last executing test programs:

15m33.77739288s ago: executing program 1 (id=3508):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000006c0)="0d18687da3e7f33aed145cf8ff2d1e5a18c0d5f9856f4824f41040f6987d0b531da10713ed151bc4867681f28e033aef683334d03864ed30590dd4ea64a20ecbbc1346c9f42510d91eec0632885b7da95ca85f4b1435c5c1e993a85257df5f19bdfc5e038a16e6a8aef907e347081fdb93cee93217e11f19cde423e6138bd1b79ee615527ccaf8049959ac6e32af46d777ccb8c26ca925f69590df13a81aee3213e80ba5cacf1f930b3cc49093d11594ef13325790b55efbdc2dd99ed1", 0xbd}, {&(0x7f00000002c0)="9c811ff500139d7d", 0x8}, {&(0x7f00000001c0)="046c14446cd4e4ccd6a4f54a0342cfa26111704d7ad12cc70d0587b6ae3130a377f02e", 0x23}, {0x0}, {&(0x7f0000000cc0)="7255685ac7983579f7f4e48108dd262e204a975f2d33c46ce2304205c5f70b6f9285efeadd6e6367ea13188e1eab3818d3bcc942a9767eedff7bc1c47f0b933339cc744df2f3bd7cb80e6ca5a7f61fcc093e52523c9a50ead92440f8cfd2abc55190acbd9e33844fa57e36ee5dd2b7d1b54e", 0x72}], 0x5}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000007c0)="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", 0x147}], 0x1}}], 0x2, 0x800)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

15m33.691298511s ago: executing program 1 (id=3509):
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x4, 0x0)
r0 = msgget$private(0x0, 0x420)
creat(0x0, 0x24)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
dup(0xffffffffffffffff)
socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x5)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000400)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee7, 0x8031, 0xffffffffffffffff, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
msgctl$MSG_STAT(r0, 0xb, &(0x7f0000000180)=""/81)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[])
socket$kcm(0x2d, 0x2, 0x0)
msgctl$IPC_RMID(r0, 0x0)

15m31.524939293s ago: executing program 1 (id=3533):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000280001801400040000000000000002000000ffffac1414aa060001000a00800008000600"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)

15m31.325884457s ago: executing program 1 (id=3535):
socket$inet_smc(0x2b, 0x1, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000380)={0x0, 0xbdb, 0x80, 0x1, 0x169}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)

15m30.309200376s ago: executing program 1 (id=3558):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x20, 0x0, 0x8, 0x401, 0x0, 0x0, {0x5, 0x0, 0x1}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x40800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5000000010000100"/20, @ANYRES32, @ANYBLOB="0000000000000000300012800b00010065727370616e0000200002"], 0x50}}, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

15m30.274724847s ago: executing program 1 (id=3559):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000000)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000a5f000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0}, 0x68)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000240)="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", 0x23d}], 0x1}}], 0x1, 0x4000000)
ptrace(0x10, 0x1)

15m15.485552335s ago: executing program 32 (id=3559):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000000)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000a5f000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0}, 0x68)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000240)="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", 0x23d}], 0x1}}], 0x1, 0x4000000)
ptrace(0x10, 0x1)

14m37.361610015s ago: executing program 4 (id=4458):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000ac0)=@newtaction={0x1c4, 0x30, 0xc96f2b0dc02612b1, 0x71bd23, 0x25dfdbff, {}, [{0x1b0, 0x1, [@m_xt={0x100, 0xa, 0x0, 0x0, {{0x7}, {0xa0, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8}, @TCA_IPT_HOOK={0x8, 0x2, 0x2}, @TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}, @TCA_IPT_TABLE={0x24, 0x1, 'security\x00'}, @TCA_IPT_HOOK={0x8, 0x2, 0x4}, @TCA_IPT_INDEX={0x8, 0x3, 0x6}, @TCA_IPT_INDEX={0x8, 0x3, 0x4}, @TCA_IPT_INDEX={0x8, 0x3, 0xfffffffd}, @TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}]}, {0x39, 0x6, "60d8256d6e17304151fd4e116cd17e9a9916f46a1108fe35c2253eb9e0a39371696c312986c3e3f087692e934a942246981749736d"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_bpf={0xac, 0x9, 0x0, 0x0, {{0x8}, {0x4c, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x3, 0x4, 0x3, 0x87f3, 0x6}}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x2, 0x9, 0x6, 0x3, 0x8000}}, @TCA_ACT_BPF_FD={0x8}]}, {0x39, 0x6, "a09e88b2fafe2ad0dddad3cdaa9b726cf5b56034a46fe446c7d19b5780d1bd141230a65f0db61f93ab839c730b3903572c51741956"}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x4004000}, 0x8000)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x8804, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

14m37.336854586s ago: executing program 4 (id=4459):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newlink={0x48, 0x10, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0x47a31, 0x9894}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_LINK_STATE={0xc}]}]}, @IFLA_IFALIAS={0x14, 0x14, 'bridge_slave_0\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x40)

14m37.320818666s ago: executing program 4 (id=4460):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x2, &(0x7f0000000040)=[{0x34, 0x1, 0x0, 0xffffffff}, {0x87, 0xfe, 0x4, 0xff}]})

14m37.304621247s ago: executing program 4 (id=4461):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$kcm(0xa, 0x5, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x5)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x2bc3c1f, 0xffffffffffffffff, 0x7, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

14m36.848973665s ago: executing program 4 (id=4462):
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[], 0x44}}, 0x0)
r2 = dup3(r0, r1, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$MON_IOCG_STATS(r2, 0xc0109207, &(0x7f00000001c0))

14m36.476939992s ago: executing program 4 (id=4475):
syz_genetlink_get_family_id$net_dm(0x0, 0xffffffffffffffff)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x3)
ioctl$TCSETSW2(r3, 0x80047456, 0x0)

14m36.476642052s ago: executing program 33 (id=4475):
syz_genetlink_get_family_id$net_dm(0x0, 0xffffffffffffffff)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e27}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0x3)
ioctl$TCSETSW2(r3, 0x80047456, 0x0)

14m14.877054292s ago: executing program 3 (id=4672):
syz_open_procfs(0x0, &(0x7f0000000000)='schedstat\x00')
openat$random(0xffffffffffffff9c, &(0x7f0000000e40), 0x400, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
socket$nl_generic(0x10, 0x3, 0x10)
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c00000003080102000000074441980000000000050003"], 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r3 = openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r5, @ANYBLOB="ff830500000700ffffff", @ANYRES8=r0], 0x4}}, 0x0)
sendfile(r4, r3, 0x0, 0x100000002)

14m14.853029963s ago: executing program 3 (id=4674):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000040000000000000000000003000000000300000003000000000001010100000000000008000000000100000001"], 0x0, 0x58, 0x0, 0xa}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000))

14m13.986245479s ago: executing program 3 (id=4683):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000840), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, 0x0)

14m13.884989792s ago: executing program 3 (id=4684):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setns(r2, 0x24020000)
syz_clone3(&(0x7f0000000300)={0x136820100, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58)

14m13.867110362s ago: executing program 3 (id=4687):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x10001})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffbf}, 0x48)

14m13.688897045s ago: executing program 3 (id=4690):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000280001801400040000000000000002000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)

14m13.43200201s ago: executing program 34 (id=4690):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000280001801400040000000000000002000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x20044811}, 0x2000c094)

14m12.406648501s ago: executing program 0 (id=4705):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x20, r1, 0x401, 0x70bd25, 0x25dfdbff, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4001}, 0x20000080)

14m12.369927631s ago: executing program 0 (id=4706):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f00000003c0)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fedbdf250c0000005400038048000200ff010000040000000000000000eb2e2466b3b726c12bfffe5f916f1716088a9129f9d2da6226169a994f49a227f189a859257dea5b53a46afb0f8effa4689efe631ffa5f5e03709c0400010018000180140002"], 0x80}, 0x1, 0x0, 0x0, 0x881}, 0x8000)

14m12.367519431s ago: executing program 0 (id=4707):
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0x0, 0x0)
openat$random(0xffffffffffffff9c, &(0x7f0000000e40), 0x400, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
socket$nl_generic(0x10, 0x3, 0x10)
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c00000003080102000000074441980000000000050003"], 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000180), 0xfea7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
r3 = openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r5, @ANYBLOB="ff830500000700ffffff", @ANYRES8=r0], 0x4}}, 0x0)
sendfile(r4, r3, 0x0, 0x100000002)

14m12.338758491s ago: executing program 0 (id=4708):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = getpid()
syz_pidfd_open(r1, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone3(&(0x7f0000000300)={0x136820100, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
umount2(&(0x7f0000000040)='.\x00', 0x2)

14m12.325984872s ago: executing program 0 (id=4709):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a500000023"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2000001, 0x12, r1, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000100), 0x0, 0x8)

14m12.208932134s ago: executing program 0 (id=4710):
r0 = msgget$private(0x0, 0x420)
creat(0x0, 0x24)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c500000005000000"], &(0x7f00000003c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
dup(0xffffffffffffffff)
socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x5)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000400)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee7, 0x8031, 0xffffffffffffffff, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
msgctl$MSG_STAT(r0, 0xb, &(0x7f0000000180)=""/81)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[])
socket$kcm(0x2d, 0x2, 0x0)
msgctl$IPC_RMID(r0, 0x0)

14m12.208582914s ago: executing program 35 (id=4710):
r0 = msgget$private(0x0, 0x420)
creat(0x0, 0x24)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000066000000004b64ffec850000006d000000c500000005000000"], &(0x7f00000003c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
dup(0xffffffffffffffff)
socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000380)=0x5)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000400)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee7, 0x8031, 0xffffffffffffffff, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
msgctl$MSG_STAT(r0, 0xb, &(0x7f0000000180)=""/81)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[])
socket$kcm(0x2d, 0x2, 0x0)
msgctl$IPC_RMID(r0, 0x0)

9m19.812481125s ago: executing program 2 (id=8918):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10)
r1 = io_uring_setup(0x5d24, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002700)=""/4096, 0x1a00}], 0x0, 0x11a}, 0x20)

9m19.754429265s ago: executing program 2 (id=8919):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x4c, 0x2, 0x6, 0x5, 0x0, 0x0, {0x7}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x810}, 0x20004000)

9m19.729936146s ago: executing program 2 (id=8920):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000240)={{0x2, 0x1, 0x9, 0x1, 0xfffffffe}})
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))

9m18.858157173s ago: executing program 2 (id=8925):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)

9m18.716228026s ago: executing program 2 (id=8927):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x103, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x11c167, 0x0, 0xfffffffc, 0xb95b5ec032cc8e84}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000003b00)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10)
r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
fcntl$setlease(r3, 0x400, 0x1)
unlink(&(0x7f0000000480)='./bus\x00')
syz_clone3(&(0x7f0000001600)={0x8200000, &(0x7f0000000040)=<r4=>0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000240), {0x5}, &(0x7f0000000280)=""/117, 0x75, &(0x7f00000014c0)=""/250, &(0x7f00000015c0)=[0x0, 0x0, 0x0], 0x3}, 0x58)
pidfd_send_signal(r4, 0x11, &(0x7f0000001680)={0x37, 0x6, 0x2}, 0x0)
futex(0x0, 0x3, 0x801, 0x0, 0x0, 0xfffffffc)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x18, 0xf, &(0x7f0000000840)=ANY=[@ANYBLOB="180000000700000000000000f7ffffff18110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf8b000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x1, 0xa3, &(0x7f0000000340)=""/163, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401}, 0x94)
sendmsg$rds(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}S@\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)

9m18.385908702s ago: executing program 2 (id=8931):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000000)=0x7f, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20000001, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @mcast1}, 0x1c)

9m18.236276895s ago: executing program 36 (id=8931):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000000)=0x7f, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20000001, &(0x7f0000000300)={0xa, 0x4e20, 0x5, @mcast1}, 0x1c)

2.08122132s ago: executing program 7 (id=19535):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000980)=ANY=[@ANYBLOB="1400000042000b06"], 0x14}}, 0x0)
recvmmsg(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000029c0)=""/4096, 0x1000}], 0x1}, 0x1005}], 0x1, 0x0, 0x0)

2.04596975s ago: executing program 7 (id=19536):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000280)='./file1\x00', 0x1010040, &(0x7f00000003c0)={[{@noload}, {@debug}, {@jqfmt_vfsv0}, {@noauto_da_alloc}, {@usrquota}]}, 0x3, 0x4f6, &(0x7f0000000400)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x45, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
setxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)='system_u:object_r:auth_cache_t:s0\x00', 0x22, 0x1)
syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
lsm_get_self_attr(0x66, &(0x7f0000000a00)={0x0, 0x0, 0xd4, 0xb4, ""/180}, &(0x7f0000000900)=0xd4, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000980), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_PEER_GET(0xffffffffffffffff, &(0x7f0000000d40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000d00)={&(0x7f0000000b00)={0x1d4, r2, 0x1, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x585a}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffffffe}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x800}]}, @TIPC_NLA_BEARER={0xb0, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_BEARER_NAME={0x15, 0x1, @l2={'eth', 0x3a, 'veth0_to_hsr\x00'}}, @TIPC_NLA_BEARER_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x68}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}]}]}, @TIPC_NLA_MEDIA={0xcc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xcf}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x399f14aa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}]}, @TIPC_NLA_SOCK={0x10, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x1d4}, 0x1, 0x0, 0x0, 0x20000010}, 0x20008844)
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f00000000c0)='.\x00', 0xa4000061)
read(r3, &(0x7f0000000140)=""/68, 0x44)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)

1.992945161s ago: executing program 5 (id=19537):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @empty}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0xc7f}, 0x18)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000040)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x0, @remote, 0xf}}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e24, 0x40003, @mcast1}, {0x2, 0xfff9, 0xc00, @remote, 0xffffffff}, 0xffffffffffffffff, 0x9dffffff}}, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000880)=ANY=[@ANYBLOB="f8000000", @ANYRES16=r4, @ANYBLOB], 0xf8}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a3000000000680003806400dec6080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001"], 0x118}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='neigh_update\x00', r5}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800001bc81a000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608fcff00000101180000000000000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000}, 0x94)

1.969214482s ago: executing program 7 (id=19538):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = gettid()
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)

1.966898682s ago: executing program 5 (id=19539):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000980)=ANY=[@ANYBLOB="1400000042000b06"], 0x14}}, 0x0)
recvmmsg(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000029c0)=""/4096, 0x1000}], 0x1}, 0x1005}], 0x1, 0x0, 0x0) (fail_nth: 2)

1.940189692s ago: executing program 7 (id=19540):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r3, &(0x7f0000000180), 0x40010)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETCHAIN(r1, &(0x7f0000000840)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000600)={0x8c, 0x4, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_TYPE={0xa, 0x7, 'route\x00'}, @NFTA_CHAIN_TYPE={0xb, 0x7, 'filter\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_COUNTERS={0x1c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x6}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x1}]}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x4}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffb}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x8c}, 0x1, 0x0, 0x0, 0x400c4}, 0x94288b8263ffc86a)
r5 = socket$packet(0x11, 0x3, 0x300)
prctl$PR_SET_SECCOMP(0x16, 0x4068ba366828c126, &(0x7f0000000380)={0x9, &(0x7f0000000300)=[{0xafa, 0xe, 0x2, 0x7}, {0xfff, 0xd7, 0x4, 0x7}, {0xc00, 0xa, 0x8, 0x5}, {0x40d, 0x81, 0x4, 0x7}, {0xf30a, 0x3, 0x9, 0x400}, {0x8, 0x5, 0x1, 0xbe25}, {0xfff8, 0x4, 0x8, 0x8}, {0xed4, 0xb2, 0x4, 0x10}, {0x8000, 0xff, 0x6, 0x8}]})
socketpair(0x1, 0x2, 0x1, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
getpeername$packet(r6, &(0x7f0000000000)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r5, &(0x7f0000000280)=[{{&(0x7f0000000700)=@xdp={0x2c, 0xdd86, r7}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)='O', 0x1}], 0x1, 0x0, 0x0, 0x2f00}}], 0x1, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="64000000100001002cbd70010000bc0000000000", @ANYRES32=0x0, @ANYBLOB], 0x64}}, 0x0)
sendmsg$IPSET_CMD_TYPE(r4, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x38, 0xd, 0x6, 0x401, 0x0, 0x0, {0xa, 0x0, 0x8}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:mac\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x40)

1.663268547s ago: executing program 5 (id=19541):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x109)
mount$9p_fd(0x0, &(0x7f0000000280)='./file2\x00', &(0x7f0000000300), 0x800000, &(0x7f0000000640)=ANY=[])

1.662665838s ago: executing program 5 (id=19542):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7fff}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)

1.616364328s ago: executing program 5 (id=19545):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r0, 0x0, 0x100000000}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x509a)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0xffffffffffffffff)
getpeername$l2tp(0xffffffffffffffff, 0x0, &(0x7f00000003c0))
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = gettid()
sendmsg$unix(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q;', 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r5, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r3, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r3, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYRESHEX=r2, @ANYRESHEX, @ANYRESHEX, @ANYRES8=r1, @ANYRES32, @ANYRES16], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
time(0x0)
r7 = semget$private(0x0, 0x4000000009, 0x0)
r8 = syz_open_dev$evdev(&(0x7f0000000080), 0xffffffffffffffff, 0x2100)
ioctl$EVIOCGKEY(r8, 0x80404518, &(0x7f0000000300)=""/83)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x20, &(0x7f00000002c0)={&(0x7f00000008c0)=""/198, 0xc6, <r9=>0x0, &(0x7f0000000400)=""/126, 0x7e}}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000a40)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000180)=@raw=[@map_fd={0x18, 0xa, 0x1, 0x0, r6}], &(0x7f0000000200)='syzkaller\x00', 0x4, 0xdc, &(0x7f0000000680)=""/220, 0x41000, 0x40, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x6, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0x6, 0x2, 0x7}, 0x10, r9, 0x0, 0x5, 0x0, &(0x7f00000009c0)=[{0x1, 0x3, 0x6, 0xc}, {0x1, 0x1, 0x8, 0x2}, {0x5, 0x1, 0xd, 0x1}, {0x1, 0x3, 0xf, 0x8}, {0x3, 0x3, 0x3, 0xb}], 0x10, 0x4}, 0x94)
semop(r7, &(0x7f0000000140)=[{0x0, 0xffff}], 0x1)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f0000000b80)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000780)={&(0x7f0000000b00)={0x70, 0x3, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x5}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x3}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x4}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc, 0x8}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x7}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x7ffffffffffffffb, 0x8}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0xd}]}, 0x70}, 0x1, 0x0, 0x0, 0x804}, 0x40)
semtimedop(r7, &(0x7f0000000000)=[{0x4, 0x2}, {0x2, 0xfb7d, 0x1000}], 0x2, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, 0x0, 0x0)
fstatfs(r10, &(0x7f00000007c0)=""/205)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x810)

1.5350968s ago: executing program 6 (id=19549):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @empty}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0xc7f}, 0x18)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, 0x0, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000040)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x0, @remote, 0xf}}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e24, 0x40003, @mcast1}, {0x2, 0xfff9, 0xc00, @remote, 0xffffffff}, 0xffffffffffffffff, 0x9dffffff}}, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000880)=ANY=[@ANYBLOB="f8000000", @ANYRES16=r4, @ANYBLOB], 0xf8}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a3000000000680003806400dec6080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001"], 0x118}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='neigh_update\x00', r5}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800001bc81a000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608fcff00000101180000000000000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000}, 0x94)

