last executing test programs:

3m39.131245796s ago: executing program 0 (id=2790):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310005000000000000000a01020000000000000000011e00000900030073797a3100000000280004800a0002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a3100000000140000001100010000000000000000000000000a"], 0x9c}}, 0x0)

3m39.055659038s ago: executing program 0 (id=2792):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='mm_page_free\x00', r0}, 0x18)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r2=>0x0})
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4)
sendto$packet(r1, &(0x7f00000000c0)="3f031c000502140006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0xc9, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)

3m39.036671168s ago: executing program 0 (id=2794):
r0 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x2e)
write(r0, &(0x7f0000000040)="413a6c47a223f360ebf74caa9536187c80d7eb6c0da7ff3ff90e546ebbbb7e5862b8d98410af9bc4d8e954641688dbc6b396ec63d2db69512d5b4584a14cb72a6f8fff726315860bceba22c36588a8229041a3aaa400b4b7197fd5634d758b58666ca69e4664ae02da430193fd116779b29057b34f501e88ac93b59f1572ded17d586b827f92aee604ac81658536a29ece67df430fbf9e1c9af8065f5ea5c0e2531280e0f4dd88b8b3c4f086db0eaa779c292d653582a7427d0577ae99ab3fb0effda1300c0b6a313b2f43c5b530f2168831b11a9722db874a3327e506b2a1e3fb5ff11e46ac8f75d13c43e1c6", 0xed)
socket$inet6_sctp(0xa, 0x1, 0x84)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@map, 0xc, 0x1, 0x1, &(0x7f0000000180)=[0x0], 0x1, 0x0, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0], <r3=>0x0}, 0x40)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)={@fallback=r0, r1, 0xb, 0x10, 0x0, @void, @value, @void, @void, r3}, 0x20)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r4=>r0, {0x1}}, './file0\x00'})
ioctl$USBDEVFS_CLEAR_HALT(r4, 0x80045515, &(0x7f0000000340)={0xf})
r5 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_INIT(r5, 0x29, 0xc8, &(0x7f0000000380), 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1a, 0x14, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x101}, @btf_id={0x18, 0x0, 0x3, 0x0, 0x2}, @alu={0x4, 0x1, 0xb, 0x1, 0x0, 0xfffffffffffffff4, 0x8}, @exit, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x80000001}}, @ldst={0x1, 0x3, 0x0, 0x5, 0xa}, @map_idx={0x18, 0x3, 0x5, 0x0, 0x7}]}, &(0x7f0000000480)='GPL\x00', 0x8001, 0x99, &(0x7f00000004c0)=""/153, 0x40f00, 0x20, '\x00', 0x0, @tracing=0x19, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000580)={0x5, 0x6, 0xfffffffa, 0x1}, 0x10, 0x0, r1, 0x1, 0x0, &(0x7f00000005c0)=[{0x5, 0x2, 0xb, 0xb}], 0x10, 0x6}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000009c0)={r4, 0xe0, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000700)=[0x0, 0x0, 0x0], ""/16, <r7=>0x0, 0x0, 0x0, 0x0, 0x1, 0x5, &(0x7f0000000740)=[0x0], &(0x7f0000000780)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x41, &(0x7f00000007c0)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000800), &(0x7f0000000840), 0x8, 0x74, 0x8, 0x8, &(0x7f0000000880)}}, 0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000006c0)={@ifindex=r7, r2, 0x37, 0x0, r6, @void, @value=r4, @void, @void, r3}, 0x20)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000ac0)={<r8=>0x0, <r9=>0x0}, &(0x7f0000000b00)=0xc)
r10 = perf_event_open(&(0x7f0000000b80)={0x3, 0x80, 0x81, 0xff, 0x8, 0x73, 0x0, 0x4, 0x800, 0x5, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000b40)}, 0x3000, 0x7, 0x0, 0x8, 0x100, 0x7, 0x0, 0x0, 0x748, 0x0, 0x548c}, 0xffffffffffffffff, 0x3, r2, 0x0)
r11 = perf_event_open(&(0x7f0000000a40)={0x1, 0x80, 0x6, 0x9, 0x7, 0x8, 0x0, 0x7ac5, 0x8400, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000a00)}, 0x11a219, 0x5, 0x7, 0x5, 0x9, 0x4, 0x8, 0x0, 0x6dfa6d29, 0x0, 0x1}, r8, 0x0, r10, 0xb)
ioctl$PERF_EVENT_IOC_RESET(r11, 0x2403, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000c00))
r12 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000c40), 0x6108c0, 0x0)
ioctl$PIO_FONT(r12, 0x4b61, &(0x7f0000000c80)="a47789563a12c08d2c6cd672aa117f487644efb8987558261937ded508a0097b1a70ff99707c467e0337250af97b86c55819e2a2dee197a4f0e1")
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000cc0)={{0x1, 0x1, 0x18, <r13=>r12}, './file0\x00'})
r14 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000d00), 0x521002, 0x0)
ioctl$HIDIOCSFEATURE(r14, 0xc0404806, &(0x7f0000000d40)="f143ed6abcb270939726d36a941770614daf8d6a6ce58ae7a1d0d6eb55196e94d0e764181aa7969aca283c09d6d3cbdcaf72a229ff0b881a70b0f66b6e46afd61c72d35bd6c7d94923ded3609d810d493f88c769dfb3d1e2e890bad9e09edbbccd11ca6e5ff3d4a67e2b16d0ab6d50e0d4a56cf2d28678ed771a5115bc9a03fb0292be0e392e054909dde0e722b887ce0860d41fb029be21d301ea118274f88acd06625be7495df91a3ebbcd")
r15 = creat(&(0x7f0000000e00)='./file0\x00', 0x128)
ioctl$USBDEVFS_REAPURBNDELAY(r13, 0x4008550d, &(0x7f0000000e40))
sendmsg$nl_xfrm(r4, &(0x7f0000001180)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001140)={&(0x7f0000000ec0)=@updsa={0x244, 0x1a, 0x408, 0x70bd25, 0x25dfdbfb, {{@in6=@rand_addr=' \x01\x00', @in=@loopback, 0x4e20, 0x0, 0x4e20, 0x6, 0x2, 0x20, 0xa0, 0x5c, r7, r9}, {@in=@dev={0xac, 0x14, 0x14, 0x33}, 0x4d6, 0x33}, @in=@multicast2, {0x0, 0x2, 0x532, 0x2, 0x8, 0x2, 0x1, 0x800}, {0x8, 0x6, 0x8}, {0x5f3, 0x6, 0x5}, 0x70bd29, 0x3505, 0x2, 0x1, 0xb, 0x87}, [@XFRMA_IF_ID={0x8, 0x1f, 0x4}, @sa={0xe4, 0x6, {{@in6=@local, @in=@local, 0x4e20, 0x2, 0x4e20, 0x10, 0x2, 0x20, 0x30, 0x21, 0x0, r9}, {@in6=@local, 0x4d6, 0xe7}, @in=@private=0xa010102, {0x8000000000000001, 0x9, 0x401, 0x4d, 0x0, 0x7ff, 0x5, 0x40}, {0x80000000, 0xa000, 0xe000000000000000, 0x8001}, {0x69, 0x8001, 0x6}, 0x70bd26, 0x3505, 0x2, 0x4, 0x0, 0x80}}, @address_filter={0x28, 0x1a, {@in6=@remote, @in=@multicast2, 0xa, 0x8b, 0x2}}, @replay_esn_val={0x38, 0x17, {0x7, 0x70bd2a, 0x70bd26, 0x70bd2c, 0x70bd27, 0x20, [0x4106df60, 0x1, 0x8001, 0xde6e, 0x80000001, 0x40, 0x4]}}, @XFRMA_SET_MARK_MASK={0x8, 0x1e, 0xe}]}, 0x244}, 0x1, 0x0, 0x0, 0x4000}, 0x44003)
getsockopt$bt_l2cap_L2CAP_LM(r15, 0x6, 0x3, &(0x7f00000011c0), &(0x7f0000001200)=0x4)
inotify_add_watch(r2, &(0x7f0000001240)='./file0\x00', 0x11000400)
writev(r12, &(0x7f00000014c0)=[{&(0x7f0000001280)="b5e1e419a8e3f2d4679f904352dfab84551e2c65033a72899fcf918236a6092ae52b2194267ea4e8d2d42d3239b175ccd0daaef69af47e795ce29bf9b74a0d5625ad46a49c9d7c6bf5e080b6dea54aac93db8a40702e89fa6e7d50c971e17e569483d50170eb66d54cec9ee42b5f36da7b99600d696b00517fd930c2adb0c124c14d8c1cba135c6666a1310d6056584251de6bd8cb206d19909ef6f850d1b79bc1c4bcb24ceaef885510453fd6bd7f5db93e6d1cdd99d99f74a1abd3f999b8497cd64caaee6fb202eb192b5e8b8171b411", 0xd1}, {&(0x7f0000001380)="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", 0xfe}, {&(0x7f0000001480)}], 0x3)

3m39.003236289s ago: executing program 0 (id=2795):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYRESDEC=0x0], 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)={0x1b, 0x0, 0x0, 0x40001, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffd}, 0x50)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)="15452f1c17ce03519634b0f248cd4f35bfbe040d6bec3aac6dbdaea4e21f786824ca85", 0x23}, {&(0x7f0000000100)="445fad3126ce24909e1424d14663981d8c0359c7bc376dafed5c51728053486f03e6c2c2c7c2", 0x26}], 0x2}, 0x404c080)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x23}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002ec0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="5953fdfffffffddbdf256b000000080043"], 0x28}}, 0x50)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=@newsa={0x1a0, 0x10, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x64}, {@in, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x35}, {}, {0xfffffffffffffffd, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x0, 0x70bd2a, 0x70bd28}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x18}}]}, 0x1a0}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a98000000060a0b040000000000000000020000000900020073797a32000000006c000480680001800b00010074617267657400005800028040000300cd4b6abe42030763d02899c7e9ee2bcc9b6a37b458a8056dd9a87f963d140d7a9d3ac869f3a860917511679abf4579f9cd656422a633a39f030000000a000100484d41524b00000008000240000000000900010073797a30"], 0xc0}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)
socket$inet_mptcp(0x2, 0x1, 0x106)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000417000/0x2000)=nil, 0x2000, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x59d, &(0x7f0000001100)="$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")
r9 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
write$binfmt_register(r9, &(0x7f0000000000)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x2009, 0x3a, '\r', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4E\xe7L\x82n;H\xd8\xdf\x9a, \\E\xd4\xab\x1ed', 0x3a, './file2', 0x3a, [0x46]}, 0x4b)

3m38.230144094s ago: executing program 0 (id=2811):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
semget$private(0x0, 0x4000000009, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x37e, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r2}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r6, 0x0, 0xfffffffffffffffc}, 0x18)
timer_getoverrun(0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000780)={'dummy0\x00', <r7=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000040)=ANY=[@ANYRES16=r5, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r7], 0x20}, 0x1, 0x0, 0x0, 0xd4}, 0x24008000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'ipvlan0\x00'})

3m34.416289898s ago: executing program 0 (id=2868):
socket(0x11, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00')

3m34.402530758s ago: executing program 32 (id=2868):
socket(0x11, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00')

2m9.468117083s ago: executing program 4 (id=4377):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000001f80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
lchown(&(0x7f0000000300)='./file1\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='kfree\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000600000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r4, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f00000007c0)={'batadv_slave_1\x00', <r6=>0x0})
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000940)={r5, 0x58, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r7=>0x0}}, 0x10)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f0000000b40)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000a40)={0xcc, 0x0, 0x20, 0x70bd28, 0x25dfdbfd, {}, [@HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x40}, 0x4008850)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r5}, &(0x7f0000000380), &(0x7f00000003c0)=r8}, 0x20)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001", 0x3, 0xffffffffffffffff)
listen(r4, 0x402)
r9 = socket$unix(0x1, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
shutdown(r10, 0x1)
recvmmsg(r10, &(0x7f0000000680)=[{{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000001d40)=""/4078, 0xfee}, {&(0x7f0000000340)=""/141, 0x8d}, {&(0x7f0000002d40)=""/4116, 0x1014}, {&(0x7f0000000400)}, {&(0x7f0000000440)=""/231, 0xe7}], 0x5}}, {{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000580)=""/184, 0xb8}], 0x1}, 0x1}], 0x2, 0x0, 0x0)
sendmsg$sock(r10, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x804)
connect$unix(r9, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
accept(r4, 0x0, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@deltaction={0x34, 0x18, 0x1, 0x70bd2a, 0x25dfdc00, {0xa}, [@TCA_ACT_TAB={0x20, 0x1, [{0xc, 0x8f, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x20040844)

2m9.145825439s ago: executing program 4 (id=4383):
socket$nl_rdma(0x10, 0x3, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1d, 0xd, &(0x7f0000000bc0)=ANY=[], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
ioprio_get$pid(0x2, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000340)={0x0, r0}, 0x8)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=ANY=[@ANYBLOB="0700000004000000090000000000006620398ab330a26000282300000000c4982a9058806f45874476e9e5a6951d792079f16c6fe55f979f0bb1ecf0c5cc1a5cf48ab7c45b189ee8e762d94a34876a367206483ae5cf19d21eec89338dfc55126a9e3c2414a6", @ANYRES32, @ANYBLOB='\t\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000300"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x8, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000300a155621c26f640e4", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x17, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='btrfs_convert_extent_bit\x00', r0, 0x0, 0x5e}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r2)
syz_usb_connect(0x4, 0x24, &(0x7f00000000c0)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r2, 0x40095505, 0x0)

2m8.03872348s ago: executing program 4 (id=4391):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @my=0x0}, 0x10)

2m8.003705851s ago: executing program 4 (id=4393):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x189)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000440)=ANY=[@ANYBLOB="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"/375], 0x12, 0xa06, &(0x7f00000005c0)="$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")
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)
syz_open_dev$loop(&(0x7f0000000480), 0xd76, 0x181400)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0xfffffffffffffda3, &(0x7f0000000180)={&(0x7f0000001000)=ANY=[@ANYBLOB="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"], 0x20}}, 0x4000000)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r3 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r3, 0x29, 0xd1, &(0x7f0000000140)=0x3, 0x4)
getsockopt$MRT6(r3, 0x29, 0xcf, 0xffffffffffffffff, &(0x7f00000000c0))
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x15523ea56aa22b9a, 0x0, 0x0, 0x0, 0x12345})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)
r4 = syz_clone(0x20000000, 0x0, 0xf, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$getregset(0x4205, r4, 0x202, &(0x7f0000000240)={0x0})
ptrace(0x8, r4)

2m7.853312044s ago: executing program 4 (id=4397):
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_NAME(0xf, &(0x7f00000007c0)='w\xde\xa3\x05\xff\a\x00\x00\x00/\x8c\x1a\xe3\xbd\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00$\xcf\x97#\x17\xd7dY\xed\xcf\xa4\x1d\xc7\xfa\xab\x95\xa8\xeb\\7\xa7\xbb\x9c\xca\t`6\x02Z\x95i\xc13\xf6\xeb\x14\x19\x05\x18\x9c\xf8\xa8w\x12\xfc>\x96|\xb8\xfbX\xfc\ft\xbdw\xb9\xdc)\x11H2\xc3ul\xa0B\x91\x1d\xea\v2\xca~\x7f\xff&8i\xb0,\r\x84\xdd\xa1\xady:s\xe1EUS^\x102\x7f\xd9\xcdU\x8d]\xae\xc3<<u\xdd)\x8b\xf3\"\xba\n\x13\x98\x99\x97CiW~\xcaN\xe7\xbc\x1e}\xfeg\xbf\x1dz\x94\xed\xe7Y\xad>\xa7\v\x1e~\x8fF\xe5\x96\x9eqTI?`\xd0\x00U\xe7\xf2\xaf\xa1v\x9d3\xe5o\xbf\xa8\x8eo`\x9e\x11\xdda\x88\x13\xab.\xa6\xea\xff<\xfc\xdb\x81<~T\xa5\'\xb3\x0f\x8d\x97r\xe0\x17')
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0xff, &(0x7f0000000ac0)={0x0, <r0=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000140)=[0x0, 0x0, 0x0], &(0x7f0000000200), <r1=>0x0, 0x64, &(0x7f0000000240), 0x20, 0x10, &(0x7f0000000280), &(0x7f00000002c0), 0x8, 0xca, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r1}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x10, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRES32=r2], &(0x7f0000000780)='GPL\x00', 0xc4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
syz_usbip_server_init(0x4)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x18, 0x4, &(0x7f0000000380)=ANY=[@ANYRESDEC=r0, @ANYRES16=r3, @ANYRES32=r2, @ANYRESHEX], &(0x7f00000001c0)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf0000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xa499)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
io_getevents(0x0, 0x4, 0x0, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = syz_io_uring_setup(0x6bca, &(0x7f0000000140)={0x0, 0x4, 0x4000, 0x4, 0x326}, &(0x7f0000000440)=<r6=>0x0, &(0x7f0000000580)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r5, 0x6e2, 0x3900, 0x1, 0x0, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r4, 0xc038943b, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r8=>0xffffffffffffffff})
r9 = openat$cgroup_ro(r8, &(0x7f0000000540)='blkio.bfq.sectors_recursive\x00', 0x7a05, 0x1700)
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x0, 0x1)
sendmsg$NFT_BATCH(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000078000000030a01030000000000000000050000000900010073797a300000000008000540000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000140003007465616d5f736c6176655f3000000000080001400000000114000000020a090100000000000000000000000014000000110001", @ANYRES64=r9], 0xd4}, 0x1, 0x0, 0x0, 0x4000000}, 0x4015)
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
lsetxattr$security_selinux(0x0, &(0x7f0000000000), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x22, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000006bc0)='./file0\x00', 0x22508d8, 0x0, 0x1, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='cifs\x00', 0x0, 0x0)

