last executing test programs:

2m15.553632821s ago: executing program 4 (id=356):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a400000000009000200731b2522600000000900010073797a30000000000800054000000021440000001e0a"], 0xc8}}, 0x800)

2m15.449108782s ago: executing program 4 (id=357):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000002020000000900010073797a310000000014000200626f6e641000"/46], 0x34}}, 0xc800)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000940)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000c000000200003801c000380180001800a0002007770616e30000000070001000400000018000180140002007665746830"], 0x4c}}, 0x880)
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x39, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1511, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x9, 0x1, 0x8, 0x6, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r2], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5, 0x0, 0xfffffffffffffffc}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)

2m15.072700238s ago: executing program 4 (id=359):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000010080)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000003, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r2 = io_uring_setup(0x2754, &(0x7f0000000080)={0x0, 0xfffffffc, 0x800, 0xfffffffe, 0x800001b4})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

2m14.96857593s ago: executing program 4 (id=363):
prctl$PR_SET_TIMERSLACK(0x1d, 0x8001)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x2c}}, 0x810)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), r0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mm_page_free\x00', r2, 0x0, 0x5}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_LEN={0x8}, @NFTA_EXTHDR_TYPE={0x5}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0x8c}}, 0x0)

2m14.94529731s ago: executing program 4 (id=364):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000600)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x3}, 0x50)
r3 = dup3(r1, 0xffffffffffffffff, 0x80000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000006c0)={{r2}, &(0x7f0000000240), &(0x7f0000000680)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000005600)='sys_enter\x00', r4, 0x0, 0x2}, 0x18)
r5 = socket(0x1e, 0x4, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
r9 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
write$tun(r9, 0x0, 0x46)
r10 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000180), 0x4)
r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r11, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1}, 0x6d)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r12, 0xe0, &(0x7f0000001880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r13=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000440)=r13, 0x4)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r15 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x200, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x0, 0x3}, 0x50)
r16 = openat$null(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
r17 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x4, 0x15, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000005000000000000005f0c000095000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000004000000850000000600000018110000", @ANYRES32=r9, @ANYBLOB="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"], &(0x7f0000000100)='syzkaller\x00', 0x5, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x38, r10, 0x8, &(0x7f00000001c0)={0x1, 0x1}, 0x8, 0x10, &(0x7f00000003c0)={0x3, 0x8, 0x8, 0xf}, 0x10, r13, r6, 0x1, &(0x7f00000004c0)=[r14, r15, r5, r16, r8, r7, r17], &(0x7f0000000500)=[{0x1, 0x3, 0x6, 0x1}], 0x10, 0x2}, 0x94)
sendmsg$can_raw(r5, &(0x7f0000000100)={&(0x7f0000000000), 0x10, &(0x7f00000000c0)={&(0x7f0000000040)=@canfd={{0x3, 0x1, 0x1, 0x1}, 0x3c, 0x2, 0x0, 0x0, "4f2cd7151fe00d7ad913f412522a3892080f8dd514edc1386fd58308b8fa58edbfb481d26b8c32e9765a130af3f0a0077d45b1f7957801fcc714445e24214350"}, 0x48}, 0x1, 0x0, 0x0, 0xd4}, 0x8804)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

2m14.897069541s ago: executing program 4 (id=366):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT=r1], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='writeback_bdi_register\x00', r2}, 0x18)
r3 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r3]) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

1m59.861570466s ago: executing program 32 (id=366):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYRESOCT=r1], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='writeback_bdi_register\x00', r2}, 0x18)
r3 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r3]) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

1m0.73418107s ago: executing program 1 (id=1770):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = accept$phonet_pipe(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x10)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
getsockopt$netlink(r3, 0x10e, 0x1, &(0x7f0000000280)=""/121, &(0x7f0000000300)=0x79)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000850000000800000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000005c0)='sys_enter\x00', r4}, 0x10)
rt_sigsuspend(0x0, 0x0)
setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, &(0x7f0000000180), 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='xprtrdma_op_connect\x00', r1}, 0x18)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000001840), 0xffffffffffffffff)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r8 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r7, &(0x7f0000002780)={@val={0x8, 0x800}, @val={0x4, 0x0, 0x2, 0x0, 0x14, 0x5}, @mpls={[], @generic="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"}}, 0xfce)
sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r5, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000001980)={&(0x7f0000001880)={0x4c, r6, 0x1, 0x0, 0x25dfdbff, {0x3a}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}]}, 0x4c}}, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x800)

57.843543426s ago: executing program 1 (id=1831):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001ec0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) (async)
statx(0xffffffffffffffff, 0x0, 0x6000, 0x400, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xa, 0xa, &(0x7f00000007c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2}, [@func={0x85, 0x0, 0x1, 0x0, 0x1}, @exit, @tail_call]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

57.828660036s ago: executing program 1 (id=1832):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000200)={0x3, &(0x7f00000001c0)=[{0x5, 0x8, 0x2, 0x1}, {0x0, 0x20, 0x9, 0x8000}, {0x3, 0x3, 0x9c, 0x3ff}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000340)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x3, 0x451, &(0x7f0000000f80)="$eJzs3M2PU1UbAPDn3k6HlxdwRsQPPtRRNE78mGEAlYULNZq4wMREF7qczAwEKYxhxkQIUTAGV8aYuDcu/Rdc6cYYVyZudW9IiGEDuKq57b1MW9rCdFqq098vuXDOvedyztNzT3vuPS0BjKyp7I8kYntE/B4RE/Vsc4Gp+l/Xr55fuHH1/EIS1erbfyW1cteunl8oihbnbcsz02lE+lkSe9vUu3L23Mn5SmXpTJ6fXT31wezK2XPPnTg1f3zp+NLpg0eOHD409+ILB5/vS5xZm67t+Xh53+433vvqzaNfNMXfEkefTHU7+GS12ufqhmtHQzoZG2JDWJdSRGTdVa6N/4koxVrnTcTrnw61ccBAVavV6rbOhy9UgU0siea8IQ+jovigz+5/i611EvDy4KYfQ3fllfoNUBb39XyrHxmLNC9Tbrm/7aepiHj3wt/fZFsM5jkEAECTH7L5z7Pt5n9pPNBQ7p58bWgyIu6NiJ0RcV9E7IqI+yNqZR+MiIfWWX/rIsmt85/0ck+B3aFs/vdSvrbVPP8rZn8xWcpzO2rxl5NjJypLB/LXZDrKW7L8XJc6fnztty87HWuc/2VbVn8xF8zbcXlsS/M5i/Or8xuJudGVixF7xtrFn9xcCUgiYndE7OmxjhNPf7ev07Hbx99FH9aZqt9GPFXv/wvREn8h6b4+Ofu/qCwdmC2uilv98uultzrVv6H4+yDr//+3vf5vxj+ZNK7Xrqy/jkt/fN7xnqbX6388eaeWHs/3fTS/unpmLmI8OVpvdOP+g2vnFvmifBb/9P72439nrL0SeyMiu4gfjohHIuLRvO2PRcTjEbG/S/w/v/rE+73HP1hZ/Ivr6v+1xHi07mmfKJ386fumSidvif9G9/4/XEtN53vu5P3vTtrV29UMAAAA/z1pRGyPJJ25mU7TmZn69+V3RaSV5ZXVZ44tf3h6sf4bgckop8WTromG56Fz+W19PX8xIupfLSiOH8qfG39d2lrLzywsVxaHHTyMuG0dxn/mz9KwWwcMnN9rwegy/mF0Gf8wuox/GF1txv/WYbQDuPvaff5/MoR2AHdfy/i37AcjxP0/jK6O438z/88/QI3PfxhJK1vj9j+S75oo/qUeT9+0iSj/K5qx8UQ1adu5kQ67YRKDTAz3fQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKBf/gkAAP//qmHgTw==")
mkdir(&(0x7f0000000140)='./bus\x00', 0x40)
chdir(&(0x7f0000000300)='./bus\x00')
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)

57.653190398s ago: executing program 1 (id=1834):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x6)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000b5ffffffffffffffff2e2be82db1af00000000", 0x18)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x74df82a6, @private1={0xfc, 0x1, '\x00', 0xa}, 0xae3e}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000002940)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}}], 0x62, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="010000000400000008000000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x4}, 0xffffffffffffffc0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_DAEMON(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e3000000000000000000000000800030000000000140006"], 0x58}}, 0x0)
readv(r1, &(0x7f0000000600)=[{&(0x7f0000001300)=""/244, 0xf4}, {&(0x7f0000000740)=""/197, 0xc5}, {&(0x7f0000000500)=""/87, 0x57}, {&(0x7f0000000640)=""/53, 0x35}], 0x4)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
r6 = msgget(0x2, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000002304e800000000000000ea850000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000027c0)={&(0x7f00000001c0)='netlink_extack\x00', r7}, 0x18)
r8 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="380100001a0013070000000000000000fe8000000000000000000000000000aaff01000000000000000000000000000100040000000000020000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414aa0000000000000000000000000000000033000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0002006000000000000000480001007368613100"/240], 0x138}}, 0x0)
msgrcv(r6, &(0x7f0000000140)={0x0, ""/83}, 0x5b, 0x1, 0x2c00)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r9 = syz_clone(0x2100, 0x0, 0x0, 0x0, 0x0, 0x0)
r10 = syz_pidfd_open(r9, 0x0)
fsetxattr$system_posix_acl(r10, &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f00000004c0)={{}, {0x1, 0x5}, [], {0x4, 0x6}, [], {0x10, 0x1}, {0x20, 0x2}}, 0x24, 0x1)
r11 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r11}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')

57.519056491s ago: executing program 1 (id=1836):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x88002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
pwritev(r0, 0x0, 0x0, 0x0, 0x0)

56.535357226s ago: executing program 1 (id=1848):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000002020000000900010073797a310000000014000200626f6e641000"/46], 0x34}}, 0xc800)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000940)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000c000000200003801c000380180001800a0002007770616e30000000070001000400000018000180140002007665746830"], 0x4c}}, 0x880)
r5 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r3], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7, 0x0, 0xfffffffffffffffc}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, 0x0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r5, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000a00000005000400020000000900020073797a32000000001400078008001340ffffffff0800060000000000050005000200000005000100060000000d000300686173683a6e6574"], 0x5c}}, 0x80)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYRES8=0x0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8, 0x0, 0x10000002}, 0x18)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x24040010}, 0x0)
close(r9)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xab6f, 0xc77d}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

56.535111586s ago: executing program 33 (id=1848):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000002020000000900010073797a310000000014000200626f6e641000"/46], 0x34}}, 0xc800)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000940)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000c000000200003801c000380180001800a0002007770616e30000000070001000400000018000180140002007665746830"], 0x4c}}, 0x880)
r5 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r3], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7, 0x0, 0xfffffffffffffffc}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, 0x0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r5, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000a00000005000400020000000900020073797a32000000001400078008001340ffffffff0800060000000000050005000200000005000100060000000d000300686173683a6e6574"], 0x5c}}, 0x80)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYRES8=0x0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8, 0x0, 0x10000002}, 0x18)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x24040010}, 0x0)
close(r9)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xab6f, 0xc77d}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)

5.138191639s ago: executing program 2 (id=2846):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0}, &(0x7f00000002c0), &(0x7f0000000500)='%pK    \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@noload}, {@acl}, {@mb_optimize_scan}]}, 0x1, 0x783, &(0x7f0000001000)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0x8004587d, &(0x7f0000000300)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x81})

5.05428337s ago: executing program 2 (id=2850):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lsm_list_modules(&(0x7f0000002600)=[0x0, 0x0], &(0x7f0000000000)=0x10, 0x0)

4.976359932s ago: executing program 2 (id=2853):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='pids.current\x00', 0x275a, 0x0)
r0 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
close(r0)

3.945606798s ago: executing program 2 (id=2858):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x1109, &(0x7f0000000300)={0x0, 0x974, 0x1000, 0x2, 0xbf7ffffa}, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x6000})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
io_uring_enter(r2, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)

2.737834797s ago: executing program 6 (id=2889):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = syz_io_uring_setup(0x10d, &(0x7f00000004c0)={0x0, 0x8b7c, 0x800, 0x7, 0x22}, &(0x7f0000000940)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x10, 0xb52f637d30af9880})
io_uring_enter(r0, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f00000008c0), 0x5, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x2}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
pipe(&(0x7f0000000140))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="191cb97729726a69040000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r5}, &(0x7f00000002c0), &(0x7f0000000300)=r6}, 0x20)
fsetxattr$trusted_overlay_origin(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2)
quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0)

2.655668598s ago: executing program 6 (id=2891):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b7040000000000008500000001000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$cgroup_int(r2, &(0x7f0000000100)=0x1000001, 0x12)

2.588647769s ago: executing program 6 (id=2892):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000002020000000900010073797a310000000014000200626f6e641000"/46], 0x34}}, 0xc800)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000940)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB], 0x4c}}, 0x880)
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x39, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1511, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x9, 0x1, 0x8, 0x6, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r3], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7, 0x0, 0xfffffffffffffffc}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, 0x0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r5, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000a00000005000400020000000900020073797a32000000001400078008001340ffffffff0800060000000000050005000200000005000100060000000d000300686173683a6e6574"], 0x5c}}, 0x80)
r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r9 = fcntl$dupfd(r8, 0x406, r8)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYRES8=0x0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10, 0x0, 0x10000002}, 0x18)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r11, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x24040010}, 0x0)
close(r11)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xab6f, 0xc77d}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, r9, 0x2)

2.418937972s ago: executing program 6 (id=2899):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x20240, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

2.385513972s ago: executing program 5 (id=2901):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="0000000000004a641c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff0000000001000000000000d7", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800a000100767863616e0000000400028008000a00", @ANYRES32=r3, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xe}, 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1807000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r6}, 0x18)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_udp(0xa, 0x2, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newtaction={0xf8, 0x30, 0x80d, 0x0, 0x0, {}, [{0xe4, 0x1, [@m_ct={0xe0, 0x2, 0x0, 0x0, {{0x7}, {0x4c, 0x2, 0x0, 0x1, [@TCA_CT_ZONE={0x6, 0x4, 0x800}, @TCA_CT_LABELS_MASK={0x14, 0x8, "37a55358cbfec0e9d412939d8317fcdc"}, @TCA_CT_PARMS={0x18, 0x1, {0x2, 0x8, 0xffffffffffffffff, 0x4, 0x8}}, @TCA_CT_LABELS={0x14, 0x7, "a31a5744c98714e0c10894427408df27"}]}, {0x6f, 0x6, "43e8d9d30f8d6b0c6e32992edbcea387adfc77bf464de67a0a0d17f9c46dcfb21f93d5e40c02b0ea55e2193b888040d9ce0ddbb70d77dcbbc8dd1bad7ecdf6aeeebbab3d012febf59a70aa90a24c723d2596276a4e0080ed9ff8b0356f61017a13bfff966ce469b8f54a94"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r8 = socket(0x1, 0x803, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x40, 0x10, 0x403, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r9}]}, 0x40}, 0x1, 0x0, 0x0, 0x24000804}, 0x8000)
r10 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8}]}, 0x4c}}, 0x0)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250)

2.149573636s ago: executing program 5 (id=2903):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
r1 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x4040, 0x53)
execveat(r1, &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)={[&(0x7f00000003c0)='\x00']}, &(0x7f0000000680)={[&(0x7f0000000440)='mountinfo\x00', &(0x7f0000000480)='kfree\x00', &(0x7f0000000640)='\x00']}, 0x1000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/14], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x18, 0xf, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r3, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
ppoll(&(0x7f0000000100)=[{r4, 0x2030}, {r4, 0x140a}], 0x2, 0x0, 0x0, 0x0)
r5 = getpid()
syz_pidfd_open(r5, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r8, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
ioctl$sock_inet_udp_SIOCINQ(r8, 0x541b, &(0x7f0000000000))

1.90803952s ago: executing program 3 (id=2908):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lsm_list_modules(&(0x7f0000002600)=[0x0, 0x0], &(0x7f0000000000)=0x10, 0x0)

1.871544321s ago: executing program 3 (id=2909):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lsm_list_modules(&(0x7f0000002600)=[0x0, 0x0], 0x0, 0x0)