1.456755162s ago: executing program 7 (id=19553):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="12000000040000000800000001"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x15, 0xe, &(0x7f0000001440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000020000001800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x8}, 0x94)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r3, 0x0, 0x15, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c00000", 0x0, 0x86, 0x0, 0x31, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = timerfd_create(0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x1c, 0x140f, 0x1, 0x70bd25, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_CHARDEV_TYPE={0x9, 0x45, 'issm\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000840}, 0x4004804)
readv(r5, &(0x7f00000003c0)=[{&(0x7f0000000000)=""/33, 0x21}], 0x1)

1.456321562s ago: executing program 6 (id=19554):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20c006, &(0x7f0000000480)={[{@debug}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@discard}, {@grpquota}], [{@seclabel}]}, 0x1, 0x446, &(0x7f0000000d40)="$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")
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x30, r4, 0xc4fc9e906872338b, 0x70bd2a, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0xc7, 0x3a}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4, 0x3, 0x0, 0x0}]}]}]}]}, 0x30}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
r7 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r7, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)

1.126185918s ago: executing program 8 (id=19568):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @empty}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0xc7f}, 0x18)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140)={<r1=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000040)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x0, @remote, 0xf}, r1}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e24, 0x40003, @mcast1}, {0x2, 0xfff9, 0xc00, @remote, 0xffffffff}, r1, 0x9dffffff}}, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000880)=ANY=[@ANYBLOB="f8000000", @ANYRES16=r4, @ANYBLOB="0100000000000000000001000000040004800800020001000000080001000000000004000880cc00088034000780080005007c6610430800060004000000080006009700000008000500c6a13c50080006005700000008000500bf2081642c000780080006"], 0xf8}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a3000000000680003806400dec6080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001"], 0x118}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='neigh_update\x00', r5}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800001bc81a000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608fcff00000101180000000000000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000}, 0x94)

1.0267988s ago: executing program 8 (id=19570):
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="000000ec"], 0x48)

1.012125551s ago: executing program 8 (id=19571):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002340)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xfff2, 0xa}, {0x2}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x2e, 0x2, [@TCA_FQ_PIE_TUPDATE={0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80c0}, 0x4000)

975.609411ms ago: executing program 9 (id=19573):
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x8000, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000004, 0x2, @perf_bp={&(0x7f0000000140), 0xf}, 0x40, 0x50, 0x2, 0x1, 0x8000000002, 0x2, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x0, 0x4, 0xffffffffffffffff, 0x1)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x5)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000500)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000146000/0x1000)=nil, 0x1000, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
mknod$loop(0x0, 0x2000, 0x1)
rename(0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1b0)
fcntl$setlease(r3, 0x400, 0x1)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r4, &(0x7f00000008c0)=[{{&(0x7f0000000000)={0xa, 0x4e1f, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x1}, 0x1c, &(0x7f0000001780)=[{&(0x7f0000000040)="a4", 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r4, 0x1)
setsockopt(r4, 0x84, 0x7d, &(0x7f0000000280)="1a00000002000000", 0x8)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)={'#! ', './file0'}, 0xb)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x2, 0x4, &(0x7f0000000040)=ANY=[@ANYRESDEC], &(0x7f00000002c0)='GPL\x00', 0x5, 0xbc, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000080), 0x10}, 0x94)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYRESDEC=r0, @ANYRES8=r1, @ANYBLOB="4cbe6b57baee8d1b49e0f7f3dbfd363b076a730882099eb905a4e31b33f6c84293530f9e685299e225fe5df7faa386fa9d63dc5c70b1c403748644c6dfb63bd6195b0dbb5255c874f68f6211a956a8aab8997b1ab6cfec96bafe091835cdd3a4ae6680e7b9"], 0x3c}, 0x1, 0x0, 0x0, 0x40080}, 0x8000002)

971.399161ms ago: executing program 8 (id=19574):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x30, r3, 0xc4fc9e906872338b, 0x70bd2a, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0xc7, 0x3a}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4, 0x3, 0x0, 0x0}]}]}]}]}, 0x30}}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r5 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)

947.055822ms ago: executing program 9 (id=19575):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x14, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x6, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000280), &(0x7f00000001c0)=r1}, 0x20)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)

932.740422ms ago: executing program 9 (id=19576):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
dup2(r0, r0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000140)=ANY=[], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000200))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00'}, 0x18)
getrandom(0x0, 0x0, 0x3)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x24004000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_open_dev$evdev(&(0x7f0000000140), 0x4c5, 0x10840)
ioctl$EVIOCGRAB(r4, 0x40044590, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'ip6gretap0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd24, 0x2000, {0x0, 0x0, 0x74, r6, {0xfffd, 0x10}, {0x1, 0xfff1}, {0xfff2, 0x3}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x14004804}, 0x840)
r7 = open_tree(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x100)
sendmsg$DCCPDIAG_GETSOCK(r7, &(0x7f00000004c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x24000800}, 0x5f7fa8926336f4bc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

881.141913ms ago: executing program 9 (id=19577):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x2c, r3, 0xc4fc9e906872338b, 0x70bd2a, 0x0, {{0x15}, {@void, @val={0xc, 0x99, {0xc7, 0x3a}}}}, [@NL80211_ATTR_TID_CONFIG={0xc, 0x11d, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}]}]}]}, 0x2c}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
r5 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
fcntl$setlease(r5, 0x400, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)

629.354798ms ago: executing program 6 (id=19578):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')

619.955518ms ago: executing program 7 (id=19579):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r0, 0x0, 0x100000000}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x509a)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0xffffffffffffffff)
getpeername$l2tp(0xffffffffffffffff, 0x0, &(0x7f00000003c0))
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00'}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000002d40)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = gettid()
sendmsg$unix(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)='Q;', 0x2}], 0x1, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r5, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="1c000000000000000100000402000000", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r3, @ANYBLOB="0000000018"], 0xa0}, 0x4004881)
recvmsg$unix(r3, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x2000)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYRESHEX=r2, @ANYRESHEX, @ANYRESHEX, @ANYRES8=r1, @ANYRES32, @ANYRES16], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
time(0x0)
r7 = semget$private(0x0, 0x4000000009, 0x0)
r8 = syz_open_dev$evdev(&(0x7f0000000080), 0xffffffffffffffff, 0x2100)
ioctl$EVIOCGKEY(r8, 0x80404518, &(0x7f0000000300)=""/83)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x20, &(0x7f00000002c0)={&(0x7f00000008c0)=""/198, 0xc6, <r9=>0x0, &(0x7f0000000400)=""/126, 0x7e}}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000a40)=@bpf_lsm={0x1d, 0x2, &(0x7f0000000180)=@raw=[@map_fd={0x18, 0xa, 0x1, 0x0, r6}], &(0x7f0000000200)='syzkaller\x00', 0x4, 0xdc, &(0x7f0000000680)=""/220, 0x41000, 0x40, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x6, 0x1}, 0x8, 0x10, &(0x7f0000000280)={0x2, 0x6, 0x2, 0x7}, 0x10, r9, 0x0, 0x5, 0x0, &(0x7f00000009c0)=[{0x1, 0x3, 0x6, 0xc}, {0x1, 0x1, 0x8, 0x2}, {0x5, 0x1, 0xd, 0x1}, {0x1, 0x3, 0xf, 0x8}, {0x3, 0x3, 0x3, 0xb}], 0x10, 0x4}, 0x94)
semop(r7, &(0x7f0000000140)=[{0x0, 0xffff}], 0x1)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f0000000b80)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000780)={&(0x7f0000000b00)={0x70, 0x3, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x5}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x3}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x0, 0x4}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x2}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffc, 0x8}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0x7}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0x7ffffffffffffffb, 0x8}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0xd}]}, 0x70}, 0x1, 0x0, 0x0, 0x804}, 0x40)
semtimedop(r7, &(0x7f0000000000)=[{0x4, 0x2}, {0x2, 0xfb7d, 0x1000}], 0x2, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, 0x0, 0x0)
fstatfs(r10, &(0x7f00000007c0)=""/205)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x810)

589.525569ms ago: executing program 6 (id=19580):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
ptrace$getregset(0x4204, r0, 0x201, &(0x7f0000000000)={0x0, 0x300})

555.832329ms ago: executing program 6 (id=19581):
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="000000ec"], 0x48)

530.59602ms ago: executing program 6 (id=19582):
inotify_init()
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
futex(0xffffffffffffffff, 0x80, 0x3, 0x0, 0x0, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x64}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x5)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab0483"], 0x10b8}, 0x1108)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000018c0)=ANY=[@ANYBLOB="fc010000190001000000000000000000fc0200000000000000000000000000000000000000000000000000000000000000000040000000000a00000008000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000300000000010000000000000000000000000000000000000000000000000000000000000000000000001d00000000000000000000000000000000000000000000000000000000000000dd020000000000000000000000000000000000020000000044010500ac14143b000000000000000000000000000004d32b00e00000000000ac14140c000000000000000000000000000000000000ff00000000000000002020000000fc02000000000000be8d000000000000000000003200000000000000ac1414aa000000000000000000000000000000000100000000000000ffffffff0000000000000000000000000000000000000001000000003c00000002000000fc00000000000000000000000000000100000000010300"], 0x1fc}}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, 0x0, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='sched_switch\x00', r3, 0x0, 0xa}, 0x18)
syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0)
ptrace(0x10, r0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f48500"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r5}, 0x18)
r6 = signalfd(0xffffffffffffffff, &(0x7f0000000300)={[0x3]}, 0x8)
faccessat2(r6, &(0x7f0000000000)='\x00', 0x2, 0x1100)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xf1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7, 0x0, 0x7fff}, 0x18)
r8 = io_uring_setup(0x2625, &(0x7f0000000240)={0x0, 0xfffffffd, 0x800, 0x1, 0x4000159})
r9 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r9, 0x5423, &(0x7f0000000040)=0x2)
readv(r6, &(0x7f0000000000)=[{&(0x7f0000000340)=""/254, 0xfe}], 0x1)
close_range(r8, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
ioctl$TUNSETVNETHDRSZ(0xffffffffffffffff, 0x400454d8, &(0x7f00000002c0)=0x1)

142.265218ms ago: executing program 8 (id=19583):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bind$rds(0xffffffffffffffff, &(0x7f0000000840)={0x2, 0x0, @empty}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0xc7f}, 0x18)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x14, &(0x7f0000000140)={<r1=>0xffffffffffffffff}, 0x106, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000040)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e24, 0x0, @remote, 0xf}, r1}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e24, 0x40003, @mcast1}, {0x2, 0xfff9, 0xc00, @remote, 0xffffffff}, r1, 0x9dffffff}}, 0x48)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000880)=ANY=[@ANYBLOB="f8000000", @ANYRES16=r4, @ANYBLOB="0100000000000000000001000000040004800800020001000000080001000000000004000880cc00088034000780080005007c6610430800060004000000080006009700000008000500c6a13c50080006005700000008000500bf2081642c000780080006"], 0xf8}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a3000000000680003806400dec6080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a0001"], 0x118}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='neigh_update\x00', r5}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f00000005c0)=ANY=[@ANYBLOB="180800001bc81a000000000000000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608fcff00000101180000000000000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000}, 0x94)

134.546347ms ago: executing program 5 (id=19584):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000340)=""/69, 0x623c41ea}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)

58.904849ms ago: executing program 9 (id=19585):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002340)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xfff2, 0xa}, {0x2}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x2e, 0x2, [@TCA_FQ_PIE_TUPDATE={0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80c0}, 0x4000)

36.462549ms ago: executing program 8 (id=19586):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x14, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x6, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000280), &(0x7f00000001c0)=r1}, 0x20)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0)

0s ago: executing program 9 (id=19587):
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000ec5019ec00000000000000000000000000000000000000100000000000dff60177bc52c03863325e104f3604211e441277fb5e2cdd"], 0x48)

kernel console output (not intermixed with test programs):