2m7.388268193s ago: executing program 4 (id=4398):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
link(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0) (fail_nth: 2)

2m7.381049593s ago: executing program 33 (id=4398):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
link(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0) (fail_nth: 2)

2.635185049s ago: executing program 5 (id=7484):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0xc0010102, 0x0, 0x0)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000000c0)='fsi_master_gpio_cmd_rel_addr\x00', r1}, 0x40)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x30, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x4}}]}, 0x30}}, 0x44080)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)

1.671847097s ago: executing program 5 (id=7504):
r0 = syz_open_dev$usbfs(&(0x7f00000006c0), 0x205, 0x2581)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, 0x0)
ioctl$USBDEVFS_REAPURB(r1, 0x4008550c, 0x0)

1.055307999s ago: executing program 1 (id=7518):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0xc2f}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1002002, 0x0)
r3 = dup(r2)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x40542, 0x0)
ftruncate(r4, 0xee72)
sendfile(r3, r4, 0x0, 0x8000fffffffe)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000180)=0x19)

940.408892ms ago: executing program 1 (id=7521):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r0, &(0x7f0000001f80)=""/4082, 0xff2)

925.100632ms ago: executing program 1 (id=7522):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x23}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, 0x0, &(0x7f00000000c0)='GPL\x00'}, 0x94)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r3)
sendmsg$IEEE802154_ADD_IFACE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x34, r4, 0x201, 0x70bd2d, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0201}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24008800}, 0x0)

826.600504ms ago: executing program 1 (id=7525):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)

764.463765ms ago: executing program 1 (id=7527):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002640)=@delchain={0xf8, 0x65, 0x20, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0x1}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0xbc, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_FLAGS={0x8}, @TCA_BPF_ACT={0x98, 0x1, [@m_simple={0x30, 0x1e, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x1}}}}, @m_connmark={0x34, 0x15, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_csum={0x30, 0x8, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x3}, @TCA_BPF_FD={0x8}]}}]}, 0xf8}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
move_mount(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0)
accept$packet(r0, &(0x7f0000000300), &(0x7f0000000340)=0x14)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file3\x00', 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r3, 0x560f, &(0x7f0000000100)={0x1, 0x1, 0x19, 0x1f, 0xbb, 0x0})
ioctl$KDFONTOP_COPY(r3, 0x4b72, &(0x7f0000000100)={0x3, 0x0, 0xd, 0x14, 0x16, &(0x7f0000000a00)})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x3, 0x0, 0xff, "d4e9002b2c000000ff00"})
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendto$inet6(r5, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x13}, 0x7}, 0x1c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001640), r6)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x0)

764.032625ms ago: executing program 5 (id=7529):
r0 = dup(0xffffffffffffffff)
dup(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x3e8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x2000c851, 0x0, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r4, @ANYBLOB="0100000000000000000001000000060006000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5426c010880f4000080060005000180000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff240002001bc715ee4868b12a49f4df11bc05475489f6a27c4d6483ad2fa5e45903b0ce8514000400e76a686bac1414aa00000000000000008c00098028000080060001000a00000014000200ff020000000000000000000000000001050003000000000028000080060001000a000000140002000000000000000000000000000000000105000300030000001c000080060001000200da0008000200e000000105000300000000001c000080060001000200000008000200ac141400050003000000000074000080200004000a004e2200000000fc0000000000000000000000000000000400000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff080003000100000024000200cde20bc0d9b90ac13642d7b66459dd9db5e20b4b16d3d23f2cb03a8aa417dce6080007000000000014000200776730"], 0x1c8}}, 0x0)

742.371015ms ago: executing program 5 (id=7531):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r0, &(0x7f0000000a00)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

673.169657ms ago: executing program 5 (id=7533):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x2b, 0x0, &(0x7f0000000380))
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x908, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x4}, 0x2012, 0x0, 0x2, 0x2, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14)
r2 = fspick(0xffffffffffffffff, &(0x7f0000000300)='./file1/file0\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000008c0)='\x00', &(0x7f0000000900)='/dev/snd/seq\x00', 0x0)
recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x6000, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="480000001200ffffff7f00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800e0001006970366772657461700000000c00028008000100", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x48}}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r5, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x7ffffffd, 0x4}, {}, {}, @result={0x1f00}}], 0x1c)
chdir(&(0x7f0000000040)='./file0\x00')
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r6, &(0x7f0000000000)=""/58, 0x3a)

645.719937ms ago: executing program 1 (id=7535):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="09000000060000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x75, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r3, 0x0, 0xffffffffffffffff}, 0x18)
r6 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r6, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0x10)
sendmsg$rds(r6, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)

619.222828ms ago: executing program 6 (id=7538):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800"/14, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000080000000000000000000850000007d00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

560.369679ms ago: executing program 2 (id=7541):
r0 = dup(0xffffffffffffffff)
dup(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x3e8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000380), 0xffffffffffffffff)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x2000c851, 0x0, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r4, @ANYBLOB="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"], 0x1c8}}, 0x0)

545.268119ms ago: executing program 3 (id=7542):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000200), &(0x7f0000000240)=r2}, 0x20)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, 0x0, 0x880)

519.864ms ago: executing program 6 (id=7543):
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
fstatfs(0xffffffffffffffff, 0x0)

492.21391ms ago: executing program 2 (id=7544):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r0, &(0x7f0000000a00)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000038000000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

479.809071ms ago: executing program 5 (id=7545):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000700)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r1)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="bbfb2bbd7000fddbdf25670000000800c400020000000800c3"], 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYRESOCT=0x0, @ANYRESDEC=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095", @ANYRES64=r2, @ANYRES8=r0], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xc000, &(0x7f0000000200)=0x5f0, 0x9, 0x1)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
r7 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r8 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9}, 0x10)
syz_read_part_table(0x60d, &(0x7f0000002200)="$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")
r10 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db)
writev(r10, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0xe0000}], 0x1)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r7, 0x10c000)
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2020000b, 0x0, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x7d, 0x0, 0x1, 0x101, 0x0})
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d0001000000000004086aa42d"], 0x30}}, 0x0)

446.290381ms ago: executing program 3 (id=7546):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180100000000000000000000000000001812"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000940)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sched_kthread_work_queue_work\x00', r0}, 0x2a)
socketpair(0x11, 0xa, 0x0, &(0x7f0000001080))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
socket$inet_icmp(0x2, 0x2, 0x1)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000080000000000000000000850000007d00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59}, 0x94)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f00000003c0)='./file0\x00', 0x36)

445.767291ms ago: executing program 2 (id=7547):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0xc2f}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1002002, 0x0)
r3 = dup(r2)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x40542, 0x0)
ftruncate(r4, 0xee72)
sendfile(r3, r4, 0x0, 0x8000fffffffe)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000180)=0x19)

380.487932ms ago: executing program 6 (id=7548):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000e2000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000910095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
r3 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r2, r2, 0x2f, 0x0, @void}, 0x10)
bpf$LINK_DETACH(0x22, &(0x7f0000000140)=r3, 0x4)

379.947232ms ago: executing program 3 (id=7549):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x9c024, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8000}, 0x8c02}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r1}, 0x18)
r2 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r2, &(0x7f0000001a80)={0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4)
setsockopt$sock_int(r4, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
listen(r4, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty, 0xffffffff}, 0x1c)
listen(0xffffffffffffffff, 0x80000003)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)

356.303273ms ago: executing program 6 (id=7550):
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0xd5)
pipe2$9p(0x0, 0x0)
close(0xffffffffffffffff)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000)=0x2)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f00000008c0))

320.169803ms ago: executing program 2 (id=7551):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000410"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x7fe00003, 0x0, 0x0, 0x0, 0x102}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r3}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@deltfilter={0x24, 0x2d, 0x200, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x4, 0xe}, {0x4, 0xf}}}, 0x24}}, 0x14000000)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'dummy0\x00', <r5=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0xb4}}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000740)=ANY=[@ANYBLOB="04010000", @ANYRES16=<r9=>r8, @ANYBLOB="010028bd7000000000000c000000180001801400020076657468305f746f5f626f6e64000000d800038004000100d0000380cc000180c70002"], 0x104}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYRES16=r9], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
lsm_get_self_attr(0x64, 0xffffffffffffffff, &(0x7f0000000040)=0xfffffffffffffdb1, 0x0)

211.994076ms ago: executing program 6 (id=7552):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1)

128.183778ms ago: executing program 3 (id=7553):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xeb, '\x00', 0x0, @tracing=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_create_resource$binfmt(0x0)
openat$binfmt(0xffffffffffffff9c, r0, 0x41, 0x1ff)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000400), &(0x7f00000004c0)=0xc)
open(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socket$netlink(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000000)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x4}, 0x50)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000003e000701fcf7fffffedbdf25017c00000c0004"], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

117.071707ms ago: executing program 3 (id=7554):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)

108.335338ms ago: executing program 6 (id=7555):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x2b, 0x0, &(0x7f0000000380))
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x908, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x4}, 0x2012, 0x0, 0x2, 0x2, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14)
r2 = fspick(0xffffffffffffffff, &(0x7f0000000300)='./file1/file0\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f00000008c0)='\x00', &(0x7f0000000900)='/dev/snd/seq\x00', 0x0)
recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x6000, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="480000001200ffffff7f00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800e0001006970366772657461700000000c00028008000100", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x48}}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r3, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r5, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x7ffffffd, 0x4}, {}, {}, @result={0x1f00}}], 0x1c)
chdir(&(0x7f0000000040)='./file0\x00')
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r6, &(0x7f0000000000)=""/58, 0x3a)

56.757678ms ago: executing program 2 (id=7556):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000200), &(0x7f0000000240)=r2}, 0x20)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r0, 0x0, 0x880)

178.96µs ago: executing program 2 (id=7557):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002640)=@delchain={0xf8, 0x65, 0x20, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0x1}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0xbc, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_FLAGS={0x8}, @TCA_BPF_ACT={0x98, 0x1, [@m_simple={0x30, 0x1e, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x1}}}}, @m_connmark={0x34, 0x15, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}, @m_csum={0x30, 0x8, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x3}, @TCA_BPF_FD={0x8}]}}]}, 0xf8}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
move_mount(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0)
accept$packet(r0, &(0x7f0000000300), &(0x7f0000000340)=0x14)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1/file3\x00', 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r3, 0x560f, &(0x7f0000000100)={0x1, 0x1, 0x19, 0x1f, 0xbb, 0x0})
ioctl$KDFONTOP_COPY(r3, 0x4b72, &(0x7f0000000100)={0x3, 0x0, 0xd, 0x14, 0x16, &(0x7f0000000a00)})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x3, 0x0, 0xff, "d4e9002b2c000000ff00"})
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
sendto$inet6(r5, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x13}, 0x7}, 0x1c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001640), r6)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}}, 0x0)

0s ago: executing program 3 (id=7558):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x8088, &(0x7f0000000840)=ANY=[@ANYRES8=0x0, @ANYRES16], 0x3, 0x24b, &(0x7f0000000540)="$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")
mount$nfs(&(0x7f0000000100)='...', &(0x7f0000000140)='./file0\x00', 0x0, 0x2000, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0, 0x0, 0x6}, 0x18)
readv(0xffffffffffffffff, &(0x7f0000001980)=[{0x0}], 0x1)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r1, &(0x7f0000001f80)=""/4082, 0xff2)

kernel console output (not intermixed with test programs):

076] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  346.080461][T20075] IPVS: stopping backup sync thread 20076 ...
[  346.156174][T20082] tap0: tun_chr_ioctl cmd 1074025677
[  346.167882][T20082] tap0: linktype set to 768
[  346.188312][T20082] sch_tbf: burst 2976 is lower than device lo mtu (65550) !
[  346.247243][T20085] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6372'.
[  346.305509][ T3376] hid_parser_main: 19 callbacks suppressed
[  346.305581][ T3376] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x4
[  346.321581][ T3376] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x2
[  346.355143][ T3376] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x3
[  346.363561][ T3376] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  346.366094][T20089] nfs4: Unknown parameter '
'
[  346.371909][ T3376] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  346.382397][T20089] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20089 comm=syz.3.6374
[  346.385367][ T3376] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  346.385394][ T3376] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  346.385416][ T3376] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0
[  346.461141][T20098] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  346.473973][T20097] IPVS: stopping backup sync thread 20098 ...
[  346.511676][T20100] FAULT_INJECTION: forcing a failure.
[  346.511676][T20100] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  346.526024][T20100] CPU: 0 UID: 0 PID: 20100 Comm: syz.1.6378 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  346.526051][T20100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  346.526063][T20100] Call Trace:
[  346.526069][T20100]  <TASK>
[  346.526078][T20100]  __dump_stack+0x1d/0x30
[  346.526107][T20100]  dump_stack_lvl+0xe8/0x140
[  346.526147][T20100]  dump_stack+0x15/0x1b
[  346.526163][T20100]  should_fail_ex+0x265/0x280
[  346.526191][T20100]  should_fail_alloc_page+0xf2/0x100
[  346.526299][T20100]  __alloc_frozen_pages_noprof+0xff/0x360
[  346.526412][T20100]  alloc_pages_mpol+0xb3/0x250
[  346.526602][T20100]  vma_alloc_folio_noprof+0x1aa/0x300
[  346.526642][T20100]  handle_mm_fault+0xec2/0x2c20
[  346.526752][T20100]  do_user_addr_fault+0x636/0x1090
[  346.526794][T20100]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  346.526829][T20100]  exc_page_fault+0x62/0xa0
[  346.526967][T20100]  asm_exc_page_fault+0x26/0x30
[  346.526991][T20100] RIP: 0033:0x7fe0312a0cb0
[  346.527007][T20100] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  346.527046][T20100] RSP: 002b:00007fe02fe464a0 EFLAGS: 00010286
[  346.527065][T20100] RAX: 0000000000001000 RBX: 00007fe02fe46540 RCX: 0000000000000001
[  346.527128][T20100] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 00007fe02fe465e0
[  346.527143][T20100] RBP: 00000000000000f7 R08: 00007fe027a27000 R09: 00000000000000ff
[  346.527157][T20100] R10: 0000000000000000 R11: 00007fe02fe46550 R12: 0000000000000001
[  346.527250][T20100] R13: 00007fe03147db80 R14: 0000000000000000 R15: 00007fe02fe465e0
[  346.527270][T20100]  </TASK>
[  346.527282][T20100] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  346.721887][ T3376] hid-generic 0000:3000000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  346.919708][T20125] xt_HMARK: spi-set and port-set can't be combined
[  346.953966][T20125] binfmt_misc: register: failed to install interpreter file ./file2
[  346.986378][T20136] IPVS: stopping backup sync thread 20140 ...
[  346.988501][T20140] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  347.120838][T20159] __nla_validate_parse: 4 callbacks suppressed
[  347.120854][T20159] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6402'.
[  347.139277][T20159] netlink: 332 bytes leftover after parsing attributes in process `syz.1.6402'.
[  347.170472][T20167] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6405'.
[  347.185998][   T29] kauditd_printk_skb: 75 callbacks suppressed
[  347.186016][   T29] audit: type=1400 audit(341.753:15268): avc:  denied  { create } for  pid=20152 comm="syz.3.6398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  347.200392][T20171] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6403'.
[  347.220817][   T29] audit: type=1400 audit(341.790:15269): avc:  denied  { connect } for  pid=20152 comm="syz.3.6398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  347.225872][T20171] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6403'.
[  347.278871][T20170] xt_HMARK: spi-set and port-set can't be combined
[  347.297541][T20170] binfmt_misc: register: failed to install interpreter file ./file2
[  347.376713][T20182] FAULT_INJECTION: forcing a failure.
[  347.376713][T20182] name failslab, interval 1, probability 0, space 0, times 0
[  347.393456][T20182] CPU: 1 UID: 0 PID: 20182 Comm: syz.1.6411 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  347.393487][T20182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  347.393503][T20182] Call Trace:
[  347.393511][T20182]  <TASK>
[  347.393521][T20182]  __dump_stack+0x1d/0x30
[  347.393616][T20182]  dump_stack_lvl+0xe8/0x140
[  347.393639][T20182]  dump_stack+0x15/0x1b
[  347.393660][T20182]  should_fail_ex+0x265/0x280
[  347.393689][T20182]  should_failslab+0x8c/0xb0
[  347.393717][T20182]  kmem_cache_alloc_node_noprof+0x57/0x320
[  347.393797][T20182]  ? __alloc_skb+0x101/0x320
[  347.393823][T20182]  __alloc_skb+0x101/0x320
[  347.393845][T20182]  netlink_alloc_large_skb+0xba/0xf0
[  347.393870][T20182]  netlink_sendmsg+0x3cf/0x6b0
[  347.393903][T20182]  ? __pfx_netlink_sendmsg+0x10/0x10
[  347.393933][T20182]  __sock_sendmsg+0x145/0x180
[  347.394043][T20182]  __sys_sendto+0x268/0x330
[  347.394074][T20182]  __x64_sys_sendto+0x76/0x90
[  347.394112][T20182]  x64_sys_call+0x2d05/0x2ff0
[  347.394157][T20182]  do_syscall_64+0xd2/0x200
[  347.394193][T20182]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  347.394248][T20182]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  347.394276][T20182]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  347.394297][T20182] RIP: 0033:0x7fe0313deec9
[  347.394402][T20182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  347.394425][T20182] RSP: 002b:00007fe02fe47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  347.394449][T20182] RAX: ffffffffffffffda RBX: 00007fe031635fa0 RCX: 00007fe0313deec9
[  347.394463][T20182] RDX: 0000000000000090 RSI: 00002000000000c0 RDI: 0000000000000003
[  347.394476][T20182] RBP: 00007fe02fe47090 R08: 0000000000000000 R09: 0000000000000000
[  347.394511][T20182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  347.394523][T20182] R13: 00007fe031636038 R14: 00007fe031635fa0 R15: 00007ffd8981de28
[  347.394616][T20182]  </TASK>
[  347.681052][T20189] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  347.681099][T20188] IPVS: stopping backup sync thread 20189 ...
[  347.771608][T20199] xt_HMARK: spi-set and port-set can't be combined
[  347.814090][T20199] binfmt_misc: register: failed to install interpreter file ./file2
[  347.827620][T20198] netlink: 96 bytes leftover after parsing attributes in process `syz.5.6417'.
[  347.918585][   T29] audit: type=1400 audit(342.436:15270): avc:  denied  { read } for  pid=20208 comm="+}[@" name="usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  347.942200][   T29] audit: type=1400 audit(342.436:15271): avc:  denied  { open } for  pid=20208 comm="+}[@" path="/dev/usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  347.965484][   T29] audit: type=1400 audit(342.436:15272): avc:  denied  { ioctl } for  pid=20208 comm="+}[@" path="/dev/usbmon7" dev="devtmpfs" ino=163 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  348.018523][T20214] FAULT_INJECTION: forcing a failure.
[  348.018523][T20214] name failslab, interval 1, probability 0, space 0, times 0
[  348.032926][T20214] CPU: 0 UID: 0 PID: 20214 Comm: syz.3.6424 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  348.033003][T20214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  348.033016][T20214] Call Trace:
[  348.033024][T20214]  <TASK>
[  348.033032][T20214]  __dump_stack+0x1d/0x30
[  348.033058][T20214]  dump_stack_lvl+0xe8/0x140
[  348.033127][T20214]  dump_stack+0x15/0x1b
[  348.033241][T20214]  should_fail_ex+0x265/0x280
[  348.033270][T20214]  should_failslab+0x8c/0xb0
[  348.033299][T20214]  __kmalloc_noprof+0xa5/0x3e0
[  348.033324][T20214]  ? sock_kmalloc+0x85/0xc0
[  348.033352][T20214]  ? iovec_from_user+0x179/0x210
[  348.033391][T20214]  sock_kmalloc+0x85/0xc0
[  348.033448][T20214]  ____sys_sendmsg+0xf8/0x4e0
[  348.033555][T20214]  ___sys_sendmsg+0x17b/0x1d0
[  348.033596][T20214]  __sys_sendmmsg+0x178/0x300
[  348.033638][T20214]  __x64_sys_sendmmsg+0x57/0x70
[  348.033666][T20214]  x64_sys_call+0x1c4a/0x2ff0
[  348.033686][T20214]  do_syscall_64+0xd2/0x200
[  348.033718][T20214]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  348.033822][T20214]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  348.033850][T20214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  348.033928][T20214] RIP: 0033:0x7f5d4cdaeec9
[  348.033946][T20214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.033982][T20214] RSP: 002b:00007f5d4b817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  348.034007][T20214] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdaeec9
[  348.034020][T20214] RDX: 0000000000000001 RSI: 00002000000032c0 RDI: 0000000000000005
[  348.034034][T20214] RBP: 00007f5d4b817090 R08: 0000000000000000 R09: 0000000000000000
[  348.034047][T20214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  348.034060][T20214] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  348.034080][T20214]  </TASK>
[  348.353777][T20232] xt_HMARK: spi-set and port-set can't be combined
[  348.379403][T20232] binfmt_misc: register: failed to install interpreter file ./file2
[  348.394902][T20236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6433'.
[  348.423199][T20244] IPVS: stopping backup sync thread 20245 ...
[  348.441212][   T29] audit: type=1400 audit(342.916:15273): avc:  denied  { execute } for  pid=20240 comm="syz.6.6437" dev="tmpfs" ino=839 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  348.463674][   T29] audit: type=1400 audit(342.916:15274): avc:  denied  { execute_no_trans } for  pid=20240 comm="syz.6.6437" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=839 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  348.593799][T20267] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6439'.
[  348.604302][T20267] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6439'.
[  348.638701][T20266] xt_HMARK: spi-set and port-set can't be combined
[  348.682793][T20266] binfmt_misc: register: failed to install interpreter file ./file2
[  348.734919][T20279] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6451'.
[  348.757165][T20277] vlan2: entered allmulticast mode
[  348.771055][T20277] dummy0: entered allmulticast mode
[  348.869121][   T29] audit: type=1400 audit(343.313:15275): avc:  denied  { bind } for  pid=20246 comm="syz.3.6438" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  348.889522][   T29] audit: type=1400 audit(343.313:15276): avc:  denied  { node_bind } for  pid=20246 comm="syz.3.6438" saddr=fec0:ffff::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  348.983946][T20302] xt_HMARK: spi-set and port-set can't be combined
[  349.093723][T20305] binfmt_misc: register: failed to install interpreter file ./file2
[  349.508197][T20322] FAULT_INJECTION: forcing a failure.
[  349.508197][T20322] name failslab, interval 1, probability 0, space 0, times 0
[  349.521530][T20322] CPU: 0 UID: 0 PID: 20322 Comm: syz.3.6466 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  349.521560][T20322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  349.521635][T20322] Call Trace:
[  349.521641][T20322]  <TASK>
[  349.521648][T20322]  __dump_stack+0x1d/0x30
[  349.521724][T20322]  dump_stack_lvl+0xe8/0x140
[  349.521747][T20322]  dump_stack+0x15/0x1b
[  349.521767][T20322]  should_fail_ex+0x265/0x280
[  349.521795][T20322]  should_failslab+0x8c/0xb0
[  349.521824][T20322]  kmem_cache_alloc_node_noprof+0x57/0x320
[  349.521929][T20322]  ? __alloc_skb+0x101/0x320
[  349.521979][T20322]  __alloc_skb+0x101/0x320
[  349.522034][T20322]  inet_netconf_notify_devconf+0x173/0x230
[  349.522062][T20322]  inetdev_event+0x743/0xc10
[  349.522083][T20322]  ? __pfx_ib_netdevice_event+0x10/0x10
[  349.522108][T20322]  ? ib_netdevice_event+0x186/0x5f0
[  349.522235][T20322]  ? __pfx_inetdev_event+0x10/0x10
[  349.522272][T20322]  raw_notifier_call_chain+0x6f/0x1b0
[  349.522296][T20322]  ? call_netdevice_notifiers_info+0x9c/0x100
[  349.522331][T20322]  call_netdevice_notifiers_info+0xae/0x100
[  349.522497][T20322]  unregister_netdevice_many_notify+0xda9/0x15d0
[  349.522539][T20322]  unregister_netdevice_queue+0x1f5/0x220
[  349.522577][T20322]  __tun_detach+0x7db/0xad0
[  349.522603][T20322]  ? __pfx_tun_chr_close+0x10/0x10
[  349.522626][T20322]  tun_chr_close+0x5a/0x100
[  349.522648][T20322]  __fput+0x29b/0x650
[  349.522734][T20322]  fput_close_sync+0x6e/0x120
[  349.522763][T20322]  __x64_sys_close+0x56/0xf0
[  349.522785][T20322]  x64_sys_call+0x2738/0x2ff0
[  349.522876][T20322]  do_syscall_64+0xd2/0x200
[  349.522904][T20322]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  349.523006][T20322]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  349.523036][T20322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.523055][T20322] RIP: 0033:0x7f5d4cdaeec9
[  349.523151][T20322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  349.523176][T20322] RSP: 002b:00007f5d4b817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  349.523200][T20322] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdaeec9
[  349.523215][T20322] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  349.523230][T20322] RBP: 00007f5d4b817090 R08: 0000000000000000 R09: 0000000000000000
[  349.523244][T20322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  349.523335][T20322] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  349.523354][T20322]  </TASK>
[  349.863972][T20331] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  349.874928][T20330] IPVS: stopping backup sync thread 20331 ...
[  349.946691][T20338] IPVS: stopping backup sync thread 20342 ...
[  350.071413][T20362] xt_HMARK: spi-set and port-set can't be combined
[  350.094018][T20362] binfmt_misc: register: failed to install interpreter file ./file2
[  350.135462][T20366] IPVS: stopping backup sync thread 20367 ...
[  350.431646][   T29] audit: type=1400 audit(344.753:15277): avc:  denied  { read write } for  pid=20384 comm="syz.1.6495" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  350.627868][T20397] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  350.627940][T20396] IPVS: stopping backup sync thread 20397 ...
[  350.731463][ T3389] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  350.732559][T20417] pimreg: entered allmulticast mode
[  350.746199][ T3389] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  350.773597][T20417] pimreg: left allmulticast mode
[  350.909389][T20428] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  350.920442][T20427] IPVS: stopping backup sync thread 20428 ...
[  350.962782][T20416] lo speed is unknown, defaulting to 1000
[  350.969119][T20416] lo speed is unknown, defaulting to 1000
[  350.988093][T20416] lo speed is unknown, defaulting to 1000
[  350.995177][T20416] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  351.013009][T20416] lo speed is unknown, defaulting to 1000
[  351.038473][T20416] lo speed is unknown, defaulting to 1000
[  351.045755][T20416] lo speed is unknown, defaulting to 1000
[  351.052149][T20416] lo speed is unknown, defaulting to 1000
[  351.061847][T20416] lo speed is unknown, defaulting to 1000
[  351.079651][T20416] lo speed is unknown, defaulting to 1000
[  351.092328][T20416] lo speed is unknown, defaulting to 1000
[  351.103624][T20416] lo speed is unknown, defaulting to 1000
[  351.135843][T20441] xt_HMARK: spi-set and port-set can't be combined
[  351.156410][T20432] infiniband syz!: set active
[  351.162118][T20432] infiniband syz!: added team_slave_0
[  351.181810][T20432] RDS/IB: syz!: added
[  351.186133][T20432] smc: adding ib device syz! with port count 1
[  351.192572][T20432] smc:    ib device syz! port 1 has pnetid 
[  351.237567][T20441] binfmt_misc: register: failed to install interpreter file ./file2
[  351.543147][T20461] loop9: detected capacity change from 0 to 7
[  351.554941][T20463] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  351.555100][T20462] IPVS: stopping backup sync thread 20463 ...
[  351.568734][T20461] Buffer I/O error on dev loop9, logical block 0, async page read
[  351.582657][T20461] Buffer I/O error on dev loop9, logical block 0, async page read
[  351.591086][T20461]  loop9: unable to read partition table
[  351.602961][T20461] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  351.602961][T20461] 
) failed (rc=-5)
[  351.604950][T20419] Buffer I/O error on dev loop9, logical block 0, async page read
[  351.626391][T20419] Buffer I/O error on dev loop9, logical block 0, async page read
[  351.635895][T20419] Buffer I/O error on dev loop9, logical block 0, async page read
[  351.644074][T20419] Buffer I/O error on dev loop9, logical block 0, async page read
[  351.652784][T20419] Buffer I/O error on dev loop9, logical block 0, async page read
[  351.882200][T20484] FAULT_INJECTION: forcing a failure.
[  351.882200][T20484] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  351.896137][T20484] CPU: 0 UID: 0 PID: 20484 Comm: syz.5.6533 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  351.896179][T20484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  351.896193][T20484] Call Trace:
[  351.896200][T20484]  <TASK>
[  351.896209][T20484]  __dump_stack+0x1d/0x30
[  351.896264][T20484]  dump_stack_lvl+0xe8/0x140
[  351.896286][T20484]  dump_stack+0x15/0x1b
[  351.896305][T20484]  should_fail_ex+0x265/0x280
[  351.896333][T20484]  should_fail+0xb/0x20
[  351.896356][T20484]  should_fail_usercopy+0x1a/0x20
[  351.896384][T20484]  _copy_to_user+0x20/0xa0
[  351.896468][T20484]  lsm_fill_user_ctx+0x13a/0x1e0
[  351.896497][T20484]  selinux_getselfattr+0x87/0xd0
[  351.896528][T20484]  security_getselfattr+0x24d/0x500
[  351.896662][T20484]  __x64_sys_lsm_get_self_attr+0x51/0x60
[  351.896693][T20484]  x64_sys_call+0xeb8/0x2ff0
[  351.896717][T20484]  do_syscall_64+0xd2/0x200
[  351.896758][T20484]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  351.896823][T20484]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  351.896856][T20484]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  351.896877][T20484] RIP: 0033:0x7fbd626ceec9
[  351.896892][T20484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  351.896914][T20484] RSP: 002b:00007fbd61137038 EFLAGS: 00000246 ORIG_RAX: 00000000000001cb
[  351.897029][T20484] RAX: ffffffffffffffda RBX: 00007fbd62925fa0 RCX: 00007fbd626ceec9