1.844631841s ago: executing program 3 (id=2910):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYRESHEX=r2, @ANYBLOB="000000000002c90000000000000000000000000084f119caf04d035f46785e57f279c45769d91843d9e297aaab3516fee36ecc1e2edab18c0efcea7b2fc68e48b7dd2bc91346184fd1f1ca2f30bd500efa04995d05233346e8b7e301f211202833635bb5f72bcb3b3f985ba295052f22fef107f714f236ded3f1ada081796de3d3fe25d188586b5d52794480c1fe81c243a557fbbf2e47e449dfae8b7469", @ANYRES32=0x0, @ANYBLOB='\x00'/28, @ANYRESHEX=r1], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$tipc(0x1e, 0x5, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r6, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r6, 0x0)
connect$unix(r2, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)}, 0x2040)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
newfstatat(0xffffffff0000005d, 0x0, 0x0, 0x1000)
connect$unix(r6, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.711157423s ago: executing program 2 (id=2861):
getpeername$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, <r0=>0x0}, &(0x7f00000001c0)=0x14)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r2}, 0x10)
r3 = memfd_create(0x0, 0x1)
pwritev(r3, 0x0, 0x0, 0x9e8f, 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0xf, {[@global=@item_012={0x0, 0x1, 0x5}, @local=@item_4={0x3, 0x2, 0x0, "45501821"}, @global=@item_012={0x1, 0x1, 0x9, "f5"}, @global=@item_012={0x1, 0x1, 0x7, "84"}, @main=@item_4={0x3, 0x0, 0x8, "9e3ce079"}]}}, 0x0}, 0x0)
r5 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
pwrite64(r5, &(0x7f0000000080)='3', 0x1, 0x0)

1.484485036s ago: executing program 6 (id=2911):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000002080)={0x9, {"a2e339084fc752f91b2909094bf70e0dd038e7ff7fc6e5539b3263078b089b39333b6d1a0890e0878f0e1ac6e7049b076d959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31300d316d0936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df0784c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b4bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02ccf156f3da001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a5031e54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d618e462071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58ceecce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4000000000000007fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af44863c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ef9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766cf3817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000510b000000000000000000000000000000000000000000000000ac6b429961f8c30a00", 0x1028}}, 0xfffffd00)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
pread64(0xffffffffffffffff, &(0x7f0000000280)=""/155, 0x9b, 0x8000000)
gettid()
ioctl$GIO_UNISCRNMAP(r1, 0x4b69, &(0x7f0000000000)=""/126)

1.474426156s ago: executing program 0 (id=2912):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000fd"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r2, 0x0, 0x8000000000004}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0xfffffffffffffffd}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'sit0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000100)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=@ipv6_newnexthop={0x3c, 0x68, 0x1, 0x0, 0x25dfdbff, {}, [@NHA_ENCAP_TYPE={0x6, 0x7, 0x5}, @NHA_ENCAP={0x14, 0x8, 0x0, 0x1, @LWTUNNEL_IP6_OPTS={0x10, 0x8, @LWTUNNEL_IP_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, @LWTUNNEL_IP_OPT_VXLAN_GBP={0x0, 0x1, 0x8}}}}, @NHA_OIF={0x8, 0x5, r5}]}, 0x3c}}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
open$dir(&(0x7f0000000280)='./file0\x00', 0x400000, 0x96)
add_key$fscrypt_provisioning(&(0x7f0000000300), &(0x7f0000000340)={'syz', 0x2}, &(0x7f00000003c0)={0x0, 0x0, @auto=[0x29, 0x23, 0x25]}, 0xb, 0xffffffffffffffff)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r6, 0x0, 0xfffffffffffffffd}, 0x18)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000040)={[{@noquota}]}, 0x1, 0x775, &(0x7f0000001180)="$eJzs3c9rXNUeAPDvnSRNm/a95MGD9+oqIGigdGJqbBVcVFyIYKGga9thMg01k0zJTEoTAlpEcCOouBB007U/6s6tP7b6X7gQS9W0WHEhkTu5t502M2mSJpnqfD5wM+fceyfnfOf+OGfmHu4NoGeNpn8KEYcj4t0kYjibn0TEQDPVH3Fybb1bK8vldEpidfXlX5LmOjdXlsvR8p7UwSzz/4j45q2II4X15dYXl2ZK1WplPsuPN2YvjNcXl46eny1NV6Yrc8cnJiePnXjqxPGdi/W375cOXXvvhcc/P/nHm/+7+s63SZyMQ9my1jh2ymiMZp/JQPoR3uX5nS6sy5JuV4BtSQ/NvrWjPA7HcPQ1UwDAP9nrEbEKAPSYRPsPAD0m/x3g5spyOZ+6+4vE3rr+XETsX4s/v765tqQ/u2a3v3kddOhmcteVkSQiRnag/NGI+PjLVz9Np9il65AA7bxxOSLOjoyuP/8n68YsbNUTGyzbl72O3jPf+Q/2zldp/+fpdv2/wu3+T7Tp/wy2OXa3477H/4EdKGQDaf/v2Zaxbbda4s+M9GW5fzX7fAPJufPVSnpu+3dEjMXAYJqf2KCMsRt/3ui0rLX/9+v7r32Slp++3lmj8FP/4N3vmSo1Sg8Sc6vrlyMe6W8Xf3J7+ycd+r+nN1nGi8+8/VGnZWn8abz5tD7+yEYn7Y7VKxGPtd3+d0a0JRuOTxxv7g7j+U7Rxhc/fDjUqfzW7Z9Oafn5d4G9kG7/oY3jH0lax2vWt17Gd1eGv+607P7xt9//9yWvNNN5P+JSqdGYn4jYl7y0fv6xO+/N8/n6afxjj7Y//jfa/9PvhGc3GX//tZ8/2378uyuNf2pL23/riau3Zvo6lb+57T/ZTI1lczZz/ttsBR/kswMAAAAAAAAAAAAAAAAAAAAAAACAzSpExKFICsXb6UKhWFx7hvd/Y6hQrdUbR87VFuamovms7JEYKOS3uhxuuR/qRHY//Dx/7J78kxHxn4j4YPBAkt9HcarLsQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA7mCH5/+nfhzsdu0AgF2zv9sVAAD2nPYfAHqP9h8Aeo/2HwB6j/YfAHqP9h8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBddvrUqXRa/X1luZzmpy4uLszULh6dqtRnirML5WK5Nn+hOF2rTVcrxXJt9n7/r1qrXZiMuYVL441KvTFeX1w6M1tbmGucOT9bmq6cqQzsSVQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsDX1xaWZUrVamZfYRmL14ahG9xN92e70sNRnTxPJw1GNHU50+cQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8DfxVwAAAP//02Ii/w==")
r7 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x2)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./bus\x00', 0x1c5902, 0x2d)
sendfile(r9, r8, 0x0, 0x7ffff000)
fallocate(r7, 0x0, 0x0, 0x1001f0)

1.276851399s ago: executing program 5 (id=2913):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000000005000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd4242"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.27625811s ago: executing program 0 (id=2923):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd42"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.233317281s ago: executing program 0 (id=2914):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r0 = syz_io_uring_setup(0x10d, &(0x7f00000004c0)={0x0, 0x8b7c, 0x800, 0x7, 0x22}, &(0x7f0000000940)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x10, 0xb52f637d30af9880})
io_uring_enter(r0, 0x47f9, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f00000008c0), 0x5, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x2}, 0x18)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
pipe(&(0x7f0000000140))
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="191cb97729726a69040000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r6}, 0x10)
quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0)

1.159623202s ago: executing program 0 (id=2915):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000002020000000900010073797a310000000014000200626f6e641000"/46], 0x34}}, 0xc800)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000940)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r4, @ANYBLOB], 0x4c}}, 0x880)
perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x39, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1511, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0x2}, 0x0, 0x10000, 0x9, 0x1, 0x8, 0x6, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r5 = memfd_create(&(0x7f0000000000)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6;\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa', 0x2)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)=ANY=[@ANYRESDEC=r3], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7, 0x0, 0xfffffffffffffffc}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0x40a85323, 0x0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r5, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000a00000005000400020000000900020073797a32000000001400078008001340ffffffff0800060000000000050005000200000005000100060000000d000300686173683a6e6574"], 0x5c}}, 0x80)
r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r9 = fcntl$dupfd(r8, 0x406, r8)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYRES8=0x0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10, 0x0, 0x10000002}, 0x18)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r11, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x24040010}, 0x0)
close(r11)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xab6f, 0xc77d}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, r9, 0x2)

1.111600222s ago: executing program 2 (id=2916):
syz_io_uring_setup(0x6937, &(0x7f0000000300)={0x0, 0x125a, 0x10100, 0xfffffffe, 0x100000}, &(0x7f0000000040)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffe}})
epoll_create1(0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
lgetxattr(0x0, &(0x7f0000000040)=@known='trusted.overlay.upper\x00', 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x87}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000042003303"], 0x14}, 0x1, 0x0, 0x0, 0x4015}, 0x24040004)
recvmsg(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000003a80)=[{&(0x7f0000000600)=""/45, 0x2d}, {&(0x7f0000000700)=""/35, 0x23}, {&(0x7f0000000740)=""/4096, 0x1000}, {&(0x7f0000001740)=""/4096, 0x1000}, {&(0x7f0000002740)=""/182, 0xb6}, {&(0x7f0000002800)=""/72, 0x48}, {&(0x7f0000002880)=""/247, 0xf7}, {&(0x7f00000002c0)=""/87, 0x57}, {&(0x7f0000002a80)=""/4096, 0x1000}], 0x9}, 0x10020)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x20000000)
shmget$private(0x0, 0x11000, 0x78000000, &(0x7f0000372000/0x11000)=nil)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
perf_event_open(&(0x7f00000001c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x4000000, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x2ff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x2)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r7, 0x8910, &(0x7f0000000000)={'ip6gretap0\x00', @ifru_mtu=0x6})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001900)=@newtaction={0xec0, 0x30, 0xb, 0x0, 0x0, {}, [{0xeac, 0x1, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0xb, 0x0, 0x0, 0x0, 0x4}}]}, {0x4}, {0xc}, {0xc}}}, @m_pedit={0xe60, 0x2, 0x0, 0x0, {{0xa}, {0xe34, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x1}, [{}, {0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0xffffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x0, 0x81, 0x0, 0x3}, {0x40}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x1000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x9, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {0x20}, {0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffc}, {0x0, 0x0, 0x8001}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x4, 0x0, 0x0, 0xffffffff}, {0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {0x1, 0x0, 0x0, 0x401}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x0, 0x0, 0x8001}, {}, {0x0, 0x0, 0x0, 0x1d4ce113}, {}, {0x400}, {}, {}, {}, {}, {}, {}, {0x0, 0xfffffffe, 0x1000000}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x4}, {0x2}, {0x0, 0x5, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x400000}, {}, {}, {}, {0xfffffffd}, {0x0, 0x0, 0x0, 0x0, 0x4000}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0x1}, {0x0, 0x3, 0x1}, {0x0, 0x0, 0x3}], [{}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {0x2}, {}, {0x6}, {}, {}, {}, {0x0, 0x2}, {0x2}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x5, 0x1}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x721119ea02b29831}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}]}}, @TCA_PEDIT_KEYS_EX={0x10, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}]}]}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xec0}}, 0x4000)

1.000945574s ago: executing program 5 (id=2917):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x10, &(0x7f0000001400)=ANY=[@ANYRES16, @ANYRES64=r0, @ANYBLOB="f4704d3c0e5d115afc55282ce96e8f0ce7fae0819b63a8cb3a97c8883f1a6de4cc471b8b4de540409eeddf3e476e6adfa72bb27e2c8540d175d567af924a4b56a8369e1f257982f8326f1fb33cc8713e2267afe97ef012d912834558f0bd5929bbc529", @ANYBLOB="988403c5d5a51bcc18e3dd68e978808ae5d92559b95f9e346c7f10538198eda5e52d5a5444367a3519f82d141f05daf9165847a5ea58facdf7061cbebcbfe035e093e119502d2995d3a4bb3caa7e4e22f7da5130383d21c13427ede60164f086c446c6cf60a14666580c92927a5a2a502db0395e979dade4d34b4e97a4a0a6322bf43447a53aac04cbd188fe556406f8bcd72ea1d12b1adc11521aa2c81869c6290a1dc9cb3486ea"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="580000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800e00010069703665727370616e0000001c00028014000700fe8000000000001800000000000000420400120008000a00", @ANYRES32], 0x58}}, 0x8000)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7ffff000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000dc0)=@mangle={'mangle\x00', 0x1f, 0x6, 0x420, 0x248, 0x180, 0x180, 0x180, 0x3d0, 0x3d0, 0x3d0, 0x3d0, 0x3d0, 0x3d0, 0x6, 0x0, {[{{@ip={@local, @rand_addr=0x64010100, 0x0, 0x0, 'veth1_to_bridge\x00', 'ipvlan0\x00', {}, {0xff}, 0x67, 0x2, 0x6d}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1}}]}, @common=@unspec=@NFQUEUE0={0x28, 'NFQUEUE\x00', 0x0, {0xec}}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0xffffff00, 0xffffffff, 'vlan0\x00', 'veth1_to_hsr\x00', {0xff}, {0xff}, 0x1, 0x1, 0x2}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x9, 0xe, @private=0xa010102, 0x4e21}}}, {{@ip={@remote, @empty, 0xffffffff, 0xffffff00, 'nr0\x00', 'veth1_to_batadv\x00', {0xff}, {0xff}, 0x0, 0x0, 0x34}, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@ah={{0x30}, {[0x0, 0x8], 0x1}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@dev={0xac, 0x14, 0x14, 0x34}, @multicast2, 0x0, 0xffffff00, 'ipvlan0\x00', 'ip_vti0\x00', {0xff}, {}, 0x84, 0x0, 0x30}, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@addrtype={{0x30}, {0xa02, 0x80, 0x1, 0x1}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x480)
recvmmsg(r2, &(0x7f0000001140), 0x700, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000340), &(0x7f0000000300)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x18)
mq_unlink(0x0)

927.170875ms ago: executing program 3 (id=2918):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, 0x0, 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000"], 0x0}, 0x94)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
creat(&(0x7f0000000380)='./file0\x00', 0x0)

869.982556ms ago: executing program 0 (id=2919):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
lsm_list_modules(&(0x7f0000002600)=[0x0, 0x0], 0x0, 0x0)

815.664917ms ago: executing program 0 (id=2920):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000540)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @my=0x0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000005c0)={'macvlan1\x00', 0x0})
madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001000), 0xffffffffffffffff)
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='rxrpc_conn\x00'}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="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", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r5, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1, 0x0, 0x2}, 0x40000100)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r6}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0)

815.397557ms ago: executing program 3 (id=2921):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000001c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500002000000000bf91000000000000b70200"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x10000}, 0x18)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000), 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000200), 0x13f, 0x6}}, 0x20)
close(r2)

785.094937ms ago: executing program 3 (id=2922):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x20240, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

262.531976ms ago: executing program 6 (id=2924):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
r1 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x4040, 0x53)
execveat(r1, &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)={[&(0x7f00000003c0)='\x00']}, &(0x7f0000000680)={[&(0x7f0000000440)='mountinfo\x00', &(0x7f0000000480)='kfree\x00', &(0x7f0000000640)='\x00']}, 0x1000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/14], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x18, 0xf, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r3, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
ppoll(&(0x7f0000000100)=[{r4, 0x2030}, {r4, 0x140a}], 0x2, 0x0, 0x0, 0x0)
r5 = getpid()
syz_pidfd_open(r5, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r8, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
ioctl$sock_inet_udp_SIOCINQ(r8, 0x541b, &(0x7f0000000000))

21.598859ms ago: executing program 5 (id=2925):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x1109, &(0x7f0000000300)={0x0, 0x974, 0x1000, 0x2, 0xbf7ffffa}, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f00000002c0)=0x9, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x6000})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
io_uring_enter(r2, 0x1c3a, 0xe176, 0x22, 0x0, 0x0)