00246 ORIG_RAX: 0000000000000001
[ 1188.011195][T22297] RAX: ffffffffffffffda RBX: 00007f92ce965fa0 RCX: 00007f92ce72ebe9
[ 1188.011221][T22297] RDX: 0000000000000012 RSI: 0000200000000040 RDI: 0000000000000003
[ 1188.011307][T22297] RBP: 00007f92cd18f090 R08: 0000000000000000 R09: 0000000000000000
[ 1188.011319][T22297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1188.011332][T22297] R13: 00007f92ce966038 R14: 00007f92ce965fa0 R15: 00007ffce8976f58
[ 1188.011352][T22297]  </TASK>
[ 1188.280115][T22310] __nla_validate_parse: 117 callbacks suppressed
[ 1188.280135][T22310] netlink: 24 bytes leftover after parsing attributes in process `syz.6.18693'.
[ 1188.644383][T22333] netlink: 4 bytes leftover after parsing attributes in process `syz.9.18703'.
[ 1188.695120][T22335] netlink: 12 bytes leftover after parsing attributes in process `syz.7.18704'.
[ 1188.722316][T22304] syz.5.18690 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1188.736565][T22304] CPU: 0 UID: 0 PID: 22304 Comm: syz.5.18690 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1188.736597][T22304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1188.736611][T22304] Call Trace:
[ 1188.736618][T22304]  <TASK>
[ 1188.736702][T22304]  __dump_stack+0x1d/0x30
[ 1188.736727][T22304]  dump_stack_lvl+0xe8/0x140
[ 1188.736750][T22304]  dump_stack+0x15/0x1b
[ 1188.736769][T22304]  dump_header+0x81/0x220
[ 1188.736827][T22304]  oom_kill_process+0x342/0x400
[ 1188.736864][T22304]  out_of_memory+0x979/0xb80
[ 1188.736899][T22304]  try_charge_memcg+0x5e6/0x9e0
[ 1188.736954][T22304]  obj_cgroup_charge_pages+0xa6/0x150
[ 1188.737017][T22304]  __memcg_kmem_charge_page+0x9f/0x170
[ 1188.737051][T22304]  __alloc_frozen_pages_noprof+0x188/0x360
[ 1188.737223][T22304]  alloc_pages_mpol+0xb3/0x250
[ 1188.737257][T22304]  alloc_pages_noprof+0x90/0x130
[ 1188.737293][T22304]  __vmalloc_node_range_noprof+0x6f2/0xe00
[ 1188.737396][T22304]  __kvmalloc_node_noprof+0x30f/0x4e0
[ 1188.737429][T22304]  ? ip_set_alloc+0x1f/0x30
[ 1188.737448][T22304]  ? ip_set_alloc+0x1f/0x30
[ 1188.737464][T22304]  ? __kmalloc_cache_noprof+0x189/0x320
[ 1188.737573][T22304]  ip_set_alloc+0x1f/0x30
[ 1188.737593][T22304]  hash_netiface_create+0x282/0x740
[ 1188.737616][T22304]  ? __pfx_hash_netiface_create+0x10/0x10
[ 1188.737638][T22304]  ip_set_create+0x3c9/0x960
[ 1188.737714][T22304]  ? __nla_parse+0x40/0x60
[ 1188.737740][T22304]  nfnetlink_rcv_msg+0x4c6/0x590
[ 1188.737792][T22304]  netlink_rcv_skb+0x120/0x220
[ 1188.737816][T22304]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1188.737934][T22304]  nfnetlink_rcv+0x16b/0x1690
[ 1188.737969][T22304]  ? nlmon_xmit+0x4f/0x60
[ 1188.738003][T22304]  ? consume_skb+0x49/0x150
[ 1188.738076][T22304]  ? nlmon_xmit+0x4f/0x60
[ 1188.738104][T22304]  ? dev_hard_start_xmit+0x3b0/0x3e0
[ 1188.738168][T22304]  ? __dev_queue_xmit+0x1200/0x2000
[ 1188.738193][T22304]  ? __dev_queue_xmit+0x182/0x2000
[ 1188.738219][T22304]  ? ref_tracker_free+0x37d/0x3e0
[ 1188.738313][T22304]  ? __netlink_deliver_tap+0x4dc/0x500
[ 1188.738342][T22304]  netlink_unicast+0x5c0/0x690
[ 1188.738366][T22304]  netlink_sendmsg+0x58b/0x6b0
[ 1188.738394][T22304]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1188.738433][T22304]  __sock_sendmsg+0x142/0x180
[ 1188.738493][T22304]  ____sys_sendmsg+0x31e/0x4e0
[ 1188.738522][T22304]  ___sys_sendmsg+0x17b/0x1d0
[ 1188.738619][T22304]  __x64_sys_sendmsg+0xd4/0x160
[ 1188.738649][T22304]  x64_sys_call+0x191e/0x2ff0
[ 1188.738747][T22304]  do_syscall_64+0xd2/0x200
[ 1188.738778][T22304]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1188.738802][T22304]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1188.738833][T22304]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1188.738911][T22304] RIP: 0033:0x7fdf3206ebe9
[ 1188.738931][T22304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1188.738948][T22304] RSP: 002b:00007fdf30672038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1188.738971][T22304] RAX: ffffffffffffffda RBX: 00007fdf322a6270 RCX: 00007fdf3206ebe9
[ 1188.738995][T22304] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[ 1188.739014][T22304] RBP: 00007fdf320f1e19 R08: 0000000000000000 R09: 0000000000000000
[ 1188.739028][T22304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1188.739041][T22304] R13: 00007fdf322a6308 R14: 00007fdf322a6270 R15: 00007ffdc648a5b8
[ 1188.739061][T22304]  </TASK>
[ 1189.070361][T22304] memory: usage 307200kB, limit 307200kB, failcnt 3296
[ 1189.077231][T22304] memory+swap: usage 307556kB, limit 9007199254740988kB, failcnt 0
[ 1189.085246][T22304] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 1189.092826][T22304] Memory cgroup stats for /syz5:
[ 1189.117549][T22344] netlink: 'syz.7.18707': attribute type 13 has an invalid length.
[ 1189.140280][T22304] cache 0
[ 1189.143269][T22304] rss 0
[ 1189.146113][T22304] shmem 0
[ 1189.149144][T22304] mapped_file 0
[ 1189.152642][T22304] dirty 0
[ 1189.155697][T22304] writeback 4096
[ 1189.159263][T22304] workingset_refault_anon 868
[ 1189.164124][T22304] workingset_refault_file 556
[ 1189.168840][T22304] swap 364544
[ 1189.172129][T22304] swapcached 8192
[ 1189.175790][T22304] pgpgin 1147895
[ 1189.179337][T22304] pgpgout 1147893
[ 1189.183029][T22304] pgfault 1278518
[ 1189.186707][T22304] pgmajfault 451
[ 1189.190262][T22304] inactive_anon 8192
[ 1189.194262][T22304] active_anon 0
[ 1189.197799][T22304] inactive_file 0
[ 1189.201436][T22304] active_file 0
[ 1189.204922][T22304] unevictable 0
[ 1189.208395][T22304] hierarchical_memory_limit 314572800
[ 1189.213797][T22304] hierarchical_memsw_limit 9223372036854771712
[ 1189.219955][T22304] total_cache 0
[ 1189.223472][T22304] total_rss 0
[ 1189.226762][T22304] total_shmem 0
[ 1189.230224][T22304] total_mapped_file 0
[ 1189.234222][T22304] total_dirty 0
[ 1189.237685][T22304] total_writeback 4096
[ 1189.241867][T22304] total_workingset_refault_anon 868
[ 1189.247121][T22304] total_workingset_refault_file 556
[ 1189.252541][T22304] total_swap 364544
[ 1189.256365][T22304] total_swapcached 8192
[ 1189.260592][T22304] total_pgpgin 1147895
[ 1189.264670][T22304] total_pgpgout 1147893
[ 1189.268948][T22304] total_pgfault 1278518
[ 1189.273118][T22304] total_pgmajfault 451
[ 1189.277189][T22304] total_inactive_anon 8192
[ 1189.281719][T22304] total_active_anon 0
[ 1189.285712][T22304] total_inactive_file 0
[ 1189.289980][T22304] total_active_file 0
[ 1189.294038][T22304] total_unevictable 0
[ 1189.298236][T22304] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.18690,pid=22300,uid=0
[ 1189.313181][T22304] Memory cgroup out of memory: Killed process 22300 (syz.5.18690) total-vm:98196kB, anon-rss:1004kB, file-rss:26408kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1189.696774][T22379] syzkaller1: entered promiscuous mode
[ 1189.702375][T22379] syzkaller1: entered allmulticast mode
[ 1189.708626][T22377] syz_tun: entered allmulticast mode
[ 1189.838231][T22386] sch_tbf: burst 1821 is lower than device lo mtu (65550) !
[ 1190.218816][T22397] netlink: 104 bytes leftover after parsing attributes in process `syz.6.18726'.
[ 1190.230396][T22397] netlink: 36 bytes leftover after parsing attributes in process `syz.6.18726'.
[ 1190.239644][T22397] netlink: 36 bytes leftover after parsing attributes in process `syz.6.18726'.
[ 1190.250538][T22397] netlink: 36 bytes leftover after parsing attributes in process `syz.6.18726'.
[ 1190.268573][T22397] netlink: 36 bytes leftover after parsing attributes in process `syz.6.18726'.
[ 1190.277879][T22397] netlink: 36 bytes leftover after parsing attributes in process `syz.6.18726'.
[ 1190.290830][T22397] netlink: 36 bytes leftover after parsing attributes in process `syz.6.18726'.
[ 1190.453093][T22409] FAULT_INJECTION: forcing a failure.
[ 1190.453093][T22409] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1190.466295][T22409] CPU: 1 UID: 0 PID: 22409 Comm: syz.6.18730 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1190.466328][T22409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1190.466343][T22409] Call Trace:
[ 1190.466385][T22409]  <TASK>
[ 1190.466395][T22409]  __dump_stack+0x1d/0x30
[ 1190.466475][T22409]  dump_stack_lvl+0xe8/0x140
[ 1190.466497][T22409]  dump_stack+0x15/0x1b
[ 1190.466516][T22409]  should_fail_ex+0x265/0x280
[ 1190.466537][T22409]  should_fail+0xb/0x20
[ 1190.466616][T22409]  should_fail_usercopy+0x1a/0x20
[ 1190.466693][T22409]  _copy_from_user+0x1c/0xb0
[ 1190.466724][T22409]  __sys_bpf+0x178/0x7b0
[ 1190.466762][T22409]  __x64_sys_bpf+0x41/0x50
[ 1190.466788][T22409]  x64_sys_call+0x2aea/0x2ff0
[ 1190.466812][T22409]  do_syscall_64+0xd2/0x200
[ 1190.466844][T22409]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1190.466902][T22409]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1190.466925][T22409]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1190.466944][T22409] RIP: 0033:0x7f752b87ebe9
[ 1190.466962][T22409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1190.467011][T22409] RSP: 002b:00007f752a2df038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1190.467029][T22409] RAX: ffffffffffffffda RBX: 00007f752bab5fa0 RCX: 00007f752b87ebe9
[ 1190.467041][T22409] RDX: 0000000000000050 RSI: 0000200000000100 RDI: 0000000000000000
[ 1190.467053][T22409] RBP: 00007f752a2df090 R08: 0000000000000000 R09: 0000000000000000
[ 1190.467067][T22409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1190.467081][T22409] R13: 00007f752bab6038 R14: 00007f752bab5fa0 R15: 00007ffc3158d788
[ 1190.467158][T22409]  </TASK>
[ 1190.517388][   T29] kauditd_printk_skb: 149 callbacks suppressed
[ 1190.517476][   T29] audit: type=1326 audit(2016.394:33207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1190.670298][   T29] audit: type=1326 audit(2016.394:33208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1190.693809][   T29] audit: type=1326 audit(2016.394:33209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1190.717015][   T29] audit: type=1326 audit(2016.394:33210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1190.740574][   T29] audit: type=1326 audit(2016.394:33211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1190.763717][   T29] audit: type=1326 audit(2016.394:33212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1190.787131][   T29] audit: type=1326 audit(2016.394:33213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb49b0bd550 code=0x7ffc0000
[ 1190.810399][   T29] audit: type=1326 audit(2016.394:33214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1190.833854][   T29] audit: type=1326 audit(2016.394:33215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1190.856959][   T29] audit: type=1326 audit(2016.394:33216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22406 comm="syz.8.18729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1191.480960][T22460] FAULT_INJECTION: forcing a failure.
[ 1191.480960][T22460] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1191.494912][T22460] CPU: 1 UID: 0 PID: 22460 Comm: syz.6.18748 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1191.494943][T22460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1191.494957][T22460] Call Trace:
[ 1191.494965][T22460]  <TASK>
[ 1191.494973][T22460]  __dump_stack+0x1d/0x30
[ 1191.494995][T22460]  dump_stack_lvl+0xe8/0x140
[ 1191.495041][T22460]  dump_stack+0x15/0x1b
[ 1191.495061][T22460]  should_fail_ex+0x265/0x280
[ 1191.495085][T22460]  should_fail+0xb/0x20
[ 1191.495106][T22460]  should_fail_usercopy+0x1a/0x20
[ 1191.495129][T22460]  _copy_from_user+0x1c/0xb0
[ 1191.495230][T22460]  kstrtouint_from_user+0x69/0xf0
[ 1191.495284][T22460]  ? 0xffffffff81000000
[ 1191.495296][T22460]  ? selinux_file_permission+0x1e4/0x320
[ 1191.495322][T22460]  proc_fail_nth_write+0x50/0x160
[ 1191.495368][T22460]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1191.495391][T22460]  vfs_write+0x266/0x960
[ 1191.495409][T22460]  ? vfs_read+0x4e6/0x770
[ 1191.495432][T22460]  ? __rcu_read_unlock+0x4f/0x70
[ 1191.495457][T22460]  ? __fget_files+0x184/0x1c0
[ 1191.495503][T22460]  ksys_write+0xda/0x1a0
[ 1191.495530][T22460]  __x64_sys_write+0x40/0x50
[ 1191.495555][T22460]  x64_sys_call+0x27fe/0x2ff0
[ 1191.495608][T22460]  do_syscall_64+0xd2/0x200
[ 1191.495641][T22460]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1191.495728][T22460]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1191.495752][T22460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1191.495771][T22460] RIP: 0033:0x7f752b87d69f
[ 1191.495785][T22460] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1191.495805][T22460] RSP: 002b:00007f752a2df030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1191.495828][T22460] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f752b87d69f
[ 1191.495900][T22460] RDX: 0000000000000001 RSI: 00007f752a2df0a0 RDI: 0000000000000005
[ 1191.495912][T22460] RBP: 00007f752a2df090 R08: 0000000000000000 R09: 0000000000000000
[ 1191.495923][T22460] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1191.495934][T22460] R13: 00007f752bab6038 R14: 00007f752bab5fa0 R15: 00007ffc3158d788
[ 1191.495955][T22460]  </TASK>
[ 1191.987997][T31177] hid_parser_main: 28 callbacks suppressed
[ 1191.988018][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x1
[ 1192.001581][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1192.009147][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1192.016643][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1192.024105][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1192.031654][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1192.039274][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1192.046694][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1192.054126][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x2
[ 1192.061643][T31177] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[ 1192.074382][T31177] hid-generic 0000:0000:0000.0026: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1192.311634][T22502] FAULT_INJECTION: forcing a failure.
[ 1192.311634][T22502] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1192.324791][T22502] CPU: 1 UID: 0 PID: 22502 Comm: syz.9.18763 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1192.324823][T22502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1192.324836][T22502] Call Trace:
[ 1192.324843][T22502]  <TASK>
[ 1192.324850][T22502]  __dump_stack+0x1d/0x30
[ 1192.324911][T22502]  dump_stack_lvl+0xe8/0x140
[ 1192.324928][T22502]  dump_stack+0x15/0x1b
[ 1192.324942][T22502]  should_fail_ex+0x265/0x280
[ 1192.324960][T22502]  should_fail+0xb/0x20
[ 1192.324975][T22502]  should_fail_usercopy+0x1a/0x20
[ 1192.325031][T22502]  _copy_to_user+0x20/0xa0
[ 1192.325056][T22502]  simple_read_from_buffer+0xb5/0x130
[ 1192.325075][T22502]  proc_fail_nth_read+0x10e/0x150
[ 1192.325178][T22502]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1192.325200][T22502]  vfs_read+0x1a5/0x770
[ 1192.325229][T22502]  ? __rcu_read_unlock+0x4f/0x70
[ 1192.325249][T22502]  ? __fget_files+0x184/0x1c0
[ 1192.325271][T22502]  ksys_read+0xda/0x1a0
[ 1192.325290][T22502]  __x64_sys_read+0x40/0x50
[ 1192.325308][T22502]  x64_sys_call+0x27bc/0x2ff0
[ 1192.325336][T22502]  do_syscall_64+0xd2/0x200
[ 1192.325360][T22502]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1192.325381][T22502]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1192.325408][T22502]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1192.325451][T22502] RIP: 0033:0x7f63c97cd5fc
[ 1192.325465][T22502] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1192.325553][T22502] RSP: 002b:00007f63c820e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1192.325571][T22502] RAX: ffffffffffffffda RBX: 00007f63c9a06090 RCX: 00007f63c97cd5fc
[ 1192.325583][T22502] RDX: 000000000000000f RSI: 00007f63c820e0a0 RDI: 0000000000000004
[ 1192.325594][T22502] RBP: 00007f63c820e090 R08: 0000000000000000 R09: 0000000000000000
[ 1192.325605][T22502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1192.325616][T22502] R13: 00007f63c9a06128 R14: 00007f63c9a06090 R15: 00007fff225ab808
[ 1192.325636][T22502]  </TASK>
[ 1192.617683][T31177] hid-generic 0000:0000:0000.0027: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1193.279451][T22551] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1193.401151][T22565] __nla_validate_parse: 25 callbacks suppressed
[ 1193.401191][T22565] netlink: 40 bytes leftover after parsing attributes in process `syz.9.18791'.
[ 1193.656889][T22595] netlink: 104 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.666915][T22595] netlink: 32 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.678606][T22595] netlink: 36 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.687832][T22595] netlink: 36 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.699182][T22595] netlink: 36 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.721273][T22595] netlink: 36 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.730841][T22595] netlink: 36 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.741967][T22595] netlink: 36 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.773201][T22595] netlink: 36 bytes leftover after parsing attributes in process `syz.5.18803'.
[ 1193.961076][T22623] FAULT_INJECTION: forcing a failure.
[ 1193.961076][T22623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1193.974975][T22623] CPU: 1 UID: 0 PID: 22623 Comm: syz.9.18812 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1193.975008][T22623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1193.975022][T22623] Call Trace:
[ 1193.975045][T22623]  <TASK>
[ 1193.975055][T22623]  __dump_stack+0x1d/0x30
[ 1193.975132][T22623]  dump_stack_lvl+0xe8/0x140
[ 1193.975152][T22623]  dump_stack+0x15/0x1b
[ 1193.975170][T22623]  should_fail_ex+0x265/0x280
[ 1193.975189][T22623]  should_fail+0xb/0x20
[ 1193.975278][T22623]  should_fail_usercopy+0x1a/0x20
[ 1193.975361][T22623]  _copy_to_user+0x20/0xa0
[ 1193.975385][T22623]  simple_read_from_buffer+0xb5/0x130
[ 1193.975485][T22623]  proc_fail_nth_read+0x10e/0x150
[ 1193.975526][T22623]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1193.975548][T22623]  vfs_read+0x1a5/0x770
[ 1193.975621][T22623]  ? __rcu_read_unlock+0x4f/0x70
[ 1193.975640][T22623]  ? __fget_files+0x184/0x1c0
[ 1193.975692][T22623]  ksys_read+0xda/0x1a0
[ 1193.975711][T22623]  __x64_sys_read+0x40/0x50
[ 1193.975766][T22623]  x64_sys_call+0x27bc/0x2ff0
[ 1193.975784][T22623]  do_syscall_64+0xd2/0x200
[ 1193.975808][T22623]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1193.975828][T22623]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1193.975923][T22623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1193.976071][T22623] RIP: 0033:0x7f63c97cd5fc
[ 1193.976085][T22623] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1193.976101][T22623] RSP: 002b:00007f63c822f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1193.976119][T22623] RAX: ffffffffffffffda RBX: 00007f63c9a05fa0 RCX: 00007f63c97cd5fc
[ 1193.976130][T22623] RDX: 000000000000000f RSI: 00007f63c822f0a0 RDI: 0000000000000004
[ 1193.976141][T22623] RBP: 00007f63c822f090 R08: 0000000000000000 R09: 0000000000000000
[ 1193.976153][T22623] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000001
[ 1193.976164][T22623] R13: 00007f63c9a06038 R14: 00007f63c9a05fa0 R15: 00007fff225ab808
[ 1193.976179][T22623]  </TASK>
[ 1194.239942][T22631] FAULT_INJECTION: forcing a failure.
[ 1194.239942][T22631] name failslab, interval 1, probability 0, space 0, times 0