[  351.897073][T20484] RDX: 0000200000000040 RSI: ffffffffffffffff RDI: 0000000000000064
[  351.897089][T20484] RBP: 00007fbd61137090 R08: 0000000000000000 R09: 0000000000000000
[  351.897103][T20484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  351.897116][T20484] R13: 00007fbd62926038 R14: 00007fbd62925fa0 R15: 00007ffec41923e8
[  351.897138][T20484]  </TASK>
[  352.114262][T20489] lo speed is unknown, defaulting to 1000
[  352.124176][T20489] lo speed is unknown, defaulting to 1000
[  352.131886][T20486] xt_HMARK: spi-set and port-set can't be combined
[  352.148046][T20486] binfmt_misc: register: failed to install interpreter file ./file2
[  352.151963][T20491] FAULT_INJECTION: forcing a failure.
[  352.151963][T20491] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  352.170002][T20491] CPU: 1 UID: 0 PID: 20491 Comm: syz.3.6536 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  352.170032][T20491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  352.170122][T20491] Call Trace:
[  352.170129][T20491]  <TASK>
[  352.170136][T20491]  __dump_stack+0x1d/0x30
[  352.170157][T20491]  dump_stack_lvl+0xe8/0x140
[  352.170174][T20491]  dump_stack+0x15/0x1b
[  352.170190][T20491]  should_fail_ex+0x265/0x280
[  352.170212][T20491]  should_fail+0xb/0x20
[  352.170252][T20491]  should_fail_usercopy+0x1a/0x20
[  352.170318][T20491]  _copy_to_user+0x20/0xa0
[  352.170346][T20491]  simple_read_from_buffer+0xb5/0x130
[  352.170374][T20491]  proc_fail_nth_read+0x10e/0x150
[  352.170401][T20491]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  352.170476][T20491]  vfs_read+0x1a5/0x770
[  352.170495][T20491]  ? __rcu_read_unlock+0x4f/0x70
[  352.170518][T20491]  ? __fget_files+0x184/0x1c0
[  352.170616][T20491]  ksys_read+0xda/0x1a0
[  352.170637][T20491]  __x64_sys_read+0x40/0x50
[  352.170657][T20491]  x64_sys_call+0x27bc/0x2ff0
[  352.170756][T20491]  do_syscall_64+0xd2/0x200
[  352.170785][T20491]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  352.170807][T20491]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  352.170902][T20491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.170922][T20491] RIP: 0033:0x7f5d4cdad8dc
[  352.170937][T20491] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  352.170954][T20491] RSP: 002b:00007f5d4b817030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  352.171032][T20491] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdad8dc
[  352.171044][T20491] RDX: 000000000000000f RSI: 00007f5d4b8170a0 RDI: 0000000000000004
[  352.171056][T20491] RBP: 00007f5d4b817090 R08: 0000000000000000 R09: 0000000000000000
[  352.171067][T20491] R10: 0000000000000036 R11: 0000000000000246 R12: 0000000000000001
[  352.171079][T20491] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  352.171096][T20491]  </TASK>
[  352.426890][T20498] IPVS: stopping backup sync thread 20500 ...
[  352.548121][T20515] FAULT_INJECTION: forcing a failure.
[  352.548121][T20515] name failslab, interval 1, probability 0, space 0, times 0
[  352.561345][T20515] CPU: 0 UID: 0 PID: 20515 Comm: syz.3.6545 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  352.561376][T20515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  352.561395][T20515] Call Trace:
[  352.561402][T20515]  <TASK>
[  352.561409][T20515]  __dump_stack+0x1d/0x30
[  352.561431][T20515]  dump_stack_lvl+0xe8/0x140
[  352.561453][T20515]  dump_stack+0x15/0x1b
[  352.561471][T20515]  should_fail_ex+0x265/0x280
[  352.561495][T20515]  should_failslab+0x8c/0xb0
[  352.561522][T20515]  kmem_cache_alloc_noprof+0x50/0x310
[  352.561551][T20515]  ? vm_area_dup+0x33/0x2c0
[  352.561578][T20515]  vm_area_dup+0x33/0x2c0
[  352.561610][T20515]  __split_vma+0xe9/0x650
[  352.561637][T20515]  ? mas_find+0x5d5/0x700
[  352.561665][T20515]  vms_gather_munmap_vmas+0x2b2/0x7b0
[  352.561693][T20515]  mmap_region+0x53f/0x1630
[  352.561722][T20515]  ? mntput_no_expire+0x6f/0x460
[  352.561755][T20515]  ? mntput+0x4b/0x80
[  352.561800][T20515]  do_mmap+0x9b3/0xbe0
[  352.561839][T20515]  vm_mmap_pgoff+0x17a/0x2e0
[  352.561870][T20515]  ksys_mmap_pgoff+0x268/0x310
[  352.561888][T20515]  x64_sys_call+0x14a3/0x2ff0
[  352.561911][T20515]  do_syscall_64+0xd2/0x200
[  352.561940][T20515]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  352.561962][T20515]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  352.561988][T20515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.562011][T20515] RIP: 0033:0x7f5d4cdaeec9
[  352.562029][T20515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.562049][T20515] RSP: 002b:00007f5d4b817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  352.562072][T20515] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdaeec9
[  352.562086][T20515] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000200000ffc000
[  352.562098][T20515] RBP: 00007f5d4b817090 R08: 0000000000000006 R09: 0000000000000000
[  352.562109][T20515] R10: 0000000000012011 R11: 0000000000000246 R12: 0000000000000001
[  352.562120][T20515] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  352.562138][T20515]  </TASK>
[  352.583348][T20520] xt_HMARK: spi-set and port-set can't be combined
[  352.772253][T20528] binfmt_misc: register: failed to install interpreter file ./file2
[  352.897159][T20538] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  352.923899][T20533] IPVS: stopping backup sync thread 20538 ...
[  352.928481][   T29] kauditd_printk_skb: 137 callbacks suppressed
[  352.928499][   T29] audit: type=1326 audit(347.043:15415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20531 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4cdaeec9 code=0x7ffc0000
[  352.961637][   T29] audit: type=1326 audit(347.043:15416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20531 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4cdaeec9 code=0x7ffc0000
[  352.986463][   T29] audit: type=1326 audit(347.043:15417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20531 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f5d4cdaeec9 code=0x7ffc0000
[  353.012011][   T29] audit: type=1326 audit(347.043:15418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20531 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4cdaeec9 code=0x7ffc0000
[  353.036189][   T29] audit: type=1326 audit(347.043:15419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20531 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4cdaeec9 code=0x7ffc0000
[  353.060634][   T29] audit: type=1326 audit(347.043:15420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20531 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d4cdaeec9 code=0x7ffc0000
[  353.084954][   T29] audit: type=1326 audit(347.043:15421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20531 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5d4cdaeec9 code=0x7ffc0000
[  353.109353][   T29] audit: type=1326 audit(347.043:15422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20531 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5d4cdaeec9 code=0x7ffc0000
[  353.220050][T20558] xt_HMARK: spi-set and port-set can't be combined
[  353.292889][T20558] binfmt_misc: register: failed to install interpreter file ./file2
[  353.427898][T20566] __nla_validate_parse: 9 callbacks suppressed
[  353.427920][T20566] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6566'.
[  353.444289][T20566] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6566'.
[  353.534725][T20569] block device autoloading is deprecated and will be removed.
[  353.706977][T20573] IPVS: stopping backup sync thread 20578 ...
[  353.712752][T20578] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  353.817841][T20588] xt_HMARK: spi-set and port-set can't be combined
[  353.865406][T20588] binfmt_misc: register: failed to install interpreter file ./file2
[  353.895878][T20590] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=19 sclass=netlink_tcpdiag_socket pid=20590 comm=syz.3.6578
[  353.932804][   T29] audit: type=1326 audit(347.984:15423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20594 comm="syz.1.6579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  353.956124][   T29] audit: type=1326 audit(347.984:15424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20594 comm="syz.1.6579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  354.145748][T20608] IPVS: stopping backup sync thread 20609 ...
[  354.236691][T20619] xt_HMARK: spi-set and port-set can't be combined
[  354.250931][T20621] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6590'.
[  354.284266][T20619] binfmt_misc: register: failed to install interpreter file ./file2
[  354.387904][T20634] IPVS: stopping backup sync thread 20635 ...
[  354.502562][T20648] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6598'.
[  354.512346][T20648] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6598'.
[  354.548663][T20654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6604'.
[  354.568080][T20656] xt_HMARK: spi-set and port-set can't be combined
[  354.616943][T20649] binfmt_misc: register: failed to install interpreter file ./file2
[  354.617961][T20662] loop5: detected capacity change from 0 to 512
[  354.646554][T20662] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.6608: iget: bad i_size value: 38620345925642
[  354.660534][T20662] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.6608: couldn't read orphan inode 15 (err -117)
[  354.691357][T20662] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  354.705244][T20669] IPVS: stopping backup sync thread 20673 ...
[  354.726679][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  354.757381][T20683] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6618'.
[  354.862589][T20699] loop5: detected capacity change from 0 to 128
[  354.865982][T20698] xt_HMARK: spi-set and port-set can't be combined
[  354.874789][T20699] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  354.876876][T20701] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6621'.
[  354.884663][T20699] FAT-fs (loop5): Filesystem has been set read-only
[  354.893841][T20701] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6621'.
[  354.924528][T20698] binfmt_misc: register: failed to install interpreter file ./file2
[  354.927057][T20699] bio_check_eod: 23914 callbacks suppressed
[  354.927074][T20699] syz.5.6624: attempt to access beyond end of device
[  354.927074][T20699] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  354.957547][T20699] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  354.965541][T20699] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  354.980624][T20699] syz.5.6624: attempt to access beyond end of device
[  354.980624][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  354.995108][T20699] syz.5.6624: attempt to access beyond end of device
[  354.995108][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  355.009114][T20699] syz.5.6624: attempt to access beyond end of device
[  355.009114][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  355.027354][T20699] syz.5.6624: attempt to access beyond end of device
[  355.027354][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  355.047714][T20710] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  355.047731][T20705] IPVS: stopping backup sync thread 20710 ...
[  355.067406][T20699] syz.5.6624: attempt to access beyond end of device
[  355.067406][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  355.081392][T20699] syz.5.6624: attempt to access beyond end of device
[  355.081392][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  355.106106][T20699] syz.5.6624: attempt to access beyond end of device
[  355.106106][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  355.133033][T20699] syz.5.6624: attempt to access beyond end of device
[  355.133033][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  355.150661][T20717] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6633'.
[  355.176491][T20699] syz.5.6624: attempt to access beyond end of device
[  355.176491][T20699] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  355.228168][T20724] netlink: 'syz.2.6636': attribute type 1 has an invalid length.
[  355.256021][T20730] xt_HMARK: spi-set and port-set can't be combined
[  355.272174][T20731] netlink: 'syz.6.6638': attribute type 1 has an invalid length.
[  355.303802][T20730] binfmt_misc: register: failed to install interpreter file ./file2
[  356.142772][T20755] lo speed is unknown, defaulting to 1000
[  356.149496][T20755] lo speed is unknown, defaulting to 1000
[  356.194448][T20758] FAULT_INJECTION: forcing a failure.
[  356.194448][T20758] name failslab, interval 1, probability 0, space 0, times 0
[  356.207780][T20758] CPU: 1 UID: 0 PID: 20758 Comm: syz.1.6649 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  356.207811][T20758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  356.207857][T20758] Call Trace:
[  356.207864][T20758]  <TASK>
[  356.207874][T20758]  __dump_stack+0x1d/0x30
[  356.207927][T20758]  dump_stack_lvl+0xe8/0x140
[  356.207948][T20758]  dump_stack+0x15/0x1b
[  356.207964][T20758]  should_fail_ex+0x265/0x280
[  356.207988][T20758]  should_failslab+0x8c/0xb0
[  356.208013][T20758]  kmem_cache_alloc_node_noprof+0x57/0x320
[  356.208088][T20758]  ? __alloc_skb+0x101/0x320
[  356.208122][T20758]  __alloc_skb+0x101/0x320
[  356.208147][T20758]  netlink_alloc_large_skb+0xba/0xf0
[  356.208215][T20758]  netlink_sendmsg+0x3cf/0x6b0
[  356.208245][T20758]  ? __pfx_netlink_sendmsg+0x10/0x10
[  356.208354][T20758]  __sock_sendmsg+0x145/0x180
[  356.208397][T20758]  ____sys_sendmsg+0x31e/0x4e0
[  356.208427][T20758]  ___sys_sendmsg+0x17b/0x1d0
[  356.208471][T20758]  __x64_sys_sendmsg+0xd4/0x160
[  356.208524][T20758]  x64_sys_call+0x191e/0x2ff0
[  356.208548][T20758]  do_syscall_64+0xd2/0x200
[  356.208582][T20758]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  356.208607][T20758]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  356.208657][T20758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.208679][T20758] RIP: 0033:0x7fe0313deec9
[  356.208698][T20758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.208718][T20758] RSP: 002b:00007fe02fe47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  356.208741][T20758] RAX: ffffffffffffffda RBX: 00007fe031635fa0 RCX: 00007fe0313deec9
[  356.208867][T20758] RDX: 000000000000c000 RSI: 0000200000000000 RDI: 0000000000000003
[  356.208881][T20758] RBP: 00007fe02fe47090 R08: 0000000000000000 R09: 0000000000000000
[  356.208895][T20758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.208908][T20758] R13: 00007fe031636038 R14: 00007fe031635fa0 R15: 00007ffd8981de28
[  356.208973][T20758]  </TASK>
[  356.499188][T20766] xt_HMARK: spi-set and port-set can't be combined
[  356.612022][T20766] binfmt_misc: register: failed to install interpreter file ./file2
[  356.716595][T20789] FAULT_INJECTION: forcing a failure.
[  356.716595][T20789] name failslab, interval 1, probability 0, space 0, times 0
[  356.730940][T20789] CPU: 1 UID: 0 PID: 20789 Comm: syz.3.6662 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  356.730971][T20789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  356.730985][T20789] Call Trace:
[  356.730992][T20789]  <TASK>
[  356.731000][T20789]  __dump_stack+0x1d/0x30
[  356.731034][T20789]  dump_stack_lvl+0xe8/0x140
[  356.731122][T20789]  dump_stack+0x15/0x1b
[  356.731141][T20789]  should_fail_ex+0x265/0x280
[  356.731195][T20789]  should_failslab+0x8c/0xb0
[  356.731222][T20789]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  356.731248][T20789]  ? shmem_alloc_inode+0x34/0x50
[  356.731269][T20789]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  356.731332][T20789]  shmem_alloc_inode+0x34/0x50
[  356.731357][T20789]  alloc_inode+0x40/0x170
[  356.731383][T20789]  new_inode+0x1d/0xe0
[  356.731409][T20789]  shmem_get_inode+0x244/0x750
[  356.731436][T20789]  shmem_mknod+0x46/0x180
[  356.731484][T20789]  shmem_mkdir+0x33/0x70
[  356.731512][T20789]  vfs_mkdir+0x210/0x340
[  356.731538][T20789]  do_mkdirat+0x132/0x3f0
[  356.731563][T20789]  __x64_sys_mkdir+0x42/0x50
[  356.731654][T20789]  x64_sys_call+0x2daa/0x2ff0
[  356.731678][T20789]  do_syscall_64+0xd2/0x200
[  356.731715][T20789]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  356.731745][T20789]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  356.731808][T20789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.731828][T20789] RIP: 0033:0x7f5d4cdaeec9
[  356.731843][T20789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.731860][T20789] RSP: 002b:00007f5d4b817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  356.731929][T20789] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdaeec9
[  356.731941][T20789] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180
[  356.731956][T20789] RBP: 00007f5d4b817090 R08: 0000000000000000 R09: 0000000000000000
[  356.731971][T20789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.731985][T20789] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  356.732007][T20789]  </TASK>
[  357.013693][T20793] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  357.013835][T20791] IPVS: stopping backup sync thread 20793 ...
[  357.078664][T20795] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  357.088748][T20795] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  357.271958][T20815] xt_HMARK: spi-set and port-set can't be combined
[  357.298334][T20815] loop5: detected capacity change from 0 to 1024
[  357.331891][T20815] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.6672: Failed to acquire dquot type 0
[  357.367931][T20815] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  357.388951][T20815] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6672: corrupted inode contents
[  357.403386][T20815] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #13: comm syz.5.6672: mark_inode_dirty error
[  357.415586][T20815] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6672: corrupted inode contents
[  357.430583][T20815] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.6672: mark_inode_dirty error
[  357.454709][T20815] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6672: corrupted inode contents
[  357.473493][T20815] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  357.474760][T20826] IPVS: stopping backup sync thread 20828 ...
[  357.485383][T20828] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  357.511314][T20815] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6672: corrupted inode contents
[  357.523893][T20815] EXT4-fs error (device loop5): ext4_truncate:4666: inode #13: comm syz.5.6672: mark_inode_dirty error
[  357.538320][T20815] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  357.548451][T20815] EXT4-fs (loop5): 1 truncate cleaned up
[  357.554902][T20815] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  357.573940][T20815] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  357.613530][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.687351][T20843] FAULT_INJECTION: forcing a failure.