0s ago: executing program 5 (id=2926):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
r1 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x4040, 0x53)
execveat(r1, &(0x7f0000000380)='./file0\x00', &(0x7f0000000400)={[&(0x7f00000003c0)='\x00']}, &(0x7f0000000680)={[&(0x7f0000000440)='mountinfo\x00', &(0x7f0000000480)='kfree\x00', &(0x7f0000000640)='\x00']}, 0x1000)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x18, 0xf, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r3, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
ppoll(&(0x7f0000000100)=[{r4, 0x2030}, {r4, 0x140a}], 0x2, 0x0, 0x0, 0x0)
r5 = getpid()
r6 = syz_pidfd_open(r5, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r8}, 0x10)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r9, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x1048, &(0x7f0000002240)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x103a, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e22, 0x4e20, 0x303, 0x0, @wg=@data={0x4, 0x8, 0x4, "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"}}}}}}, 0x0)
ioctl$sock_inet_udp_SIOCINQ(r9, 0x541b, &(0x7f0000000000))
setns(r6, 0x24020000)

kernel console output (not intermixed with test programs):

7625][ T9403]  ___sys_sendmsg+0xc1/0x1d0
[  153.567709][ T9403]  __x64_sys_sendmsg+0xd4/0x160
[  153.567826][ T9403]  x64_sys_call+0x2999/0x2fb0
[  153.567846][ T9403]  do_syscall_64+0xd2/0x200
[  153.567863][ T9403]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  153.567933][ T9403]  ? clear_bhb_loop+0x40/0x90
[  153.567959][ T9403]  ? clear_bhb_loop+0x40/0x90
[  153.567986][ T9403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.568013][ T9403] RIP: 0033:0x7f3e05b5e9a9
[  153.568075][ T9403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  153.568092][ T9403] RSP: 002b:00007f3e041bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  153.568115][ T9403] RAX: ffffffffffffffda RBX: 00007f3e05d85fa0 RCX: 00007f3e05b5e9a9
[  153.568181][ T9403] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000005
[  153.568192][ T9403] RBP: 00007f3e041bf090 R08: 0000000000000000 R09: 0000000000000000
[  153.568204][ T9403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  153.568215][ T9403] R13: 0000000000000000 R14: 00007f3e05d85fa0 R15: 00007ffc7b2772f8
[  153.568234][ T9403]  </TASK>
[  153.820352][ T9415] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2036'.
[  153.820422][ T9415] IPVS: Error joining to the multicast group
[  153.946239][ T9419] loop2: detected capacity change from 0 to 512
[  153.946757][ T9419] EXT4-fs: Ignoring removed nobh option
[  154.047937][ T9424] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2041'.
[  154.090477][ T9424] loop0: detected capacity change from 0 to 2048
[  154.092237][ T9419] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2039: bg 0: block 393: padding at end of block bitmap is not set
[  154.114708][ T9419] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  154.117845][ T9424] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.124315][ T9419] EXT4-fs (loop2): 2 truncates cleaned up
[  154.144559][ T9419] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.145318][ T9434] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2043'.
[  154.164222][ T9419] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  154.183312][ T9424] EXT4-fs (loop0): shut down requested (0)
[  154.203496][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.219979][ T9437] random: crng reseeded on system resumption
[  154.237745][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.293921][ T9439] loop2: detected capacity change from 0 to 128
[  154.391972][ T9456] netlink: 'syz.5.2053': attribute type 1 has an invalid length.
[  154.461779][ T9462] loop3: detected capacity change from 0 to 512
[  154.481303][ T9462] EXT4-fs: Ignoring removed nobh option
[  154.493851][ T9462] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2056: bg 0: block 393: padding at end of block bitmap is not set
[  154.530873][ T9462] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  154.540147][ T9462] EXT4-fs (loop3): 2 truncates cleaned up
[  154.551086][ T9462] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.566336][ T9462] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  154.587340][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.677020][ T9480] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[  154.691286][ T9482] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2064'.
[  154.707243][ T9482] macvtap0: entered promiscuous mode
[  154.713266][ T9482] macvtap0: left promiscuous mode
[  154.721134][ T9484] netlink: 'syz.5.2065': attribute type 1 has an invalid length.
[  154.742626][ T9484] bond0: (slave vxcan3): The slave device specified does not support setting the MAC address
[  154.754805][ T9484] bond0: (slave vxcan3): Error -95 calling set_mac_address
[  154.797920][ T9488] gretap1: entered promiscuous mode
[  154.806373][ T9488] bond0: (slave gretap1): making interface the new active one
[  154.816243][ T9488] bond0: (slave gretap1): Enslaving as an active interface with an up link
[  154.831465][ T9484] macvlan2: entered promiscuous mode
[  154.836954][ T9484] macvlan2: entered allmulticast mode
[  154.843144][ T9484] bond0: entered promiscuous mode
[  154.848571][ T9484] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  154.859603][ T9484] bond0: (slave macvlan2): the slave hw address is in use by the bond; giving it the hw address of gretap1
[  154.871767][ T9484] bond0: left promiscuous mode
[  154.952977][ T9497] FAULT_INJECTION: forcing a failure.
[  154.952977][ T9497] name failslab, interval 1, probability 0, space 0, times 0
[  154.965797][ T9497] CPU: 0 UID: 0 PID: 9497 Comm: syz.5.2070 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  154.965887][ T9497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  154.965904][ T9497] Call Trace:
[  154.965912][ T9497]  <TASK>
[  154.965920][ T9497]  __dump_stack+0x1d/0x30
[  154.965940][ T9497]  dump_stack_lvl+0xe8/0x140
[  154.965978][ T9497]  dump_stack+0x15/0x1b
[  154.965999][ T9497]  should_fail_ex+0x265/0x280
[  154.966058][ T9497]  should_failslab+0x8c/0xb0
[  154.966097][ T9497]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  154.966133][ T9497]  ? sidtab_sid2str_get+0xa0/0x130
[  154.966170][ T9497]  kmemdup_noprof+0x2b/0x70
[  154.966195][ T9497]  sidtab_sid2str_get+0xa0/0x130
[  154.966218][ T9497]  security_sid_to_context_core+0x1eb/0x2e0
[  154.966300][ T9497]  security_sid_to_context+0x27/0x40
[  154.966321][ T9497]  selinux_lsmprop_to_secctx+0x67/0xf0
[  154.966375][ T9497]  security_lsmprop_to_secctx+0x43/0x80
[  154.966463][ T9497]  audit_log_task_context+0x77/0x190
[  154.966558][ T9497]  audit_log_task+0xf4/0x250
[  154.966592][ T9497]  audit_seccomp+0x61/0x100
[  154.966617][ T9497]  ? __seccomp_filter+0x68c/0x10d0
[  154.966641][ T9497]  __seccomp_filter+0x69d/0x10d0
[  154.966669][ T9497]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  154.966776][ T9497]  ? vfs_write+0x75e/0x8e0
[  154.966896][ T9497]  __secure_computing+0x82/0x150
[  154.966920][ T9497]  syscall_trace_enter+0xcf/0x1e0
[  154.966950][ T9497]  do_syscall_64+0xac/0x200
[  154.966971][ T9497]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  154.967000][ T9497]  ? clear_bhb_loop+0x40/0x90
[  154.967094][ T9497]  ? clear_bhb_loop+0x40/0x90
[  154.967121][ T9497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  154.967153][ T9497] RIP: 0033:0x7f3e05b5e9a9
[  154.967169][ T9497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.967187][ T9497] RSP: 002b:00007f3e041bf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000147
[  154.967214][ T9497] RAX: ffffffffffffffda RBX: 00007f3e05d85fa0 RCX: 00007f3e05b5e9a9
[  154.967229][ T9497] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  154.967245][ T9497] RBP: 00007f3e041bf090 R08: 0000000000000000 R09: 0000000000000000
[  154.967261][ T9497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.967277][ T9497] R13: 0000000000000000 R14: 00007f3e05d85fa0 R15: 00007ffc7b2772f8
[  154.967300][ T9497]  </TASK>
[  155.263663][ T9504] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2075'.
[  155.269160][ T9505] netlink: 'syz.6.2073': attribute type 1 has an invalid length.
[  155.289707][ T9504] loop2: detected capacity change from 0 to 2048
[  155.322070][   T29] kauditd_printk_skb: 677 callbacks suppressed
[  155.322089][   T29] audit: type=1400 audit(2000000015.867:6129): avc:  denied  { create } for  pid=9500 comm="syz.5.2072" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  155.356718][ T9504] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.384570][ T9504] EXT4-fs (loop2): shut down requested (0)
[  155.384777][   T29] audit: type=1400 audit(2000000015.913:6130): avc:  denied  { read write } for  pid=9510 comm="syz.0.2077" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  155.414512][   T29] audit: type=1400 audit(2000000015.913:6131): avc:  denied  { open } for  pid=9510 comm="syz.0.2077" path="/dev/virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  155.466334][ T9523] SELinux:  policydb magic number 0x66667830 does not match expected magic number 0xf97cff8c
[  155.466565][ T9522] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  155.476632][   T29] audit: type=1400 audit(2000000016.007:6132): avc:  denied  { ioctl } for  pid=9521 comm="syz.5.2079" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  155.485228][ T9522] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  155.510246][   T29] audit: type=1400 audit(2000000016.007:6133): avc:  denied  { load_policy } for  pid=9508 comm="syz.3.2076" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  155.547976][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.557163][ T9523] SELinux: failed to load policy
[  155.570995][ T9511] Falling back ldisc for ttyS3.
[  155.603296][   T29] audit: type=1400 audit(2000000016.082:6134): avc:  denied  { write } for  pid=9525 comm="syz.6.2080" name="001" dev="devtmpfs" ino=150 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  155.626274][   T29] audit: type=1400 audit(2000000016.129:6136): avc:  denied  { read write } for  pid=3312 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  155.650871][   T29] audit: type=1400 audit(2000000016.129:6137): avc:  denied  { open } for  pid=3312 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  155.675208][   T29] audit: type=1400 audit(2000000016.129:6135): avc:  denied  { read write } for  pid=3892 comm="syz-executor" name="loop0" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  155.699866][   T29] audit: type=1400 audit(2000000016.129:6138): avc:  denied  { ioctl } for  pid=3312 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  155.802144][ T9526] loop6: detected capacity change from 0 to 32768
[  155.819953][ T9538] SELinux:  policydb version 1675088414 does not match my version range 15-34
[  155.829263][ T9538] SELinux: failed to load policy
[  156.131545][ T9554] loop6: detected capacity change from 0 to 512
[  156.139945][ T9554] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  156.218776][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.517951][ T9561] netlink: 'syz.2.2090': attribute type 1 has an invalid length.
[  156.747495][ T9575] netlink: 'syz.0.2096': attribute type 10 has an invalid length.
[  156.758207][ T9575] team0 (unregistering): Port device team_slave_0 removed
[  156.766318][ T9575] team0 (unregistering): Port device team_slave_1 removed
[  156.883356][ T9579] netlink: 'syz.0.2098': attribute type 1 has an invalid length.
[  156.898617][ T9584] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  156.902283][ T9579] 8021q: adding VLAN 0 to HW filter on device bond1
[  156.907346][ T9584] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  157.389903][ T9607] macvtap0: entered promiscuous mode
[  157.396040][ T9607] macvtap0: left promiscuous mode
[  157.518437][ T9618] random: crng reseeded on system resumption
[  157.550286][ T9621] loop6: detected capacity change from 0 to 2048
[  157.572380][ T9621] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.589386][ T9613] loop5: detected capacity change from 0 to 512
[  157.598405][ T9613] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  157.610222][ T9613] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  157.619933][ T9613] System zones: 1-12
[  157.624891][ T9613] EXT4-fs (loop5): 1 truncate cleaned up
[  157.631042][ T9613] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.649434][ T9621] EXT4-fs (loop6): shut down requested (0)
[  157.668696][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.805492][ T9633] validate_nla: 2 callbacks suppressed
[  157.805511][ T9633] netlink: 'syz.6.2117': attribute type 1 has an invalid length.
[  157.985382][ T9641] FAULT_INJECTION: forcing a failure.
[  157.985382][ T9641] name failslab, interval 1, probability 0, space 0, times 0
[  157.998137][ T9641] CPU: 0 UID: 0 PID: 9641 Comm: syz.6.2120 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  157.998229][ T9641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.998242][ T9641] Call Trace:
[  157.998248][ T9641]  <TASK>
[  157.998255][ T9641]  __dump_stack+0x1d/0x30
[  157.998280][ T9641]  dump_stack_lvl+0xe8/0x140
[  157.998334][ T9641]  dump_stack+0x15/0x1b
[  157.998352][ T9641]  should_fail_ex+0x265/0x280
[  157.998381][ T9641]  should_failslab+0x8c/0xb0
[  157.998406][ T9641]  __kmalloc_noprof+0xa5/0x3e0
[  157.998553][ T9641]  ? kernfs_fop_write_iter+0xe1/0x2d0
[  157.998580][ T9641]  ? splice_from_pipe_next+0x321/0x380
[  157.998619][ T9641]  kernfs_fop_write_iter+0xe1/0x2d0
[  157.998642][ T9641]  ? iov_iter_bvec+0xa4/0xd0
[  157.998661][ T9641]  iter_file_splice_write+0x5f2/0x970
[  157.998698][ T9641]  ? __pfx_iter_file_splice_write+0x10/0x10
[  157.998734][ T9641]  do_splice+0x977/0x10b0
[  157.998779][ T9641]  ? __rcu_read_unlock+0x4f/0x70
[  157.998805][ T9641]  ? __fget_files+0x184/0x1c0
[  157.998825][ T9641]  __se_sys_splice+0x26c/0x3a0
[  157.998905][ T9641]  __x64_sys_splice+0x78/0x90
[  157.998942][ T9641]  x64_sys_call+0xb0a/0x2fb0
[  157.998972][ T9641]  do_syscall_64+0xd2/0x200
[  157.999039][ T9641]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  157.999073][ T9641]  ? clear_bhb_loop+0x40/0x90
[  157.999100][ T9641]  ? clear_bhb_loop+0x40/0x90
[  157.999128][ T9641]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.999155][ T9641] RIP: 0033:0x7fc06318e9a9
[  157.999233][ T9641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.999255][ T9641] RSP: 002b:00007fc0617ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000113
[  157.999322][ T9641] RAX: ffffffffffffffda RBX: 00007fc0633b5fa0 RCX: 00007fc06318e9a9
[  157.999339][ T9641] RDX: 000000000000000a RSI: 0000000000000000 RDI: 0000000000000007
[  157.999354][ T9641] RBP: 00007fc0617ef090 R08: 0000000000000008 R09: 0000000000000000
[  157.999384][ T9641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  157.999452][ T9641] R13: 0000000000000000 R14: 00007fc0633b5fa0 R15: 00007fff08a2c628
[  157.999475][ T9641]  </TASK>
[  158.366205][ T5355] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.209338][ T9670] FAULT_INJECTION: forcing a failure.
[  159.209338][ T9670] name failslab, interval 1, probability 0, space 0, times 0
[  159.222166][ T9670] CPU: 0 UID: 0 PID: 9670 Comm: syz.6.2131 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  159.222198][ T9670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.222211][ T9670] Call Trace:
[  159.222216][ T9670]  <TASK>
[  159.222222][ T9670]  __dump_stack+0x1d/0x30
[  159.222243][ T9670]  dump_stack_lvl+0xe8/0x140
[  159.222265][ T9670]  dump_stack+0x15/0x1b
[  159.222285][ T9670]  should_fail_ex+0x265/0x280
[  159.222321][ T9670]  should_failslab+0x8c/0xb0
[  159.222340][ T9670]  kmem_cache_alloc_noprof+0x50/0x310
[  159.222362][ T9670]  ? vm_area_dup+0x33/0x2c0
[  159.222386][ T9670]  vm_area_dup+0x33/0x2c0
[  159.222408][ T9670]  __split_vma+0xe9/0x650
[  159.222432][ T9670]  vma_modify+0x3f2/0xc80
[  159.222452][ T9670]  vma_modify_policy+0x101/0x130
[  159.222476][ T9670]  mbind_range+0x1b8/0x440
[  159.222502][ T9670]  ? mas_find+0x4ea/0x610
[  159.222518][ T9670]  __se_sys_mbind+0x648/0xac0
[  159.222547][ T9670]  __x64_sys_mbind+0x78/0x90
[  159.222569][ T9670]  x64_sys_call+0x14af/0x2fb0
[  159.222595][ T9670]  do_syscall_64+0xd2/0x200
[  159.222618][ T9670]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  159.222648][ T9670]  ? clear_bhb_loop+0x40/0x90
[  159.222672][ T9670]  ? clear_bhb_loop+0x40/0x90
[  159.222691][ T9670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.222709][ T9670] RIP: 0033:0x7fc06318e9a9
[  159.222722][ T9670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.222738][ T9670] RSP: 002b:00007fc0617ef038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ed