[ 1194.252772][T22631] CPU: 1 UID: 0 PID: 22631 Comm: syz.7.18816 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1194.252882][T22631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1194.252893][T22631] Call Trace:
[ 1194.252900][T22631]  <TASK>
[ 1194.252909][T22631]  __dump_stack+0x1d/0x30
[ 1194.252971][T22631]  dump_stack_lvl+0xe8/0x140
[ 1194.252994][T22631]  dump_stack+0x15/0x1b
[ 1194.253040][T22631]  should_fail_ex+0x265/0x280
[ 1194.253063][T22631]  should_failslab+0x8c/0xb0
[ 1194.253089][T22631]  kmem_cache_alloc_lru_noprof+0x55/0x310
[ 1194.253135][T22631]  ? __d_alloc+0x3d/0x340
[ 1194.253161][T22631]  __d_alloc+0x3d/0x340
[ 1194.253185][T22631]  d_alloc_pseudo+0x1e/0x80
[ 1194.253268][T22631]  alloc_file_pseudo+0x71/0x160
[ 1194.253297][T22631]  __se_sys_memfd_secret+0x14b/0x230
[ 1194.253389][T22631]  __x64_sys_memfd_secret+0x1f/0x30
[ 1194.253500][T22631]  x64_sys_call+0x2c81/0x2ff0
[ 1194.253524][T22631]  do_syscall_64+0xd2/0x200
[ 1194.253552][T22631]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1194.253573][T22631]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1194.253677][T22631]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1194.253697][T22631] RIP: 0033:0x7f92ce72ebe9
[ 1194.253713][T22631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1194.253730][T22631] RSP: 002b:00007f92cd18f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[ 1194.253749][T22631] RAX: ffffffffffffffda RBX: 00007f92ce965fa0 RCX: 00007f92ce72ebe9
[ 1194.253782][T22631] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000080000
[ 1194.253823][T22631] RBP: 00007f92cd18f090 R08: 0000000000000000 R09: 0000000000000000
[ 1194.253853][T22631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1194.253868][T22631] R13: 00007f92ce966038 R14: 00007f92ce965fa0 R15: 00007ffce8976f58
[ 1194.253888][T22631]  </TASK>
[ 1194.457400][T22634] netem: change failed
[ 1194.527746][T22648] team1: entered promiscuous mode
[ 1194.527772][T22649] netlink: 'syz.8.18823': attribute type 4 has an invalid length.
[ 1194.533104][T22648] team1: entered allmulticast mode
[ 1194.664129][T31177] hid-generic 0000:0000:0000.0028: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1195.046769][T22700] netdevsim netdevsim9 netdevsim0: entered promiscuous mode
[ 1195.054489][T22700] net_ratelimit: 11 callbacks suppressed
[ 1195.054504][T22700] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1195.126921][T22710] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1195.289343][   T29] kauditd_printk_skb: 803 callbacks suppressed
[ 1195.289363][   T29] audit: type=1326 audit(2021.454:34020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.319603][   T29] audit: type=1326 audit(2021.454:34021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.342964][   T29] audit: type=1326 audit(2021.454:34022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.366764][   T29] audit: type=1326 audit(2021.454:34023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.390042][   T29] audit: type=1326 audit(2021.454:34024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.413890][   T29] audit: type=1326 audit(2021.454:34025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.437093][   T29] audit: type=1326 audit(2021.454:34026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.461032][   T29] audit: type=1326 audit(2021.454:34027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.484381][   T29] audit: type=1326 audit(2021.454:34028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.508350][   T29] audit: type=1326 audit(2021.454:34029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22717 comm="syz.7.18850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f92ce72ebe9 code=0x7ffc0000
[ 1195.868246][T22761] 9pnet_fd: Insufficient options for proto=fd
[ 1196.052215][T13528] hid-generic 0000:0000:0000.0029: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1196.066354][T22792] 9pnet_fd: Insufficient options for proto=fd
[ 1196.111181][T22801] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1196.205380][T13528] hid-generic 0000:0000:0000.002A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1196.246653][T22822] 9pnet_fd: Insufficient options for proto=fd
[ 1196.269555][T22825] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1196.384546][T13528] hid-generic 0000:0000:0000.002B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1196.583374][T22859] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1196.602383][T22859] 8021q: adding VLAN 0 to HW filter on device team0
[ 1196.618695][T22859] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1197.099335][T22889] bridge0: port 3(vlan2) entered blocking state
[ 1197.105789][T22889] bridge0: port 3(vlan2) entered disabled state
[ 1197.118406][T22889] vlan2: entered allmulticast mode
[ 1197.123575][T22889] bridge0: entered allmulticast mode
[ 1197.184795][T22893] FAULT_INJECTION: forcing a failure.
[ 1197.184795][T22893] name failslab, interval 1, probability 0, space 0, times 0
[ 1197.197607][T22893] CPU: 1 UID: 0 PID: 22893 Comm: syz.9.18913 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1197.197661][T22893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1197.197672][T22893] Call Trace:
[ 1197.197680][T22893]  <TASK>
[ 1197.197688][T22893]  __dump_stack+0x1d/0x30
[ 1197.197709][T22893]  dump_stack_lvl+0xe8/0x140
[ 1197.197735][T22893]  dump_stack+0x15/0x1b
[ 1197.197754][T22893]  should_fail_ex+0x265/0x280
[ 1197.197778][T22893]  should_failslab+0x8c/0xb0
[ 1197.197807][T22893]  kmem_cache_alloc_noprof+0x50/0x310
[ 1197.197894][T22893]  ? audit_log_start+0x365/0x6c0
[ 1197.197943][T22893]  audit_log_start+0x365/0x6c0
[ 1197.198035][T22893]  audit_seccomp+0x48/0x100
[ 1197.198077][T22893]  ? __seccomp_filter+0x68c/0x10d0
[ 1197.198098][T22893]  __seccomp_filter+0x69d/0x10d0
[ 1197.198124][T22893]  ? __pfx_proc_fail_nth_write+0x10/0x10
[ 1197.198202][T22893]  ? vfs_write+0x7e8/0x960
[ 1197.198225][T22893]  __secure_computing+0x82/0x150
[ 1197.198243][T22893]  syscall_trace_enter+0xcf/0x1e0
[ 1197.198269][T22893]  do_syscall_64+0xac/0x200
[ 1197.198300][T22893]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1197.198451][T22893]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1197.198481][T22893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1197.198573][T22893] RIP: 0033:0x7f63c97cebe9
[ 1197.198592][T22893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1197.198613][T22893] RSP: 002b:00007f63c822f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000065
[ 1197.198635][T22893] RAX: ffffffffffffffda RBX: 00007f63c9a05fa0 RCX: 00007f63c97cebe9
[ 1197.198684][T22893] RDX: 0000000000000006 RSI: 0000000000000000 RDI: 0000000000000003
[ 1197.198698][T22893] RBP: 00007f63c822f090 R08: 0000000000000000 R09: 0000000000000000
[ 1197.198710][T22893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1197.198721][T22893] R13: 00007f63c9a06038 R14: 00007f63c9a05fa0 R15: 00007fff225ab808
[ 1197.198741][T22893]  </TASK>
[ 1197.438375][T22889] vlan2: left allmulticast mode
[ 1197.443376][T22889] bridge0: left allmulticast mode
[ 1197.678339][T22912] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1197.691834][T31177] hid_parser_main: 218 callbacks suppressed
[ 1197.691851][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x1
[ 1197.705465][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 1197.712969][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 1197.720427][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 1197.728043][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 1197.729910][T22914] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1197.735517][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 1197.737799][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 1197.751719][T22912] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1197.754148][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 1197.776865][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x2
[ 1197.784409][T31177] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[ 1197.798171][T31177] hid-generic 0000:0000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1197.852428][T22920] team1: entered promiscuous mode
[ 1197.857560][T22920] team1: entered allmulticast mode
[ 1198.706193][T22952] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1198.771384][T22956] __nla_validate_parse: 107 callbacks suppressed
[ 1198.771399][T22956] netlink: 12 bytes leftover after parsing attributes in process `syz.8.18936'.
[ 1198.863021][T22970] netlink: 432 bytes leftover after parsing attributes in process `syz.8.18942'.
[ 1198.931288][T22977] netlink: 4 bytes leftover after parsing attributes in process `syz.8.18945'.
[ 1198.979254][T22985] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1199.313784][T22980] syz.5.18935 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1199.328330][T22980] CPU: 0 UID: 0 PID: 22980 Comm: syz.5.18935 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1199.328363][T22980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1199.328378][T22980] Call Trace:
[ 1199.328386][T22980]  <TASK>
[ 1199.328395][T22980]  __dump_stack+0x1d/0x30
[ 1199.328533][T22980]  dump_stack_lvl+0xe8/0x140
[ 1199.328598][T22980]  dump_stack+0x15/0x1b
[ 1199.328617][T22980]  dump_header+0x81/0x220
[ 1199.328649][T22980]  oom_kill_process+0x342/0x400
[ 1199.328687][T22980]  out_of_memory+0x979/0xb80
[ 1199.328802][T22980]  try_charge_memcg+0x5e6/0x9e0
[ 1199.328830][T22980]  obj_cgroup_charge_pages+0xa6/0x150
[ 1199.328926][T22980]  __memcg_kmem_charge_page+0x9f/0x170
[ 1199.328955][T22980]  __alloc_frozen_pages_noprof+0x188/0x360
[ 1199.329115][T22980]  alloc_pages_mpol+0xb3/0x250
[ 1199.329143][T22980]  alloc_pages_noprof+0x90/0x130
[ 1199.329171][T22980]  __vmalloc_node_range_noprof+0x6f2/0xe00
[ 1199.329295][T22980]  __kvmalloc_node_noprof+0x30f/0x4e0
[ 1199.329330][T22980]  ? ip_set_alloc+0x1f/0x30
[ 1199.329347][T22980]  ? ip_set_alloc+0x1f/0x30
[ 1199.329425][T22980]  ? hash_netiface_create+0x21b/0x740
[ 1199.329447][T22980]  ? __kmalloc_cache_noprof+0x189/0x320
[ 1199.329479][T22980]  ip_set_alloc+0x1f/0x30
[ 1199.329497][T22980]  hash_netiface_create+0x282/0x740
[ 1199.329511][T22980]  ? __pfx_hash_netiface_create+0x10/0x10
[ 1199.329566][T22980]  ip_set_create+0x3c9/0x960
[ 1199.329585][T22980]  ? __nla_parse+0x40/0x60
[ 1199.329600][T22980]  nfnetlink_rcv_msg+0x4c6/0x590
[ 1199.329630][T22980]  netlink_rcv_skb+0x120/0x220
[ 1199.329652][T22980]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1199.329679][T22980]  nfnetlink_rcv+0x16b/0x1690
[ 1199.329698][T22980]  ? nlmon_xmit+0x4f/0x60
[ 1199.329714][T22980]  ? consume_skb+0x49/0x150
[ 1199.329727][T22980]  ? nlmon_xmit+0x4f/0x60
[ 1199.329778][T22980]  ? dev_hard_start_xmit+0x3b0/0x3e0
[ 1199.329794][T22980]  ? __dev_queue_xmit+0x1200/0x2000
[ 1199.329859][T22980]  ? __dev_queue_xmit+0x182/0x2000
[ 1199.329874][T22980]  ? ref_tracker_free+0x37d/0x3e0
[ 1199.329891][T22980]  ? __netlink_deliver_tap+0x4dc/0x500
[ 1199.329962][T22980]  netlink_unicast+0x5c0/0x690
[ 1199.329982][T22980]  netlink_sendmsg+0x58b/0x6b0
[ 1199.330004][T22980]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1199.330025][T22980]  __sock_sendmsg+0x142/0x180
[ 1199.330174][T22980]  ____sys_sendmsg+0x31e/0x4e0
[ 1199.330191][T22980]  ___sys_sendmsg+0x17b/0x1d0
[ 1199.330231][T22980]  __x64_sys_sendmsg+0xd4/0x160
[ 1199.330254][T22980]  x64_sys_call+0x191e/0x2ff0
[ 1199.330267][T22980]  do_syscall_64+0xd2/0x200
[ 1199.330286][T22980]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1199.330385][T22980]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1199.330403][T22980]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1199.330417][T22980] RIP: 0033:0x7fdf3206ebe9
[ 1199.330430][T22980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1199.330464][T22980] RSP: 002b:00007fdf30672038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1199.330487][T22980] RAX: ffffffffffffffda RBX: 00007fdf322a6270 RCX: 00007fdf3206ebe9
[ 1199.330501][T22980] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[ 1199.330516][T22980] RBP: 00007fdf320f1e19 R08: 0000000000000000 R09: 0000000000000000
[ 1199.330530][T22980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1199.330544][T22980] R13: 00007fdf322a6308 R14: 00007fdf322a6270 R15: 00007ffdc648a5b8
[ 1199.330620][T22980]  </TASK>
[ 1199.330625][T22980] memory: usage 307200kB, limit 307200kB, failcnt 3565
[ 1199.675022][T22980] memory+swap: usage 307692kB, limit 9007199254740988kB, failcnt 0
[ 1199.682954][T22980] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 1199.690266][T22980] Memory cgroup stats for /syz5:
[ 1199.690551][T22980] cache 0
[ 1199.699116][T22980] rss 4096
[ 1199.702187][T22980] shmem 0
[ 1199.705186][T22980] mapped_file 0
[ 1199.708644][T22980] dirty 0
[ 1199.711602][T22980] writeback 0
[ 1199.714944][T22980] workingset_refault_anon 1005
[ 1199.719823][T22980] workingset_refault_file 624
[ 1199.725098][T22980] swap 503808
[ 1199.728388][T22980] swapcached 8192
[ 1199.732173][T22980] pgpgin 1161353
[ 1199.735794][T22980] pgpgout 1161351
[ 1199.739433][T22980] pgfault 1302385
[ 1199.743174][T22980] pgmajfault 527
[ 1199.746723][T22980] inactive_anon 0
[ 1199.750360][T22980] active_anon 8192
[ 1199.754517][T22980] inactive_file 0
[ 1199.758341][T22980] active_file 0
[ 1199.762024][T22980] unevictable 0
[ 1199.765488][T22980] hierarchical_memory_limit 314572800
[ 1199.770921][T22980] hierarchical_memsw_limit 9223372036854771712
[ 1199.777342][T22980] total_cache 0
[ 1199.781378][T22980] total_rss 4096
[ 1199.785024][T22980] total_shmem 0
[ 1199.788525][T22980] total_mapped_file 0
[ 1199.792529][T22980] total_dirty 0
[ 1199.796037][T22980] total_writeback 0
[ 1199.799959][T22980] total_workingset_refault_anon 1005
[ 1199.805310][T22980] total_workingset_refault_file 624
[ 1199.811192][T22980] total_swap 503808
[ 1199.815109][T22980] total_swapcached 8192
[ 1199.819311][T22980] total_pgpgin 1161353
[ 1199.823393][T22980] total_pgpgout 1161351
[ 1199.827605][T22980] total_pgfault 1302385
[ 1199.831951][T22980] total_pgmajfault 527
[ 1199.836692][T22980] total_inactive_anon 0
[ 1199.840906][T22980] total_active_anon 8192
[ 1199.845141][T22980] total_inactive_file 0
[ 1199.849434][T22980] total_active_file 0
[ 1199.853425][T22980] total_unevictable 0
[ 1199.857481][T22980] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.18935,pid=22953,uid=0
[ 1199.872887][T22980] Memory cgroup out of memory: Killed process 22953 (syz.5.18935) total-vm:100244kB, anon-rss:1132kB, file-rss:26412kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1199.901607][T23004] netlink: 432 bytes leftover after parsing attributes in process `syz.9.18955'.
[ 1199.972799][ T3377] hid-generic 0000:0000:0000.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1199.997260][T23012] netlink: 4 bytes leftover after parsing attributes in process `syz.8.18959'.
[ 1200.043375][T23019] netlink: 'syz.8.18962': attribute type 21 has an invalid length.
[ 1200.051681][T23019] netlink: 8 bytes leftover after parsing attributes in process `syz.8.18962'.
[ 1200.069109][T23021] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1200.105018][T23025] netlink: 4 bytes leftover after parsing attributes in process `syz.5.18965'.
[ 1200.120137][T23025] team1: entered promiscuous mode
[ 1200.125305][T23025] team1: entered allmulticast mode
[ 1200.157139][   T29] kauditd_printk_skb: 485 callbacks suppressed
[ 1200.157158][   T29] audit: type=1400 audit(2026.616:34513): avc:  denied  { bind } for  pid=23029 comm="syz.5.18967" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1200.188305][   T29] audit: type=1326 audit(2026.659:34514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23018 comm="syz.8.18962" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb49b0bebe9 code=0x0
[ 1200.545310][T23039] netlink: 432 bytes leftover after parsing attributes in process `syz.6.18970'.
[ 1200.570698][   T29] audit: type=1326 audit(2027.049:34515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23041 comm="syz.6.18971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1200.595158][   T29] audit: type=1326 audit(2027.049:34516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23041 comm="syz.6.18971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1200.618541][   T29] audit: type=1326 audit(2027.070:34517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23041 comm="syz.6.18971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1200.641860][   T29] audit: type=1326 audit(2027.070:34518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23041 comm="syz.6.18971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1200.665131][   T29] audit: type=1326 audit(2027.070:34519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23041 comm="syz.6.18971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1200.668496][T23046] netlink: 4 bytes leftover after parsing attributes in process `syz.6.18972'.
[ 1200.688418][   T29] audit: type=1326 audit(2027.070:34520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23041 comm="syz.6.18971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1200.688455][   T29] audit: type=1326 audit(2027.070:34521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23041 comm="syz.6.18971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1200.688554][   T29] audit: type=1326 audit(2027.070:34522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23041 comm="syz.6.18971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1200.768971][ T3377] hid-generic 0000:0000:0000.002E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1200.840472][T23055] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1200.863983][T23057] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1200.897838][T23059] sch_tbf: burst 1821 is lower than device lo mtu (65550) !
[ 1200.906572][T23059] netlink: 12 bytes leftover after parsing attributes in process `syz.9.18978'.
[ 1201.037732][T23072] team1: entered promiscuous mode
[ 1201.042892][T23072] team1: entered allmulticast mode
[ 1201.111949][ T3377] hid-generic 0000:0000:0000.002F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1201.131173][T23084] team2: entered promiscuous mode
[ 1201.136333][T23084] team2: entered allmulticast mode
[ 1201.173919][T23091] 9pnet: Could not find request transport: f
[ 1202.553250][T23163] syz.9.19010 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1202.567813][T23163] CPU: 0 UID: 0 PID: 23163 Comm: syz.9.19010 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1202.567842][T23163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1202.567853][T23163] Call Trace:
[ 1202.567861][T23163]  <TASK>
[ 1202.567869][T23163]  __dump_stack+0x1d/0x30
[ 1202.567963][T23163]  dump_stack_lvl+0xe8/0x140
[ 1202.567982][T23163]  dump_stack+0x15/0x1b
[ 1202.568078][T23163]  dump_header+0x81/0x220
[ 1202.568106][T23163]  oom_kill_process+0x342/0x400
[ 1202.568135][T23163]  out_of_memory+0x979/0xb80
[ 1202.568234][T23163]  try_charge_memcg+0x5e6/0x9e0
[ 1202.568264][T23163]  obj_cgroup_charge_pages+0xa6/0x150
[ 1202.568336][T23163]  __memcg_kmem_charge_page+0x9f/0x170
[ 1202.568365][T23163]  __alloc_frozen_pages_noprof+0x188/0x360
[ 1202.568404][T23163]  alloc_pages_mpol+0xb3/0x250
[ 1202.568480][T23163]  alloc_pages_noprof+0x90/0x130
[ 1202.568582][T23163]  __vmalloc_node_range_noprof+0x6f2/0xe00
[ 1202.568623][T23163]  __kvmalloc_node_noprof+0x30f/0x4e0
[ 1202.568727][T23163]  ? ip_set_alloc+0x1f/0x30
[ 1202.568744][T23163]  ? ip_set_alloc+0x1f/0x30