[  357.687351][T20843] name failslab, interval 1, probability 0, space 0, times 0
[  357.701503][T20843] CPU: 0 UID: 0 PID: 20843 Comm: syz.3.6684 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  357.701553][T20843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  357.701566][T20843] Call Trace:
[  357.701573][T20843]  <TASK>
[  357.701580][T20843]  __dump_stack+0x1d/0x30
[  357.701655][T20843]  dump_stack_lvl+0xe8/0x140
[  357.701677][T20843]  dump_stack+0x15/0x1b
[  357.701696][T20843]  should_fail_ex+0x265/0x280
[  357.701750][T20843]  ? __tcf_chain_get+0x91/0x280
[  357.701768][T20843]  should_failslab+0x8c/0xb0
[  357.701869][T20843]  __kmalloc_cache_noprof+0x4c/0x320
[  357.701985][T20843]  __tcf_chain_get+0x91/0x280
[  357.702013][T20843]  ? __tcf_block_find+0x11a/0x1a0
[  357.702047][T20843]  tc_new_tfilter+0x5ac/0x10a0
[  357.702074][T20843]  ? __rcu_read_unlock+0x4f/0x70
[  357.702168][T20843]  ? avc_has_perm_noaudit+0x1b1/0x200
[  357.702275][T20843]  ? ns_capable+0x7d/0xb0
[  357.702294][T20843]  ? __pfx_tc_new_tfilter+0x10/0x10
[  357.702319][T20843]  rtnetlink_rcv_msg+0x5fb/0x6d0
[  357.702366][T20843]  netlink_rcv_skb+0x120/0x220
[  357.702461][T20843]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  357.702497][T20843]  rtnetlink_rcv+0x1c/0x30
[  357.702529][T20843]  netlink_unicast+0x5c0/0x690
[  357.702557][T20843]  netlink_sendmsg+0x58b/0x6b0
[  357.702582][T20843]  ? __pfx_netlink_sendmsg+0x10/0x10
[  357.702610][T20843]  __sock_sendmsg+0x145/0x180
[  357.702708][T20843]  ____sys_sendmsg+0x31e/0x4e0
[  357.702735][T20843]  ___sys_sendmsg+0x17b/0x1d0
[  357.702772][T20843]  __x64_sys_sendmsg+0xd4/0x160
[  357.702942][T20843]  x64_sys_call+0x191e/0x2ff0
[  357.702966][T20843]  do_syscall_64+0xd2/0x200
[  357.702999][T20843]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  357.703102][T20843]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  357.703131][T20843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  357.703156][T20843] RIP: 0033:0x7f5d4cdaeec9
[  357.703244][T20843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  357.703257][T20843] RSP: 002b:00007f5d4b817038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  357.703272][T20843] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdaeec9
[  357.703281][T20843] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000008
[  357.703328][T20843] RBP: 00007f5d4b817090 R08: 0000000000000000 R09: 0000000000000000
[  357.703390][T20843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  357.703398][T20843] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  357.703411][T20843]  </TASK>
[  358.003035][T20849] FAULT_INJECTION: forcing a failure.
[  358.003035][T20849] name failslab, interval 1, probability 0, space 0, times 0
[  358.017548][T20849] CPU: 0 UID: 0 PID: 20849 Comm: syz.1.6685 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  358.017581][T20849] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  358.017596][T20849] Call Trace:
[  358.017602][T20849]  <TASK>
[  358.017675][T20849]  __dump_stack+0x1d/0x30
[  358.017699][T20849]  dump_stack_lvl+0xe8/0x140
[  358.017721][T20849]  dump_stack+0x15/0x1b
[  358.017740][T20849]  should_fail_ex+0x265/0x280
[  358.017767][T20849]  ? audit_log_d_path+0x8d/0x150
[  358.017831][T20849]  should_failslab+0x8c/0xb0
[  358.017855][T20849]  __kmalloc_cache_noprof+0x4c/0x320
[  358.017966][T20849]  audit_log_d_path+0x8d/0x150
[  358.018156][T20849]  audit_log_d_path_exe+0x42/0x70
[  358.018184][T20849]  audit_log_task+0x1e9/0x250
[  358.018211][T20849]  audit_seccomp+0x61/0x100
[  358.018257][T20849]  ? __seccomp_filter+0x68c/0x10d0
[  358.018277][T20849]  __seccomp_filter+0x69d/0x10d0
[  358.018394][T20849]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  358.018418][T20849]  ? vfs_write+0x7e8/0x960
[  358.018442][T20849]  __secure_computing+0x82/0x150
[  358.018462][T20849]  syscall_trace_enter+0xcf/0x1e0
[  358.018510][T20849]  do_syscall_64+0xac/0x200
[  358.018538][T20849]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  358.018612][T20849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.018685][T20849] RIP: 0033:0x7fe0313deec9
[  358.018768][T20849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.018793][T20849] RSP: 002b:00007fe02fe47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  358.018813][T20849] RAX: ffffffffffffffda RBX: 00007fe031635fa0 RCX: 00007fe0313deec9
[  358.018825][T20849] RDX: 0000000000000000 RSI: 0000200000000600 RDI: 000000000000000b
[  358.018897][T20849] RBP: 00007fe02fe47090 R08: 0000000000000000 R09: 0000000000000000
[  358.018908][T20849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.018919][T20849] R13: 00007fe031636038 R14: 00007fe031635fa0 R15: 00007ffd8981de28
[  358.018963][T20849]  </TASK>
[  358.235940][T20849] netlink: 'syz.1.6685': attribute type 10 has an invalid length.
[  358.245859][T20849] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.255552][T20849] bridge_slave_1: left allmulticast mode
[  358.257679][T20856] FAULT_INJECTION: forcing a failure.
[  358.257679][T20856] name failslab, interval 1, probability 0, space 0, times 0
[  358.261474][T20849] bridge_slave_1: left promiscuous mode
[  358.274224][T20856] CPU: 0 UID: 0 PID: 20856 Comm: syz.2.6687 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  358.274252][T20856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  358.274265][T20856] Call Trace:
[  358.274272][T20856]  <TASK>
[  358.274400][T20856]  __dump_stack+0x1d/0x30
[  358.274496][T20856]  dump_stack_lvl+0xe8/0x140
[  358.274586][T20856]  dump_stack+0x15/0x1b
[  358.274678][T20856]  should_fail_ex+0x265/0x280
[  358.274720][T20856]  ? __pfx_cond_bools_destroy+0x10/0x10
[  358.274748][T20856]  should_failslab+0x8c/0xb0
[  358.274781][T20856]  kmem_cache_alloc_noprof+0x50/0x310
[  358.274808][T20856]  ? hashtab_duplicate+0xfe/0x360
[  358.274829][T20856]  ? __pfx_cond_bools_destroy+0x10/0x10
[  358.274856][T20856]  hashtab_duplicate+0xfe/0x360
[  358.274938][T20856]  ? __pfx_cond_bools_copy+0x10/0x10
[  358.274966][T20856]  cond_policydb_dup+0xd2/0x4e0
[  358.274995][T20856]  security_set_bools+0xa0/0x340
[  358.275131][T20856]  sel_commit_bools_write+0x1ea/0x270
[  358.275160][T20856]  vfs_writev+0x406/0x8b0
[  358.275204][T20856]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  358.275238][T20856]  ? mutex_lock+0xd/0x30
[  358.275301][T20856]  do_writev+0xe7/0x210
[  358.275336][T20856]  __x64_sys_writev+0x45/0x50
[  358.275361][T20856]  x64_sys_call+0x1e9a/0x2ff0
[  358.275383][T20856]  do_syscall_64+0xd2/0x200
[  358.275457][T20856]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  358.275482][T20856]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  358.275560][T20856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.275582][T20856] RIP: 0033:0x7fec8b53eec9
[  358.275599][T20856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.275672][T20856] RSP: 002b:00007fec89fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  358.275693][T20856] RAX: ffffffffffffffda RBX: 00007fec8b795fa0 RCX: 00007fec8b53eec9
[  358.275752][T20856] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003
[  358.275769][T20856] RBP: 00007fec89fa7090 R08: 0000000000000000 R09: 0000000000000000
[  358.275792][T20856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  358.275805][T20856] R13: 00007fec8b796038 R14: 00007fec8b795fa0 R15: 00007ffc759f3d98
[  358.275824][T20856]  </TASK>
[  358.316248][T20858] netlink: 'syz.2.6689': attribute type 10 has an invalid length.
[  358.317418][T20849] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.533873][T20849] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  358.545899][T20858] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.554157][   T29] kauditd_printk_skb: 136 callbacks suppressed
[  358.554172][   T29] audit: type=1326 audit(352.258:15559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20848 comm="syz.1.6685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fe0313dd8dc code=0x7ffc0000
[  358.584627][   T29] audit: type=1326 audit(352.258:15560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20848 comm="syz.1.6685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe0313dd97f code=0x7ffc0000
[  358.586261][T20858] bridge_slave_1: left allmulticast mode
[  358.614650][T20858] bridge_slave_1: left promiscuous mode
[  358.614741][   T29] audit: type=1326 audit(352.258:15561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20848 comm="syz.1.6685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe0313ddb2a code=0x7ffc0000
[  358.620718][T20858] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.644704][   T29] audit: type=1326 audit(352.258:15562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20848 comm="syz.1.6685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  358.675955][   T29] audit: type=1326 audit(352.258:15563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20848 comm="syz.1.6685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  358.713134][   T29] audit: type=1400 audit(352.369:15564): avc:  denied  { create } for  pid=20873 comm="syz.6.6695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  358.734107][   T29] audit: type=1400 audit(352.369:15565): avc:  denied  { write } for  pid=20873 comm="syz.6.6695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  358.756459][   T29] audit: type=1326 audit(352.405:15566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20879 comm="syz.5.6698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  358.780095][   T29] audit: type=1326 audit(352.405:15567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20879 comm="syz.5.6698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  358.804704][   T29] audit: type=1326 audit(352.405:15568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20879 comm="syz.5.6698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  358.833144][T20858] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link
[  358.867053][T20883] I/O error, dev loop13, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  358.880321][T20883] FAT-fs (loop13): unable to read boot sector
[  358.918881][T20897] block device autoloading is deprecated and will be removed.
[  358.964750][T20894] xt_HMARK: spi-set and port-set can't be combined
[  358.975257][T20901] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  358.993627][T20888] blktrace: Concurrent blktraces are not allowed on loop7
[  359.029581][T20894] loop5: detected capacity change from 0 to 1024
[  359.062359][T20894] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.6705: Failed to acquire dquot type 0
[  359.102497][T20894] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  359.146062][T20894] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6705: corrupted inode contents
[  359.163402][T20894] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #13: comm syz.5.6705: mark_inode_dirty error
[  359.176586][T20894] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6705: corrupted inode contents
[  359.190847][T20894] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.6705: mark_inode_dirty error
[  359.217107][T20894] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6705: corrupted inode contents
[  359.260177][T20894] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  359.289628][T20894] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6705: corrupted inode contents
[  359.309825][T20928] __nla_validate_parse: 6 callbacks suppressed
[  359.309845][T20928] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6716'.
[  359.345586][T20894] EXT4-fs error (device loop5): ext4_truncate:4666: inode #13: comm syz.5.6705: mark_inode_dirty error
[  359.366417][T20937] FAULT_INJECTION: forcing a failure.
[  359.366417][T20937] name failslab, interval 1, probability 0, space 0, times 0
[  359.369155][T20894] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  359.379657][T20937] CPU: 1 UID: 0 PID: 20937 Comm: syz.3.6721 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  359.379764][T20937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  359.379777][T20937] Call Trace:
[  359.379812][T20937]  <TASK>
[  359.379821][T20937]  __dump_stack+0x1d/0x30
[  359.379844][T20937]  dump_stack_lvl+0xe8/0x140
[  359.379864][T20937]  dump_stack+0x15/0x1b
[  359.379890][T20937]  should_fail_ex+0x265/0x280
[  359.379915][T20937]  ? call_usermodehelper_setup+0x72/0x190
[  359.379947][T20937]  should_failslab+0x8c/0xb0
[  359.380010][T20937]  ? __pfx_free_modprobe_argv+0x10/0x10
[  359.380033][T20937]  __kmalloc_cache_noprof+0x4c/0x320
[  359.380062][T20937]  ? __kmalloc_node_track_caller_noprof+0x1e5/0x410
[  359.380127][T20937]  ? __pfx_free_modprobe_argv+0x10/0x10
[  359.380148][T20937]  call_usermodehelper_setup+0x72/0x190
[  359.380246][T20937]  __request_module+0x264/0x3e0
[  359.380405][T20937]  tcf_proto_lookup_ops+0x1be/0x220
[  359.380436][T20937]  tcf_proto_is_unlocked+0x30/0xa0
[  359.380494][T20937]  tc_get_tfilter+0x2ec/0x940
[  359.380549][T20937]  ? __kfree_skb+0x109/0x150
[  359.380580][T20937]  ? __dev_queue_xmit+0x1200/0x2000
[  359.380617][T20937]  ? __dev_queue_xmit+0x182/0x2000
[  359.380642][T20937]  ? __pfx_tc_get_tfilter+0x10/0x10
[  359.380693][T20937]  rtnetlink_rcv_msg+0x5fb/0x6d0
[  359.380728][T20937]  netlink_rcv_skb+0x120/0x220
[  359.380807][T20937]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  359.380845][T20937]  rtnetlink_rcv+0x1c/0x30
[  359.380942][T20937]  netlink_unicast+0x5c0/0x690
[  359.381002][T20937]  netlink_sendmsg+0x58b/0x6b0
[  359.381030][T20937]  ? __pfx_netlink_sendmsg+0x10/0x10
[  359.381056][T20937]  __sock_sendmsg+0x145/0x180
[  359.381137][T20937]  ____sys_sendmsg+0x31e/0x4e0
[  359.381166][T20937]  ___sys_sendmsg+0x17b/0x1d0
[  359.381204][T20937]  __x64_sys_sendmsg+0xd4/0x160
[  359.381248][T20937]  x64_sys_call+0x191e/0x2ff0
[  359.381272][T20937]  do_syscall_64+0xd2/0x200
[  359.381378][T20937]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  359.381404][T20937]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  359.381508][T20937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.381531][T20937] RIP: 0033:0x7f5d4cdaeec9
[  359.381550][T20937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.381593][T20937] RSP: 002b:00007f5d4b817038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  359.381687][T20937] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdaeec9
[  359.381701][T20937] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  359.381714][T20937] RBP: 00007f5d4b817090 R08: 0000000000000000 R09: 0000000000000000
[  359.381727][T20937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  359.381740][T20937] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  359.381780][T20937]  </TASK>
[  359.471554][T20935] SELinux: security_context_str_to_sid () failed with errno=-22
[  359.629838][T20894] EXT4-fs (loop5): 1 truncate cleaned up
[  359.700372][T20894] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.754680][T20894] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  359.784405][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.826853][T20955] loop5: detected capacity change from 0 to 512
[  359.833235][T20935] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6720'.
[  359.857791][T20960] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  359.876283][T20955] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.903212][T20966] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6726'.
[  359.912267][T20966] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6726'.
[  359.934870][T20955] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  359.967649][T20955] EXT4-fs (loop5): Remounting filesystem read-only
[  359.984006][T20971] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6731'.
[  360.027300][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.126474][T20921] FAULT_INJECTION: forcing a failure.
[  360.126474][T20921] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  360.140055][T20921] CPU: 0 UID: 0 PID: 20921 Comm: syz.2.6713 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  360.140084][T20921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  360.140096][T20921] Call Trace:
[  360.140119][T20921]  <TASK>
[  360.140127][T20921]  __dump_stack+0x1d/0x30
[  360.140150][T20921]  dump_stack_lvl+0xe8/0x140
[  360.140170][T20921]  dump_stack+0x15/0x1b
[  360.140187][T20921]  should_fail_ex+0x265/0x280
[  360.140265][T20921]  should_fail_alloc_page+0xf2/0x100
[  360.140290][T20921]  __alloc_frozen_pages_noprof+0xff/0x360
[  360.140361][T20921]  alloc_pages_mpol+0xb3/0x250
[  360.140390][T20921]  vma_alloc_folio_noprof+0x1aa/0x300
[  360.140420][T20921]  handle_mm_fault+0xec2/0x2c20
[  360.140508][T20921]  ? __rcu_read_lock+0x37/0x50
[  360.140527][T20921]  ? __pte_offset_map_lock+0x1d4/0x230
[  360.140630][T20921]  __get_user_pages+0x102e/0x1fa0
[  360.140659][T20921]  __mm_populate+0x243/0x3a0
[  360.140682][T20921]  vm_mmap_pgoff+0x232/0x2e0
[  360.140710][T20921]  ksys_mmap_pgoff+0xc2/0x310
[  360.140835][T20921]  ? __x64_sys_mmap+0x49/0x70
[  360.140857][T20921]  x64_sys_call+0x14a3/0x2ff0
[  360.140925][T20921]  do_syscall_64+0xd2/0x200
[  360.140953][T20921]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  360.140975][T20921]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  360.141114][T20921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.141184][T20921] RIP: 0033:0x7fec8b53eec9
[  360.141200][T20921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.141216][T20921] RSP: 002b:00007fec89fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  360.141291][T20921] RAX: ffffffffffffffda RBX: 00007fec8b795fa0 RCX: 00007fec8b53eec9
[  360.141303][T20921] RDX: 000000000000000b RSI: 0000000000b36000 RDI: 0000200000000000
[  360.141314][T20921] RBP: 00007fec89fa7090 R08: ffffffffffffffff R09: 0000000000000000
[  360.141325][T20921] R10: 0000000004008032 R11: 0000000000000246 R12: 0000000000000002
[  360.141399][T20921] R13: 00007fec8b796038 R14: 00007fec8b795fa0 R15: 00007ffc759f3d98
[  360.141415][T20921]  </TASK>
[  360.160516][T20987] netlink: 'syz.3.6737': attribute type 4 has an invalid length.
[  360.290900][T20989] netlink: 'syz.3.6737': attribute type 4 has an invalid length.
[  360.398786][T20987] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[  360.407131][T20987] SELinux: failed to load policy
[  360.470091][T20995] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  360.493574][T20997] xt_HMARK: spi-set and port-set can't be combined
[  360.522938][T20997] binfmt_misc: register: failed to install interpreter file ./file2
[  360.534339][T21001] loop5: detected capacity change from 0 to 512
[  360.549468][T21001] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.6742: iget: bad i_size value: 38620345925642
[  360.581081][T21001] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.6742: couldn't read orphan inode 15 (err -117)