[  159.222755][ T9670] RAX: ffffffffffffffda RBX: 00007fc0633b5fa0 RCX: 00007fc06318e9a9
[  159.222766][ T9670] RDX: 0000000000000004 RSI: 0000000000800000 RDI: 0000200000001000
[  159.222781][ T9670] RBP: 00007fc0617ef090 R08: 0000000000000001 R09: 0000000000000002
[  159.222801][ T9670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.222816][ T9670] R13: 0000000000000000 R14: 00007fc0633b5fa0 R15: 00007fff08a2c628
[  159.222841][ T9670]  </TASK>
[  159.460569][ T9672] loop6: detected capacity change from 0 to 512
[  159.496503][ T9672] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.509996][ T9672] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.523315][ T9672] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.2132: corrupted xattr block 33: e_value out of bounds
[  159.543245][ T9672] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  159.553636][ T9672] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.2132: corrupted xattr block 33: e_value out of bounds
[  159.568794][ T9672] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  159.602356][ T9689] __nla_validate_parse: 6 callbacks suppressed
[  159.602370][ T9689] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2138'.
[  159.637975][ T9691] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2139'.
[  159.647594][ T9691] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2139'.
[  159.783857][ T9703] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2145'.
[  159.951995][ T9717] FAULT_INJECTION: forcing a failure.
[  159.951995][ T9717] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  159.965324][ T9717] CPU: 1 UID: 0 PID: 9717 Comm: syz.2.2144 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  159.965359][ T9717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.965375][ T9717] Call Trace:
[  159.965460][ T9717]  <TASK>
[  159.965469][ T9717]  __dump_stack+0x1d/0x30
[  159.965496][ T9717]  dump_stack_lvl+0xe8/0x140
[  159.965521][ T9717]  dump_stack+0x15/0x1b
[  159.965538][ T9717]  should_fail_ex+0x265/0x280
[  159.965568][ T9717]  should_fail+0xb/0x20
[  159.965633][ T9717]  should_fail_usercopy+0x1a/0x20
[  159.965674][ T9717]  _copy_from_iter+0xcf/0xe40
[  159.965732][ T9717]  ? __build_skb_around+0x1a0/0x200
[  159.965768][ T9717]  ? __alloc_skb+0x223/0x320
[  159.965806][ T9717]  netlink_sendmsg+0x471/0x6b0
[  159.965834][ T9717]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.965913][ T9717]  __sock_sendmsg+0x145/0x180
[  159.965948][ T9717]  ____sys_sendmsg+0x31e/0x4e0
[  159.965993][ T9717]  ___sys_sendmsg+0x17b/0x1d0
[  159.966176][ T9717]  __x64_sys_sendmsg+0xd4/0x160
[  159.966263][ T9717]  x64_sys_call+0x2999/0x2fb0
[  159.966286][ T9717]  do_syscall_64+0xd2/0x200
[  159.966309][ T9717]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  159.966350][ T9717]  ? clear_bhb_loop+0x40/0x90
[  159.966435][ T9717]  ? clear_bhb_loop+0x40/0x90
[  159.966488][ T9717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.966509][ T9717] RIP: 0033:0x7fd0b1f2e9a9
[  159.966523][ T9717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.966545][ T9717] RSP: 002b:00007fd0b0555038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.966568][ T9717] RAX: ffffffffffffffda RBX: 00007fd0b2156160 RCX: 00007fd0b1f2e9a9
[  159.966590][ T9717] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 000000000000000a
[  159.966625][ T9717] RBP: 00007fd0b0555090 R08: 0000000000000000 R09: 0000000000000000
[  159.966636][ T9717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.966647][ T9717] R13: 0000000000000000 R14: 00007fd0b2156160 R15: 00007ffc7d9e9318
[  159.966737][ T9717]  </TASK>
[  160.375871][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.409906][ T9721] random: crng reseeded on system resumption
[  160.441607][ T9723] FAULT_INJECTION: forcing a failure.
[  160.441607][ T9723] name failslab, interval 1, probability 0, space 0, times 0
[  160.454351][ T9723] CPU: 0 UID: 0 PID: 9723 Comm: syz.6.2152 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  160.454456][ T9723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  160.454549][ T9723] Call Trace:
[  160.454555][ T9723]  <TASK>
[  160.454569][ T9723]  __dump_stack+0x1d/0x30
[  160.454595][ T9723]  dump_stack_lvl+0xe8/0x140
[  160.454619][ T9723]  dump_stack+0x15/0x1b
[  160.454640][ T9723]  should_fail_ex+0x265/0x280
[  160.454676][ T9723]  should_failslab+0x8c/0xb0
[  160.454697][ T9723]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  160.454725][ T9723]  ? sidtab_sid2str_get+0xa0/0x130
[  160.454783][ T9723]  kmemdup_noprof+0x2b/0x70
[  160.454811][ T9723]  sidtab_sid2str_get+0xa0/0x130
[  160.454840][ T9723]  security_sid_to_context_core+0x1eb/0x2e0
[  160.454935][ T9723]  security_sid_to_context+0x27/0x40
[  160.454962][ T9723]  selinux_lsmprop_to_secctx+0x67/0xf0
[  160.454991][ T9723]  security_lsmprop_to_secctx+0x43/0x80
[  160.455029][ T9723]  audit_log_task_context+0x77/0x190
[  160.455075][ T9723]  audit_log_task+0xf4/0x250
[  160.455103][ T9723]  audit_seccomp+0x61/0x100
[  160.455147][ T9723]  ? __seccomp_filter+0x68c/0x10d0
[  160.455171][ T9723]  __seccomp_filter+0x69d/0x10d0
[  160.455193][ T9723]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  160.455296][ T9723]  ? vfs_write+0x75e/0x8e0
[  160.455373][ T9723]  __secure_computing+0x82/0x150
[  160.455395][ T9723]  syscall_trace_enter+0xcf/0x1e0
[  160.455422][ T9723]  do_syscall_64+0xac/0x200
[  160.455445][ T9723]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  160.455555][ T9723]  ? clear_bhb_loop+0x40/0x90
[  160.455587][ T9723]  ? clear_bhb_loop+0x40/0x90
[  160.455615][ T9723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.455642][ T9723] RIP: 0033:0x7fc06318e9a9
[  160.455729][ T9723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.455747][ T9723] RSP: 002b:00007fc0617ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000071
[  160.455769][ T9723] RAX: ffffffffffffffda RBX: 00007fc0633b5fa0 RCX: 00007fc06318e9a9
[  160.455784][ T9723] RDX: 0000000000000000 RSI: 000000000000ee01 RDI: 000000000000ee01
[  160.455800][ T9723] RBP: 00007fc0617ef090 R08: 0000000000000000 R09: 0000000000000000
[  160.455827][ T9723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  160.455841][ T9723] R13: 0000000000000000 R14: 00007fc0633b5fa0 R15: 00007fff08a2c628
[  160.455860][ T9723]  </TASK>
[  160.694905][ T9723] audit_panic: 281 callbacks suppressed
[  160.694922][ T9723] audit: error in audit_log_task_context
[  160.723027][   T29] audit: type=1326 audit(2000000020.656:6420): auid=4294967295 uid=0 gid=0 ses=4294967295 pid=9722 comm="syz.6.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fc06318e9a9 code=0x7ffc0000
[  160.779464][   T29] audit: type=1400 audit(2000000020.946:6421): avc:  denied  { allowed } for  pid=9724 comm="syz.5.2153" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  160.798896][   T29] audit: type=1400 audit(2000000020.946:6422): avc:  denied  { create } for  pid=9724 comm="syz.5.2153" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  160.820360][   T29] audit: type=1400 audit(2000000020.946:6423): avc:  denied  { map } for  pid=9724 comm="syz.5.2153" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=25538 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  160.844642][   T29] audit: type=1400 audit(2000000020.946:6424): avc:  denied  { read write } for  pid=9724 comm="syz.5.2153" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=25538 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  160.869607][   T29] audit: type=1326 audit(2000000020.965:6425): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.6.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fc06318d3bc code=0x7ffc0000
[  160.893377][   T29] audit: type=1326 audit(2000000020.965:6426): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.6.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc06318d45f code=0x7ffc0000
[  160.917184][   T29] audit: type=1326 audit(2000000020.965:6427): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.6.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc06318d60a code=0x7ffc0000
[  160.923481][ T9731] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.940882][   T29] audit: type=1326 audit(2000000020.965:6428): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9722 comm="syz.6.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc06318e9a9 code=0x7ffc0000
[  160.948493][ T9731] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.984931][ T9736] loop6: detected capacity change from 0 to 512
[  160.992645][ T9731] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.000071][ T9731] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.022757][ T9736] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  161.075366][ T9736] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.096798][ T9746] netlink: 'syz.0.2158': attribute type 10 has an invalid length.
[  161.105152][ T9736] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.118963][ T9746] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2158'.
[  161.160401][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.169630][ T9748] loop2: detected capacity change from 0 to 2048
[  161.195660][ T9748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.200550][ T9752] netlink: 'syz.3.2163': attribute type 1 has an invalid length.
[  161.231889][ T9754] SELinux: syz.5.2164 (9754) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  161.264228][ T9748] EXT4-fs (loop2): shut down requested (0)
[  161.369418][    T9] IPVS: starting estimator thread 0...
[  161.399703][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.526001][ T9759] IPVS: using max 2544 ests per chain, 127200 per kthread
[  161.619166][ T9775] SELinux: syz.3.2171 (9775) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  161.656906][ T9777] loop0: detected capacity change from 0 to 512
[  161.675472][ T9777] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  161.695706][   T36] IPVS: starting estimator thread 0...
[  161.703952][ T9777] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.747210][ T9777] ext4 filesystem being mounted at /419/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.802659][ T9778] IPVS: using max 2592 ests per chain, 129600 per kthread
[  161.833792][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.885919][ T9784] loop3: detected capacity change from 0 to 8192
[  161.916547][ T9786] loop5: detected capacity change from 0 to 512
[  161.963515][ T9794] netlink: 'syz.2.2179': attribute type 1 has an invalid length.
[  161.980732][ T9797] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.981168][ T9798] netlink: 332 bytes leftover after parsing attributes in process `syz.3.2180'.
[  162.000015][ T9798] netlink: 'syz.3.2180': attribute type 2 has an invalid length.
[  162.007896][ T9798] netlink: 'syz.3.2180': attribute type 5 has an invalid length.
[  162.010900][ T9797] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  162.134980][ T9810] loop3: detected capacity change from 0 to 2048
[  162.159917][ T9810] EXT4-fs (loop3): shut down requested (0)
[  162.200976][ T9816] netlink: 'syz.0.2188': attribute type 1 has an invalid length.
[  162.231115][ T9819] random: crng reseeded on system resumption
[  162.248312][ T9823] FAULT_INJECTION: forcing a failure.
[  162.248312][ T9823] name failslab, interval 1, probability 0, space 0, times 0
[  162.261388][ T9823] CPU: 0 UID: 0 PID: 9823 Comm: syz.3.2191 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  162.261499][ T9823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  162.261516][ T9823] Call Trace:
[  162.261525][ T9823]  <TASK>
[  162.261535][ T9823]  __dump_stack+0x1d/0x30
[  162.261563][ T9823]  dump_stack_lvl+0xe8/0x140
[  162.261588][ T9823]  dump_stack+0x15/0x1b
[  162.261642][ T9823]  should_fail_ex+0x265/0x280
[  162.261674][ T9823]  should_failslab+0x8c/0xb0
[  162.261703][ T9823]  __kmalloc_noprof+0xa5/0x3e0
[  162.261733][ T9823]  ? cond_policydb_dup+0xa3/0x4e0
[  162.261831][ T9823]  cond_policydb_dup+0xa3/0x4e0
[  162.261870][ T9823]  security_set_bools+0xa0/0x340
[  162.261982][ T9823]  sel_commit_bools_write+0x1ea/0x270
[  162.262024][ T9823]  vfs_writev+0x406/0x8b0
[  162.262046][ T9823]  ? __pfx_sel_commit_bools_write+0x10/0x10
[  162.262088][ T9823]  ? mutex_lock+0xd/0x30
[  162.262198][ T9823]  do_writev+0xe7/0x210
[  162.262226][ T9823]  __x64_sys_writev+0x45/0x50
[  162.262248][ T9823]  x64_sys_call+0x2006/0x2fb0
[  162.262284][ T9823]  do_syscall_64+0xd2/0x200
[  162.262306][ T9823]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  162.262375][ T9823]  ? clear_bhb_loop+0x40/0x90
[  162.262399][ T9823]  ? clear_bhb_loop+0x40/0x90
[  162.262420][ T9823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.262440][ T9823] RIP: 0033:0x7f11293ce9a9
[  162.262526][ T9823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.262550][ T9823] RSP: 002b:00007f1127a37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  162.262575][ T9823] RAX: ffffffffffffffda RBX: 00007f11295f5fa0 RCX: 00007f11293ce9a9
[  162.262591][ T9823] RDX: 0000000000000002 RSI: 00002000000025c0 RDI: 0000000000000004
[  162.262606][ T9823] RBP: 00007f1127a37090 R08: 0000000000000000 R09: 0000000000000000
[  162.262635][ T9823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.262705][ T9823] R13: 0000000000000000 R14: 00007f11295f5fa0 R15: 00007ffc8d313978
[  162.262728][ T9823]  </TASK>
[  162.499300][ T9827] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2193'.
[  162.794779][ T9856] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  162.803575][ T9856] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  163.028691][ T9859] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  163.037287][ T9859] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  163.395460][ T9861] loop3: detected capacity change from 0 to 8192
[  163.405071][ T9861] FAT-fs (loop3): error, clusters badly computed (1 != 0)
[  163.412348][ T9861] FAT-fs (loop3): Filesystem has been set read-only
[  163.454444][ T9863] netlink: 'syz.3.2208': attribute type 1 has an invalid length.
[  163.704971][ T9872] loop5: detected capacity change from 0 to 8192
[  163.732488][ T9882] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  163.748486][ T9882] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  163.749009][ T9872] FAT-fs (loop5): error, clusters badly computed (1 != 0)
[  163.763470][ T9872] FAT-fs (loop5): Filesystem has been set read-only
[  163.823643][ T9888] random: crng reseeded on system resumption
[  163.967562][ T9892] FAULT_INJECTION: forcing a failure.
[  163.967562][ T9892] name failslab, interval 1, probability 0, space 0, times 0
[  163.980434][ T9892] CPU: 1 UID: 0 PID: 9892 Comm: syz.5.2222 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  163.980460][ T9892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.980517][ T9892] Call Trace:
[  163.980524][ T9892]  <TASK>
[  163.980534][ T9892]  __dump_stack+0x1d/0x30
[  163.980555][ T9892]  dump_stack_lvl+0xe8/0x140
[  163.980573][ T9892]  dump_stack+0x15/0x1b
[  163.980588][ T9892]  should_fail_ex+0x265/0x280
[  163.980618][ T9892]  should_failslab+0x8c/0xb0
[  163.980691][ T9892]  kmem_cache_alloc_node_noprof+0x57/0x320
[  163.980721][ T9892]  ? __alloc_skb+0x101/0x320
[  163.980788][ T9892]  __alloc_skb+0x101/0x320
[  163.980815][ T9892]  pfkey_sendmsg+0xd7/0x900
[  163.980928][ T9892]  ? avc_has_perm+0x128/0x150
[  163.980952][ T9892]  ? avc_has_perm+0x149/0x150
[  163.980978][ T9892]  ? selinux_socket_sendmsg+0x175/0x1b0
[  163.981147][ T9892]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  163.981182][ T9892]  __sock_sendmsg+0x145/0x180
[  163.981206][ T9892]  ____sys_sendmsg+0x31e/0x4e0
[  163.981243][ T9892]  ___sys_sendmsg+0x17b/0x1d0
[  163.981349][ T9892]  __x64_sys_sendmsg+0xd4/0x160
[  163.981449][ T9892]  x64_sys_call+0x2999/0x2fb0
[  163.981469][ T9892]  do_syscall_64+0xd2/0x200
[  163.981519][ T9892]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  163.981581][ T9892]  ? clear_bhb_loop+0x40/0x90
[  163.981602][ T9892]  ? clear_bhb_loop+0x40/0x90
[  163.981694][ T9892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.981714][ T9892] RIP: 0033:0x7f3e05b5e9a9
[  163.981731][ T9892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.981748][ T9892] RSP: 002b:00007f3e041bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  163.981812][ T9892] RAX: ffffffffffffffda RBX: 00007f3e05d85fa0 RCX: 00007f3e05b5e9a9
[  163.981824][ T9892] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  163.981836][ T9892] RBP: 00007f3e041bf090 R08: 0000000000000000 R09: 0000000000000000
[  163.981847][ T9892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.981859][ T9892] R13: 0000000000000000 R14: 00007f3e05d85fa0 R15: 00007ffc7b2772f8