[ 1202.568844][T23163]  ? hash_netiface_create+0x21b/0x740
[ 1202.568863][T23163]  ? __kmalloc_cache_noprof+0x189/0x320
[ 1202.568894][T23163]  ip_set_alloc+0x1f/0x30
[ 1202.568920][T23163]  hash_netiface_create+0x282/0x740
[ 1202.568942][T23163]  ? __pfx_hash_netiface_create+0x10/0x10
[ 1202.568964][T23163]  ip_set_create+0x3c9/0x960
[ 1202.569055][T23163]  ? __nla_parse+0x40/0x60
[ 1202.569107][T23163]  nfnetlink_rcv_msg+0x4c6/0x590
[ 1202.569163][T23163]  netlink_rcv_skb+0x120/0x220
[ 1202.569188][T23163]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1202.569233][T23163]  nfnetlink_rcv+0x16b/0x1690
[ 1202.569266][T23163]  ? search_extable+0x53/0x80
[ 1202.569294][T23163]  ? strncpy_from_user+0x17d/0x230
[ 1202.569349][T23163]  ? fixup_exception+0x741/0xd50
[ 1202.569370][T23163]  ? do_user_addr_fault+0xdaf/0x1090
[ 1202.569442][T23163]  ? _find_next_bit+0x61/0x90
[ 1202.569486][T23163]  ? kernelmode_fixup_or_oops+0x59/0xb0
[ 1202.569520][T23163]  ? exc_page_fault+0x62/0xa0
[ 1202.569542][T23163]  ? kernelmode_fixup_or_oops+0x59/0xb0
[ 1202.569599][T23163]  ? bpf_prog_22fedb13000eacf7+0x1c/0x1c
[ 1202.569691][T23163]  ? strncpy_from_user+0x177/0x230
[ 1202.569723][T23163]  ? should_fail_ex+0x30/0x280
[ 1202.569746][T23163]  ? selinux_nlmsg_lookup+0x99/0x890
[ 1202.569782][T23163]  ? __rcu_read_unlock+0x34/0x70
[ 1202.569810][T23163]  ? __netlink_lookup+0x266/0x2a0
[ 1202.569833][T23163]  netlink_unicast+0x5c0/0x690
[ 1202.569853][T23163]  netlink_sendmsg+0x58b/0x6b0
[ 1202.569883][T23163]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1202.569910][T23163]  __sock_sendmsg+0x142/0x180
[ 1202.569945][T23163]  ____sys_sendmsg+0x31e/0x4e0
[ 1202.569977][T23163]  ___sys_sendmsg+0x17b/0x1d0
[ 1202.570032][T23163]  __x64_sys_sendmsg+0xd4/0x160
[ 1202.570061][T23163]  x64_sys_call+0x191e/0x2ff0
[ 1202.570082][T23163]  do_syscall_64+0xd2/0x200
[ 1202.570165][T23163]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1202.570215][T23163]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1202.570247][T23163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1202.570272][T23163] RIP: 0033:0x7f63c97cebe9
[ 1202.570292][T23163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1202.570313][T23163] RSP: 002b:00007f63c7dca038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1202.570370][T23163] RAX: ffffffffffffffda RBX: 00007f63c9a06270 RCX: 00007f63c97cebe9
[ 1202.570387][T23163] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[ 1202.570401][T23163] RBP: 00007f63c9851e19 R08: 0000000000000000 R09: 0000000000000000
[ 1202.570418][T23163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1202.570429][T23163] R13: 00007f63c9a06308 R14: 00007f63c9a06270 R15: 00007fff225ab808
[ 1202.570522][T23163]  </TASK>
[ 1202.570529][T23163] memory: usage 307200kB, limit 307200kB, failcnt 2813
[ 1202.948131][T23163] memory+swap: usage 307660kB, limit 9007199254740988kB, failcnt 0
[ 1202.956406][T23163] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[ 1202.963851][T23163] Memory cgroup stats for /syz9:
[ 1202.964234][T23163] cache 0
[ 1202.972358][T23163] rss 0
[ 1202.975129][T23163] shmem 0
[ 1202.978092][T23163] mapped_file 0
[ 1202.981621][T23163] dirty 0
[ 1202.984717][T23163] writeback 0
[ 1202.988242][T23163] workingset_refault_anon 753
[ 1202.993473][T23163] workingset_refault_file 67
[ 1202.998159][T23163] swap 471040
[ 1203.001669][T23163] swapcached 4096
[ 1203.005286][T23163] pgpgin 679531
[ 1203.008732][T23163] pgpgout 679530
[ 1203.012329][T23163] pgfault 793781
[ 1203.015882][T23163] pgmajfault 413
[ 1203.019907][T23163] inactive_anon 0
[ 1203.023539][T23163] active_anon 4096
[ 1203.027299][T23163] inactive_file 0
[ 1203.030988][T23163] active_file 0
[ 1203.034509][T23163] unevictable 0
[ 1203.038030][T23163] hierarchical_memory_limit 314572800
[ 1203.043536][T23163] hierarchical_memsw_limit 9223372036854771712
[ 1203.049844][T23163] total_cache 0
[ 1203.054085][T23163] total_rss 0
[ 1203.057418][T23163] total_shmem 0
[ 1203.061002][T23163] total_mapped_file 0
[ 1203.065002][T23163] total_dirty 0
[ 1203.068510][T23163] total_writeback 0
[ 1203.072882][T23163] total_workingset_refault_anon 753
[ 1203.078572][T23163] total_workingset_refault_file 67
[ 1203.083787][T23163] total_swap 471040
[ 1203.087646][T23163] total_swapcached 4096
[ 1203.091925][T23163] total_pgpgin 679531
[ 1203.095945][T23163] total_pgpgout 679530
[ 1203.100021][T23163] total_pgfault 793781
[ 1203.104093][T23163] total_pgmajfault 413
[ 1203.108708][T23163] total_inactive_anon 0
[ 1203.112955][T23163] total_active_anon 4096
[ 1203.117343][T23163] total_inactive_file 0
[ 1203.121501][T23163] total_active_file 0
[ 1203.125563][T23163] total_unevictable 0
[ 1203.129632][T23163] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz9,task_memcg=/syz9,task=syz.9.19010,pid=23142,uid=0
[ 1203.145061][T23163] Memory cgroup out of memory: Killed process 23142 (syz.9.19010) total-vm:100244kB, anon-rss:1008kB, file-rss:26428kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:1000
[ 1203.226801][T23216] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1203.328828][T23230] team3: entered promiscuous mode
[ 1203.333975][T23230] team3: entered allmulticast mode
[ 1203.518345][ T3377] hid_parser_main: 142 callbacks suppressed
[ 1203.518366][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x1
[ 1203.531950][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[ 1203.539448][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[ 1203.547428][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[ 1203.554880][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[ 1203.562319][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[ 1203.570335][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[ 1203.577762][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[ 1203.585236][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x2
[ 1203.592792][ T3377] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[ 1203.616466][T23260] __nla_validate_parse: 41 callbacks suppressed
[ 1203.616485][T23260] netlink: 4 bytes leftover after parsing attributes in process `syz.6.19056'.
[ 1203.623157][ T3377] hid-generic 0000:0000:0000.0030: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1203.633718][T23260] netlink: 12 bytes leftover after parsing attributes in process `syz.6.19056'.
[ 1203.719119][T23271] netlink: 36 bytes leftover after parsing attributes in process `syz.9.19060'.
[ 1203.728336][T23271] netlink: 36 bytes leftover after parsing attributes in process `syz.9.19060'.
[ 1203.738518][T23271] netlink: 36 bytes leftover after parsing attributes in process `syz.9.19060'.
[ 1203.759183][T23271] netlink: 36 bytes leftover after parsing attributes in process `syz.9.19060'.
[ 1203.768881][T23271] netlink: 36 bytes leftover after parsing attributes in process `syz.9.19060'.
[ 1203.778354][T23271] netlink: 36 bytes leftover after parsing attributes in process `syz.9.19060'.
[ 1203.805808][T23271] netlink: 36 bytes leftover after parsing attributes in process `syz.9.19060'.
[ 1203.815255][T23271] netlink: 36 bytes leftover after parsing attributes in process `syz.9.19060'.
[ 1203.846221][T23284] team2: entered promiscuous mode
[ 1203.851407][T23284] team2: entered allmulticast mode
[ 1204.310114][T23324] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1204.342918][T31177] hid-generic 0000:0000:0000.0031: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1204.897141][   T29] kauditd_printk_skb: 880 callbacks suppressed
[ 1204.897156][   T29] audit: type=1326 audit(2031.629:35403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb49b0b5ba7 code=0x7ffc0000
[ 1204.926561][   T29] audit: type=1326 audit(2031.629:35404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb49b05adb9 code=0x7ffc0000
[ 1204.952440][   T29] audit: type=1326 audit(2031.629:35405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1204.975881][   T29] audit: type=1326 audit(2031.629:35406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb49b0b5ba7 code=0x7ffc0000
[ 1204.999048][   T29] audit: type=1326 audit(2031.629:35407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb49b05adb9 code=0x7ffc0000
[ 1205.022608][   T29] audit: type=1326 audit(2031.629:35408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1205.046025][   T29] audit: type=1326 audit(2031.640:35409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb49b0b5ba7 code=0x7ffc0000
[ 1205.069359][   T29] audit: type=1326 audit(2031.640:35410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb49b05adb9 code=0x7ffc0000
[ 1205.093031][   T29] audit: type=1326 audit(2031.640:35411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fb49b0bebe9 code=0x7ffc0000
[ 1205.116347][   T29] audit: type=1326 audit(2031.650:35412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23363 comm="syz.8.19096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb49b0b5ba7 code=0x7ffc0000
[ 1207.991823][T23588] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1208.027137][T23596] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1208.379414][T23627] __nla_validate_parse: 129 callbacks suppressed
[ 1208.379433][T23627] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19191'.
[ 1208.394934][T23627] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19191'.
[ 1208.405199][T23627] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19191'.
[ 1208.444098][T23643] netlink: 12 bytes leftover after parsing attributes in process `syz.6.19196'.
[ 1208.463990][T23646] netlink: 104 bytes leftover after parsing attributes in process `syz.7.19197'.
[ 1208.479197][T23646] netlink: 32 bytes leftover after parsing attributes in process `syz.7.19197'.
[ 1208.546560][T23652] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1208.782897][T23622] syz.8.19185 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1208.797146][T23622] CPU: 0 UID: 0 PID: 23622 Comm: syz.8.19185 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1208.797171][T23622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1208.797178][T23622] Call Trace:
[ 1208.797184][T23622]  <TASK>
[ 1208.797269][T23622]  __dump_stack+0x1d/0x30
[ 1208.797284][T23622]  dump_stack_lvl+0xe8/0x140
[ 1208.797297][T23622]  dump_stack+0x15/0x1b
[ 1208.797308][T23622]  dump_header+0x81/0x220
[ 1208.797472][T23622]  oom_kill_process+0x342/0x400
[ 1208.797491][T23622]  out_of_memory+0x979/0xb80
[ 1208.797511][T23622]  try_charge_memcg+0x5e6/0x9e0
[ 1208.797565][T23622]  obj_cgroup_charge_pages+0xa6/0x150
[ 1208.797584][T23622]  __memcg_kmem_charge_page+0x9f/0x170
[ 1208.797603][T23622]  __alloc_frozen_pages_noprof+0x188/0x360
[ 1208.797754][T23622]  alloc_pages_mpol+0xb3/0x250
[ 1208.797774][T23622]  alloc_pages_noprof+0x90/0x130
[ 1208.797792][T23622]  __vmalloc_node_range_noprof+0x6f2/0xe00
[ 1208.797861][T23622]  __kvmalloc_node_noprof+0x30f/0x4e0
[ 1208.797878][T23622]  ? ip_set_alloc+0x1f/0x30
[ 1208.797890][T23622]  ? ip_set_alloc+0x1f/0x30
[ 1208.797949][T23622]  ? hash_netiface_create+0x21b/0x740
[ 1208.797962][T23622]  ? __kmalloc_cache_noprof+0x189/0x320
[ 1208.797979][T23622]  ip_set_alloc+0x1f/0x30
[ 1208.797990][T23622]  hash_netiface_create+0x282/0x740
[ 1208.798002][T23622]  ? __pfx_hash_netiface_create+0x10/0x10
[ 1208.798038][T23622]  ip_set_create+0x3c9/0x960
[ 1208.798057][T23622]  ? __nla_parse+0x40/0x60
[ 1208.798156][T23622]  nfnetlink_rcv_msg+0x4c6/0x590
[ 1208.798193][T23622]  netlink_rcv_skb+0x120/0x220
[ 1208.798207][T23622]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1208.798280][T23622]  nfnetlink_rcv+0x16b/0x1690
[ 1208.798298][T23622]  ? nlmon_xmit+0x4f/0x60
[ 1208.798314][T23622]  ? consume_skb+0x49/0x150
[ 1208.798400][T23622]  ? nlmon_xmit+0x4f/0x60
[ 1208.798415][T23622]  ? dev_hard_start_xmit+0x3b0/0x3e0
[ 1208.798431][T23622]  ? __dev_queue_xmit+0x1200/0x2000
[ 1208.798445][T23622]  ? __dev_queue_xmit+0x182/0x2000
[ 1208.798475][T23622]  ? ref_tracker_free+0x37d/0x3e0
[ 1208.798529][T23622]  ? __netlink_deliver_tap+0x4dc/0x500
[ 1208.798545][T23622]  netlink_unicast+0x5c0/0x690
[ 1208.798586][T23622]  netlink_sendmsg+0x58b/0x6b0
[ 1208.798601][T23622]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1208.798632][T23622]  __sock_sendmsg+0x142/0x180
[ 1208.798657][T23622]  ____sys_sendmsg+0x31e/0x4e0
[ 1208.798673][T23622]  ___sys_sendmsg+0x17b/0x1d0
[ 1208.798701][T23622]  __x64_sys_sendmsg+0xd4/0x160
[ 1208.798795][T23622]  x64_sys_call+0x191e/0x2ff0
[ 1208.798809][T23622]  do_syscall_64+0xd2/0x200
[ 1208.798826][T23622]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1208.798845][T23622]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1208.798861][T23622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1208.798996][T23622] RIP: 0033:0x7fb49b0bebe9
[ 1208.799008][T23622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1208.799020][T23622] RSP: 002b:00007fb4996ba038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1208.799034][T23622] RAX: ffffffffffffffda RBX: 00007fb49b2f6270 RCX: 00007fb49b0bebe9
[ 1208.799043][T23622] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[ 1208.799089][T23622] RBP: 00007fb49b141e19 R08: 0000000000000000 R09: 0000000000000000
[ 1208.799097][T23622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1208.799105][T23622] R13: 00007fb49b2f6308 R14: 00007fb49b2f6270 R15: 00007ffc03d64258
[ 1208.799117][T23622]  </TASK>
[ 1208.799122][T23622] memory: usage 307200kB, limit 307200kB, failcnt 3850
[ 1209.142955][T23622] memory+swap: usage 307740kB, limit 9007199254740988kB, failcnt 0
[ 1209.150844][T23622] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[ 1209.158144][T23622] Memory cgroup stats for /syz8:
[ 1209.160303][T23622] cache 0
[ 1209.168554][T23622] rss 4096
[ 1209.171691][T23622] shmem 0
[ 1209.174633][T23622] mapped_file 0
[ 1209.178169][T23622] dirty 0
[ 1209.181143][T23622] writeback 0
[ 1209.184457][T23622] workingset_refault_anon 1130
[ 1209.189312][T23622] workingset_refault_file 385
[ 1209.194088][T23622] swap 552960
[ 1209.197389][T23622] swapcached 20480
[ 1209.201166][T23622] pgpgin 1158893
[ 1209.204721][T23622] pgpgout 1158888
[ 1209.208372][T23622] pgfault 1288405
[ 1209.212003][T23622] pgmajfault 651
[ 1209.215534][T23622] inactive_anon 0
[ 1209.219182][T23622] active_anon 20480
[ 1209.222978][T23622] inactive_file 0
[ 1209.226593][T23622] active_file 0
[ 1209.230070][T23622] unevictable 0
[ 1209.233592][T23622] hierarchical_memory_limit 314572800
[ 1209.238989][T23622] hierarchical_memsw_limit 9223372036854771712
[ 1209.245166][T23622] total_cache 0
[ 1209.248643][T23622] total_rss 4096
[ 1209.252225][T23622] total_shmem 0
[ 1209.255684][T23622] total_mapped_file 0
[ 1209.259756][T23622] total_dirty 0
[ 1209.263226][T23622] total_writeback 0
[ 1209.267144][T23622] total_workingset_refault_anon 1130
[ 1209.272447][T23622] total_workingset_refault_file 385
[ 1209.277676][T23622] total_swap 552960
[ 1209.281495][T23622] total_swapcached 20480
[ 1209.285780][T23622] total_pgpgin 1158893
[ 1209.289881][T23622] total_pgpgout 1158888
[ 1209.294055][T23622] total_pgfault 1288405
[ 1209.298239][T23622] total_pgmajfault 651
[ 1209.302319][T23622] total_inactive_anon 0
[ 1209.306594][T23622] total_active_anon 20480
[ 1209.310937][T23622] total_inactive_file 0
[ 1209.315131][T23622] total_active_file 0
[ 1209.319121][T23622] total_unevictable 0
[ 1209.323215][T23622] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz8,task_memcg=/syz8,task=syz.8.19185,pid=23610,uid=0
[ 1209.338054][T23622] Memory cgroup out of memory: Killed process 23610 (syz.8.19185) total-vm:100244kB, anon-rss:1136kB, file-rss:26416kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1209.511242][T23672] netlink: 104 bytes leftover after parsing attributes in process `syz.8.19206'.
[ 1209.521961][T23672] netlink: 32 bytes leftover after parsing attributes in process `syz.8.19206'.
[ 1209.532079][T23672] netlink: 36 bytes leftover after parsing attributes in process `syz.8.19206'.
[ 1209.541220][T23672] netlink: 36 bytes leftover after parsing attributes in process `syz.8.19206'.
[ 1209.633573][T23678] netlink: 'syz.9.19208': attribute type 10 has an invalid length.
[ 1209.644775][   T29] kauditd_printk_skb: 1286 callbacks suppressed
[ 1209.644795][   T29] audit: type=1326 audit(2036.609:36699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f752b875ba7 code=0x7ffc0000
[ 1209.675059][   T29] audit: type=1326 audit(2036.609:36700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f752b81adb9 code=0x7ffc0000
[ 1209.698369][   T29] audit: type=1326 audit(2036.609:36701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1209.722385][   T29] audit: type=1326 audit(2036.609:36702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f752b875ba7 code=0x7ffc0000
[ 1209.745510][   T29] audit: type=1326 audit(2036.609:36703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f752b81adb9 code=0x7ffc0000
[ 1209.769141][   T29] audit: type=1326 audit(2036.609:36704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1209.792307][   T29] audit: type=1326 audit(2036.619:36705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f752b875ba7 code=0x7ffc0000
[ 1209.816093][   T29] audit: type=1326 audit(2036.619:36706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f752b81adb9 code=0x7ffc0000
[ 1209.839177][   T29] audit: type=1326 audit(2036.619:36707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1209.863101][   T29] audit: type=1326 audit(2036.630:36708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23664 comm="syz.6.19204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f752b875ba7 code=0x7ffc0000
[ 1209.914334][T23678] team0 (unregistering): Port device team_slave_0 removed
[ 1209.924945][T23678] team0 (unregistering): Port device team_slave_1 removed
[ 1210.314432][T23727] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1210.694417][T23704] syz.8.19217 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1210.705620][T23704] CPU: 0 UID: 0 PID: 23704 Comm: syz.8.19217 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1210.705646][T23704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1210.705658][T23704] Call Trace:
[ 1210.705667][T23704]  <TASK>
[ 1210.705675][T23704]  __dump_stack+0x1d/0x30
[ 1210.705695][T23704]  dump_stack_lvl+0xe8/0x140
[ 1210.705712][T23704]  dump_stack+0x15/0x1b
[ 1210.705791][T23704]  dump_header+0x81/0x220
[ 1210.705820][T23704]  oom_kill_process+0x342/0x400
[ 1210.705896][T23704]  out_of_memory+0x979/0xb80
[ 1210.705935][T23704]  try_charge_memcg+0x5e6/0x9e0
[ 1210.706013][T23704]  charge_memcg+0x51/0xc0
[ 1210.706030][T23704]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[ 1210.706050][T23704]  __read_swap_cache_async+0x1df/0x350
[ 1210.706161][T23704]  swap_cluster_readahead+0x277/0x3e0
[ 1210.706194][T23704]  swapin_readahead+0xde/0x6f0
[ 1210.706221][T23704]  ? __filemap_get_folio+0x4f7/0x6b0
[ 1210.706336][T23704]  ? swap_cache_get_folio+0x77/0x200
[ 1210.706368][T23704]  do_swap_page+0x301/0x2430
[ 1210.706394][T23704]  ? css_rstat_updated+0xb7/0x240
[ 1210.706425][T23704]  ? __pfx_default_wake_function+0x10/0x10
[ 1210.706527][T23704]  handle_mm_fault+0x9a5/0x2c20
[ 1210.706610][T23704]  do_user_addr_fault+0x636/0x1090
[ 1210.706647][T23704]  ? fpregs_restore_userregs+0xe2/0x1d0
[ 1210.706703][T23704]  ? switch_fpu_return+0xe/0x20
[ 1210.706730][T23704]  ? fpregs_assert_state_consistent+0xb4/0xe0
[ 1210.706842][T23704]  exc_page_fault+0x62/0xa0
[ 1210.706872][T23704]  asm_exc_page_fault+0x26/0x30
[ 1210.706895][T23704] RIP: 0033:0x7fb49af9560c