[  360.604744][T21001] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.605398][T21008] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6745'.
[  360.729743][T21025] FAULT_INJECTION: forcing a failure.
[  360.729743][T21025] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.743224][T21025] CPU: 0 UID: 0 PID: 21025 Comm: syz.3.6752 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  360.743257][T21025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  360.743271][T21025] Call Trace:
[  360.743286][T21025]  <TASK>
[  360.743296][T21025]  __dump_stack+0x1d/0x30
[  360.743321][T21025]  dump_stack_lvl+0xe8/0x140
[  360.743363][T21025]  dump_stack+0x15/0x1b
[  360.743381][T21025]  should_fail_ex+0x265/0x280
[  360.743408][T21025]  should_fail+0xb/0x20
[  360.743431][T21025]  should_fail_usercopy+0x1a/0x20
[  360.743487][T21025]  _copy_from_user+0x1c/0xb0
[  360.743535][T21025]  __sys_sendto+0x19e/0x330
[  360.743563][T21025]  __x64_sys_sendto+0x76/0x90
[  360.743587][T21025]  x64_sys_call+0x2d05/0x2ff0
[  360.743609][T21025]  do_syscall_64+0xd2/0x200
[  360.743652][T21025]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  360.743678][T21025]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  360.743709][T21025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.743742][T21025] RIP: 0033:0x7f5d4cdaeec9
[  360.743760][T21025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.743780][T21025] RSP: 002b:00007f5d4b817038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  360.743801][T21025] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdaeec9
[  360.743815][T21025] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  360.743828][T21025] RBP: 00007f5d4b817090 R08: 0000200000000180 R09: 0000000000000010
[  360.743878][T21025] R10: 00000000200007fd R11: 0000000000000246 R12: 0000000000000001
[  360.743965][T21025] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  360.743984][T21025]  </TASK>
[  360.947543][T21028] xt_HMARK: spi-set and port-set can't be combined
[  360.972087][T21028] binfmt_misc: register: failed to install interpreter file ./file2
[  361.006629][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.078221][T21050] netlink: 'syz.5.6763': attribute type 10 has an invalid length.
[  361.100230][T21050] netlink: 40 bytes leftover after parsing attributes in process `syz.5.6763'.
[  361.136495][T21050] team0: Port device geneve1 added
[  361.228614][T21064] xt_HMARK: spi-set and port-set can't be combined
[  361.248636][T21064] binfmt_misc: register: failed to install interpreter file ./file2
[  361.258520][T21067] loop5: detected capacity change from 0 to 512
[  361.569859][T21067] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.6771: iget: bad i_size value: 38620345925642
[  361.611010][T21067] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.6771: couldn't read orphan inode 15 (err -117)
[  361.625503][T21067] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.713254][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.745321][T21077] sctp: [Deprecated]: syz.5.6774 (pid 21077) Use of int in maxseg socket option.
[  361.745321][T21077] Use struct sctp_assoc_value instead
[  361.786542][T21079] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  361.830302][T21083] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6777'.
[  361.903466][T21091] batadv1: entered promiscuous mode
[  361.916839][T21092] loop5: detected capacity change from 0 to 1024
[  361.924170][T21092] EXT4-fs: Ignoring removed bh option
[  361.937048][T21092] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  361.957140][T21092] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  361.997818][T21099] xt_HMARK: spi-set and port-set can't be combined
[  362.013567][T21085] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  362.061066][T21099] binfmt_misc: register: failed to install interpreter file ./file2
[  362.071104][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.094992][T21107] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  362.101899][T21108] FAULT_INJECTION: forcing a failure.
[  362.101899][T21108] name failslab, interval 1, probability 0, space 0, times 0
[  362.112805][T21107] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  362.117238][T21108] CPU: 0 UID: 0 PID: 21108 Comm: syz.6.6786 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  362.117268][T21108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  362.117317][T21108] Call Trace:
[  362.117324][T21108]  <TASK>
[  362.117332][T21108]  __dump_stack+0x1d/0x30
[  362.117421][T21108]  dump_stack_lvl+0xe8/0x140
[  362.117522][T21108]  dump_stack+0x15/0x1b
[  362.117539][T21108]  should_fail_ex+0x265/0x280
[  362.117569][T21108]  should_failslab+0x8c/0xb0
[  362.117595][T21108]  __kmalloc_noprof+0xa5/0x3e0
[  362.117701][T21108]  ? sock_kmalloc+0x85/0xc0
[  362.117729][T21108]  sock_kmalloc+0x85/0xc0
[  362.117800][T21108]  ____sys_sendmsg+0xf8/0x4e0
[  362.117828][T21108]  ___sys_sendmsg+0x17b/0x1d0
[  362.117867][T21108]  __x64_sys_sendmsg+0xd4/0x160
[  362.117980][T21108]  x64_sys_call+0x191e/0x2ff0
[  362.118024][T21108]  do_syscall_64+0xd2/0x200
[  362.118124][T21108]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  362.118148][T21108]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  362.118178][T21108]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.118200][T21108] RIP: 0033:0x7f06dd6feec9
[  362.118283][T21108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.118301][T21108] RSP: 002b:00007f06dc15f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  362.118481][T21108] RAX: ffffffffffffffda RBX: 00007f06dd955fa0 RCX: 00007f06dd6feec9
[  362.118495][T21108] RDX: 0000000020000000 RSI: 0000200000001640 RDI: 0000000000000003
[  362.118585][T21108] RBP: 00007f06dc15f090 R08: 0000000000000000 R09: 0000000000000000
[  362.118599][T21108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.118612][T21108] R13: 00007f06dd956038 R14: 00007f06dd955fa0 R15: 00007fffe7d1b3d8
[  362.118631][T21108]  </TASK>
[  362.341172][T21113] netlink: 'syz.3.6785': attribute type 39 has an invalid length.
[  362.369721][T21119] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6790'.
[  362.396994][T21123] FAULT_INJECTION: forcing a failure.
[  362.396994][T21123] name failslab, interval 1, probability 0, space 0, times 0
[  362.410510][T21123] CPU: 0 UID: 0 PID: 21123 Comm: syz.6.6792 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  362.410543][T21123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  362.410558][T21123] Call Trace:
[  362.410565][T21123]  <TASK>
[  362.410574][T21123]  __dump_stack+0x1d/0x30
[  362.410597][T21123]  dump_stack_lvl+0xe8/0x140
[  362.410616][T21123]  dump_stack+0x15/0x1b
[  362.410650][T21123]  should_fail_ex+0x265/0x280
[  362.410672][T21123]  ? __se_sys_mount+0xef/0x2e0
[  362.410694][T21123]  should_failslab+0x8c/0xb0
[  362.410790][T21123]  __kmalloc_cache_noprof+0x4c/0x320
[  362.410816][T21123]  ? memdup_user+0x99/0xd0
[  362.410858][T21123]  __se_sys_mount+0xef/0x2e0
[  362.410879][T21123]  ? __bpf_trace_sys_enter+0x10/0x30
[  362.410901][T21123]  ? trace_sys_enter+0xd0/0xf0
[  362.411003][T21123]  __x64_sys_mount+0x67/0x80
[  362.411028][T21123]  x64_sys_call+0x2b4d/0x2ff0
[  362.411063][T21123]  do_syscall_64+0xd2/0x200
[  362.411163][T21123]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  362.411185][T21123]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  362.411236][T21123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.411295][T21123] RIP: 0033:0x7f06dd6feec9
[  362.411311][T21123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.411327][T21123] RSP: 002b:00007f06dc15f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  362.411366][T21123] RAX: ffffffffffffffda RBX: 00007f06dd955fa0 RCX: 00007f06dd6feec9
[  362.411380][T21123] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 0000000000000000
[  362.411394][T21123] RBP: 00007f06dc15f090 R08: 0000200000000080 R09: 0000000000000000
[  362.411407][T21123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.411420][T21123] R13: 00007f06dd956038 R14: 00007f06dd955fa0 R15: 00007fffe7d1b3d8
[  362.411441][T21123]  </TASK>
[  362.811520][T21138] lo speed is unknown, defaulting to 1000
[  362.818060][T21138] lo speed is unknown, defaulting to 1000
[  362.880361][T21142] xt_HMARK: spi-set and port-set can't be combined
[  362.918498][T21142] binfmt_misc: register: failed to install interpreter file ./file2
[  363.040851][T21153] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6802'.
[  363.427658][T21199] SELinux:  policydb magic number 0x14 does not match expected magic number 0xf97cff8c
[  363.437635][T21199] SELinux: failed to load policy
[  363.457963][T21204] loop5: detected capacity change from 0 to 512
[  363.485628][T21204] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  363.506289][T21204] EXT4-fs (loop5): 1 truncate cleaned up
[  363.513721][T21204] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  363.584845][T21204] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 16: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[  363.668468][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.750614][T21226] SELinux: security policydb version 17 (MLS) not backwards compatible
[  363.766302][T21225] lo speed is unknown, defaulting to 1000
[  363.772383][T21225] lo speed is unknown, defaulting to 1000
[  363.790440][T21226] SELinux: failed to load policy
[  363.827835][T21226] FAULT_INJECTION: forcing a failure.
[  363.827835][T21226] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.841330][T21226] CPU: 1 UID: 0 PID: 21226 Comm: syz.1.6830 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  363.841359][T21226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  363.841373][T21226] Call Trace:
[  363.841381][T21226]  <TASK>
[  363.841390][T21226]  __dump_stack+0x1d/0x30
[  363.841473][T21226]  dump_stack_lvl+0xe8/0x140
[  363.841568][T21226]  dump_stack+0x15/0x1b
[  363.841583][T21226]  should_fail_ex+0x265/0x280
[  363.841606][T21226]  should_fail+0xb/0x20
[  363.841625][T21226]  should_fail_usercopy+0x1a/0x20
[  363.841709][T21226]  _copy_from_iter+0xd2/0xe80
[  363.841738][T21226]  ? __build_skb_around+0x1a0/0x200
[  363.841763][T21226]  ? __alloc_skb+0x223/0x320
[  363.841791][T21226]  netlink_sendmsg+0x471/0x6b0
[  363.841861][T21226]  ? __pfx_netlink_sendmsg+0x10/0x10
[  363.841885][T21226]  __sock_sendmsg+0x145/0x180
[  363.841917][T21226]  ____sys_sendmsg+0x31e/0x4e0
[  363.841954][T21226]  ___sys_sendmsg+0x17b/0x1d0
[  363.841990][T21226]  __x64_sys_sendmsg+0xd4/0x160
[  363.842018][T21226]  x64_sys_call+0x191e/0x2ff0
[  363.842059][T21226]  do_syscall_64+0xd2/0x200
[  363.842105][T21226]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  363.842130][T21226]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  363.842233][T21226]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.842262][T21226] RIP: 0033:0x7fe0313deec9
[  363.842278][T21226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.842296][T21226] RSP: 002b:00007fe02fe47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  363.842396][T21226] RAX: ffffffffffffffda RBX: 00007fe031635fa0 RCX: 00007fe0313deec9
[  363.842411][T21226] RDX: 0000000004000054 RSI: 0000200000000480 RDI: 0000000000000008
[  363.842427][T21226] RBP: 00007fe02fe47090 R08: 0000000000000000 R09: 0000000000000000
[  363.842439][T21226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.842451][T21226] R13: 00007fe031636038 R14: 00007fe031635fa0 R15: 00007ffd8981de28
[  363.842470][T21226]  </TASK>
[  364.269698][   T29] kauditd_printk_skb: 215 callbacks suppressed
[  364.269713][   T29] audit: type=1400 audit(363.526:15780): avc:  denied  { map } for  pid=21245 comm="syz.6.6841" path="/dev/ttyS3" dev="devtmpfs" ino=96 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  364.403602][   T29] audit: type=1326 audit(363.637:15781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.428009][   T29] audit: type=1326 audit(363.637:15782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.441673][T21261] syzkaller1: entered promiscuous mode
[  364.452948][   T29] audit: type=1326 audit(363.637:15783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.458898][T21261] syzkaller1: entered allmulticast mode
[  364.482173][T21264] loop5: detected capacity change from 0 to 128
[  364.483179][   T29] audit: type=1326 audit(363.637:15784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.519206][   T29] audit: type=1326 audit(363.637:15785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.543055][   T29] audit: type=1326 audit(363.637:15786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.566441][   T29] audit: type=1326 audit(363.637:15787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.590610][   T29] audit: type=1326 audit(363.637:15788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.614740][   T29] audit: type=1326 audit(363.637:15789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21253 comm="syz.6.6843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f06dd6feec9 code=0x7ffc0000
[  364.643410][T21260] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  364.651710][T21260] FAT-fs (loop5): Filesystem has been set read-only
[  364.670329][T21261] SELinux: security policydb version 17 (MLS) not backwards compatible
[  364.679380][T21260] bio_check_eod: 11418 callbacks suppressed
[  364.679396][T21260] syz.5.6846: attempt to access beyond end of device
[  364.679396][T21260] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  364.703927][T21261] SELinux: failed to load policy
[  364.728611][T21260] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  364.736685][T21260] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  364.745387][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745387][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.745520][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745520][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.745587][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745587][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.745622][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745622][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.745656][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745656][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.745810][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745810][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.745847][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745847][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.745887][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745887][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.745947][T21260] syz.5.6846: attempt to access beyond end of device
[  364.745947][T21260] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  364.859848][T21276] __nla_validate_parse: 4 callbacks suppressed
[  364.859868][T21276] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6851'.
[  364.965828][T21287] netlink: 60 bytes leftover after parsing attributes in process `syz.6.6856'.
[  364.967085][T21287] netlink: 60 bytes leftover after parsing attributes in process `syz.6.6856'.
[  365.025941][T21290] SELinux: security policydb version 17 (MLS) not backwards compatible
[  365.026083][T21290] SELinux: failed to load policy
[  365.108486][T21295] FAULT_INJECTION: forcing a failure.
[  365.108486][T21295] name failslab, interval 1, probability 0, space 0, times 0
[  365.108553][T21295] CPU: 0 UID: 0 PID: 21295 Comm: syz.2.6859 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  365.108577][T21295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  365.108589][T21295] Call Trace:
[  365.108596][T21295]  <TASK>
[  365.108604][T21295]  __dump_stack+0x1d/0x30
[  365.108686][T21295]  dump_stack_lvl+0xe8/0x140
[  365.108706][T21295]  dump_stack+0x15/0x1b
[  365.108722][T21295]  should_fail_ex+0x265/0x280
[  365.108744][T21295]  should_failslab+0x8c/0xb0
[  365.108769][T21295]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  365.108835][T21295]  ? sidtab_sid2str_get+0xa0/0x130
[  365.108861][T21295]  kmemdup_noprof+0x2b/0x70
[  365.108890][T21295]  sidtab_sid2str_get+0xa0/0x130
[  365.108987][T21295]  security_sid_to_context_core+0x1eb/0x2e0
[  365.109027][T21295]  security_sid_to_context+0x27/0x40
[  365.109103][T21295]  selinux_lsmprop_to_secctx+0x67/0xf0
[  365.109125][T21295]  security_lsmprop_to_secctx+0x43/0x80
[  365.109228][T21295]  audit_log_task_context+0x77/0x190
[  365.109266][T21295]  audit_log_task+0xf4/0x250
[  365.109311][T21295]  audit_seccomp+0x61/0x100
[  365.109338][T21295]  ? __seccomp_filter+0x68c/0x10d0
[  365.109445][T21295]  __seccomp_filter+0x69d/0x10d0
[  365.109504][T21295]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  365.109536][T21295]  ? vfs_write+0x7e8/0x960
[  365.109568][T21295]  __secure_computing+0x82/0x150
[  365.109682][T21295]  syscall_trace_enter+0xcf/0x1e0
[  365.109721][T21295]  do_syscall_64+0xac/0x200
[  365.109757][T21295]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  365.109783][T21295]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  365.109835][T21295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.109859][T21295] RIP: 0033:0x7fec8b53eec9
[  365.109877][T21295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.109936][T21295] RSP: 002b:00007fec89fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000030
[  365.110007][T21295] RAX: ffffffffffffffda RBX: 00007fec8b795fa0 RCX: 00007fec8b53eec9
[  365.110024][T21295] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003
[  365.110038][T21295] RBP: 00007fec89fa7090 R08: 0000000000000000 R09: 0000000000000000
[  365.110053][T21295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  365.110068][T21295] R13: 00007fec8b796038 R14: 00007fec8b795fa0 R15: 00007ffc759f3d98
[  365.110086][T21295]  </TASK>
[  365.374859][T21317] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6870'.
[  365.643256][T21333] loop5: detected capacity change from 0 to 128
[  365.653516][T21333] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  365.679534][T18577] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  365.694284][T21336] loop5: detected capacity change from 0 to 512
[  365.703984][T21336] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.6878: iget: bad i_size value: 38620345925642
[  365.704450][T21336] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.6878: couldn't read orphan inode 15 (err -117)
[  365.705206][T21336] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  365.761592][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.792700][T21339] xt_HMARK: spi-set and port-set can't be combined
[  365.803366][T21339] loop5: detected capacity change from 0 to 1024
[  366.134933][T21339] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.6879: Failed to acquire dquot type 0
[  366.148902][T21339] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  366.166210][T21339] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6879: corrupted inode contents