[  163.981879][ T9892]  </TASK>
[  164.362459][ T9899] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2225'.
[  164.554658][ T9911] loop2: detected capacity change from 0 to 512
[  164.589630][ T9914] random: crng reseeded on system resumption
[  164.604875][ T9911] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2231: Failed to acquire dquot type 1
[  164.617410][ T9911] EXT4-fs (loop2): 1 truncate cleaned up
[  164.623787][ T9911] EXT4-fs mount: 2 callbacks suppressed
[  164.623834][ T9911] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.644709][ T9911] ext4 filesystem being mounted at /480/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.658164][ T9911] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2231: Failed to acquire dquot type 1
[  164.674049][ T9911] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.2231' sets config #0
[  164.700165][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.752542][ T9924] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2237'.
[  164.887945][ T9942] netlink: 'syz.3.2246': attribute type 1 has an invalid length.
[  164.899695][ T9944] netlink: 'syz.2.2247': attribute type 1 has an invalid length.
[  164.957686][ T9946] netlink: 'syz.0.2242': attribute type 10 has an invalid length.
[  165.015832][ T9946] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2242'.
[  165.160055][ T9954] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2249'.
[  165.175020][ T9956] loop0: detected capacity change from 0 to 128
[  165.194771][ T9961] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2251'.
[  165.235412][ T9965] loop0: detected capacity change from 0 to 256
[  165.316466][ T9975] batman_adv: batadv0: Removing interface: batadv_slave_0
[  165.324387][ T9975] batman_adv: batadv0: Removing interface: batadv_slave_1
[  165.534335][ T9983] netlink: 'syz.2.2260': attribute type 10 has an invalid length.
[  165.542594][ T9983] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2260'.
[  165.673520][ T9989] loop5: detected capacity change from 0 to 2048
[  165.684845][ T9993] netlink: 'syz.2.2265': attribute type 21 has an invalid length.
[  165.692737][ T9993] netlink: 128 bytes leftover after parsing attributes in process `syz.2.2265'.
[  165.697708][ T9989] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.702346][ T9993] netlink: 'syz.2.2265': attribute type 5 has an invalid length.
[  165.721951][ T9993] netlink: 3 bytes leftover after parsing attributes in process `syz.2.2265'.
[  165.735103][ T9993] netlink: 'syz.2.2265': attribute type 2 has an invalid length.
[  165.790230][ T9999] loop9: detected capacity change from 0 to 7
[  165.796548][ T9999] Buffer I/O error on dev loop9, logical block 0, async page read
[  165.804662][ T9999] Buffer I/O error on dev loop9, logical block 0, async page read
[  165.812594][ T9999]  loop9: unable to read partition table
[  165.818580][ T9999] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  165.818580][ T9999] 
) failed (rc=-5)
[  165.889761][ T5355] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.997282][T10011] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2271'.
[  166.009819][T10012] loop2: detected capacity change from 0 to 512
[  166.029957][T10007] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10007 comm=syz.5.2270
[  166.048284][T10012] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.079909][T10012] ext4 filesystem being mounted at /493/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.092518][T10016] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2272'.
[  166.111426][T10016] bridge0: port 3(batadv0) entered disabled state
[  166.122869][T10016] bridge_slave_1: left allmulticast mode
[  166.128580][T10016] bridge_slave_1: left promiscuous mode
[  166.132847][   T29] kauditd_printk_skb: 456 callbacks suppressed
[  166.132866][   T29] audit: type=1400 audit(2000000000.187:6879): avc:  denied  { unmount } for  pid=3892 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  166.134341][T10016] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.179719][   T29] audit: type=1400 audit(2000000000.233:6880): avc:  denied  { read write } for  pid=10019 comm="syz.0.2274" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  166.214235][   T29] audit: type=1400 audit(2000000000.233:6881): avc:  denied  { open } for  pid=10019 comm="syz.0.2274" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  166.246755][T10016] bridge_slave_0: left allmulticast mode
[  166.252820][T10016] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.271165][   T29] audit: type=1400 audit(2000000000.318:6882): avc:  denied  { ioctl } for  pid=10028 comm="syz.3.2277" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x5309 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  166.296895][T10029] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  166.313254][   T29] audit: type=1400 audit(2000000000.318:6883): avc:  denied  { name_bind } for  pid=10004 comm="syz.2.2269" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  166.335043][   T29] audit: type=1400 audit(2000000000.318:6884): avc:  denied  { node_bind } for  pid=10004 comm="syz.2.2269" saddr=::1 src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  166.356686][   T29] audit: type=1400 audit(2000000000.355:6885): avc:  denied  { create } for  pid=10028 comm="syz.3.2277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  166.406098][   T29] audit: type=1400 audit(2000000000.430:6886): avc:  denied  { create } for  pid=10004 comm="syz.2.2269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  166.425935][   T29] audit: type=1400 audit(2000000000.430:6887): avc:  denied  { read } for  pid=10004 comm="syz.2.2269" name="usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  166.449449][   T29] audit: type=1400 audit(2000000000.430:6888): avc:  denied  { open } for  pid=10004 comm="syz.2.2269" path="/dev/usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  166.451968][T10029] loop3: detected capacity change from 0 to 2048
[  166.573125][T10029] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.587799][T10029] EXT4-fs error (device loop3): ext4_ext_precache:632: inode #2: comm syz.3.2277: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  166.607679][T10026] netlink: 'syz.0.2276': attribute type 1 has an invalid length.
[  166.620406][T10029] EXT4-fs (loop3): Remounting filesystem read-only
[  166.642686][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.714439][T10048] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  166.720870][T10048] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  166.755652][T10054] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2282'.
[  166.778084][T10052] random: crng reseeded on system resumption
[  166.881425][T10071] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2292'.
[  166.892336][T10069] netlink: 'syz.0.2291': attribute type 1 has an invalid length.
[  166.911710][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.961821][T10077] loop2: detected capacity change from 0 to 2048
[  166.982816][T10078] loop6: detected capacity change from 0 to 2048
[  167.008020][T10077] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.030741][T10078] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.030857][T10077] EXT4-fs (loop2): shut down requested (0)
[  167.060116][T10078] EXT4-fs (loop6): shut down requested (0)
[  167.113235][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.151468][T10092] random: crng reseeded on system resumption
[  167.173804][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.258233][T10102] FAULT_INJECTION: forcing a failure.
[  167.258233][T10102] name failslab, interval 1, probability 0, space 0, times 0
[  167.270999][T10102] CPU: 0 UID: 0 PID: 10102 Comm: syz.0.2303 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  167.271105][T10102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.271119][T10102] Call Trace:
[  167.271151][T10102]  <TASK>
[  167.271161][T10102]  __dump_stack+0x1d/0x30
[  167.271184][T10102]  dump_stack_lvl+0xe8/0x140
[  167.271205][T10102]  dump_stack+0x15/0x1b
[  167.271346][T10102]  should_fail_ex+0x265/0x280
[  167.271386][T10102]  should_failslab+0x8c/0xb0
[  167.271410][T10102]  __kmalloc_node_noprof+0xa9/0x410
[  167.271586][T10102]  ? __vmalloc_node_range_noprof+0x3f9/0xe00
[  167.271684][T10102]  __vmalloc_node_range_noprof+0x3f9/0xe00
[  167.271745][T10102]  ? sel_write_load+0x158/0x380
[  167.271835][T10102]  vmalloc_noprof+0x82/0xc0
[  167.271924][T10102]  ? sel_write_load+0x158/0x380
[  167.271952][T10102]  sel_write_load+0x158/0x380
[  167.271980][T10102]  ? __pfx_sel_write_load+0x10/0x10
[  167.272064][T10102]  vfs_write+0x269/0x8e0
[  167.272135][T10102]  ? __rcu_read_unlock+0x4f/0x70
[  167.272159][T10102]  ? __fget_files+0x184/0x1c0
[  167.272183][T10102]  ksys_write+0xda/0x1a0
[  167.272254][T10102]  __x64_sys_write+0x40/0x50
[  167.272287][T10102]  x64_sys_call+0x2cdd/0x2fb0
[  167.272310][T10102]  do_syscall_64+0xd2/0x200
[  167.272331][T10102]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  167.272427][T10102]  ? clear_bhb_loop+0x40/0x90
[  167.272531][T10102]  ? clear_bhb_loop+0x40/0x90
[  167.272585][T10102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.272608][T10102] RIP: 0033:0x7f1c2d34e9a9
[  167.272625][T10102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.272645][T10102] RSP: 002b:00007f1c2b9b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  167.272678][T10102] RAX: ffffffffffffffda RBX: 00007f1c2d575fa0 RCX: 00007f1c2d34e9a9
[  167.272692][T10102] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000006
[  167.272732][T10102] RBP: 00007f1c2b9b7090 R08: 0000000000000000 R09: 0000000000000000
[  167.272745][T10102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.272758][T10102] R13: 0000000000000000 R14: 00007f1c2d575fa0 R15: 00007ffea0271ec8
[  167.272778][T10102]  </TASK>
[  167.272787][T10102] syz.0.2303: vmalloc error: size 4096, failed to allocated page array size 8, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null)
[  167.352044][T10104] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10104 comm=syz.3.2304
[  167.355368][T10102] ,cpuset=/,mems_allowed=0
[  167.521920][T10102] CPU: 0 UID: 0 PID: 10102 Comm: syz.0.2303 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  167.521962][T10102] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.521978][T10102] Call Trace:
[  167.521987][T10102]  <TASK>
[  167.521999][T10102]  __dump_stack+0x1d/0x30
[  167.522028][T10102]  dump_stack_lvl+0xe8/0x140
[  167.522057][T10102]  dump_stack+0x15/0x1b
[  167.522142][T10102]  warn_alloc+0x12b/0x1a0
[  167.522188][T10102]  __vmalloc_node_range_noprof+0x497/0xe00
[  167.522243][T10102]  ? sel_write_load+0x158/0x380
[  167.522298][T10102]  vmalloc_noprof+0x82/0xc0
[  167.522337][T10102]  ? sel_write_load+0x158/0x380
[  167.522372][T10102]  sel_write_load+0x158/0x380
[  167.522408][T10102]  ? __pfx_sel_write_load+0x10/0x10
[  167.522583][T10102]  vfs_write+0x269/0x8e0
[  167.522684][T10102]  ? __rcu_read_unlock+0x4f/0x70
[  167.522714][T10102]  ? __fget_files+0x184/0x1c0
[  167.522742][T10102]  ksys_write+0xda/0x1a0
[  167.522835][T10102]  __x64_sys_write+0x40/0x50
[  167.522877][T10102]  x64_sys_call+0x2cdd/0x2fb0
[  167.522963][T10102]  do_syscall_64+0xd2/0x200
[  167.522986][T10102]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  167.523040][T10102]  ? clear_bhb_loop+0x40/0x90
[  167.523066][T10102]  ? clear_bhb_loop+0x40/0x90
[  167.523096][T10102]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.523125][T10102] RIP: 0033:0x7f1c2d34e9a9
[  167.523145][T10102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.523206][T10102] RSP: 002b:00007f1c2b9b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  167.523231][T10102] RAX: ffffffffffffffda RBX: 00007f1c2d575fa0 RCX: 00007f1c2d34e9a9
[  167.523249][T10102] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000006
[  167.523266][T10102] RBP: 00007f1c2b9b7090 R08: 0000000000000000 R09: 0000000000000000
[  167.523284][T10102] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  167.523358][T10102] R13: 0000000000000000 R14: 00007f1c2d575fa0 R15: 00007ffea0271ec8
[  167.523384][T10102]  </TASK>
[  167.523393][T10102] Mem-Info:
[  167.733401][T10102] active_anon:5673 inactive_anon:14 isolated_anon:0
[  167.733401][T10102]  active_file:12644 inactive_file:7536 isolated_file:0
[  167.733401][T10102]  unevictable:0 dirty:673 writeback:0
[  167.733401][T10102]  slab_reclaimable:3195 slab_unreclaimable:41507
[  167.733401][T10102]  mapped:36771 shmem:2309 pagetables:1244
[  167.733401][T10102]  sec_pagetables:0 bounce:0
[  167.733401][T10102]  kernel_misc_reclaimable:0
[  167.733401][T10102]  free:1847702 free_pcp:9621 free_cma:0
[  167.733469][T10102] Node 0 active_anon:22692kB inactive_anon:56kB active_file:50576kB inactive_file:30144kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:147084kB dirty:2692kB writeback:0kB shmem:9236kB writeback_tmp:0kB kernel_stack:4592kB pagetables:4976kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  167.733575][T10102] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  167.733682][T10102] lowmem_reserve[]: 0 2882 7860 7860
[  167.733715][T10102] Node 0 DMA32 free:2947720kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951348kB mlocked:0kB bounce:0kB free_pcp:3628kB local_pcp:100kB free_cma:0kB
[  167.733832][T10102] lowmem_reserve[]: 0 0 4978 4978
[  167.733863][T10102] Node 0 Normal free:4427728kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22692kB inactive_anon:56kB active_file:50576kB inactive_file:30144kB unevictable:0kB writepending:2692kB present:5242880kB managed:5098240kB mlocked:0kB bounce:0kB free_pcp:34856kB local_pcp:25476kB free_cma:0kB
[  167.733962][T10102] lowmem_reserve[]: 0 0 0 0
[  167.733986][T10102] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  167.734176][T10102] Node 0 DMA32: 4*4kB (M) 3*8kB (M) 2*16kB (M) 2*32kB (M) 4*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947720kB
[  167.734369][T10102] Node 0 Normal: 88*4kB (UME) 534*8kB (UME) 164*16kB (UME) 327*32kB (UME) 315*64kB (UME) 365*128kB (UME) 253*256kB (UME) 210*512kB (UME) 201*1024kB (UME) 98*2048kB (UME) 919*4096kB (UM) = 4427632kB
[  167.734775][T10102] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  167.734810][T10102] 22506 total pagecache pages
[  167.734826][T10102] 4 pages in swap cache
[  167.734834][T10102] Free swap  = 124300kB
[  167.734842][T10102] Total swap = 124996kB
[  167.734852][T10102] 2097051 pages RAM
[  167.734859][T10102] 0 pages HighMem/MovableOnly
[  167.734867][T10102] 80814 pages reserved
[  167.830045][T10116] lo speed is unknown, defaulting to 1000
[  167.893021][T10129] loop2: detected capacity change from 0 to 2048
[  167.978521][T10129] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.138576][T10129] EXT4-fs (loop2): shut down requested (0)
[  168.165671][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.414991][T10157] random: crng reseeded on system resumption
[  168.539542][T10170] loop0: detected capacity change from 0 to 2048
[  168.550699][T10170] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.564482][T10170] EXT4-fs (loop0): shut down requested (0)
[  168.584821][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.610430][T10176] FAULT_INJECTION: forcing a failure.
[  168.610430][T10176] name failslab, interval 1, probability 0, space 0, times 0
[  168.623355][T10176] CPU: 1 UID: 0 PID: 10176 Comm: syz.0.2327 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  168.623383][T10176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  168.623399][T10176] Call Trace:
[  168.623406][T10176]  <TASK>
[  168.623415][T10176]  __dump_stack+0x1d/0x30
[  168.623484][T10176]  dump_stack_lvl+0xe8/0x140
[  168.623503][T10176]  dump_stack+0x15/0x1b
[  168.623529][T10176]  should_fail_ex+0x265/0x280
[  168.623559][T10176]  should_failslab+0x8c/0xb0
[  168.623581][T10176]  kmem_cache_alloc_node_noprof+0x57/0x320
[  168.623614][T10176]  ? preload_this_cpu_lock+0x5b/0xd0
[  168.623639][T10176]  preload_this_cpu_lock+0x5b/0xd0
[  168.623682][T10176]  alloc_vmap_area+0x31f/0xe50
[  168.623746][T10176]  ? mmu_notifier_synchronize+0x1/0x20
[  168.623768][T10176]  ? __kmalloc_cache_node_noprof+0x18a/0x320
[  168.623855][T10176]  __get_vm_area_node+0x173/0x1d0
[  168.623919][T10176]  __vmalloc_node_range_noprof+0x273/0xe00
[  168.623948][T10176]  ? copy_process+0x399/0x1f90
[  168.623979][T10176]  ? __rcu_read_unlock+0x4f/0x70
[  168.624008][T10176]  __vmalloc_node_noprof+0x89/0xc0
[  168.624089][T10176]  ? copy_process+0x399/0x1f90
[  168.624113][T10176]  ? copy_process+0x399/0x1f90
[  168.624138][T10176]  dup_task_struct+0x449/0x6a0