[ 1210.706922][T23704] Code: 66 0f 1f 44 00 00 69 3d a6 00 e9 00 e8 03 00 00 48 8d 1d a7 09 36 00 e8 42 95 12 00 eb 0c 48 81 c3 f0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[ 1210.706943][T23704] RSP: 002b:00007ffc03d643c0 EFLAGS: 00010206
[ 1210.707037][T23704] RAX: 0000000000000000 RBX: 00007fb49b2f5fa0 RCX: 0000000000000000
[ 1210.707052][T23704] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000555594580808
[ 1210.707065][T23704] RBP: 00007fb49b2f7da0 R08: 0000000000000000 R09: 7fffffffffffffff
[ 1210.707160][T23704] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000001360f5
[ 1210.707175][T23704] R13: 00007ffc03d644b0 R14: ffffffffffffffff R15: 00007ffc03d644d0
[ 1210.707194][T23704]  </TASK>
[ 1210.926410][T23704] memory: usage 307200kB, limit 307200kB, failcnt 4049
[ 1210.933435][T23704] memory+swap: usage 307756kB, limit 9007199254740988kB, failcnt 0
[ 1210.941535][T23704] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1210.948836][T23704] Memory cgroup stats for /syz8:
[ 1210.949109][T23704] cache 0
[ 1210.957337][T23704] rss 4096
[ 1210.960554][T23704] shmem 0
[ 1210.963564][T23704] mapped_file 0
[ 1210.967137][T23704] dirty 0
[ 1210.970237][T23704] writeback 0
[ 1210.974119][T23704] workingset_refault_anon 1176
[ 1210.978897][T23704] workingset_refault_file 385
[ 1210.983700][T23704] swap 569344
[ 1210.987121][T23704] swapcached 4096
[ 1210.991035][T23704] pgpgin 1159129
[ 1210.994607][T23704] pgpgout 1159128
[ 1210.998245][T23704] pgfault 1288914
[ 1211.002525][T23704] pgmajfault 671
[ 1211.006083][T23704] inactive_anon 4096
[ 1211.010052][T23704] active_anon 0
[ 1211.013611][T23704] inactive_file 0
[ 1211.017252][T23704] active_file 0
[ 1211.020752][T23704] unevictable 0
[ 1211.024217][T23704] hierarchical_memory_limit 314572800
[ 1211.030245][T23704] hierarchical_memsw_limit 9223372036854771712
[ 1211.036400][T23704] total_cache 0
[ 1211.039909][T23704] total_rss 4096
[ 1211.043714][T23704] total_shmem 0
[ 1211.047416][T23704] total_mapped_file 0
[ 1211.051553][T23704] total_dirty 0
[ 1211.055079][T23704] total_writeback 0
[ 1211.059486][T23704] total_workingset_refault_anon 1176
[ 1211.064800][T23704] total_workingset_refault_file 385
[ 1211.070194][T23704] total_swap 569344
[ 1211.074097][T23704] total_swapcached 4096
[ 1211.078264][T23704] total_pgpgin 1159129
[ 1211.082325][T23704] total_pgpgout 1159128
[ 1211.086988][T23704] total_pgfault 1288914
[ 1211.091191][T23704] total_pgmajfault 671
[ 1211.095461][T23704] total_inactive_anon 4096
[ 1211.099881][T23704] total_active_anon 0
[ 1211.103853][T23704] total_inactive_file 0
[ 1211.108033][T23704] total_active_file 0
[ 1211.112002][T23704] total_unevictable 0
[ 1211.116426][T23704] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz8,task_memcg=/syz8,task=syz.8.19217,pid=23704,uid=0
[ 1211.131277][T23704] Memory cgroup out of memory: Killed process 23704 (syz.8.19217) total-vm:98196kB, anon-rss:1008kB, file-rss:26408kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1211.188862][T23740] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1211.900787][T23763] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1212.288611][T31177] hid_parser_main: 66 callbacks suppressed
[ 1212.288631][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x1
[ 1212.302031][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[ 1212.309499][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[ 1212.316970][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[ 1212.324493][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[ 1212.331958][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[ 1212.366079][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[ 1212.373551][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[ 1212.381067][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x2
[ 1212.388659][T31177] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[ 1212.397719][T31177] hid-generic 0000:0000:0000.0032: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1212.444996][T13532] hid-generic 0000:0000:0000.0033: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1212.556424][T31177] hid-generic 0000:0000:0000.0034: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1212.795570][T22501] syz_tun (unregistering): left allmulticast mode
[ 1212.805208][ T9956] smc: removing ib device syz1
[ 1212.814074][T31177] syz1: Port: 1 Link DOWN
[ 1213.083863][T23851] chnl_net:caif_netlink_parms(): no params data found
[ 1213.127286][T23851] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1213.134424][T23851] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1213.138968][T23872] __nla_validate_parse: 38 callbacks suppressed
[ 1213.138984][T23872] netlink: 104 bytes leftover after parsing attributes in process `syz.8.19272'.
[ 1213.141895][T23851] bridge_slave_0: entered allmulticast mode
[ 1213.149564][T23872] netlink: 32 bytes leftover after parsing attributes in process `syz.8.19272'.
[ 1213.157861][T23851] bridge_slave_0: entered promiscuous mode
[ 1213.178854][T23851] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1213.186068][T23851] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1213.193737][T23851] bridge_slave_1: entered allmulticast mode
[ 1213.200360][T23851] bridge_slave_1: entered promiscuous mode
[ 1213.220024][T23851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1213.230717][T23851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1213.252377][T23851] team0: Port device team_slave_0 added
[ 1213.259116][T23851] team0: Port device team_slave_1 added
[ 1213.268375][T23877] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1213.288150][T23851] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1213.295182][T23851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1213.321318][T23851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1213.332860][T23851] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1213.339813][T23851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1213.365850][T23851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1213.402119][T23851] hsr_slave_0: entered promiscuous mode
[ 1213.408183][T23851] hsr_slave_1: entered promiscuous mode
[ 1213.414224][T23851] debugfs: 'hsr0' already exists in 'hsr'
[ 1213.420004][T23851] Cannot create hsr debugfs directory
[ 1213.462817][T23890] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1213.542925][T23851] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1213.553370][T23851] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1213.601907][T23851] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1213.609068][T23901] netlink: 104 bytes leftover after parsing attributes in process `syz.6.19283'.
[ 1213.612541][T23851] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1213.622856][T23901] netlink: 32 bytes leftover after parsing attributes in process `syz.6.19283'.
[ 1213.645395][T23901] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19283'.
[ 1213.654570][T23901] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19283'.
[ 1213.663950][T23901] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19283'.
[ 1213.681079][T23901] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19283'.
[ 1213.690251][T23901] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19283'.
[ 1213.699738][T23901] netlink: 36 bytes leftover after parsing attributes in process `syz.6.19283'.
[ 1213.723713][T23851] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1213.734144][T23851] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1213.820312][T23851] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1213.830946][T23851] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[ 1213.928303][T23851] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1214.000607][T23851] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1214.069454][T23851] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1214.150424][T23851] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1214.219838][T23928] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1214.396356][   T29] kauditd_printk_skb: 2346 callbacks suppressed
[ 1214.396451][   T29] audit: type=1326 audit(2041.639:39055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23927 comm="syz.9.19291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f63c97cd84a code=0x7ffc0000
[ 1214.447838][   T29] audit: type=1326 audit(2041.639:39056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23927 comm="syz.9.19291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63c97cebe9 code=0x7ffc0000
[ 1214.458339][T23851] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1214.471237][   T29] audit: type=1326 audit(2041.639:39057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23927 comm="syz.9.19291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63c97cebe9 code=0x7ffc0000
[ 1214.483403][T23851] 8021q: adding VLAN 0 to HW filter on device team0
[ 1214.501132][   T29] audit: type=1326 audit(2041.639:39058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23915 comm="syz.6.19287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f752b875ba7 code=0x7ffc0000
[ 1214.501163][   T29] audit: type=1326 audit(2041.639:39059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23915 comm="syz.6.19287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f752b81adb9 code=0x7ffc0000
[ 1214.554314][   T29] audit: type=1326 audit(2041.639:39060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23915 comm="syz.6.19287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1214.577776][   T29] audit: type=1326 audit(2041.681:39061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23915 comm="syz.6.19287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f752b875ba7 code=0x7ffc0000
[ 1214.600900][   T29] audit: type=1326 audit(2041.681:39062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23915 comm="syz.6.19287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f752b81adb9 code=0x7ffc0000
[ 1214.624003][   T29] audit: type=1326 audit(2041.681:39063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23915 comm="syz.6.19287" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f752b87ebe9 code=0x7ffc0000
[ 1214.647172][   T29] audit: type=1400 audit(2041.681:39064): avc:  denied  { map } for  pid=23936 comm="syz.7.19292" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=185345 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[ 1214.699206][  T160] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1214.706394][  T160] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1214.740066][ T9955] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1214.747402][ T9955] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1214.787660][T23851] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1214.798519][T23945] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1214.808193][T23851] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1214.955237][T23851] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1215.158228][T23851] veth0_vlan: entered promiscuous mode
[ 1215.199303][T23851] veth1_vlan: entered promiscuous mode
[ 1215.224428][T23851] veth0_macvtap: entered promiscuous mode
[ 1215.231999][T23851] veth1_macvtap: entered promiscuous mode
[ 1215.297848][T23851] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1215.312483][T23851] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1215.406792][   T31] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1215.435988][   T31] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1215.508743][   T31] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1215.567450][   T31] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1215.965801][T24014] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1216.074754][T23564] syz_tun (unregistering): left allmulticast mode
[ 1216.349399][ T9956] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1216.408192][ T9956] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1216.431438][T24015] chnl_net:caif_netlink_parms(): no params data found
[ 1216.469971][ T9956] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1216.525352][ T9956] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1216.544617][T24015] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1216.552043][T24015] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1216.564498][T24015] bridge_slave_0: entered allmulticast mode
[ 1216.587989][T24015] bridge_slave_0: entered promiscuous mode
[ 1216.627202][T24015] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1216.634361][T24015] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1216.647566][T24015] bridge_slave_1: entered allmulticast mode
[ 1216.655407][T24015] bridge_slave_1: entered promiscuous mode
[ 1216.667199][ T9956] bridge_slave_1: left allmulticast mode
[ 1216.672945][ T9956] bridge_slave_1: left promiscuous mode
[ 1216.678668][ T9956] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1216.688421][ T9956] bridge_slave_0: left allmulticast mode
[ 1216.694239][ T9956] bridge_slave_0: left promiscuous mode
[ 1216.699989][ T9956] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1216.737329][T23851] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[ 1216.748592][T23851] CPU: 0 UID: 0 PID: 23851 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1216.748674][T23851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1216.748688][T23851] Call Trace:
[ 1216.748695][T23851]  <TASK>
[ 1216.748705][T23851]  __dump_stack+0x1d/0x30
[ 1216.748730][T23851]  dump_stack_lvl+0xe8/0x140
[ 1216.748752][T23851]  dump_stack+0x15/0x1b
[ 1216.748841][T23851]  dump_header+0x81/0x220
[ 1216.748875][T23851]  oom_kill_process+0x342/0x400
[ 1216.748933][T23851]  out_of_memory+0x979/0xb80
[ 1216.749068][T23851]  try_charge_memcg+0x5e6/0x9e0
[ 1216.749093][T23851]  charge_memcg+0x51/0xc0
[ 1216.749110][T23851]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[ 1216.749130][T23851]  __read_swap_cache_async+0x1df/0x350
[ 1216.749223][T23851]  swap_cluster_readahead+0x277/0x3e0
[ 1216.749314][T23851]  swapin_readahead+0xde/0x6f0
[ 1216.749359][T23851]  ? __filemap_get_folio+0x4f7/0x6b0
[ 1216.749395][T23851]  ? swap_cache_get_folio+0x77/0x200
[ 1216.749495][T23851]  do_swap_page+0x301/0x2430
[ 1216.749515][T23851]  ? finish_task_switch+0xad/0x2b0
[ 1216.749543][T23851]  ? __pfx_default_wake_function+0x10/0x10
[ 1216.749567][T23851]  handle_mm_fault+0x9a5/0x2c20
[ 1216.749700][T23851]  do_user_addr_fault+0x636/0x1090
[ 1216.749732][T23851]  ? fpregs_restore_userregs+0xe2/0x1d0
[ 1216.749834][T23851]  ? switch_fpu_return+0xe/0x20
[ 1216.749865][T23851]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1216.749894][T23851]  exc_page_fault+0x62/0xa0
[ 1216.749993][T23851]  asm_exc_page_fault+0x26/0x30
[ 1216.750012][T23851] RIP: 0033:0x7fed56091465
[ 1216.750028][T23851] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d fe 70 1d 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[ 1216.750049][T23851] RSP: 002b:00007ffd06e25508 EFLAGS: 00010246
[ 1216.750132][T23851] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 00007fed56091463
[ 1216.750148][T23851] RDX: 00007ffd06e25520 RSI: 0000000000000000 RDI: 0000000000000000
[ 1216.750163][T23851] RBP: 00007ffd06e2558c R08: 0000000005491603 R09: 0000000000000000
[ 1216.750177][T23851] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[ 1216.750192][T23851] R13: 00000000000927c0 R14: 000000000013765b R15: 00007ffd06e255e0
[ 1216.750213][T23851]  </TASK>
[ 1216.750222][T23851] memory: usage 307200kB, limit 307200kB, failcnt 3718
[ 1216.978105][T23851] memory+swap: usage 307412kB, limit 9007199254740988kB, failcnt 0
[ 1216.986068][T23851] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 1216.993602][T23851] Memory cgroup stats for /syz5:
[ 1216.994040][T23851] cache 0
[ 1217.001970][T23851] rss 0
[ 1217.004822][T23851] shmem 0
[ 1217.007769][T23851] mapped_file 0
[ 1217.011250][T23851] dirty 0
[ 1217.014956][T23851] writeback 0
[ 1217.018252][T23851] workingset_refault_anon 1038
[ 1217.023324][T23851] workingset_refault_file 690
[ 1217.028015][T23851] swap 217088
[ 1217.031313][T23851] swapcached 0
[ 1217.035051][T23851] pgpgin 1168630
[ 1217.038614][T23851] pgpgout 1168630
[ 1217.043034][T23851] pgfault 1317332
[ 1217.046690][T23851] pgmajfault 550
[ 1217.052211][T23851] inactive_anon 0
[ 1217.056074][T23851] active_anon 0
[ 1217.059615][T23851] inactive_file 0
[ 1217.063591][T23851] active_file 0
[ 1217.067149][T23851] unevictable 0
[ 1217.070745][T23851] hierarchical_memory_limit 314572800
[ 1217.076596][T23851] hierarchical_memsw_limit 9223372036854771712
[ 1217.083350][T23851] total_cache 0
[ 1217.086958][T23851] total_rss 0
[ 1217.090459][T23851] total_shmem 0
[ 1217.093926][T23851] total_mapped_file 0
[ 1217.098248][T23851] total_dirty 0
[ 1217.101743][T23851] total_writeback 0
[ 1217.105620][T23851] total_workingset_refault_anon 1038
[ 1217.111694][T23851] total_workingset_refault_file 690
[ 1217.117022][T23851] total_swap 217088
[ 1217.120846][T23851] total_swapcached 0
[ 1217.124921][T23851] total_pgpgin 1168630
[ 1217.129016][T23851] total_pgpgout 1168630
[ 1217.133260][T23851] total_pgfault 1317332
[ 1217.138111][T23851] total_pgmajfault 550
[ 1217.142185][T23851] total_inactive_anon 0
[ 1217.146380][T23851] total_active_anon 0
[ 1217.150464][T23851] total_inactive_file 0
[ 1217.154795][T23851] total_active_file 0
[ 1217.158855][T23851] total_unevictable 0
[ 1217.162844][T23851] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.19314,pid=24012,uid=0
[ 1217.178235][T24068] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1217.178299][T23851] Memory cgroup out of memory: Killed process 24012 (syz.5.19314) total-vm:98124kB, anon-rss:1132kB, file-rss:26408kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1217.255243][ T9956] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1217.274903][ T9956] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1217.287072][ T9956] bond0 (unregistering): Released all slaves
[ 1217.296598][ T9956] bond1 (unregistering): Released all slaves
[ 1217.308807][ T9956] bond2 (unregistering): Released all slaves
[ 1217.356833][T24015] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1217.380165][T24015] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1217.420668][ T9956] hsr_slave_0: left promiscuous mode
[ 1217.426697][ T9956] hsr_slave_1: left promiscuous mode
[ 1217.433140][ T9956] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1217.440676][ T9956] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1217.449268][ T9956] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1217.456721][ T9956] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1217.493193][ T9956] veth1_macvtap: left promiscuous mode
[ 1217.504354][ T9956] veth0_macvtap: left promiscuous mode
[ 1217.514312][ T9956] veth1_vlan: left promiscuous mode
[ 1217.519882][ T9956] veth0_vlan: left promiscuous mode
[ 1217.538286][   T36] hid_parser_main: 104 callbacks suppressed
[ 1217.538361][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x1
[ 1217.551766][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[ 1217.559936][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[ 1217.567955][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[ 1217.575561][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[ 1217.583204][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[ 1217.595977][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[ 1217.603486][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[ 1217.611589][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x2