[  366.178649][T21339] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #13: comm syz.5.6879: mark_inode_dirty error
[  366.201982][T21339] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6879: corrupted inode contents
[  366.221906][T21339] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.6879: mark_inode_dirty error
[  366.260035][T21339] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6879: corrupted inode contents
[  366.288772][T21339] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  366.319754][T21339] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.6879: corrupted inode contents
[  366.335732][T21339] EXT4-fs error (device loop5): ext4_truncate:4666: inode #13: comm syz.5.6879: mark_inode_dirty error
[  366.349680][T21339] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  366.371139][T21339] EXT4-fs (loop5): 1 truncate cleaned up
[  366.377863][T21339] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  366.393977][T21366] netlink: 'syz.1.6890': attribute type 3 has an invalid length.
[  366.411075][T10931] kernel write not supported for file /ppp (pid: 10931 comm: kworker/1:5)
[  366.424149][T21368] FAULT_INJECTION: forcing a failure.
[  366.424149][T21368] name failslab, interval 1, probability 0, space 0, times 0
[  366.438061][T21368] CPU: 1 UID: 0 PID: 21368 Comm: syz.6.6893 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  366.438092][T21368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  366.438106][T21368] Call Trace:
[  366.438114][T21368]  <TASK>
[  366.438123][T21368]  __dump_stack+0x1d/0x30
[  366.438170][T21368]  dump_stack_lvl+0xe8/0x140
[  366.438197][T21368]  dump_stack+0x15/0x1b
[  366.438217][T21368]  should_fail_ex+0x265/0x280
[  366.438242][T21368]  ? __se_sys_mount+0xef/0x2e0
[  366.438265][T21368]  should_failslab+0x8c/0xb0
[  366.438351][T21368]  __kmalloc_cache_noprof+0x4c/0x320
[  366.438382][T21368]  ? memdup_user+0x99/0xd0
[  366.438474][T21368]  __se_sys_mount+0xef/0x2e0
[  366.438499][T21368]  ? fput+0x8f/0xc0
[  366.438531][T21368]  ? ksys_write+0x192/0x1a0
[  366.438553][T21368]  __x64_sys_mount+0x67/0x80
[  366.438739][T21368]  x64_sys_call+0x2b4d/0x2ff0
[  366.438759][T21368]  do_syscall_64+0xd2/0x200
[  366.438788][T21368]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  366.438810][T21368]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  366.438898][T21368]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.438922][T21368] RIP: 0033:0x7f06dd6feec9
[  366.438956][T21368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.439037][T21368] RSP: 002b:00007f06dc15f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  366.439057][T21368] RAX: ffffffffffffffda RBX: 00007f06dd955fa0 RCX: 00007f06dd6feec9
[  366.439131][T21368] RDX: 0000200000000040 RSI: 0000200000000000 RDI: 0000000000000000
[  366.439143][T21368] RBP: 00007f06dc15f090 R08: 0000200000000440 R09: 0000000000000000
[  366.439154][T21368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.439166][T21368] R13: 00007f06dd956038 R14: 00007f06dd955fa0 R15: 00007fffe7d1b3d8
[  366.439183][T21368]  </TASK>
[  366.441499][T21339] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  366.673243][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  366.802017][T21407] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6905'.
[  366.812343][T21407] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6905'.
[  366.870373][T21411] FAULT_INJECTION: forcing a failure.
[  366.870373][T21411] name failslab, interval 1, probability 0, space 0, times 0
[  366.884439][T21411] CPU: 1 UID: 0 PID: 21411 Comm: syz.5.6912 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  366.884589][T21411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  366.884602][T21411] Call Trace:
[  366.884610][T21411]  <TASK>
[  366.884620][T21411]  __dump_stack+0x1d/0x30
[  366.884640][T21411]  dump_stack_lvl+0xe8/0x140
[  366.884654][T21411]  dump_stack+0x15/0x1b
[  366.884665][T21411]  should_fail_ex+0x265/0x280
[  366.884694][T21411]  should_failslab+0x8c/0xb0
[  366.884711][T21411]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  366.884731][T21411]  ? sidtab_sid2str_get+0xa0/0x130
[  366.884747][T21411]  kmemdup_noprof+0x2b/0x70
[  366.884790][T21411]  sidtab_sid2str_get+0xa0/0x130
[  366.884805][T21411]  security_sid_to_context_core+0x1eb/0x2e0
[  366.884845][T21411]  security_sid_to_context+0x27/0x40
[  366.884859][T21411]  selinux_lsmprop_to_secctx+0x67/0xf0
[  366.884874][T21411]  security_lsmprop_to_secctx+0x43/0x80
[  366.884953][T21411]  audit_log_task_context+0x77/0x190
[  366.885029][T21411]  audit_log_task+0xf4/0x250
[  366.885050][T21411]  audit_seccomp+0x61/0x100
[  366.885082][T21411]  ? __seccomp_filter+0x68c/0x10d0
[  366.885097][T21411]  __seccomp_filter+0x69d/0x10d0
[  366.885112][T21411]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  366.885265][T21411]  ? vfs_write+0x7e8/0x960
[  366.885320][T21411]  ? __rcu_read_unlock+0x4f/0x70
[  366.885338][T21411]  __secure_computing+0x82/0x150
[  366.885352][T21411]  syscall_trace_enter+0xcf/0x1e0
[  366.885369][T21411]  do_syscall_64+0xac/0x200
[  366.885433][T21411]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  366.885463][T21411]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  366.885490][T21411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.885521][T21411] RIP: 0033:0x7fbd626ceec9
[  366.885541][T21411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.885576][T21411] RSP: 002b:00007fbd61137038 EFLAGS: 00000246 ORIG_RAX: 0000000000000030
[  366.885591][T21411] RAX: ffffffffffffffda RBX: 00007fbd62925fa0 RCX: 00007fbd626ceec9
[  366.885600][T21411] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000003
[  366.885608][T21411] RBP: 00007fbd61137090 R08: 0000000000000000 R09: 0000000000000000
[  366.885616][T21411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.885680][T21411] R13: 00007fbd62926038 R14: 00007fbd62925fa0 R15: 00007ffec41923e8
[  366.885701][T21411]  </TASK>
[  367.172706][T21417] xt_HMARK: spi-set and port-set can't be combined
[  367.194018][T21417] binfmt_misc: register: failed to install interpreter file ./file2
[  367.207561][T21421] loop5: detected capacity change from 0 to 128
[  367.218806][T21421] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  367.227521][T21421] FAT-fs (loop5): Filesystem has been set read-only
[  367.237901][T21421] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  367.247827][T21421] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  367.250557][T21419] FAULT_INJECTION: forcing a failure.
[  367.250557][T21419] name failslab, interval 1, probability 0, space 0, times 0
[  367.274473][T21419] CPU: 1 UID: 0 PID: 21419 Comm: syz.1.6916 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  367.274508][T21419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  367.274522][T21419] Call Trace:
[  367.274531][T21419]  <TASK>
[  367.274542][T21419]  __dump_stack+0x1d/0x30
[  367.274568][T21419]  dump_stack_lvl+0xe8/0x140
[  367.274587][T21419]  dump_stack+0x15/0x1b
[  367.274603][T21419]  should_fail_ex+0x265/0x280
[  367.274625][T21419]  should_failslab+0x8c/0xb0
[  367.274652][T21419]  kmem_cache_alloc_noprof+0x50/0x310
[  367.274683][T21419]  ? vm_area_dup+0x33/0x2c0
[  367.274720][T21419]  vm_area_dup+0x33/0x2c0
[  367.274750][T21419]  __split_vma+0xe9/0x650
[  367.274775][T21419]  ? mas_find+0x5d5/0x700
[  367.274808][T21419]  vms_gather_munmap_vmas+0x2b2/0x7b0
[  367.274839][T21419]  mmap_region+0x53f/0x1630
[  367.274863][T21419]  ? mntput_no_expire+0x6f/0x460
[  367.274897][T21419]  ? mntput+0x4b/0x80
[  367.274948][T21419]  do_mmap+0x9b3/0xbe0
[  367.274981][T21419]  vm_mmap_pgoff+0x17a/0x2e0
[  367.275014][T21419]  ksys_mmap_pgoff+0x268/0x310
[  367.275035][T21419]  x64_sys_call+0x14a3/0x2ff0
[  367.275058][T21419]  do_syscall_64+0xd2/0x200
[  367.275092][T21419]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  367.275118][T21419]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  367.275145][T21419]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.275165][T21419] RIP: 0033:0x7fe0313deec9
[  367.275181][T21419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.275214][T21419] RSP: 002b:00007fe02fe47038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  367.275238][T21419] RAX: ffffffffffffffda RBX: 00007fe031635fa0 RCX: 00007fe0313deec9
[  367.275253][T21419] RDX: 0000000000000000 RSI: 0000000000001000 RDI: 0000200000ffc000
[  367.275267][T21419] RBP: 00007fe02fe47090 R08: 0000000000000004 R09: 0000000000000000
[  367.275280][T21419] R10: 0000000000012011 R11: 0000000000000246 R12: 0000000000000001
[  367.275291][T21419] R13: 00007fe031636038 R14: 00007fe031635fa0 R15: 00007ffd8981de28
[  367.275310][T21419]  </TASK>
[  367.650440][T21436] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6923'.
[  367.869907][T21463] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6935'.
[  367.879130][T21463] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6935'.
[  367.912310][T21468] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6939'.
[  367.998203][T21479] xt_HMARK: spi-set and port-set can't be combined
[  368.026719][T21481] xt_HMARK: spi-set and port-set can't be combined
[  368.034726][T21479] binfmt_misc: register: failed to install interpreter file ./file2
[  368.113538][T21481] binfmt_misc: register: failed to install interpreter file ./file2
[  368.149416][T21491] netlink: 'syz.5.6951': attribute type 3 has an invalid length.
[  368.225749][T21507] xt_HMARK: spi-set and port-set can't be combined
[  368.241759][T21509] FAULT_INJECTION: forcing a failure.
[  368.241759][T21509] name failslab, interval 1, probability 0, space 0, times 0
[  368.255098][T21509] CPU: 0 UID: 0 PID: 21509 Comm: +}[@ Not tainted syzkaller #0 PREEMPT(voluntary) 
[  368.255146][T21509] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  368.255158][T21509] Call Trace:
[  368.255164][T21509]  <TASK>
[  368.255171][T21509]  __dump_stack+0x1d/0x30
[  368.255195][T21509]  dump_stack_lvl+0xe8/0x140
[  368.255213][T21509]  dump_stack+0x15/0x1b
[  368.255243][T21509]  should_fail_ex+0x265/0x280
[  368.255299][T21509]  should_failslab+0x8c/0xb0
[  368.255324][T21509]  __kmalloc_node_noprof+0xa9/0x410
[  368.255349][T21509]  ? __rcu_read_unlock+0x4f/0x70
[  368.255429][T21509]  ? qdisc_alloc+0x65/0x440
[  368.255451][T21509]  qdisc_alloc+0x65/0x440
[  368.255469][T21509]  ? __rcu_read_unlock+0x4f/0x70
[  368.255493][T21509]  qdisc_create_dflt+0x7f/0x2d0
[  368.255517][T21509]  ? dev_activate+0xbb/0x9e0
[  368.255604][T21509]  dev_activate+0xde/0x9e0
[  368.255624][T21509]  ? _raw_spin_unlock_bh+0x36/0x40
[  368.255651][T21509]  __dev_open+0x472/0x530
[  368.255681][T21509]  __dev_change_flags+0x163/0x400
[  368.255759][T21509]  netif_change_flags+0x5a/0xd0
[  368.255788][T21509]  dev_change_flags+0xce/0x180
[  368.255863][T21509]  dev_ifsioc+0x44b/0xaa0
[  368.255888][T21509]  ? __rcu_read_unlock+0x4f/0x70
[  368.255954][T21509]  dev_ioctl+0x70a/0x960
[  368.255998][T21509]  sock_do_ioctl+0x197/0x220
[  368.256035][T21509]  sock_ioctl+0x41b/0x610
[  368.256066][T21509]  ? __pfx_sock_ioctl+0x10/0x10
[  368.256124][T21509]  __se_sys_ioctl+0xce/0x140
[  368.256167][T21509]  __x64_sys_ioctl+0x43/0x50
[  368.256187][T21509]  x64_sys_call+0x1816/0x2ff0
[  368.256211][T21509]  do_syscall_64+0xd2/0x200
[  368.256245][T21509]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  368.256299][T21509]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  368.256326][T21509]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.256346][T21509] RIP: 0033:0x7f5d4cdaeec9
[  368.256364][T21509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.256393][T21509] RSP: 002b:00007f5d4b817038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  368.256417][T21509] RAX: ffffffffffffffda RBX: 00007f5d4d005fa0 RCX: 00007f5d4cdaeec9
[  368.256430][T21509] RDX: 0000200000002280 RSI: 0000000000008914 RDI: 0000000000000004
[  368.256443][T21509] RBP: 00007f5d4b817090 R08: 0000000000000000 R09: 0000000000000000
[  368.256464][T21509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.256478][T21509] R13: 00007f5d4d006038 R14: 00007f5d4d005fa0 R15: 00007ffd953e3818
[  368.256567][T21509]  </TASK>
[  368.256576][T21509] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  368.281499][T21507] binfmt_misc: register: failed to install interpreter file ./file2
[  368.293544][T21509] syzkaller0: entered promiscuous mode
[  368.545823][T21509] syzkaller0: entered allmulticast mode
[  368.692272][T21525] syzkaller0: entered promiscuous mode
[  368.698458][T21525] syzkaller0: entered allmulticast mode
[  368.766919][T21543] IPVS: stopping backup sync thread 20960 ...
[  368.809644][T21549] xt_HMARK: spi-set and port-set can't be combined
[  368.830792][T21549] binfmt_misc: register: failed to install interpreter file ./file2
[  369.036607][T21578] IPVS: stopping backup sync thread 21579 ...
[  369.036702][T21579] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  369.115460][T21589] xt_HMARK: spi-set and port-set can't be combined
[  369.132636][T21589] binfmt_misc: register: failed to install interpreter file ./file2
[  369.238093][T21606] IPVS: stopping backup sync thread 20995 ...
[  369.246807][T21608] netlink: 'syz.3.7007': attribute type 3 has an invalid length.
[  369.263825][T21610] loop5: detected capacity change from 0 to 128
[  369.276644][T21610] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  369.285053][T21610] FAT-fs (loop5): Filesystem has been set read-only
[  369.293985][T21610] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  369.302590][T21610] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  369.373571][T21620] xt_HMARK: spi-set and port-set can't be combined
[  369.391898][T21620] binfmt_misc: register: failed to install interpreter file ./file2
[  369.670734][T21639] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  369.670813][T21638] IPVS: stopping backup sync thread 21639 ...
[  369.953065][T21668] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  369.953136][T21667] IPVS: stopping backup sync thread 21668 ...
[  370.102151][T21610] bio_check_eod: 44928 callbacks suppressed
[  370.102238][T21610] syz.5.7008: attempt to access beyond end of device
[  370.102238][T21610] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  370.122963][T21610] syz.5.7008: attempt to access beyond end of device
[  370.122963][T21610] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  370.137155][T21610] syz.5.7008: attempt to access beyond end of device
[  370.137155][T21610] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  370.151020][T21610] syz.5.7008: attempt to access beyond end of device
[  370.151020][T21610] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  370.165533][T21610] syz.5.7008: attempt to access beyond end of device
[  370.165533][T21610] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128
[  370.338899][   T29] kauditd_printk_skb: 105 callbacks suppressed
[  370.338918][   T29] audit: type=1326 audit(369.129:15891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.370530][   T29] audit: type=1326 audit(369.138:15892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.395142][   T29] audit: type=1326 audit(369.138:15893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.421298][   T29] audit: type=1326 audit(369.138:15894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.447204][   T29] audit: type=1326 audit(369.138:15895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.472074][   T29] audit: type=1326 audit(369.138:15896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.496619][   T29] audit: type=1326 audit(369.138:15897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.523331][   T29] audit: type=1326 audit(369.138:15898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.547580][   T29] audit: type=1326 audit(369.138:15899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.572432][   T29] audit: type=1326 audit(369.138:15900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21694 comm="syz.5.7045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd626ceec9 code=0x7ffc0000
[  370.608014][T21698] xt_HMARK: spi-set and port-set can't be combined
[  370.634641][T21698] binfmt_misc: register: failed to install interpreter file ./file2
[  370.663529][T21702] netlink: 'syz.3.7048': attribute type 3 has an invalid length.
[  370.679943][T10934] kernel write not supported for file /ppp (pid: 10934 comm: kworker/1:6)
[  370.742632][T21709] loop5: detected capacity change from 0 to 128
[  370.762752][T21709] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  370.782110][T21715] netlink: 'syz.3.7053': attribute type 3 has an invalid length.
[  370.806666][T21719] __nla_validate_parse: 12 callbacks suppressed
[  370.806688][T21719] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7055'.
[  370.824381][T18577] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  370.950313][T21726] xt_HMARK: spi-set and port-set can't be combined
[  370.978000][T21726] binfmt_misc: register: failed to install interpreter file ./file2
[  371.019311][T21739] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7059'.
[  371.028658][T21739] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7059'.
[  371.108365][T21746] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7066'.
[  371.117566][T21746] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7066'.
[  371.225602][T21761] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7074'.
[  371.265762][T21765] xt_HMARK: spi-set and port-set can't be combined
[  371.285963][T21765] binfmt_misc: register: failed to install interpreter file ./file2
[  372.493353][T21826] netlink: 'syz.5.7105': attribute type 3 has an invalid length.
[  372.774591][T21866] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7125'.
[  372.798996][T21870] IPVS: stopping backup sync thread 21871 ...
[  372.799045][T21871] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  372.998037][T21902] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  373.009211][T21900] IPVS: stopping backup sync thread 21902 ...
[  373.192474][T21922] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  373.200837][T21921] IPVS: stopping backup sync thread 21922 ...
[  373.210231][T21926] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  373.218181][T21924] IPVS: stopping backup sync thread 21926 ...
[  373.284999][T21932] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7147'.
[  373.294395][T21932] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7147'.
[  373.338800][T21936] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7154'.
[  373.350051][T21938] IPVS: stopping backup sync thread 21939 ...
[  373.464437][T21958] xt_HMARK: spi-set and port-set can't be combined
[  373.482825][T21958] binfmt_misc: register: failed to install interpreter file ./file2
[  373.498488][T21960] IPVS: stopping backup sync thread 21961 ...
[  373.511968][T21963] netlink: 'syz.3.7165': attribute type 3 has an invalid length.
[  373.605057][T21975] loop5: detected capacity change from 0 to 1024