[  168.624162][T10176]  ? css_rstat_updated+0xcd/0x5b0
[  168.624200][T10176]  copy_process+0x399/0x1f90
[  168.624257][T10176]  ? __pfx_io_wq_worker+0x10/0x10
[  168.624352][T10176]  create_io_thread+0x93/0xc0
[  168.624384][T10176]  ? __pfx_io_wq_worker+0x10/0x10
[  168.624410][T10176]  create_io_worker+0xe0/0x370
[  168.624437][T10176]  io_wq_enqueue+0x2c1/0x3a0
[  168.624465][T10176]  ? __pfx_io_wq_work_match_item+0x10/0x10
[  168.624504][T10176]  io_queue_iowq+0x201/0x2e0
[  168.624534][T10176]  ? io_req_task_work_add_remote+0x11/0x70
[  168.624568][T10176]  io_queue_async+0x37e/0x3a0
[  168.624641][T10176]  ? io_req_task_submit+0xb1/0xc0
[  168.624665][T10176]  ? __pfx_io_req_task_submit+0x10/0x10
[  168.624694][T10176]  io_req_task_submit+0xbb/0xc0
[  168.624725][T10176]  io_handle_tw_list+0x190/0x1c0
[  168.624753][T10176]  tctx_task_work_run+0x6d/0x1a0
[  168.624837][T10176]  tctx_task_work+0x3f/0x80
[  168.624861][T10176]  task_work_run+0x131/0x1a0
[  168.624916][T10176]  get_signal+0xe13/0xf70
[  168.624953][T10176]  ? proc_fail_nth_write+0x12d/0x160
[  168.625062][T10176]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  168.625096][T10176]  ? vfs_write+0x75e/0x8e0
[  168.625173][T10176]  ? __rcu_read_unlock+0x4f/0x70
[  168.625209][T10176]  ? __fget_files+0x184/0x1c0
[  168.625234][T10176]  arch_do_signal_or_restart+0x96/0x480
[  168.625266][T10176]  exit_to_user_mode_loop+0x7a/0x100
[  168.625294][T10176]  do_syscall_64+0x1d6/0x200
[  168.625381][T10176]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  168.625405][T10176]  ? clear_bhb_loop+0x40/0x90
[  168.625500][T10176]  ? clear_bhb_loop+0x40/0x90
[  168.625522][T10176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.625542][T10176] RIP: 0033:0x7f1c2d34e9a9
[  168.625560][T10176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.625600][T10176] RSP: 002b:00007f1c2b9b7038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  168.625619][T10176] RAX: 0000000000000001 RBX: 00007f1c2d575fa0 RCX: 00007f1c2d34e9a9
[  168.625630][T10176] RDX: 000000000000f2bb RSI: 00000000000048e9 RDI: 0000000000000006
[  168.625642][T10176] RBP: 00007f1c2b9b7090 R08: 0000000000000000 R09: 0000000000000000
[  168.625653][T10176] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  168.625736][T10176] R13: 0000000000000000 R14: 00007f1c2d575fa0 R15: 00007ffea0271ec8
[  168.625757][T10176]  </TASK>
[  169.072654][T10190] validate_nla: 3 callbacks suppressed
[  169.072670][T10190] netlink: 'syz.0.2334': attribute type 39 has an invalid length.
[  169.094775][T10194] loop5: detected capacity change from 0 to 512
[  169.099887][T10196] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  169.105466][T10194] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.112160][T10196] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  169.130097][T10194] netlink: 'syz.5.2335': attribute type 10 has an invalid length.
[  169.147839][T10193] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.196065][T10201] loop0: detected capacity change from 0 to 2048
[  169.218440][T10201] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.239370][T10201] EXT4-fs (loop0): shut down requested (0)
[  169.260192][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.287262][T10216] random: crng reseeded on system resumption
[  169.583261][T10251] random: crng reseeded on system resumption
[  170.541906][T10286] __nla_validate_parse: 6 callbacks suppressed
[  170.541921][T10286] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2366'.
[  170.716721][T10300] vcan0: entered allmulticast mode
[  170.722506][T10300] vcan0: left allmulticast mode
[  170.759089][T10302] netlink: 'syz.6.2373': attribute type 1 has an invalid length.
[  170.766913][T10293] lo speed is unknown, defaulting to 1000
[  170.790945][T10303] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2372'.
[  171.209226][T10314] random: crng reseeded on system resumption
[  171.376471][T10329] netlink: 'syz.3.2384': attribute type 1 has an invalid length.
[  171.642408][T10341] netlink: 'syz.0.2389': attribute type 1 has an invalid length.
[  171.655139][T10343] random: crng reseeded on system resumption
[  171.819046][   T29] kauditd_printk_skb: 319 callbacks suppressed
[  171.819109][   T29] audit: type=1400 audit(2000000000.177:7208): avc:  denied  { ioctl } for  pid=10348 comm="syz.2.2393" path="socket:[27448]" dev="sockfs" ino=27448 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  171.917313][   T29] audit: type=1400 audit(2000000000.289:7209): avc:  denied  { name_bind } for  pid=10363 comm="syz.2.2397" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  171.939174][   T29] audit: type=1400 audit(2000000000.289:7210): avc:  denied  { node_bind } for  pid=10363 comm="syz.2.2397" saddr=::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  171.961583][   T29] audit: type=1400 audit(2000000000.327:7211): avc:  denied  { create } for  pid=10365 comm="syz.5.2398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  171.981292][   T29] audit: type=1400 audit(2000000000.327:7212): avc:  denied  { setopt } for  pid=10365 comm="syz.5.2398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  172.001196][   T29] audit: type=1400 audit(2000000000.327:7213): avc:  denied  { map } for  pid=10367 comm="syz.2.2399" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1
[  172.066322][T10371] loop2: detected capacity change from 0 to 1024
[  172.110941][T10371] EXT4-fs: Ignoring removed orlov option
[  172.117079][   T29] audit: type=1400 audit(2000000000.402:7214): avc:  denied  { write } for  pid=10365 comm="syz.5.2398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  172.136965][   T29] audit: type=1400 audit(2000000000.420:7215): avc:  denied  { ioctl } for  pid=10355 comm="syz.3.2396" path="socket:[27455]" dev="sockfs" ino=27455 ioctlcmd=0x8910 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  172.214585][T10379] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2403'.
[  172.223655][   T29] audit: type=1400 audit(2000000000.533:7216): avc:  denied  { create } for  pid=10372 comm="syz.5.2401" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  172.243603][   T29] audit: type=1400 audit(2000000000.533:7217): avc:  denied  { setopt } for  pid=10372 comm="syz.5.2401" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  172.265625][T10371] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.975286][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.135218][T10410] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2415'.
[  173.185496][T10412] netlink: 'syz.2.2416': attribute type 1 has an invalid length.
[  173.246797][T10419] netlink: 'syz.3.2419': attribute type 1 has an invalid length.
[  173.595349][T10432] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  173.609524][T10432] lo speed is unknown, defaulting to 1000
[  173.662016][T10437] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.670514][T10437] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.704251][T10430] loop3: detected capacity change from 0 to 512
[  173.711546][T10430] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  173.723688][T10430] EXT4-fs (loop3): 1 truncate cleaned up
[  173.729744][T10430] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.745592][T10430] EXT4-fs error (device loop3): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.3.2423: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  173.766531][T10430] EXT4-fs (loop3): Remounting filesystem read-only
[  173.773113][T10430] EXT4-fs warning (device loop3): ext4_rename_delete:3726: inode #2: comm syz.3.2423: Deleting old file: nlink 5, error=-117
[  173.901296][T10441] loop0: detected capacity change from 0 to 2048
[  173.916235][T10441] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.933289][T10441] EXT4-fs (loop0): shut down requested (0)
[  173.971322][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.023755][T10449] random: crng reseeded on system resumption
[  174.046105][T10451] netlink: 'syz.5.2430': attribute type 1 has an invalid length.
[  174.351018][T10470] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2436'.
[  174.431822][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.817645][T10455] syz.0.2432 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  174.831826][T10455] CPU: 1 UID: 0 PID: 10455 Comm: syz.0.2432 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  174.831857][T10455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  174.831875][T10455] Call Trace:
[  174.831883][T10455]  <TASK>
[  174.831954][T10455]  __dump_stack+0x1d/0x30
[  174.831975][T10455]  dump_stack_lvl+0xe8/0x140
[  174.831999][T10455]  dump_stack+0x15/0x1b
[  174.832015][T10455]  dump_header+0x81/0x220
[  174.832162][T10455]  oom_kill_process+0x334/0x3f0
[  174.832227][T10455]  out_of_memory+0x979/0xb80
[  174.832263][T10455]  try_charge_memcg+0x5e6/0x9e0
[  174.832318][T10455]  obj_cgroup_charge_pages+0xa6/0x150
[  174.832369][T10455]  __memcg_kmem_charge_page+0x9f/0x170
[  174.832399][T10455]  __alloc_frozen_pages_noprof+0x188/0x360
[  174.832501][T10455]  alloc_pages_mpol+0xb3/0x250
[  174.832535][T10455]  alloc_pages_noprof+0x90/0x130
[  174.832596][T10455]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  174.832644][T10455]  __kvmalloc_node_noprof+0x30f/0x4e0
[  174.832676][T10455]  ? ip_set_alloc+0x1f/0x30
[  174.832711][T10455]  ? ip_set_alloc+0x1f/0x30
[  174.832757][T10455]  ? __kmalloc_cache_noprof+0x189/0x320
[  174.832837][T10455]  ip_set_alloc+0x1f/0x30
[  174.832873][T10455]  hash_netiface_create+0x282/0x740
[  174.832915][T10455]  ? __pfx_hash_netiface_create+0x10/0x10
[  174.832990][T10455]  ip_set_create+0x3c9/0x960
[  174.833035][T10455]  ? __nla_parse+0x40/0x60
[  174.833060][T10455]  nfnetlink_rcv_msg+0x4c6/0x590
[  174.833186][T10455]  ? selinux_capable+0x1f9/0x270
[  174.833232][T10455]  netlink_rcv_skb+0x120/0x220
[  174.833273][T10455]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  174.833322][T10455]  nfnetlink_rcv+0x16b/0x1690
[  174.833352][T10455]  ? tracing_record_taskinfo_sched_switch+0x71/0x260
[  174.833384][T10455]  ? __rcu_read_unlock+0x4f/0x70
[  174.833471][T10455]  ? bpf_trace_run3+0x12c/0x1d0
[  174.833502][T10455]  ? audit_log_end+0x1d7/0x1f0
[  174.833537][T10455]  ? try_to_wake_up+0x3df/0x630
[  174.833575][T10455]  ? audit_log_end+0x1d7/0x1f0
[  174.833613][T10455]  ? __traceiter_kmem_cache_free+0x35/0x60
[  174.833639][T10455]  ? audit_log_end+0x1d7/0x1f0
[  174.833680][T10455]  ? kmem_cache_free+0xdf/0x300
[  174.833735][T10455]  ? audit_log_end+0x1d7/0x1f0
[  174.833766][T10455]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  174.833794][T10455]  ? common_lsm_audit+0x1ca/0x230
[  174.833823][T10455]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  174.833860][T10455]  ? should_fail_ex+0x30/0x280
[  174.833899][T10455]  ? selinux_nlmsg_lookup+0x99/0x890
[  174.834001][T10455]  ? selinux_netlink_send+0x59f/0x5f0
[  174.834041][T10455]  ? __rcu_read_unlock+0x34/0x70
[  174.834069][T10455]  ? __netlink_lookup+0x266/0x2a0
[  174.834099][T10455]  netlink_unicast+0x5a8/0x680
[  174.834153][T10455]  netlink_sendmsg+0x58b/0x6b0
[  174.834177][T10455]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.834199][T10455]  __sock_sendmsg+0x145/0x180
[  174.834352][T10455]  ____sys_sendmsg+0x31e/0x4e0
[  174.834397][T10455]  ___sys_sendmsg+0x17b/0x1d0
[  174.834515][T10455]  __x64_sys_sendmsg+0xd4/0x160
[  174.834622][T10455]  x64_sys_call+0x2999/0x2fb0
[  174.834651][T10455]  do_syscall_64+0xd2/0x200
[  174.834675][T10455]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  174.834838][T10455]  ? clear_bhb_loop+0x40/0x90
[  174.834866][T10455]  ? clear_bhb_loop+0x40/0x90
[  174.834891][T10455]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.834977][T10455] RIP: 0033:0x7f1c2d34e9a9
[  174.834998][T10455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.835032][T10455] RSP: 002b:00007f1c2b9b7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.835058][T10455] RAX: ffffffffffffffda RBX: 00007f1c2d575fa0 RCX: 00007f1c2d34e9a9
[  174.835081][T10455] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000a
[  174.835098][T10455] RBP: 00007f1c2d3d0d69 R08: 0000000000000000 R09: 0000000000000000
[  174.835183][T10455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.835200][T10455] R13: 0000000000000000 R14: 00007f1c2d575fa0 R15: 00007ffea0271ec8
[  174.835225][T10455]  </TASK>
[  175.229179][T10455] memory: usage 307200kB, limit 307200kB, failcnt 550
[  175.236649][T10455] memory+swap: usage 311696kB, limit 9007199254740988kB, failcnt 0
[  175.244595][T10455] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[  175.251952][T10455] Memory cgroup stats for /syz0:
[  175.252349][T10455] cache 0
[  175.260261][T10455] rss 0
[  175.263285][T10455] shmem 0
[  175.266230][T10455] mapped_file 0
[  175.269687][T10455] dirty 0
[  175.272823][T10455] writeback 0
[  175.276151][T10455] workingset_refault_anon 101
[  175.280829][T10455] workingset_refault_file 1156
[  175.285868][T10455] swap 4603904
[  175.289294][T10455] swapcached 12288
[  175.293166][T10455] pgpgin 196405
[  175.296766][T10455] pgpgout 196401
[  175.300413][T10455] pgfault 165276
[  175.304067][T10455] pgmajfault 80
[  175.307606][T10455] inactive_anon 4096
[  175.311532][T10455] active_anon 8192
[  175.315301][T10455] inactive_file 0
[  175.319030][T10455] active_file 4096
[  175.322772][T10455] unevictable 0
[  175.326299][T10455] hierarchical_memory_limit 314572800
[  175.331776][T10455] hierarchical_memsw_limit 9223372036854771712
[  175.338088][T10455] total_cache 0
[  175.341569][T10455] total_rss 0
[  175.344971][T10455] total_shmem 0
[  175.348627][T10455] total_mapped_file 0
[  175.352696][T10455] total_dirty 0
[  175.356191][T10455] total_writeback 0
[  175.360213][T10455] total_workingset_refault_anon 101
[  175.365925][T10455] total_workingset_refault_file 1156
[  175.371285][T10455] total_swap 4603904
[  175.375018][T10484] random: crng reseeded on system resumption
[  175.375190][T10455] total_swapcached 12288
[  175.375203][T10455] total_pgpgin 196405
[  175.389691][T10455] total_pgpgout 196401
[  175.393986][T10455] total_pgfault 165276
[  175.398402][T10455] total_pgmajfault 80
[  175.402436][T10455] total_inactive_anon 4096
[  175.406905][T10455] total_active_anon 8192
[  175.411317][T10455] total_inactive_file 0
[  175.415496][T10455] total_active_file 4096
[  175.419871][T10455] total_unevictable 0
[  175.424198][T10455] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2432,pid=10454,uid=0
[  175.432616][T10488] loop2: detected capacity change from 0 to 2048
[  175.439053][T10455] Memory cgroup out of memory: Killed process 10454 (syz.0.2432) total-vm:98128kB, anon-rss:1076kB, file-rss:26408kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[  175.477188][T10488] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.498706][T10488] EXT4-fs (loop2): shut down requested (0)
[  175.516697][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.673957][T10514] random: crng reseeded on system resumption
[  175.685885][T10513] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2454'.
[  175.778778][T10526] loop2: detected capacity change from 0 to 1024
[  175.803083][T10526] EXT4-fs: Ignoring removed orlov option
[  175.821743][T10526] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.834336][T10530] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2463'.
[  175.852364][T10535] loop3: detected capacity change from 0 to 1024
[  175.859296][T10535] EXT4-fs: Ignoring removed orlov option
[  175.884266][T10535] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.009690][T10549] random: crng reseeded on system resumption
[  176.090870][T10554] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2472'.
[  176.298760][T10561] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2475'.
[  176.431351][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.623367][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.758847][T10568] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  176.758938][T10568] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  176.863088][T10580] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2483'.
[  176.989343][T10584] random: crng reseeded on system resumption
[  177.056241][T10588] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2487'.
[  177.229201][   T29] kauditd_printk_skb: 194 callbacks suppressed
[  177.229216][   T29] audit: type=1400 audit(2000000001.234:7412): avc:  denied  { write } for  pid=10594 comm="syz.3.2491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  177.267796][   T29] audit: type=1400 audit(2000000001.234:7413): avc:  denied  { read write } for  pid=10594 comm="syz.3.2491" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  177.292074][   T29] audit: type=1400 audit(2000000001.234:7414): avc:  denied  { open } for  pid=10594 comm="syz.3.2491" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  177.292125][   T29] audit: type=1326 audit(2000000001.234:7415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10600 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e05b5e9a9 code=0x7ffc0000