[ 1217.619038][   T36] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[ 1217.634932][   T36] hid-generic 0000:0000:0000.0035: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1217.669166][ T9956] team0 (unregistering): Port device team_slave_1 removed
[ 1217.679535][ T9956] team0 (unregistering): Port device team_slave_0 removed
[ 1217.727050][T24015] team0: Port device team_slave_0 added
[ 1217.735198][T24015] team0: Port device team_slave_1 added
[ 1217.767978][T24015] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1217.775012][T24015] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1217.801600][T24015] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1217.815990][T24117] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1217.839257][T24015] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1217.846334][T24015] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1217.873293][T24015] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1217.918989][T24015] hsr_slave_0: entered promiscuous mode
[ 1217.928107][T24015] hsr_slave_1: entered promiscuous mode
[ 1217.935887][T24015] debugfs: 'hsr0' already exists in 'hsr'
[ 1217.941653][T24015] Cannot create hsr debugfs directory
[ 1217.976704][T24136] __nla_validate_parse: 13 callbacks suppressed
[ 1217.976723][T24136] netlink: 8 bytes leftover after parsing attributes in process `syz.6.19356'.
[ 1217.993246][T24139] netlink: 68 bytes leftover after parsing attributes in process `syz.9.19357'.
[ 1218.070370][T24144] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1218.189481][ T9956] IPVS: stop unused estimator thread 0...
[ 1218.404176][T24169] netlink: 68 bytes leftover after parsing attributes in process `syz.6.19368'.
[ 1218.521885][T24015] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1218.531429][T24015] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1218.541912][T24015] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1218.556019][T24015] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1218.601702][T24015] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1218.614810][T24015] 8021q: adding VLAN 0 to HW filter on device team0
[ 1218.626248][ T9956] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1218.633398][ T9956] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1218.653458][T24015] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1218.663887][T24015] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1218.679019][ T9956] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1218.686381][ T9956] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1218.761799][T24015] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1218.874401][T24015] veth0_vlan: entered promiscuous mode
[ 1218.883603][T24015] veth1_vlan: entered promiscuous mode
[ 1218.898059][T24015] veth0_macvtap: entered promiscuous mode
[ 1218.905906][T24015] veth1_macvtap: entered promiscuous mode
[ 1218.923204][T24015] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1218.935061][T24015] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1218.945996][   T31] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1218.955854][   T31] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1218.965885][   T31] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1218.975606][   T31] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1219.172024][   T29] kauditd_printk_skb: 717 callbacks suppressed
[ 1219.172041][   T29] audit: type=1400 audit(2046.679:39782): avc:  denied  { write } for  pid=24209 comm="syz.7.19310" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 1219.222856][   T29] audit: type=1400 audit(2046.710:39783): avc:  denied  { write } for  pid=24214 comm="syz.8.19376" name="kcm" dev="proc" ino=4026532754 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[ 1219.245885][   T29] audit: type=1400 audit(2046.721:39784): avc:  denied  { read write } for  pid=24216 comm="syz.8.19377" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1219.269697][   T29] audit: type=1400 audit(2046.721:39785): avc:  denied  { open } for  pid=24216 comm="syz.8.19377" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 1219.328718][   T29] audit: type=1400 audit(2046.847:39786): avc:  denied  { create } for  pid=24221 comm="syz.8.19378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[ 1219.351263][   T29] audit: type=1400 audit(2046.869:39787): avc:  denied  { bind } for  pid=24221 comm="syz.8.19378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[ 1219.389111][   T29] audit: type=1400 audit(2046.890:39788): avc:  denied  { listen } for  pid=24221 comm="syz.8.19378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[ 1219.414366][T24227] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1219.426295][   T29] audit: type=1400 audit(2046.900:39789): avc:  denied  { create } for  pid=24224 comm="syz.8.19379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 1219.446551][   T29] audit: type=1400 audit(2046.900:39790): avc:  denied  { allowed } for  pid=24224 comm="syz.8.19379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[ 1219.465648][   T29] audit: type=1400 audit(2046.932:39792): avc:  denied  { tracepoint } for  pid=24225 comm="syz.6.19380" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[ 1219.781044][T24242] netlink: 4 bytes leftover after parsing attributes in process `syz.9.19387'.
[ 1219.817460][T24213] syz.7.19310 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1219.832320][T24213] CPU: 1 UID: 0 PID: 24213 Comm: syz.7.19310 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1219.832354][T24213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1219.832365][T24213] Call Trace:
[ 1219.832371][T24213]  <TASK>
[ 1219.832394][T24213]  __dump_stack+0x1d/0x30
[ 1219.832415][T24213]  dump_stack_lvl+0xe8/0x140
[ 1219.832435][T24213]  dump_stack+0x15/0x1b
[ 1219.832451][T24213]  dump_header+0x81/0x220
[ 1219.832558][T24213]  oom_kill_process+0x342/0x400
[ 1219.832617][T24213]  out_of_memory+0x979/0xb80
[ 1219.832656][T24213]  try_charge_memcg+0x5e6/0x9e0
[ 1219.832688][T24213]  obj_cgroup_charge_pages+0xa6/0x150
[ 1219.832726][T24213]  __memcg_kmem_charge_page+0x9f/0x170
[ 1219.832767][T24213]  __alloc_frozen_pages_noprof+0x188/0x360
[ 1219.832810][T24213]  alloc_pages_mpol+0xb3/0x250
[ 1219.832855][T24213]  alloc_pages_noprof+0x90/0x130
[ 1219.832905][T24213]  __vmalloc_node_range_noprof+0x6f2/0xe00
[ 1219.832949][T24213]  __kvmalloc_node_noprof+0x30f/0x4e0
[ 1219.832974][T24213]  ? ip_set_alloc+0x1f/0x30
[ 1219.832995][T24213]  ? ip_set_alloc+0x1f/0x30
[ 1219.833147][T24213]  ? hash_netiface_create+0x21b/0x740
[ 1219.833165][T24213]  ? __kmalloc_cache_noprof+0x189/0x320
[ 1219.833191][T24213]  ip_set_alloc+0x1f/0x30
[ 1219.833209][T24213]  hash_netiface_create+0x282/0x740
[ 1219.833229][T24213]  ? __pfx_hash_netiface_create+0x10/0x10
[ 1219.833311][T24213]  ip_set_create+0x3c9/0x960
[ 1219.833345][T24213]  ? __nla_parse+0x40/0x60
[ 1219.833374][T24213]  nfnetlink_rcv_msg+0x4c6/0x590
[ 1219.833438][T24213]  netlink_rcv_skb+0x120/0x220
[ 1219.833459][T24213]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1219.833492][T24213]  nfnetlink_rcv+0x16b/0x1690
[ 1219.833546][T24213]  ? nlmon_xmit+0x4f/0x60
[ 1219.833570][T24213]  ? consume_skb+0x49/0x150
[ 1219.833630][T24213]  ? nlmon_xmit+0x4f/0x60
[ 1219.833660][T24213]  ? dev_hard_start_xmit+0x3b0/0x3e0
[ 1219.833723][T24213]  ? __dev_queue_xmit+0x1200/0x2000
[ 1219.833751][T24213]  ? __dev_queue_xmit+0x182/0x2000
[ 1219.833785][T24213]  ? ref_tracker_free+0x37d/0x3e0
[ 1219.833814][T24213]  ? __netlink_deliver_tap+0x4dc/0x500
[ 1219.833873][T24213]  netlink_unicast+0x5c0/0x690
[ 1219.833893][T24213]  netlink_sendmsg+0x58b/0x6b0
[ 1219.833915][T24213]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1219.833940][T24213]  __sock_sendmsg+0x142/0x180
[ 1219.834050][T24213]  ____sys_sendmsg+0x31e/0x4e0
[ 1219.834079][T24213]  ___sys_sendmsg+0x17b/0x1d0
[ 1219.834153][T24213]  __x64_sys_sendmsg+0xd4/0x160
[ 1219.834179][T24213]  x64_sys_call+0x191e/0x2ff0
[ 1219.834198][T24213]  do_syscall_64+0xd2/0x200
[ 1219.834280][T24213]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1219.834301][T24213]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1219.834379][T24213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1219.834486][T24213] RIP: 0033:0x7ff191b4ebe9
[ 1219.834502][T24213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1219.834519][T24213] RSP: 002b:00007ff19014a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1219.834538][T24213] RAX: ffffffffffffffda RBX: 00007ff191d86270 RCX: 00007ff191b4ebe9
[ 1219.834599][T24213] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[ 1219.834610][T24213] RBP: 00007ff191bd1e19 R08: 0000000000000000 R09: 0000000000000000
[ 1219.834622][T24213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1219.834633][T24213] R13: 00007ff191d86308 R14: 00007ff191d86270 R15: 00007ffda1ed5628
[ 1219.834665][T24213]  </TASK>
[ 1219.834687][T24213] memory: usage 307200kB, limit 307200kB, failcnt 3036
[ 1220.185403][T24213] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[ 1220.193942][T24213] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 1220.201287][T24213] Memory cgroup stats for /syz7:
[ 1220.202615][T24213] cache 0
[ 1220.210562][T24213] rss 0
[ 1220.213472][T24213] shmem 0
[ 1220.216525][T24213] mapped_file 0
[ 1220.220811][T24213] dirty 0
[ 1220.223764][T24213] writeback 0
[ 1220.227127][T24213] workingset_refault_anon 922
[ 1220.232039][T24213] workingset_refault_file 0
[ 1220.236616][T24213] swap 188416
[ 1220.239964][T24213] swapcached 8192
[ 1220.243600][T24213] pgpgin 1168788
[ 1220.247174][T24213] pgpgout 1168786
[ 1220.251435][T24213] pgfault 1322628
[ 1220.253551][T24261] netlink: 40 bytes leftover after parsing attributes in process `syz.8.19395'.
[ 1220.255072][T24213] pgmajfault 487
[ 1220.255083][T24213] inactive_anon 0
[ 1220.255093][T24213] active_anon 8192
[ 1220.255101][T24213] inactive_file 0
[ 1220.255108][T24213] active_file 0
[ 1220.283226][T24213] unevictable 0
[ 1220.286921][T24213] hierarchical_memory_limit 314572800
[ 1220.292307][T24213] hierarchical_memsw_limit 9223372036854771712
[ 1220.295255][T22248] hid-generic 0000:0000:0000.0036: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1220.298630][T24213] total_cache 0
[ 1220.312292][T24213] total_rss 0
[ 1220.315709][T24213] total_shmem 0
[ 1220.319179][T24213] total_mapped_file 0
[ 1220.323257][T24213] total_dirty 0
[ 1220.326781][T24213] total_writeback 0
[ 1220.330582][T24213] total_workingset_refault_anon 922
[ 1220.336297][T24213] total_workingset_refault_file 0
[ 1220.341336][T24213] total_swap 188416
[ 1220.345169][T24213] total_swapcached 8192
[ 1220.349351][T24213] total_pgpgin 1168788
[ 1220.353490][T24213] total_pgpgout 1168786
[ 1220.357795][T24213] total_pgfault 1322628
[ 1220.362496][T24213] total_pgmajfault 487
[ 1220.366873][T24213] total_inactive_anon 0
[ 1220.371135][T24213] total_active_anon 8192
[ 1220.373850][T24265] netlink: 4 bytes leftover after parsing attributes in process `syz.8.19396'.
[ 1220.375394][T24213] total_inactive_file 0
[ 1220.375407][T24213] total_active_file 0
[ 1220.375417][T24213] total_unevictable 0
[ 1220.391306][T24265] netlink: 12 bytes leftover after parsing attributes in process `syz.8.19396'.
[ 1220.393336][T24213] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz7,task_memcg=/syz7,task=syz.7.19310,pid=24209,uid=0
[ 1220.420973][T24213] Memory cgroup out of memory: Killed process 24209 (syz.7.19310) total-vm:98124kB, anon-rss:1128kB, file-rss:26408kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1220.540738][T24269] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1220.638575][T24279] netlink: 'syz.8.19402': attribute type 13 has an invalid length.
[ 1220.684846][T24279] gretap0: refused to change device tx_queue_len
[ 1220.691693][T24279] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1220.748628][T24292] netlink: 40 bytes leftover after parsing attributes in process `syz.7.19406'.
[ 1220.837065][T24305] netlink: 104 bytes leftover after parsing attributes in process `syz.8.19413'.
[ 1220.848825][T24299] sch_tbf: burst 1821 is lower than device lo mtu (65550) !
[ 1220.857529][T24299] netlink: 12 bytes leftover after parsing attributes in process `syz.7.19412'.
[ 1221.284458][T24344] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=244 sclass=netlink_audit_socket pid=24344 comm=syz.5.19431
[ 1221.581558][T24326] syz.6.19411 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1221.596981][T24326] CPU: 1 UID: 0 PID: 24326 Comm: syz.6.19411 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1221.597059][T24326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1221.597070][T24326] Call Trace:
[ 1221.597076][T24326]  <TASK>
[ 1221.597084][T24326]  __dump_stack+0x1d/0x30
[ 1221.597105][T24326]  dump_stack_lvl+0xe8/0x140
[ 1221.597201][T24326]  dump_stack+0x15/0x1b
[ 1221.597217][T24326]  dump_header+0x81/0x220
[ 1221.597286][T24326]  oom_kill_process+0x342/0x400
[ 1221.597355][T24326]  out_of_memory+0x979/0xb80
[ 1221.597429][T24326]  try_charge_memcg+0x5e6/0x9e0
[ 1221.597464][T24326]  obj_cgroup_charge_pages+0xa6/0x150
[ 1221.597497][T24326]  __memcg_kmem_charge_page+0x9f/0x170
[ 1221.597553][T24326]  __alloc_frozen_pages_noprof+0x188/0x360
[ 1221.597624][T24326]  alloc_pages_mpol+0xb3/0x250
[ 1221.597737][T24326]  alloc_pages_noprof+0x90/0x130
[ 1221.597828][T24326]  __vmalloc_node_range_noprof+0x6f2/0xe00
[ 1221.597866][T24326]  __kvmalloc_node_noprof+0x30f/0x4e0
[ 1221.597893][T24326]  ? ip_set_alloc+0x1f/0x30
[ 1221.597965][T24326]  ? ip_set_alloc+0x1f/0x30
[ 1221.597986][T24326]  ? __kmalloc_cache_noprof+0x189/0x320
[ 1221.598018][T24326]  ip_set_alloc+0x1f/0x30
[ 1221.598036][T24326]  hash_netiface_create+0x282/0x740
[ 1221.598099][T24326]  ? __pfx_hash_netiface_create+0x10/0x10
[ 1221.598120][T24326]  ip_set_create+0x3c9/0x960
[ 1221.598226][T24326]  ? __nla_parse+0x40/0x60
[ 1221.598255][T24326]  nfnetlink_rcv_msg+0x4c6/0x590
[ 1221.598305][T24326]  netlink_rcv_skb+0x120/0x220
[ 1221.598327][T24326]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1221.598391][T24326]  nfnetlink_rcv+0x16b/0x1690
[ 1221.598419][T24326]  ? nlmon_xmit+0x4f/0x60
[ 1221.598446][T24326]  ? consume_skb+0x49/0x150
[ 1221.598497][T24326]  ? nlmon_xmit+0x4f/0x60
[ 1221.598526][T24326]  ? dev_hard_start_xmit+0x3b0/0x3e0
[ 1221.598555][T24326]  ? __dev_queue_xmit+0x1200/0x2000
[ 1221.598579][T24326]  ? __dev_queue_xmit+0x182/0x2000
[ 1221.598682][T24326]  ? ref_tracker_free+0x37d/0x3e0
[ 1221.598711][T24326]  ? __netlink_deliver_tap+0x4dc/0x500
[ 1221.598739][T24326]  netlink_unicast+0x5c0/0x690
[ 1221.598762][T24326]  netlink_sendmsg+0x58b/0x6b0
[ 1221.598827][T24326]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1221.598918][T24326]  __sock_sendmsg+0x142/0x180
[ 1221.598951][T24326]  ____sys_sendmsg+0x31e/0x4e0
[ 1221.598977][T24326]  ___sys_sendmsg+0x17b/0x1d0
[ 1221.599080][T24326]  __x64_sys_sendmsg+0xd4/0x160
[ 1221.599108][T24326]  x64_sys_call+0x191e/0x2ff0
[ 1221.599130][T24326]  do_syscall_64+0xd2/0x200
[ 1221.599204][T24326]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1221.599231][T24326]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1221.599259][T24326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1221.599284][T24326] RIP: 0033:0x7f752b87ebe9
[ 1221.599301][T24326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1221.599385][T24326] RSP: 002b:00007f7529e7a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1221.599409][T24326] RAX: ffffffffffffffda RBX: 00007f752bab6270 RCX: 00007f752b87ebe9
[ 1221.599424][T24326] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[ 1221.599439][T24326] RBP: 00007f752b901e19 R08: 0000000000000000 R09: 0000000000000000
[ 1221.599531][T24326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1221.599543][T24326] R13: 00007f752bab6308 R14: 00007f752bab6270 R15: 00007ffc3158d788
[ 1221.599564][T24326]  </TASK>
[ 1221.599573][T24326] memory: usage 307200kB, limit 307200kB, failcnt 3708
[ 1221.951438][T24326] memory+swap: usage 307824kB, limit 9007199254740988kB, failcnt 0
[ 1221.959765][T24326] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[ 1221.967187][T24326] Memory cgroup stats for /syz6:
[ 1221.967396][T24326] cache 0
[ 1221.975753][T24326] rss 0
[ 1221.978523][T24326] shmem 0
[ 1221.981551][T24326] mapped_file 0
[ 1221.985455][T24326] dirty 0
[ 1221.988385][T24326] writeback 0
[ 1221.991766][T24326] workingset_refault_anon 2324
[ 1221.996575][T24326] workingset_refault_file 0
[ 1222.001073][T24326] swap 638976
[ 1222.004713][T24326] swapcached 0
[ 1222.008190][T24326] pgpgin 1231043
[ 1222.011730][T24326] pgpgout 1231043
[ 1222.015822][T24326] pgfault 1403199
[ 1222.019450][T24326] pgmajfault 563
[ 1222.023037][T24326] inactive_anon 0
[ 1222.026694][T24326] active_anon 0
[ 1222.030143][T24326] inactive_file 0
[ 1222.034243][T24326] active_file 0
[ 1222.037780][T24326] unevictable 0
[ 1222.041675][T24326] hierarchical_memory_limit 314572800
[ 1222.047151][T24326] hierarchical_memsw_limit 9223372036854771712
[ 1222.053477][T24326] total_cache 0
[ 1222.057168][T24326] total_rss 0
[ 1222.060822][T24326] total_shmem 0
[ 1222.064273][T24326] total_mapped_file 0
[ 1222.068241][T24326] total_dirty 0
[ 1222.072176][T24326] total_writeback 0
[ 1222.075973][T24326] total_workingset_refault_anon 2324
[ 1222.081263][T24326] total_workingset_refault_file 0
[ 1222.086289][T24326] total_swap 638976
[ 1222.090546][T24326] total_swapcached 0
[ 1222.094454][T24326] total_pgpgin 1231043
[ 1222.099007][T24326] total_pgpgout 1231043
[ 1222.103159][T24326] total_pgfault 1403199
[ 1222.107336][T24326] total_pgmajfault 563
[ 1222.111405][T24326] total_inactive_anon 0
[ 1222.115613][T24326] total_active_anon 0
[ 1222.120292][T24326] total_inactive_file 0
[ 1222.124464][T24326] total_active_file 0
[ 1222.128853][T24326] total_unevictable 0
[ 1222.132910][T24326] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz6,task_memcg=/syz6,task=syz.6.19411,pid=24300,uid=0
[ 1222.148287][T24326] Memory cgroup out of memory: Killed process 24300 (syz.6.19411) total-vm:98196kB, anon-rss:1008kB, file-rss:26408kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[ 1222.380870][T24416] netdevsim netdevsim7 netdevsim0: entered promiscuous mode
[ 1222.392437][T24416] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1222.693199][T22248] hid_parser_main: 66 callbacks suppressed
[ 1222.693282][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.706840][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.714326][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.721793][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.729308][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.736956][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.744511][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.751950][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.759550][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.767027][T22248] hid-generic 0000:0000:0000.0037: unknown main item tag 0x0
[ 1222.784392][T24464] __nla_validate_parse: 24 callbacks suppressed
[ 1222.784413][T24464] netlink: 4 bytes leftover after parsing attributes in process `syz.5.19482'.
[ 1222.800240][T24464] netlink: 12 bytes leftover after parsing attributes in process `syz.5.19482'.
[ 1222.813822][T22248] hid-generic 0000:0000:0000.0037: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1222.905139][T24474] sch_tbf: burst 1821 is lower than device lo mtu (65550) !
