  341.475587][T18410] loop2: detected capacity change from 0 to 512
[  341.489944][T18410] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  341.500916][T18410] EXT4-fs (loop2): orphan cleanup on readonly fs
[  341.507467][T18410] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:517: comm syz.2.5400: Block bitmap for bg 0 marked uninitialized
[  341.522677][T18410] EXT4-fs (loop2): Remounting filesystem read-only
[  341.529281][T18410] EXT4-fs (loop2): 1 orphan inode deleted
[  341.535421][T18410] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  341.547578][ T9517] hsr_slave_0: left promiscuous mode
[  341.553391][ T9517] hsr_slave_1: left promiscuous mode
[  341.560564][ T9517] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  341.575604][ T9517] batman_adv: batadv0: Removing interface: batadv_slave_0
[  341.583282][ T9517] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  341.597239][ T9517] batman_adv: batadv0: Removing interface: batadv_slave_1
[  341.604958][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.605096][ T9517] batman_adv: batadv0: Interface deactivated: dummy0
[  341.620688][ T9517] batman_adv: batadv0: Removing interface: dummy0
[  341.630209][ T9517] veth1_macvtap: left promiscuous mode
[  341.635707][ T9517] veth0_macvtap: left promiscuous mode
[  341.641216][ T9517] veth1_vlan: left promiscuous mode
[  341.646512][ T9517] veth0_vlan: left promiscuous mode
[  341.733164][ T9517] team0 (unregistering): Port device team_slave_1 removed
[  341.743176][ T9517] team0 (unregistering): Port device team_slave_0 removed
[  341.895136][T18258] veth0_vlan: entered promiscuous mode
[  341.903791][T18258] veth1_vlan: entered promiscuous mode
[  341.922380][T18258] veth0_macvtap: entered promiscuous mode
[  341.936188][T18258] veth1_macvtap: entered promiscuous mode
[  341.948941][T18258] batman_adv: batadv0: Interface activated: batadv_slave_0
[  341.959882][T18258] batman_adv: batadv0: Interface activated: batadv_slave_1
[  341.975658][ T9574] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  341.993633][ T9574] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  342.004564][ T9531] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  342.014163][ T9531] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  342.032782][T18435] siw: device registration error -23
[  342.084524][ T9517] IPVS: stop unused estimator thread 0...
[  342.195332][T18449] __nla_validate_parse: 2 callbacks suppressed
[  342.195349][T18449] netlink: 252 bytes leftover after parsing attributes in process `syz.3.5409'.
[  342.287419][T18453] netlink: 'syz.5.5411': attribute type 3 has an invalid length.
[  342.295264][T18453] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5411'.
[  342.791436][T18500] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5428'.
[  342.800488][T18500] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5428'.
[  342.812599][T18502] ip6gre1: entered promiscuous mode
[  342.818086][T18500] loop2: detected capacity change from 0 to 128
[  342.826254][T18500] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  342.838671][T18500] ext4 filesystem being mounted at /460/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  342.863704][T18500] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  342.916819][T18508] loop2: detected capacity change from 0 to 2048
[  342.921119][T18506] cgroup: Unknown subsys name 'obj_type'
[  342.940237][T18508] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  342.971032][T18515] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(7)
[  342.977725][T18515] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  342.985448][T18515] vhci_hcd vhci_hcd.0: Device attached
[  342.992135][T18516] vhci_hcd: connection closed
[  342.992395][ T9531] vhci_hcd: stop threads
[  343.001602][ T9531] vhci_hcd: release socket
[  343.006191][ T9531] vhci_hcd: disconnect device
[  343.429872][T18536] ieee802154 phy1 wpan1: encryption failed: -22
[  343.454553][T18540] netlink: 252 bytes leftover after parsing attributes in process `syz.3.5441'.
[  343.544201][T18551] cgroup: Unknown subsys name 'obj_type'
[  343.554297][T18553] siw: device registration error -23
[  343.586742][T18554] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.5444'.
[  343.874135][T18508] syz.2.5430 (18508) used greatest stack depth: 6376 bytes left
[  343.882469][T11606] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.910826][T18573] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  343.917369][T18573] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  343.925168][T18573] vhci_hcd vhci_hcd.0: Device attached
[  343.931691][T18574] vhci_hcd: connection closed
[  343.931879][ T9531] vhci_hcd: stop threads
[  343.941041][ T9531] vhci_hcd: release socket
[  343.945449][ T9531] vhci_hcd: disconnect device
[  344.180142][T18586] geneve0: left allmulticast mode
[  344.188824][T18586] bridge2: left allmulticast mode
[  344.370722][T18597] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5462'.
[  344.379889][T18597] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5462'.
[  344.530732][T18616] siw: device registration error -23
[  344.559400][T18618] cgroup: Unknown subsys name 'obj_type'
[  345.311600][T18629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5474'.
[  345.338277][T18631] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5475'.