[  373.614334][T21975] EXT4-fs: inline encryption not supported
[  373.637160][T21975] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  373.655934][T21975] FAULT_INJECTION: forcing a failure.
[  373.655934][T21975] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  373.672201][T21975] CPU: 0 UID: 0 PID: 21975 Comm: syz.5.7170 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  373.672235][T21975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  373.672248][T21975] Call Trace:
[  373.672255][T21975]  <TASK>
[  373.672263][T21975]  __dump_stack+0x1d/0x30
[  373.672283][T21975]  dump_stack_lvl+0xe8/0x140
[  373.672334][T21975]  dump_stack+0x15/0x1b
[  373.672365][T21975]  should_fail_ex+0x265/0x280
[  373.672387][T21975]  should_fail+0xb/0x20
[  373.672406][T21975]  should_fail_usercopy+0x1a/0x20
[  373.672471][T21975]  strncpy_from_user+0x25/0x230
[  373.672500][T21975]  ? kmem_cache_alloc_noprof+0x186/0x310
[  373.672525][T21975]  ? getname_flags+0x80/0x3b0
[  373.672552][T21975]  getname_flags+0xae/0x3b0
[  373.672585][T21975]  path_setxattrat+0x223/0x310
[  373.672675][T21975]  __x64_sys_setxattr+0x6e/0x90
[  373.672697][T21975]  x64_sys_call+0xad2/0x2ff0
[  373.672716][T21975]  do_syscall_64+0xd2/0x200
[  373.672765][T21975]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  373.672787][T21975]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  373.672813][T21975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.672835][T21975] RIP: 0033:0x7fbd626ceec9
[  373.672851][T21975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.672884][T21975] RSP: 002b:00007fbd61137038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  373.672903][T21975] RAX: ffffffffffffffda RBX: 00007fbd62925fa0 RCX: 00007fbd626ceec9
[  373.672916][T21975] RDX: 0000200000000380 RSI: 0000200000000140 RDI: 0000200000000100
[  373.673430][T21975] RBP: 00007fbd61137090 R08: 0000000000000000 R09: 0000000000000000
[  373.673449][T21975] R10: 0000000000000024 R11: 0000000000000246 R12: 0000000000000001
[  373.673540][T21975] R13: 00007fbd62926038 R14: 00007fbd62925fa0 R15: 00007ffec41923e8
[  373.673560][T21975]  </TASK>
[  373.951198][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.085105][T22020] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  374.097706][T22010] IPVS: stopping backup sync thread 22020 ...
[  374.386553][T22053] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  374.386701][T22052] IPVS: stopping backup sync thread 22053 ...
[  375.346281][T22107] netlink: 'syz.1.7227': attribute type 3 has an invalid length.
[  375.488014][T22127] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  375.734636][T22138] netlink: 'syz.1.7241': attribute type 3 has an invalid length.
[  375.811607][T22145] 9pnet_fd: Insufficient options for proto=fd
[  375.859304][   T29] kauditd_printk_skb: 103 callbacks suppressed
[  375.859322][   T29] audit: type=1326 audit(374.224:16004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  375.901321][   T29] audit: type=1326 audit(374.234:16005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  375.926190][   T29] audit: type=1326 audit(374.234:16006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  375.950169][   T29] audit: type=1326 audit(374.234:16007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  375.974077][   T29] audit: type=1326 audit(374.234:16008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  375.998800][   T29] audit: type=1326 audit(374.234:16009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  376.023627][   T29] audit: type=1326 audit(374.234:16010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  376.048356][   T29] audit: type=1326 audit(374.234:16011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  376.074760][   T29] audit: type=1326 audit(374.234:16012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22148 comm="syz.1.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  376.099800][   T29] audit: type=1326 audit(374.298:16013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22152 comm="syz.1.7248" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0313deec9 code=0x7ffc0000
[  376.163613][T22167] IPVS: stopping backup sync thread 22170 ...
[  376.163699][T22170] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  376.320879][T22195] __nla_validate_parse: 3 callbacks suppressed
[  376.320896][T22195] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7262'.
[  376.337703][T22195] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7262'.
[  376.393867][T22202] IPVS: stopping backup sync thread 22203 ...
[  376.689478][T22248] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=61 sclass=netlink_route_socket pid=22248 comm=syz.3.7291
[  376.704339][T22248] sch_tbf: burst 2 is lower than device lo mtu (11337746) !
[  376.767111][T22254] netlink: 48 bytes leftover after parsing attributes in process `syz.2.7295'.
[  376.905007][T22266] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7301'.
[  377.034957][T22276] netlink: 48 bytes leftover after parsing attributes in process `syz.5.7306'.
[  377.064632][T22278] loop5: detected capacity change from 0 to 128
[  377.081058][T22278] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  377.107765][T22278] sd 0:0:1:0: device reset
[  377.125210][T18577] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  377.196013][T22292] netlink: 'syz.5.7313': attribute type 3 has an invalid length.
[  377.209791][T22292] 9pnet_fd: Insufficient options for proto=fd
[  377.245559][T22298] netlink: 48 bytes leftover after parsing attributes in process `syz.5.7317'.
[  377.282047][T22302] netlink: zone id is out of range
[  377.288200][T22302] netlink: zone id is out of range
[  377.296378][T22302] netlink: zone id is out of range
[  377.301799][T22302] netlink: zone id is out of range
[  377.311071][T22302] netlink: zone id is out of range
[  377.317757][T22302] netlink: zone id is out of range
[  377.323949][T22302] netlink: zone id is out of range
[  377.332829][T22302] netlink: zone id is out of range
[  377.338841][T22302] netlink: zone id is out of range
[  377.344685][T22302] netlink: zone id is out of range
[  377.378358][T22308] batadv1: entered promiscuous mode
[  377.421358][T22316] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7323'.
[  377.430723][T22316] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7323'.
[  377.456798][T22318] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7324'.
[  377.466270][T22318] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7324'.
[  378.213549][T22388] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  378.578001][T22420] xt_HMARK: spi-set and port-set can't be combined
[  378.617652][T22420] binfmt_misc: register: failed to install interpreter file ./file2
[  379.381926][T22457] xt_HMARK: spi-set and port-set can't be combined
[  379.449358][T22457] loop5: detected capacity change from 0 to 1024
[  379.514857][T22457] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.7384: Failed to acquire dquot type 0
[  379.541222][T22457] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  379.556600][T22457] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.7384: corrupted inode contents
[  379.569208][T22457] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #13: comm syz.5.7384: mark_inode_dirty error
[  379.582787][T22457] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.7384: corrupted inode contents
[  379.595938][T22457] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.7384: mark_inode_dirty error
[  379.608794][T22457] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.7384: corrupted inode contents
[  379.625928][T22457] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  379.636674][T22457] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.7384: corrupted inode contents
[  379.650762][T22457] EXT4-fs error (device loop5): ext4_truncate:4666: inode #13: comm syz.5.7384: mark_inode_dirty error
[  379.663939][T22457] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  379.676112][T22457] EXT4-fs (loop5): 1 truncate cleaned up
[  379.684372][T22457] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  379.724932][T22457] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  379.893189][T18577] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.171722][T22490] siw: device registration error -23
[  380.222367][T22495] lo speed is unknown, defaulting to 1000
[  380.228884][T22495] lo speed is unknown, defaulting to 1000
[  380.294260][T22517] xt_HMARK: spi-set and port-set can't be combined
[  380.345531][T22510] binfmt_misc: register: failed to install interpreter file ./file2
[  380.356900][T22495] chnl_net:caif_netlink_parms(): no params data found
[  380.369652][T22521] vlan2: entered allmulticast mode
[  380.376962][T22521] dummy0: entered allmulticast mode
[  380.398741][ T6823] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.462881][ T6823] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.494048][T22495] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.501360][T22495] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.511972][T22495] bridge_slave_0: entered allmulticast mode
[  380.520323][T22495] bridge_slave_0: entered promiscuous mode
[  380.530170][T22495] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.540298][T22495] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.567473][T22495] bridge_slave_1: entered allmulticast mode
[  380.622499][T22495] bridge_slave_1: entered promiscuous mode
[  380.649103][ T6823] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.683663][T22495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  380.700141][T22495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  380.737157][T22558] vlan2: entered allmulticast mode
[  380.774246][T22495] team0: Port device team_slave_0 added
[  380.787611][ T6823] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.811606][T22495] team0: Port device team_slave_1 added
[  380.850337][T22495] batman_adv: batadv0: Adding interface: batadv_slave_0
[  380.857784][T22495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  380.884892][T22495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  380.966640][T22495] batman_adv: batadv0: Adding interface: batadv_slave_1
[  380.974105][T22495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  381.001847][T22495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  381.209207][ T6823] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  381.219539][ T6823] bond0 (unregistering): Released all slaves
[  381.261194][T22596] lo speed is unknown, defaulting to 1000
[  381.270855][T22596] lo speed is unknown, defaulting to 1000
[  381.291145][ T6823] tipc: Disabling bearer <udp:syz2>
[  381.296917][ T6823] tipc: Left network mode
[  381.308696][T22495] hsr_slave_0: entered promiscuous mode
[  381.335363][T22495] hsr_slave_1: entered promiscuous mode
[  381.346014][T22495] debugfs: 'hsr0' already exists in 'hsr'
[  381.352834][T22495] Cannot create hsr debugfs directory
[  381.469894][ T6823] hsr_slave_0: left promiscuous mode
[  381.481904][ T6823] hsr_slave_1: left promiscuous mode
[  381.499605][ T6823] veth1_macvtap: left promiscuous mode
[  381.505841][ T6823] veth0_macvtap: left promiscuous mode
[  381.512316][ T6823] veth1_vlan: left promiscuous mode
[  381.518043][ T6823] veth0_vlan: left promiscuous mode
[  381.770893][   T29] kauditd_printk_skb: 360 callbacks suppressed
[  381.770913][   T29] audit: type=1326 audit(385.686:16372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  381.821734][   T29] audit: type=1326 audit(385.686:16373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  381.823563][T22641] __nla_validate_parse: 15 callbacks suppressed
[  381.823580][T22641] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7457'.
[  381.846498][   T29] audit: type=1326 audit(385.714:16374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  381.852722][T22641] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7457'.
[  381.861882][   T29] audit: type=1326 audit(385.714:16375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  381.861912][   T29] audit: type=1326 audit(385.714:16376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  381.861935][   T29] audit: type=1326 audit(385.714:16377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  381.861961][   T29] audit: type=1326 audit(385.723:16378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  381.993361][   T29] audit: type=1326 audit(385.723:16379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  382.018564][   T29] audit: type=1326 audit(385.723:16380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  382.043805][   T29] audit: type=1326 audit(385.723:16381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22638 comm="syz.2.7458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8b53eec9 code=0x7ffc0000
[  382.429050][T22495] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  382.449245][T22495] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  382.459720][T22495] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  382.469364][T22673] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7471'.
[  382.478909][T22673] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7471'.
[  382.499682][T22495] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  382.622943][T22495] 8021q: adding VLAN 0 to HW filter on device bond0
[  382.675507][T22495] 8021q: adding VLAN 0 to HW filter on device team0
[  382.713453][ T6823] bridge0: port 1(bridge_slave_0) entered blocking state
[  382.721348][ T6823] bridge0: port 1(bridge_slave_0) entered forwarding state
[  382.786127][ T6823] bridge0: port 2(bridge_slave_1) entered blocking state
[  382.793713][ T6823] bridge0: port 2(bridge_slave_1) entered forwarding state
[  383.069054][T22495] 8021q: adding VLAN 0 to HW filter on device batadv0
[  383.385588][T22495] veth0_vlan: entered promiscuous mode
[  383.415729][T22495] veth1_vlan: entered promiscuous mode
[  383.457934][T22495] veth0_macvtap: entered promiscuous mode
[  383.479682][T22495] veth1_macvtap: entered promiscuous mode
[  383.552043][T22495] batman_adv: batadv0: Interface activated: batadv_slave_0
[  383.573114][T22495] batman_adv: batadv0: Interface activated: batadv_slave_1
[  383.598915][ T6846] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  383.611388][ T6846] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  383.626129][ T6846] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  383.651957][ T6846] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  383.833682][T22745] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7490'.
[  383.932605][T22748] block device autoloading is deprecated and will be removed.
[  384.587797][T22776] loop3: detected capacity change from 0 to 512
[  384.631107][T22776] /dev/loop3: Can't open blockdev
[  385.023577][T22792] loop3: detected capacity change from 0 to 128
[  385.038965][T22792] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  385.069935][T19840] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  385.164880][T22806] loop3: detected capacity change from 0 to 512
[  385.184814][T22806] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.7520: iget: bad i_size value: 38620345925642
[  385.217937][T22806] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.7520: couldn't read orphan inode 15 (err -117)
[  385.262218][T22806] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  385.294131][T22806] 9pnet_fd: Insufficient options for proto=fd
[  385.315476][T19840] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.451604][T22830] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7523'.
[  385.462168][T22830] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7523'.
[  385.490570][T22833] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7527'.
[  385.502311][T22833] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7527'.
[  385.852942][T22875] 9pnet_fd: Insufficient options for proto=fd
[  385.900093][T22878] vlan2: entered allmulticast mode
[  385.921598][T22878] dummy0: entered allmulticast mode
[  386.154759][T22862] loop5: detected capacity change from 0 to 2048
[  386.194553][T22894] loop3: detected capacity change from 0 to 128
[  386.214985][ T2993] ==================================================================
[  386.223531][ T2993] BUG: KCSAN: data-race in set_nlink / set_nlink
[  386.230140][ T2993] 
[  386.232613][ T2993] read to 0xffff88810cb6e780 of 4 bytes by task 20446 on cpu 1:
[  386.241394][ T2993]  set_nlink+0x29/0xb0
[  386.246408][ T2993]  kernfs_iop_permission+0x1e2/0x220
[  386.252959][ T2993]  inode_permission+0x1ca/0x310
[  386.258282][ T2993]  link_path_walk+0x162/0x900
[  386.263680][ T2993]  path_openat+0x1de/0x2170
[  386.268374][ T2993]  do_filp_open+0x109/0x230
[  386.273302][ T2993]  do_sys_openat2+0xa6/0x110
[  386.278642][ T2993]  __x64_sys_openat+0xf2/0x120
[  386.283654][ T2993]  x64_sys_call+0x2e9c/0x2ff0
[  386.289252][ T2993]  do_syscall_64+0xd2/0x200
[  386.294681][ T2993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.301378][ T2993] 
[  386.303713][ T2993] write to 0xffff88810cb6e780 of 4 bytes by task 2993 on cpu 0:
[  386.311534][ T2993]  set_nlink+0x99/0xb0
[  386.316277][ T2993]  kernfs_iop_permission+0x1e2/0x220
[  386.323768][ T2993]  inode_permission+0x1ca/0x310
[  386.329983][ T2993]  link_path_walk+0x162/0x900
[  386.336079][ T2993]  path_lookupat+0x63/0x2a0
[  386.341154][ T2993]  filename_lookup+0x147/0x340
[  386.346740][ T2993]  vfs_statx+0x9d/0x390
[  386.351344][ T2993]  vfs_fstatat+0x115/0x170
[  386.355972][ T2993]  __se_sys_newfstatat+0x55/0x260
[  386.362304][ T2993]  __x64_sys_newfstatat+0x55/0x70
[  386.368174][ T2993]  x64_sys_call+0x135a/0x2ff0
[  386.373850][ T2993]  do_syscall_64+0xd2/0x200
[  386.379783][ T2993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.386498][ T2993] 
[  386.389190][ T2993] value changed: 0x00000008 -> 0x00000009
[  386.395562][ T2993] 
[  386.398643][ T2993] Reported by Kernel Concurrency Sanitizer on:
[  386.405576][ T2993] CPU: 0 UID: 0 PID: 2993 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[  386.415966][ T2993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  386.427813][ T2993] ==================================================================
[  386.430019][T22886] vhci_hcd: invalid port number 96
[  386.441822][T22886] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  386.458822][T20419]  loop5: p1 < > p4
[  386.486438][T20419] loop5: p4 size 8388608 extends beyond EOD, truncated
[  386.496295][ T2993] udevd[2993]: worker [20446] terminated by signal 33 (Unknown signal 33)
[  386.506528][ T2993] udevd[2993]: worker [20446] failed while handling '/devices/virtual/block/loop3'
[  386.539222][T22898] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7557'.
[  386.547527][T22862]  loop5: p1 < > p4
[  386.554094][T22862] loop5: p4 size 8388608 extends beyond EOD, truncated
[  386.564771][ T2993]  loop5: p1 < > p4
[  386.575753][ T2993] loop5: p4 size 8388608 extends beyond EOD, truncated