[ 1222.914352][T24474] netlink: 12 bytes leftover after parsing attributes in process `syz.5.19485'.
[ 1222.975991][T24480] netlink: 104 bytes leftover after parsing attributes in process `syz.5.19488'.
[ 1222.985602][T24480] netlink: 32 bytes leftover after parsing attributes in process `syz.5.19488'.
[ 1222.996925][T24480] netlink: 36 bytes leftover after parsing attributes in process `syz.5.19488'.
[ 1223.006651][T24480] netlink: 36 bytes leftover after parsing attributes in process `syz.5.19488'.
[ 1223.017145][T24480] netlink: 36 bytes leftover after parsing attributes in process `syz.5.19488'.
[ 1223.038308][T24480] netlink: 36 bytes leftover after parsing attributes in process `syz.5.19488'.
[ 1223.048010][T24480] netlink: 36 bytes leftover after parsing attributes in process `syz.5.19488'.
[ 1223.401900][T24515] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[ 1223.411103][T24515] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1223.422440][T24442] syz.7.19473 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[ 1223.438810][T24442] CPU: 1 UID: 0 PID: 24442 Comm: syz.7.19473 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1223.438841][T24442] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1223.438855][T24442] Call Trace:
[ 1223.438916][T24442]  <TASK>
[ 1223.438925][T24442]  __dump_stack+0x1d/0x30
[ 1223.438948][T24442]  dump_stack_lvl+0xe8/0x140
[ 1223.438978][T24442]  dump_stack+0x15/0x1b
[ 1223.439136][T24442]  dump_header+0x81/0x220
[ 1223.439166][T24442]  oom_kill_process+0x342/0x400
[ 1223.439211][T24442]  out_of_memory+0x979/0xb80
[ 1223.439239][T24442]  try_charge_memcg+0x5e6/0x9e0
[ 1223.439265][T24442]  charge_memcg+0x51/0xc0
[ 1223.439337][T24442]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[ 1223.439362][T24442]  __read_swap_cache_async+0x1df/0x350
[ 1223.439396][T24442]  swap_cluster_readahead+0x277/0x3e0
[ 1223.439447][T24442]  swapin_readahead+0xde/0x6f0
[ 1223.439553][T24442]  ? __filemap_get_folio+0x4f7/0x6b0
[ 1223.439591][T24442]  ? swap_cache_get_folio+0x77/0x200
[ 1223.439620][T24442]  do_swap_page+0x301/0x2430
[ 1223.439643][T24442]  ? css_rstat_updated+0xb7/0x240
[ 1223.439724][T24442]  ? __pfx_default_wake_function+0x10/0x10
[ 1223.439748][T24442]  handle_mm_fault+0x9a5/0x2c20
[ 1223.439777][T24442]  do_user_addr_fault+0x636/0x1090
[ 1223.439806][T24442]  ? fpregs_restore_userregs+0xe2/0x1d0
[ 1223.439910][T24442]  ? switch_fpu_return+0xe/0x20
[ 1223.439935][T24442]  ? fpregs_assert_state_consistent+0xb4/0xe0
[ 1223.439987][T24442]  exc_page_fault+0x62/0xa0
[ 1223.440009][T24442]  asm_exc_page_fault+0x26/0x30
[ 1223.440027][T24442] RIP: 0033:0x7ff191a255e8
[ 1223.440087][T24442] Code: 48 f7 f1 48 01 d8 49 39 c4 4c 0f 42 e0 83 3d da 27 36 00 00 0f 8e 09 fe ff ff e8 73 9e fe ff 49 39 c4 72 66 66 0f 1f 44 00 00 <69> 3d a6 00 e9 00 e8 03 00 00 48 8d 1d a7 09 36 00 e8 42 95 12 00
[ 1223.440105][T24442] RSP: 002b:00007ffda1ed5790 EFLAGS: 00010216
[ 1223.440122][T24442] RAX: 000000000013940c RBX: 00007ff191d87da0 RCX: 00000000001393b8
[ 1223.440135][T24442] RDX: 0000000000000054 RSI: 00007ffda1ed5770 RDI: 0000000000000001
[ 1223.440146][T24442] RBP: 00007ff191d87da0 R08: 00000000050f9b61 R09: 7fffffffffffffff
[ 1223.440158][T24442] R10: 3fffffffffffffff R11: 0000000000000293 R12: 0000000000139412
[ 1223.440173][T24442] R13: 00007ffda1ed5880 R14: ffffffffffffffff R15: 00007ffda1ed58a0
[ 1223.440190][T24442]  </TASK>
[ 1223.440197][T24442] memory: usage 307200kB, limit 307200kB, failcnt 3192
[ 1223.676713][T24442] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[ 1223.685546][T24442] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[ 1223.693006][T24442] Memory cgroup stats for /syz7:
[ 1223.693276][T24442] cache 0
[ 1223.701851][T24442] rss 4096
[ 1223.704888][T24442] shmem 0
[ 1223.707983][T24442] mapped_file 0
[ 1223.711660][T24442] dirty 0
[ 1223.714754][T24442] writeback 8192
[ 1223.718298][T24442] workingset_refault_anon 966
[ 1223.723191][T24442] workingset_refault_file 0
[ 1223.727704][T24442] swap 200704
[ 1223.731749][T24442] swapcached 12288
[ 1223.735538][T24442] pgpgin 1169292
[ 1223.739210][T24442] pgpgout 1169289
[ 1223.742864][T24442] pgfault 1323823
[ 1223.746621][T24442] pgmajfault 509
[ 1223.750234][T24442] inactive_anon 12288
[ 1223.754242][T24442] active_anon 0
[ 1223.757751][T24442] inactive_file 0
[ 1223.762033][T24442] active_file 0
[ 1223.765583][T24442] unevictable 0
[ 1223.769158][T24442] hierarchical_memory_limit 314572800
[ 1223.774532][T24442] hierarchical_memsw_limit 9223372036854771712
[ 1223.780901][T24442] total_cache 0
[ 1223.784402][T24442] total_rss 4096
[ 1223.788668][T24442] total_shmem 0
[ 1223.792134][T24442] total_mapped_file 0
[ 1223.796350][T24442] total_dirty 0
[ 1223.800012][T24442] total_writeback 8192
[ 1223.804135][T24442] total_workingset_refault_anon 966
[ 1223.809548][T24442] total_workingset_refault_file 0
[ 1223.814665][T24442] total_swap 200704
[ 1223.819117][T24442] total_swapcached 12288
[ 1223.823481][T24442] total_pgpgin 1169292
[ 1223.827755][T24442] total_pgpgout 1169289
[ 1223.831933][T24442] total_pgfault 1323823
[ 1223.836107][T24442] total_pgmajfault 509
[ 1223.840258][T24442] total_inactive_anon 12288
[ 1223.845273][T24442] total_active_anon 0
[ 1223.849257][T24442] total_inactive_file 0
[ 1223.853449][T24442] total_active_file 0
[ 1223.857570][T24442] total_unevictable 0
[ 1223.861617][T24442] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz7,task_memcg=/syz7,task=syz.7.19473,pid=24442,uid=0
[ 1223.877181][T24442] Memory cgroup out of memory: Killed process 24442 (syz.7.19473) total-vm:98124kB, anon-rss:1004kB, file-rss:26280kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1223.984202][T24549] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1224.051675][   T29] kauditd_printk_skb: 888 callbacks suppressed
[ 1224.051693][   T29] audit: type=1326 audit(2051.812:40680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63c97cebe9 code=0x7ffc0000
[ 1224.082270][   T29] audit: type=1326 audit(2051.812:40681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63c97cebe9 code=0x7ffc0000
[ 1224.106007][   T29] audit: type=1326 audit(2051.812:40682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f63c97cebe9 code=0x7ffc0000
[ 1224.129577][   T29] audit: type=1326 audit(2051.812:40683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f63c97cec23 code=0x7ffc0000
[ 1224.153490][   T29] audit: type=1326 audit(2051.812:40684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f63c97cd69f code=0x7ffc0000
[ 1224.177202][   T29] audit: type=1326 audit(2051.812:40685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f63c97cec77 code=0x7ffc0000
[ 1224.200393][   T29] audit: type=1326 audit(2051.812:40686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f63c97cd550 code=0x7ffc0000
[ 1224.224238][   T29] audit: type=1326 audit(2051.812:40687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f63c97cd84a code=0x7ffc0000
[ 1224.247337][   T29] audit: type=1326 audit(2051.812:40688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63c97cebe9 code=0x7ffc0000
[ 1224.270595][   T29] audit: type=1326 audit(2051.812:40689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24548 comm="syz.9.19512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63c97cebe9 code=0x7ffc0000
[ 1224.561228][T24596] sch_tbf: burst 1821 is lower than device lo mtu (65550) !
[ 1224.924972][T24623] FAULT_INJECTION: forcing a failure.
[ 1224.924972][T24623] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1224.939303][T24623] CPU: 1 UID: 0 PID: 24623 Comm: syz.5.19539 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1224.939334][T24623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1224.939347][T24623] Call Trace:
[ 1224.939353][T24623]  <TASK>
[ 1224.939360][T24623]  __dump_stack+0x1d/0x30
[ 1224.939420][T24623]  dump_stack_lvl+0xe8/0x140
[ 1224.939441][T24623]  dump_stack+0x15/0x1b
[ 1224.939459][T24623]  should_fail_ex+0x265/0x280
[ 1224.939483][T24623]  should_fail+0xb/0x20
[ 1224.939501][T24623]  should_fail_usercopy+0x1a/0x20
[ 1224.939569][T24623]  _copy_to_iter+0xd2/0xe70
[ 1224.939598][T24623]  ? __skb_try_recv_from_queue+0x3d6/0x440
[ 1224.939680][T24623]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[ 1224.939700][T24623]  ? __pfx_simple_copy_to_iter+0x10/0x10
[ 1224.939722][T24623]  __skb_datagram_iter+0xc6/0x690
[ 1224.939744][T24623]  ? __pfx_simple_copy_to_iter+0x10/0x10
[ 1224.939796][T24623]  skb_copy_datagram_iter+0x3d/0x110
[ 1224.939821][T24623]  netlink_recvmsg+0x1a8/0x550
[ 1224.939846][T24623]  ? __pfx_netlink_recvmsg+0x10/0x10
[ 1224.939871][T24623]  sock_recvmsg+0x136/0x170
[ 1224.939916][T24623]  ____sys_recvmsg+0xf5/0x280
[ 1224.939948][T24623]  ___sys_recvmsg+0x11f/0x370
[ 1224.939981][T24623]  do_recvmmsg+0x1ef/0x540
[ 1224.940078][T24623]  __x64_sys_recvmmsg+0xe5/0x170
[ 1224.940105][T24623]  x64_sys_call+0x27a6/0x2ff0
[ 1224.940128][T24623]  do_syscall_64+0xd2/0x200
[ 1224.940157][T24623]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1224.940209][T24623]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1224.940237][T24623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1224.940322][T24623] RIP: 0033:0x7fed5605ebe9
[ 1224.940360][T24623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1224.940407][T24623] RSP: 002b:00007fed54abf038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1224.940430][T24623] RAX: ffffffffffffffda RBX: 00007fed56295fa0 RCX: 00007fed5605ebe9
[ 1224.940445][T24623] RDX: 0000000000000001 RSI: 0000200000000ec0 RDI: 0000000000000003
[ 1224.940466][T24623] RBP: 00007fed54abf090 R08: 0000000000000000 R09: 0000000000000000
[ 1224.940479][T24623] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1224.940492][T24623] R13: 00007fed56296038 R14: 00007fed56295fa0 R15: 00007ffd06e251c8
[ 1224.940512][T24623]  </TASK>
[ 1225.414275][T22248] hid-generic 0000:0000:0000.0038: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1226.046116][T24656] syz.5.19545 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[ 1226.061131][T24656] CPU: 1 UID: 0 PID: 24656 Comm: syz.5.19545 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1226.061161][T24656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1226.061190][T24656] Call Trace:
[ 1226.061199][T24656]  <TASK>
[ 1226.061210][T24656]  __dump_stack+0x1d/0x30
[ 1226.061237][T24656]  dump_stack_lvl+0xe8/0x140
[ 1226.061259][T24656]  dump_stack+0x15/0x1b
[ 1226.061274][T24656]  dump_header+0x81/0x220
[ 1226.061375][T24656]  oom_kill_process+0x342/0x400
[ 1226.061475][T24656]  out_of_memory+0x979/0xb80
[ 1226.061515][T24656]  try_charge_memcg+0x5e6/0x9e0
[ 1226.061583][T24656]  obj_cgroup_charge_pages+0xa6/0x150
[ 1226.061621][T24656]  __memcg_kmem_charge_page+0x9f/0x170
[ 1226.061721][T24656]  __alloc_frozen_pages_noprof+0x188/0x360
[ 1226.061815][T24656]  alloc_pages_mpol+0xb3/0x250
[ 1226.061845][T24656]  alloc_pages_noprof+0x90/0x130
[ 1226.061877][T24656]  __vmalloc_node_range_noprof+0x6f2/0xe00
[ 1226.061976][T24656]  __kvmalloc_node_noprof+0x30f/0x4e0
[ 1226.062011][T24656]  ? ip_set_alloc+0x1f/0x30
[ 1226.062031][T24656]  ? ip_set_alloc+0x1f/0x30
[ 1226.062050][T24656]  ? __kmalloc_cache_noprof+0x189/0x320
[ 1226.062093][T24656]  ip_set_alloc+0x1f/0x30
[ 1226.062113][T24656]  hash_netiface_create+0x282/0x740
[ 1226.062200][T24656]  ? __pfx_hash_netiface_create+0x10/0x10
[ 1226.062225][T24656]  ip_set_create+0x3c9/0x960
[ 1226.062263][T24656]  nfnetlink_rcv_msg+0x4c6/0x590
[ 1226.062317][T24656]  netlink_rcv_skb+0x120/0x220
[ 1226.062341][T24656]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1226.062374][T24656]  nfnetlink_rcv+0x16b/0x1690
[ 1226.062481][T24656]  ? nlmon_xmit+0x4f/0x60
[ 1226.062505][T24656]  ? consume_skb+0x49/0x150
[ 1226.062527][T24656]  ? nlmon_xmit+0x4f/0x60
[ 1226.062558][T24656]  ? dev_hard_start_xmit+0x3b0/0x3e0
[ 1226.062650][T24656]  ? __dev_queue_xmit+0x1200/0x2000
[ 1226.062670][T24656]  ? __dev_queue_xmit+0x182/0x2000
[ 1226.062718][T24656]  ? ref_tracker_free+0x37d/0x3e0
[ 1226.062742][T24656]  ? __netlink_deliver_tap+0x4dc/0x500
[ 1226.062771][T24656]  netlink_unicast+0x5c0/0x690
[ 1226.062822][T24656]  netlink_sendmsg+0x58b/0x6b0
[ 1226.062849][T24656]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1226.062877][T24656]  __sock_sendmsg+0x142/0x180
[ 1226.062921][T24656]  ____sys_sendmsg+0x31e/0x4e0
[ 1226.062952][T24656]  ___sys_sendmsg+0x17b/0x1d0
[ 1226.062990][T24656]  __x64_sys_sendmsg+0xd4/0x160
[ 1226.063021][T24656]  x64_sys_call+0x191e/0x2ff0
[ 1226.063161][T24656]  do_syscall_64+0xd2/0x200
[ 1226.063197][T24656]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1226.063219][T24656]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[ 1226.063248][T24656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1226.063270][T24656] RIP: 0033:0x7fed5605ebe9
[ 1226.063289][T24656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1226.063372][T24656] RSP: 002b:00007fed5465a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1226.063398][T24656] RAX: ffffffffffffffda RBX: 00007fed56296270 RCX: 00007fed5605ebe9
[ 1226.063411][T24656] RDX: 0000000000000810 RSI: 0000200000000040 RDI: 0000000000000004
[ 1226.063423][T24656] RBP: 00007fed560e1e19 R08: 0000000000000000 R09: 0000000000000000
[ 1226.063437][T24656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1226.063448][T24656] R13: 00007fed56296308 R14: 00007fed56296270 R15: 00007ffd06e251c8
[ 1226.063538][T24656]  </TASK>
[ 1226.063547][T24656] memory: usage 307200kB, limit 307200kB, failcnt 3945
[ 1226.411148][T24656] memory+swap: usage 307552kB, limit 9007199254740988kB, failcnt 0
[ 1226.420063][T24656] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[ 1226.427461][T24656] Memory cgroup stats for /syz5:
[ 1226.427847][T24656] cache 0
[ 1226.435773][T24656] rss 0
[ 1226.438540][T24656] shmem 0
[ 1226.441469][T24656] mapped_file 0
[ 1226.446128][T24656] dirty 0
[ 1226.449093][T24656] writeback 0
[ 1226.452537][T24656] workingset_refault_anon 1124
[ 1226.457313][T24656] workingset_refault_file 690
[ 1226.461990][T24656] swap 360448
[ 1226.465365][T24656] swapcached 8192
[ 1226.469075][T24656] pgpgin 1171543
[ 1226.473488][T24656] pgpgout 1171541
[ 1226.477113][T24656] pgfault 1323759
[ 1226.480753][T24656] pgmajfault 608
[ 1226.484806][T24656] inactive_anon 8192
[ 1226.488700][T24656] active_anon 0
[ 1226.492190][T24656] inactive_file 0
[ 1226.495887][T24656] active_file 0
[ 1226.499339][T24656] unevictable 0
[ 1226.503604][T24656] hierarchical_memory_limit 314572800
[ 1226.509050][T24656] hierarchical_memsw_limit 9223372036854771712
[ 1226.515317][T24656] total_cache 0
[ 1226.518773][T24656] total_rss 0
[ 1226.522090][T24656] total_shmem 0
[ 1226.525541][T24656] total_mapped_file 0
[ 1226.530349][T24656] total_dirty 0
[ 1226.533797][T24656] total_writeback 0
[ 1226.537587][T24656] total_workingset_refault_anon 1124
[ 1226.542887][T24656] total_workingset_refault_file 690
[ 1226.548112][T24656] total_swap 360448
[ 1226.551931][T24656] total_swapcached 8192
[ 1226.556093][T24656] total_pgpgin 1171543
[ 1226.560946][T24656] total_pgpgout 1171541
[ 1226.565092][T24656] total_pgfault 1323759
[ 1226.569805][T24656] total_pgmajfault 608
[ 1226.573886][T24656] total_inactive_anon 8192
[ 1226.578339][T24656] total_active_anon 0
[ 1226.582324][T24656] total_inactive_file 0
[ 1226.587403][T24656] total_active_file 0
[ 1226.591399][T24656] total_unevictable 0
[ 1226.595452][T24656] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.19545,pid=24637,uid=0
[ 1226.610354][T24656] Memory cgroup out of memory: Killed process 24637 (syz.5.19545) total-vm:98196kB, anon-rss:1008kB, file-rss:26408kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[ 1226.851426][T24733] ==================================================================
[ 1226.859568][T24733] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64
[ 1226.869621][T24733] 
[ 1226.871990][T24733] read-write to 0xffffffff868099c0 of 8 bytes by interrupt on cpu 1:
[ 1226.880238][T24733]  tick_do_update_jiffies64+0x113/0x1c0
[ 1226.885816][T24733]  tick_nohz_handler+0x7f/0x2d0
[ 1226.890691][T24733]  __hrtimer_run_queues+0x20c/0x5a0
[ 1226.895918][T24733]  hrtimer_interrupt+0x21a/0x460
[ 1226.900960][T24733]  __sysvec_apic_timer_interrupt+0x5c/0x1d0
[ 1226.906869][T24733]  sysvec_apic_timer_interrupt+0x6f/0x80
[ 1226.912515][T24733]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1226.918505][T24733]  kcsan_setup_watchpoint+0x415/0x430
[ 1226.923887][T24733]  folios_put_refs+0x8b/0x2d0
[ 1226.928656][T24733]  free_pages_and_swap_cache+0x278/0x400
[ 1226.934318][T24733]  tlb_flush_mmu+0x2dc/0x450
[ 1226.938915][T24733]  unmap_page_range+0x237e/0x2680
[ 1226.943955][T24733]  unmap_vmas+0x23d/0x3a0
[ 1226.948292][T24733]  exit_mmap+0x1b0/0x6c0
[ 1226.952537][T24733]  __mmput+0x28/0x1c0
[ 1226.956525][T24733]  mmput+0x40/0x50
[ 1226.960260][T24733]  exit_mm+0xe4/0x190
[ 1226.964247][T24733]  do_exit+0x417/0x15c0
[ 1226.968411][T24733]  do_group_exit+0xff/0x140
[ 1226.972930][T24733]  get_signal+0xe59/0xf70
[ 1226.977255][T24733]  arch_do_signal_or_restart+0x96/0x480
[ 1226.982890][T24733]  exit_to_user_mode_loop+0x7a/0x100
[ 1226.988175][T24733]  do_syscall_64+0x1d6/0x200
[ 1226.992773][T24733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1226.998666][T24733] 
[ 1227.001000][T24733] read to 0xffffffff868099c0 of 8 bytes by task 24733 on cpu 0:
[ 1227.008643][T24733]  mem_cgroup_flush_stats_ratelimited+0x29/0x70
[ 1227.014907][T24733]  count_shadow_nodes+0x6a/0x230
[ 1227.019861][T24733]  do_shrink_slab+0x60/0x680
[ 1227.024461][T24733]  shrink_slab+0x448/0x760
[ 1227.028887][T24733]  shrink_node+0x6c3/0x2120
[ 1227.033411][T24733]  do_try_to_free_pages+0x3f6/0xcd0
[ 1227.038622][T24733]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[ 1227.044521][T24733]  try_charge_memcg+0x358/0x9e0
[ 1227.049371][T24733]  obj_cgroup_charge_pages+0xa6/0x150
[ 1227.054751][T24733]  __memcg_kmem_charge_page+0x9f/0x170
[ 1227.060221][T24733]  __alloc_frozen_pages_noprof+0x188/0x360
[ 1227.066040][T24733]  alloc_pages_mpol+0xb3/0x250
[ 1227.070818][T24733]  alloc_pages_noprof+0x90/0x130
[ 1227.075782][T24733]  __vmalloc_node_range_noprof+0x6f2/0xe00
[ 1227.081599][T24733]  __kvmalloc_node_noprof+0x30f/0x4e0
[ 1227.087071][T24733]  ip_set_alloc+0x1f/0x30
[ 1227.091418][T24733]  hash_netiface_create+0x282/0x740
[ 1227.096624][T24733]  ip_set_create+0x3c9/0x960
[ 1227.101222][T24733]  nfnetlink_rcv_msg+0x4c6/0x590
[ 1227.106168][T24733]  netlink_rcv_skb+0x120/0x220
[ 1227.110933][T24733]  nfnetlink_rcv+0x16b/0x1690
[ 1227.115626][T24733]  netlink_unicast+0x5c0/0x690
[ 1227.120481][T24733]  netlink_sendmsg+0x58b/0x6b0
[ 1227.125252][T24733]  __sock_sendmsg+0x142/0x180
[ 1227.129960][T24733]  ____sys_sendmsg+0x31e/0x4e0
[ 1227.134729][T24733]  ___sys_sendmsg+0x17b/0x1d0
[ 1227.139414][T24733]  __x64_sys_sendmsg+0xd4/0x160
[ 1227.144362][T24733]  x64_sys_call+0x191e/0x2ff0
[ 1227.149132][T24733]  do_syscall_64+0xd2/0x200
[ 1227.153675][T24733]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1227.159574][T24733] 
[ 1227.161905][T24733] value changed: 0x0000000100018139 -> 0x000000010001813a
[ 1227.169009][T24733] 
[ 1227.171355][T24733] Reported by Kernel Concurrency Sanitizer on:
[ 1227.177591][T24733] CPU: 0 UID: 0 PID: 24733 Comm: syz.7.19579 Not tainted syzkaller #0 PREEMPT(voluntary) 
[ 1227.187507][T24733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1227.197565][T24733] ==================================================================