[  177.292338][   T29] audit: type=1326 audit(2000000001.234:7416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10600 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7f3e05b5e9a9 code=0x7ffc0000
[  177.292370][   T29] audit: type=1326 audit(2000000001.234:7417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10600 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e05b5e9a9 code=0x7ffc0000
[  177.292446][   T29] audit: type=1326 audit(2000000001.234:7418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10600 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3e05b5e9a9 code=0x7ffc0000
[  177.292472][   T29] audit: type=1326 audit(2000000001.234:7419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10600 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e05b5e9a9 code=0x7ffc0000
[  177.292500][   T29] audit: type=1326 audit(2000000001.234:7420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10600 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3e05b5e9a9 code=0x7ffc0000
[  177.292533][   T29] audit: type=1326 audit(2000000001.234:7421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10600 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e05b5e9a9 code=0x7ffc0000
[  177.511314][T10617] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2500'.
[  177.793032][T10633] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2508'.
[  177.971955][T10644] random: crng reseeded on system resumption
[  178.271247][T10660] netlink: 148 bytes leftover after parsing attributes in process `syz.3.2520'.
[  178.318216][T10664] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2521'.
[  178.422232][T10675] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2526'.
[  178.477690][T10682] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2529'.
[  178.486648][T10682] bridge_slave_0: entered promiscuous mode
[  178.597265][T10691] loop2: detected capacity change from 0 to 2048
[  178.682421][T10691] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.722216][T10691] EXT4-fs (loop2): shut down requested (0)
[  178.762279][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.889323][T10718] random: crng reseeded on system resumption
[  179.896713][T10828] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  179.905275][T10828] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.082642][T10881] loop6: detected capacity change from 0 to 2048
[  181.101186][T10881] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.116536][T10881] EXT4-fs (loop6): shut down requested (0)
[  181.135216][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.777696][T10913] random: crng reseeded on system resumption
[  181.934102][T10923] __nla_validate_parse: 15 callbacks suppressed
[  181.934119][T10923] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2628'.
[  182.032344][T10929] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2630'.
[  182.073624][T10878] syz.2.2612 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  182.084671][T10878] CPU: 0 UID: 0 PID: 10878 Comm: syz.2.2612 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  182.084709][T10878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.084725][T10878] Call Trace:
[  182.084733][T10878]  <TASK>
[  182.084741][T10878]  __dump_stack+0x1d/0x30
[  182.084763][T10878]  dump_stack_lvl+0xe8/0x140
[  182.084782][T10878]  dump_stack+0x15/0x1b
[  182.084799][T10878]  dump_header+0x81/0x220
[  182.084840][T10878]  oom_kill_process+0x334/0x3f0
[  182.084887][T10878]  out_of_memory+0x979/0xb80
[  182.084996][T10878]  try_charge_memcg+0x5e6/0x9e0
[  182.085066][T10878]  charge_memcg+0x51/0xc0
[  182.085097][T10878]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  182.085167][T10878]  __read_swap_cache_async+0x1df/0x350
[  182.085211][T10878]  swap_cluster_readahead+0x376/0x3e0
[  182.085257][T10878]  swapin_readahead+0xde/0x6f0
[  182.085365][T10878]  ? __filemap_get_folio+0x4f7/0x6b0
[  182.085400][T10878]  ? __rcu_read_unlock+0x34/0x70
[  182.085437][T10878]  ? swap_cache_get_folio+0x77/0x200
[  182.085544][T10878]  do_swap_page+0x301/0x2430
[  182.085564][T10878]  ? css_rstat_updated+0xcd/0x5b0
[  182.085604][T10878]  ? __pfx_default_wake_function+0x10/0x10
[  182.085680][T10878]  handle_mm_fault+0x9a5/0x2be0
[  182.085702][T10878]  ? mas_walk+0xf2/0x120
[  182.085788][T10878]  do_user_addr_fault+0x636/0x1090
[  182.085833][T10878]  exc_page_fault+0x62/0xa0
[  182.085864][T10878]  asm_exc_page_fault+0x26/0x30
[  182.085948][T10878] RIP: 0033:0x7fd0b1e0ea90
[  182.085963][T10878] Code: ff 48 8b 43 38 83 43 28 04 48 8d 50 fc 48 89 53 38 44 89 68 fc 8b 43 28 48 83 c4 38 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 00 <c6> 44 24 1e 01 48 89 ee 44 89 e7 4c 89 44 24 10 4c 89 54 24 08 e8
[  182.085986][T10878] RSP: 002b:00007ffc7d9e93a0 EFLAGS: 00010246
[  182.086005][T10878] RAX: 0000000000017d05 RBX: 00007fd0b2c85720 RCX: 0000000000034d81
[  182.086072][T10878] RDX: ffffffff81773687 RSI: ffffffff817a4b26 RDI: 0000000000000012
[  182.086130][T10878] RBP: ffffffff8177344b R08: 00007fd0b2156038 R09: 00007fd0b2142000
[  182.086142][T10878] R10: 00007fd0b159f008 R11: 0000000000000012 R12: 0000000000000012
[  182.086154][T10878] R13: 0000000000000000 R14: ffffffff81773687 R15: 0000000000034d81
[  182.086171][T10878]  ? folio_unlock+0x27/0x120
[  182.086261][T10878]  ? folio_wait_bit_common+0x4db/0x6a0
[  182.086299][T10878]  ? folio_unlock+0x27/0x120
[  182.086326][T10878]  ? shrink_folio_list+0x16b6/0x2560
[  182.086414][T10878]  </TASK>
[  182.086423][T10878] memory: usage 307200kB, limit 307200kB, failcnt 1806
[  182.328013][T10878] memory+swap: usage 312364kB, limit 9007199254740988kB, failcnt 0
[  182.335927][T10878] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[  182.343284][T10878] Memory cgroup stats for /syz2:
[  182.345983][T10878] cache 0
[  182.353943][T10878] rss 0
[  182.356753][T10878] shmem 0
[  182.359866][T10878] mapped_file 0
[  182.363413][T10878] dirty 0
[  182.366370][T10878] writeback 0
[  182.369715][T10878] workingset_refault_anon 806
[  182.374485][T10878] workingset_refault_file 1417
[  182.379380][T10878] swap 5287936
[  182.383030][T10878] swapcached 4096
[  182.386864][T10878] pgpgin 203734
[  182.390371][T10878] pgpgout 203732
[  182.394009][T10878] pgfault 218511
[  182.397590][T10878] pgmajfault 545
[  182.401188][T10878] inactive_anon 0
[  182.404873][T10878] active_anon 4096
[  182.408700][T10878] inactive_file 0
[  182.412499][T10878] active_file 4096
[  182.416271][T10878] unevictable 0
[  182.419833][T10878] hierarchical_memory_limit 314572800
[  182.425261][T10878] hierarchical_memsw_limit 9223372036854771712
[  182.431476][T10878] total_cache 0
[  182.434969][T10878] total_rss 0
[  182.438277][T10878] total_shmem 0
[  182.441761][T10878] total_mapped_file 0
[  182.445776][T10878] total_dirty 0
[  182.449474][T10878] total_writeback 0
[  182.453444][T10878] total_workingset_refault_anon 806
[  182.458805][T10878] total_workingset_refault_file 1417
[  182.464113][T10878] total_swap 5287936
[  182.468089][T10878] total_swapcached 4096
[  182.472261][T10878] total_pgpgin 203734
[  182.476282][T10878] total_pgpgout 203732
[  182.480416][T10878] total_pgfault 218511
[  182.484503][T10878] total_pgmajfault 545
[  182.488758][T10878] total_inactive_anon 0
[  182.493021][T10878] total_active_anon 4096
[  182.497301][T10878] total_inactive_file 0
[  182.501671][T10878] total_active_file 4096
[  182.505944][T10878] total_unevictable 0
[  182.509977][T10878] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.2612,pid=10878,uid=0
[  182.521401][T10940] random: crng reseeded on system resumption
[  182.525003][T10878] Memory cgroup out of memory: Killed process 10878 (syz.2.2612) total-vm:98128kB, anon-rss:924kB, file-rss:26408kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[  182.585964][T10942] loop6: detected capacity change from 0 to 2048
[  182.596549][T10942] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.611242][T10942] EXT4-fs (loop6): shut down requested (0)
[  182.630928][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.675877][T10946] loop6: detected capacity change from 0 to 2048
[  182.702970][T10946] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.724969][   T29] kauditd_printk_skb: 162 callbacks suppressed
[  182.724983][   T29] audit: type=1400 audit(2000000000.776:7584): avc:  denied  { write } for  pid=10945 comm="syz.6.2637" path="/138/file1/bus" dev="loop6" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  182.774423][   T29] audit: type=1326 audit(2000000000.813:7585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10955 comm="syz.0.2641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c2d34e9a9 code=0x7ffc0000
[  182.808389][   T29] audit: type=1326 audit(2000000000.841:7586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10955 comm="syz.0.2641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7f1c2d34e9a9 code=0x7ffc0000
[  182.832257][   T29] audit: type=1326 audit(2000000000.841:7587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10955 comm="syz.0.2641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c2d34e9a9 code=0x7ffc0000
[  182.844728][T10960] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2642'.
[  182.906002][   T29] audit: type=1400 audit(2000000000.944:7588): avc:  denied  { write } for  pid=10963 comm="syz.0.2644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  182.926256][   T29] audit: type=1400 audit(2000000000.944:7589): avc:  denied  { create } for  pid=10963 comm="syz.0.2644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  182.946012][   T29] audit: type=1400 audit(2000000000.944:7590): avc:  denied  { write } for  pid=10963 comm="syz.0.2644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  182.965828][   T29] audit: type=1400 audit(2000000000.944:7591): avc:  denied  { create } for  pid=10963 comm="syz.0.2644" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  182.986873][   T29] audit: type=1400 audit(2000000000.944:7592): avc:  denied  { mounton } for  pid=10963 comm="syz.0.2644" path="/518/file0" dev="tmpfs" ino=2730 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  183.044656][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.086793][T10973] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2648'.
[  183.097656][   T29] audit: type=1400 audit(2000000001.000:7593): avc:  denied  { write } for  pid=10963 comm="syz.0.2644" name="file0" dev="tmpfs" ino=2730 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  183.206390][T10986] random: crng reseeded on system resumption
[  183.213576][T10990] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2655'.
[  183.315987][T11001] loop3: detected capacity change from 0 to 2048
[  183.334645][T11001] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.347963][T10996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2659'.
[  183.500131][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.590934][T11020] loop3: detected capacity change from 0 to 2048
[  183.601174][T11020] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.615370][T11020] EXT4-fs (loop3): shut down requested (0)
[  183.634698][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.667141][T11033] random: crng reseeded on system resumption
[  183.673902][T11035] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2674'.
[  183.833228][T11045] loop3: detected capacity change from 0 to 2048
[  183.847264][T11045] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.036545][T11064] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  184.045519][T11064] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  184.201095][T11068] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  184.224636][T11068] loop2: detected capacity change from 0 to 2048
[  184.253874][T11068] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.294630][T11068] EXT4-fs error (device loop2): ext4_ext_precache:632: inode #2: comm syz.2.2688: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  184.314092][T11068] EXT4-fs (loop2): Remounting filesystem read-only
[  184.380882][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.418408][T11083] random: crng reseeded on system resumption
[  184.734141][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.838447][T11107] loop3: detected capacity change from 0 to 2048
[  184.851728][T11107] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.868026][T11107] EXT4-fs (loop3): shut down requested (0)
[  184.915365][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.960369][T11122] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2709'.
[  185.150794][T11130] loop6: detected capacity change from 0 to 2048
[  185.164591][T11130] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.511183][T11142] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2717'.
[  185.778485][T11154] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2722'.
[  186.071006][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.118811][T11170] netlink: 'syz.0.2729': attribute type 16 has an invalid length.
[  186.126731][T11170] netlink: 'syz.0.2729': attribute type 17 has an invalid length.
[  186.240785][T11187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  186.249679][T11187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  186.803173][T11184] syz.5.2734 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  186.817270][T11184] CPU: 1 UID: 0 PID: 11184 Comm: syz.5.2734 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  186.817330][T11184] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  186.817343][T11184] Call Trace:
[  186.817350][T11184]  <TASK>
[  186.817437][T11184]  __dump_stack+0x1d/0x30
[  186.817473][T11184]  dump_stack_lvl+0xe8/0x140
[  186.817498][T11184]  dump_stack+0x15/0x1b
[  186.817519][T11184]  dump_header+0x81/0x220
[  186.817556][T11184]  oom_kill_process+0x334/0x3f0
[  186.817669][T11184]  out_of_memory+0x979/0xb80
[  186.817782][T11184]  try_charge_memcg+0x5e6/0x9e0
[  186.817882][T11184]  obj_cgroup_charge_pages+0xa6/0x150
[  186.817929][T11184]  __memcg_kmem_charge_page+0x9f/0x170
[  186.817965][T11184]  __alloc_frozen_pages_noprof+0x188/0x360
[  186.818061][T11184]  alloc_pages_mpol+0xb3/0x250
[  186.818093][T11184]  alloc_pages_noprof+0x90/0x130
[  186.818121][T11184]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  186.818238][T11184]  __kvmalloc_node_noprof+0x30f/0x4e0
[  186.818266][T11184]  ? ip_set_alloc+0x1f/0x30
[  186.818299][T11184]  ? ip_set_alloc+0x1f/0x30
[  186.818386][T11184]  ? __kmalloc_cache_noprof+0x189/0x320
[  186.818418][T11184]  ip_set_alloc+0x1f/0x30
[  186.818453][T11184]  hash_netiface_create+0x282/0x740
[  186.818542][T11184]  ? __pfx_hash_netiface_create+0x10/0x10
[  186.818610][T11184]  ip_set_create+0x3c9/0x960
[  186.818661][T11184]  ? __nla_parse+0x40/0x60
[  186.818683][T11184]  nfnetlink_rcv_msg+0x4c6/0x590
[  186.818839][T11184]  ? selinux_capable+0x1f9/0x270
[  186.818874][T11184]  netlink_rcv_skb+0x120/0x220
[  186.818972][T11184]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  186.819056][T11184]  nfnetlink_rcv+0x16b/0x1690
[  186.819088][T11184]  ? __kfree_skb+0x109/0x150
[  186.819130][T11184]  ? nlmon_xmit+0x4f/0x60
[  186.819155][T11184]  ? consume_skb+0x49/0x150
[  186.819235][T11184]  ? nlmon_xmit+0x4f/0x60
[  186.819255][T11184]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  186.819330][T11184]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  186.819370][T11184]  ? __dev_queue_xmit+0x182/0x1fb0
[  186.819407][T11184]  ? ref_tracker_free+0x37d/0x3e0
[  186.819486][T11184]  ? __netlink_deliver_tap+0x4dc/0x500
[  186.819527][T11184]  netlink_unicast+0x5a8/0x680
[  186.819604][T11184]  netlink_sendmsg+0x58b/0x6b0
[  186.819627][T11184]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.819652][T11184]  __sock_sendmsg+0x145/0x180
[  186.819743][T11184]  ____sys_sendmsg+0x31e/0x4e0
[  186.819786][T11184]  ___sys_sendmsg+0x17b/0x1d0
[  186.819864][T11184]  __x64_sys_sendmsg+0xd4/0x160
[  186.819918][T11184]  x64_sys_call+0x2999/0x2fb0
[  186.819944][T11184]  do_syscall_64+0xd2/0x200
[  186.819967][T11184]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  186.820077][T11184]  ? clear_bhb_loop+0x40/0x90
[  186.820103][T11184]  ? clear_bhb_loop+0x40/0x90
[  186.820130][T11184]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.820175][T11184] RIP: 0033:0x7f3e05b5e9a9