[  345.376054][T18633] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  345.382612][T18633] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  345.390301][T18633] vhci_hcd vhci_hcd.0: Device attached
[  345.397355][T18636] vhci_hcd: connection closed
[  345.397611][ T9531] vhci_hcd: stop threads
[  345.406693][ T9531] vhci_hcd: release socket
[  345.411118][ T9531] vhci_hcd: disconnect device
[  345.438941][T18644] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  345.445554][T18644] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  345.453184][T18644] vhci_hcd vhci_hcd.0: Device attached
[  345.460285][T18645] vhci_hcd: connection closed
[  345.460593][  T995] vhci_hcd: stop threads
[  345.469600][  T995] vhci_hcd: release socket
[  345.474164][  T995] vhci_hcd: disconnect device
[  345.739026][   T29] kauditd_printk_skb: 229 callbacks suppressed
[  345.739041][   T29] audit: type=1400 audit(1760620488.303:23006): avc:  denied  { create } for  pid=18657 comm="syz.0.5484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  345.775198][   T29] audit: type=1400 audit(1760620488.345:23007): avc:  denied  { ioctl } for  pid=18657 comm="syz.0.5484" path="socket:[60489]" dev="sockfs" ino=60489 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  345.803878][   T29] audit: type=1400 audit(1760620488.366:23008): avc:  denied  { bind } for  pid=18657 comm="syz.0.5484" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  345.888012][T18664] cgroup: Unknown subsys name 'obj_type'
[  345.970381][   T29] audit: type=1326 audit(1760620488.555:23009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18668 comm="syz.5.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8564aaeec9 code=0x7ffc0000
[  346.009435][   T29] audit: type=1326 audit(1760620488.576:23010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18668 comm="syz.5.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f8564aaeec9 code=0x7ffc0000
[  346.033116][   T29] audit: type=1326 audit(1760620488.576:23011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18668 comm="syz.5.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8564aaeec9 code=0x7ffc0000
[  346.056843][   T29] audit: type=1326 audit(1760620488.576:23012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18668 comm="syz.5.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8564aaeec9 code=0x7ffc0000
[  346.080653][   T29] audit: type=1326 audit(1760620488.576:23013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18668 comm="syz.5.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8564aaeec9 code=0x7ffc0000
[  346.104196][   T29] audit: type=1326 audit(1760620488.576:23014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18668 comm="syz.5.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8564aaeec9 code=0x7ffc0000
[  346.128244][   T29] audit: type=1326 audit(1760620488.576:23015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18668 comm="syz.5.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8564aaeec9 code=0x7ffc0000
[  346.154539][T18669] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  346.164809][T18669] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  346.175024][T18669] bond0 (unregistering): Released all slaves
[  346.641487][T18734] unsupported nla_type 52263
[  346.730565][T18752] siw: device registration error -23
[  346.980453][T18794] cgroup: Unknown subsys name 'obj_type'
[  347.377918][T18802] ==================================================================
[  347.386054][T18802] BUG: KCSAN: data-race in n_tty_flush_buffer / n_tty_poll
[  347.393308][T18802] 
[  347.395648][T18802] write to 0xffffc90001389000 of 24 bytes by task 18790 on cpu 0:
[  347.403479][T18802]  n_tty_flush_buffer+0x52/0x180
[  347.408461][T18802]  tty_ldisc_hangup+0x77/0x370
[  347.413257][T18802]  __tty_hangup+0x3c2/0x540
[  347.417797][T18802]  tty_vhangup+0x17/0x20
[  347.422081][T18802]  pty_close+0x266/0x290
[  347.426364][T18802]  tty_release+0x1ff/0xb10
[  347.430808][T18802]  __fput+0x29b/0x650
[  347.434852][T18802]  ____fput+0x1c/0x30
[  347.438886][T18802]  task_work_run+0x131/0x1a0
[  347.443506][T18802]  exit_to_user_mode_loop+0xed/0x110
[  347.448919][T18802]  do_syscall_64+0x1d6/0x200
[  347.453541][T18802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.459482][T18802] 
[  347.461831][T18802] read to 0xffffc90001389010 of 8 bytes by task 18802 on cpu 1:
[  347.469487][T18802]  n_tty_poll+0x298/0x450
[  347.473943][T18802]  tty_poll+0x79/0xf0
[  347.477953][T18802]  __io_read+0x2f1/0xc30
[  347.482246][T18802]  io_read+0x4a/0x180
[  347.486262][T18802]  __io_issue_sqe+0xfe/0x2e0
[  347.490898][T18802]  io_issue_sqe+0x56/0xa80
[  347.495373][T18802]  io_req_task_submit+0xa1/0x100
[  347.500363][T18802]  io_poll_task_func+0x5fc/0x7c0
[  347.505325][T18802]  io_handle_tw_list+0xcc/0x1c0
[  347.510296][T18802]  tctx_task_work_run+0x6d/0x1a0
[  347.515264][T18802]  tctx_task_work+0x3f/0x80
[  347.519788][T18802]  task_work_run+0x131/0x1a0
[  347.524402][T18802]  get_signal+0xe12/0xf70
[  347.528759][T18802]  arch_do_signal_or_restart+0x96/0x440
[  347.534314][T18802]  exit_to_user_mode_loop+0x77/0x110
[  347.539597][T18802]  do_syscall_64+0x1d6/0x200
[  347.544204][T18802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.550123][T18802] 
[  347.552437][T18802] value changed: 0x000000000000044a -> 0x0000000000000000
[  347.559540][T18802] 
[  347.561855][T18802] Reported by Kernel Concurrency Sanitizer on:
[  347.568003][T18802] CPU: 1 UID: 0 PID: 18802 Comm: syz.1.5507 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  347.577809][T18802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  347.587876][T18802] ==================================================================