[  186.820196][T11184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.820214][T11184] RSP: 002b:00007f3e041bf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.820239][T11184] RAX: ffffffffffffffda RBX: 00007f3e05d85fa0 RCX: 00007f3e05b5e9a9
[  186.820256][T11184] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000a
[  186.820272][T11184] RBP: 00007f3e05be0d69 R08: 0000000000000000 R09: 0000000000000000
[  186.820287][T11184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  186.820303][T11184] R13: 0000000000000000 R14: 00007f3e05d85fa0 R15: 00007ffc7b2772f8
[  186.820337][T11184]  </TASK>
[  186.820345][T11184] memory: usage 307200kB, limit 307200kB, failcnt 2140
[  187.051163][T11205] netlink: 'syz.2.2740': attribute type 2 has an invalid length.
[  187.054834][T11184] memory+swap: usage 312284kB, limit 9007199254740988kB, failcnt 0
[  187.059735][T11205] netlink: 'syz.2.2740': attribute type 5 has an invalid length.
[  187.064485][T11184] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  187.106964][T11209] loop6: detected capacity change from 0 to 512
[  187.114586][T11184] Memory cgroup stats for 
[  187.124756][T11209] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  187.131093][T11184] /syz5:
[  187.131862][T11184] cache 0
[  187.183097][T11209] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  187.189234][T11184] rss 0
[  187.189261][T11184] shmem 0
[  187.198086][T11209] System zones: 
[  187.204314][T11184] mapped_file 0
[  187.204327][T11184] dirty 0
[  187.204343][T11184] writeback 0
[  187.210585][T11209] 1-12
[  187.215310][T11184] workingset_refault_anon 437
[  187.215323][T11184] workingset_refault_file 0
[  187.226547][T11209] EXT4-fs (loop6): 1 truncate cleaned up
[  187.228093][T11184] swap 5206016
[  187.228103][T11184] swapcached 0
[  187.231560][T11209] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.238946][T11184] pgpgin 109427
[  187.238958][T11184] pgpgout 109427
[  187.238966][T11184] pgfault 131408
[  187.238975][T11184] pgmajfault 250
[  187.238983][T11184] inactive_anon 0
[  187.313130][T11184] active_anon 0
[  187.316671][T11184] inactive_file 0
[  187.320448][T11184] active_file 0
[  187.323914][T11184] unevictable 0
[  187.327476][T11184] hierarchical_memory_limit 314572800
[  187.332963][T11184] hierarchical_memsw_limit 9223372036854771712
[  187.339169][T11184] total_cache 0
[  187.342826][T11184] total_rss 0
[  187.346121][T11184] total_shmem 0
[  187.349633][T11184] total_mapped_file 0
[  187.353670][T11184] total_dirty 0
[  187.357128][T11184] total_writeback 0
[  187.360945][T11184] total_workingset_refault_anon 437
[  187.366220][T11184] total_workingset_refault_file 0
[  187.371245][T11184] total_swap 5206016
[  187.375198][T11184] total_swapcached 0
[  187.379128][T11184] total_pgpgin 109427
[  187.383167][T11184] total_pgpgout 109427
[  187.387322][T11184] total_pgfault 131408
[  187.391406][T11184] total_pgmajfault 250
[  187.395486][T11184] total_inactive_anon 0
[  187.399699][T11184] total_active_anon 0
[  187.403677][T11184] total_inactive_file 0
[  187.407853][T11184] total_active_file 0
[  187.411851][T11184] total_unevictable 0
[  187.415911][T11184] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.2734,pid=11183,uid=0
[  187.430672][T11184] Memory cgroup out of memory: Killed process 11183 (syz.5.2734) total-vm:100176kB, anon-rss:1112kB, file-rss:26428kB, shmem-rss:0kB, UID:0 pgtables:140kB oom_score_adj:0
[  187.605188][T11218] netlink: 'syz.3.2742': attribute type 1 has an invalid length.
[  187.647923][T11222] netlink: 'syz.5.2745': attribute type 1 has an invalid length.
[  187.823115][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.892271][T11232] loop6: detected capacity change from 0 to 2048
[  187.919880][T11232] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.614133][   T29] kauditd_printk_skb: 240 callbacks suppressed
[  188.614152][   T29] audit: type=1400 audit(2000000006.286:7834): avc:  denied  { create } for  pid=11235 comm="syz.3.2749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  188.626099][T11214] syz.2.2744 (11214) used greatest stack depth: 6824 bytes left
[  188.651837][   T29] audit: type=1400 audit(2000000006.314:7835): avc:  denied  { execmem } for  pid=11235 comm="syz.3.2749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  188.767714][   T29] audit: type=1400 audit(2000000006.426:7836): avc:  denied  { getopt } for  pid=11242 comm="syz.0.2752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  188.770337][T11241] vcan0: entered allmulticast mode
[  188.790546][   T29] audit: type=1400 audit(2000000006.426:7837): avc:  denied  { ioctl } for  pid=11240 comm="syz.2.2751" path="socket:[31805]" dev="sockfs" ino=31805 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  188.810545][T11241] vcan0: left allmulticast mode
[  188.817599][   T29] audit: type=1400 audit(2000000006.445:7838): avc:  denied  { create } for  pid=11242 comm="syz.0.2752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  188.841999][   T29] audit: type=1400 audit(2000000006.445:7839): avc:  denied  { write } for  pid=11242 comm="syz.0.2752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  188.864109][   T29] audit: type=1400 audit(2000000006.482:7840): avc:  denied  { bind } for  pid=11240 comm="syz.2.2751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  188.884723][   T29] audit: type=1400 audit(2000000006.482:7841): avc:  denied  { setopt } for  pid=11240 comm="syz.2.2751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  188.886321][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.905455][   T29] audit: type=1400 audit(2000000006.482:7842): avc:  denied  { write } for  pid=11240 comm="syz.2.2751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  188.921203][T11246] __nla_validate_parse: 1 callbacks suppressed
[  188.921223][T11246] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2754'.
[  188.941783][   T29] audit: type=1400 audit(2000000006.585:7843): avc:  denied  { create } for  pid=11240 comm="syz.2.2751" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  188.972722][T11245] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2751'.
[  188.997389][T11251] netlink: 'syz.6.2753': attribute type 1 has an invalid length.
[  189.340916][T11264] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2761'.
[  189.437845][T11270] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2763'.
[  189.631028][T11286] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  189.639917][T11286] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  190.140704][T11293] loop0: detected capacity change from 0 to 2048
[  190.156665][T11293] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.158791][T11293] EXT4-fs (loop0): shut down requested (0)
[  190.220091][T11298] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2774'.
[  190.220693][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.291048][T11304] netlink: 'syz.0.2775': attribute type 1 has an invalid length.
[  190.366940][T11306] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2778'.
[  190.414107][T11311] netlink: 'syz.3.2780': attribute type 1 has an invalid length.
[  190.452336][T11311] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[  190.464299][T11311] bond2: (slave vxcan3): Error -95 calling set_mac_address
[  190.507125][T11315] gretap1: entered promiscuous mode
[  190.523212][T11315] bond2: (slave gretap1): making interface the new active one
[  190.539500][T11315] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  190.588165][T11311] macvlan0: entered promiscuous mode
[  190.593569][T11311] macvlan0: entered allmulticast mode
[  190.600404][T11311] bond2: entered promiscuous mode
[  190.606017][T11311] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  190.618230][T11311] bond2: (slave macvlan0): the slave hw address is in use by the bond; giving it the hw address of gretap1
[  190.631227][T11311] bond2: left promiscuous mode
[  190.679110][T11324] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  190.687944][T11324] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  190.688271][T11326] loop0: detected capacity change from 0 to 2048
[  190.723773][T11326] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.748935][T11326] EXT4-fs (loop0): shut down requested (0)
[  190.783890][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.023880][T11341] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  191.093732][T11341] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  191.795779][T11361] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2799'.
[  191.841406][T11366] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2801'.
[  191.894878][T11372] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2802'.
[  191.929918][T11375] loop0: detected capacity change from 0 to 1024
[  191.949017][T11375] EXT4-fs: Ignoring removed orlov option
[  191.968490][T11362] lo speed is unknown, defaulting to 1000
[  191.981159][T11375] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.070739][T11362] chnl_net:caif_netlink_parms(): no params data found
[  192.167667][T11362] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.174886][T11362] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.183673][T11362] bridge_slave_0: entered allmulticast mode
[  192.190747][T11362] bridge_slave_0: entered promiscuous mode
[  192.197785][T11362] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.205013][T11362] bridge0: port 2(bridge_slave_1) entered disabled state
[  192.212319][T11362] bridge_slave_1: entered allmulticast mode
[  192.219099][T11362] bridge_slave_1: entered promiscuous mode
[  192.279976][T11362] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  192.295184][ T7901] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.307898][T11362] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  192.345292][T11362] team0: Port device team_slave_0 added
[  192.353325][T11362] team0: Port device team_slave_1 added
[  192.365690][ T7901] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.387774][T11396] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2808'.
[  192.410128][T11362] batman_adv: batadv0: Adding interface: batadv_slave_0
[  192.417142][T11362] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.443430][T11362] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  192.463549][ T7901] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.477965][T11362] batman_adv: batadv0: Adding interface: batadv_slave_1
[  192.484992][T11362] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.511238][T11362] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  192.526958][ T7901] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.570503][T11362] hsr_slave_0: entered promiscuous mode
[  192.588623][T11362] hsr_slave_1: entered promiscuous mode
[  192.601035][T11362] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  192.612875][T11362] Cannot create hsr debugfs directory
[  192.696179][T11404] loop2: detected capacity change from 0 to 2048
[  192.713543][ T7901] bond2 (unregistering): (slave gretap1): Releasing active interface
[  192.748238][T11404] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.763917][T11404] EXT4-fs (loop2): shut down requested (0)
[  192.782056][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.810135][T11411] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  192.819634][T11411] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  192.844051][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.862377][ T7901] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  192.882619][ T7901] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  192.893641][ T7901] bond0 (unregistering): Released all slaves
[  192.903880][ T7901] bond1 (unregistering): Released all slaves
[  192.912769][ T7901] bond2 (unregistering): Released all slaves
[  192.958722][ T7901] tipc: Disabling bearer <udp:syz2>
[  192.964161][ T7901] tipc: Left network mode
[  192.971555][ T7901] IPVS: stopping master sync thread 7672 ...
[  192.986865][ T7901] hsr_slave_0: left promiscuous mode
[  192.992520][ T7901] hsr_slave_1: left promiscuous mode
[  193.000752][ T7901] veth1_macvtap: left promiscuous mode
[  193.007089][ T7901] veth0_macvtap: left promiscuous mode
[  193.093631][ T7901] team0 (unregistering): Port device team_slave_1 removed
[  193.105754][ T7901] team0 (unregistering): Port device team_slave_0 removed
[  193.427068][ T7901] IPVS: stop unused estimator thread 0...
[  193.451046][T11436] loop2: detected capacity change from 0 to 2048
[  193.463031][T11362] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  193.472572][T11362] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  193.474444][T11436] EXT4-fs (loop2): shut down requested (0)
[  193.488751][T11362] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  193.498752][T11362] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  193.545436][T11362] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.558615][T11362] 8021q: adding VLAN 0 to HW filter on device team0
[  193.572162][ T7901] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.579328][ T7901] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.588794][ T7901] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.596067][ T7901] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.663997][T11362] 8021q: adding VLAN 0 to HW filter on device batadv0
[  193.733649][T11362] veth0_vlan: entered promiscuous mode
[  193.741428][T11362] veth1_vlan: entered promiscuous mode
[  193.757753][T11362] veth0_macvtap: entered promiscuous mode
[  193.765711][T11362] veth1_macvtap: entered promiscuous mode
[  193.777143][T11362] batman_adv: batadv0: Interface activated: batadv_slave_0
[  193.788421][T11362] batman_adv: batadv0: Interface activated: batadv_slave_1
[  193.798832][T11362] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  193.807644][T11362] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  193.816589][T11362] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  193.825393][T11362] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  193.981909][   T29] kauditd_printk_skb: 237 callbacks suppressed
[  193.981966][   T29] audit: type=1400 audit(2000000011.309:8081): avc:  denied  { create } for  pid=11475 comm="syz.5.2830" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  194.030768][   T29] audit: type=1400 audit(2000000011.337:8082): avc:  denied  { mounton } for  pid=11475 comm="syz.5.2830" path="/412/file0" dev="tmpfs" ino=2214 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  194.054198][   T29] audit: type=1400 audit(2000000011.337:8083): avc:  denied  { write } for  pid=11475 comm="syz.5.2830" name="file0" dev="tmpfs" ino=2214 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  194.076807][   T29] audit: type=1400 audit(2000000011.337:8084): avc:  denied  { open } for  pid=11475 comm="syz.5.2830" path="/412/file0" dev="tmpfs" ino=2214 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  194.099998][   T29] audit: type=1400 audit(2000000011.347:8085): avc:  denied  { unlink } for  pid=5355 comm="syz-executor" name="file0" dev="tmpfs" ino=2214 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  194.197971][T11486] loop0: detected capacity change from 0 to 2048
[  194.231680][T11486] EXT4-fs (loop0): shut down requested (0)
[  194.285471][   T29] audit: type=1326 audit(2000000011.590:8086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.0.2835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c2d34e9a9 code=0x7ffc0000
[  194.309468][   T29] audit: type=1326 audit(2000000011.590:8087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.0.2835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c2d34e9a9 code=0x7ffc0000
[  194.343439][   T29] audit: type=1326 audit(2000000011.646:8088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.0.2835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7f1c2d34e9a9 code=0x7ffc0000
[  194.367103][   T29] audit: type=1326 audit(2000000011.646:8089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.0.2835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c2d34e9a9 code=0x7ffc0000
[  194.391072][   T29] audit: type=1326 audit(2000000011.646:8090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.0.2835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c2d34e9a9 code=0x7ffc0000
[  194.522878][T11504] __nla_validate_parse: 1 callbacks suppressed
[  194.522900][T11504] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2842'.
[  194.604723][T11513] loop2: detected capacity change from 0 to 2048
[  194.635267][T11513] EXT4-fs (loop2): shut down requested (0)
[  194.674464][T11522] loop0: detected capacity change from 0 to 1024
[  194.684955][T11522] EXT4-fs: Ignoring removed orlov option
[  194.916918][T11473] syz.3.2839 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  194.931172][T11473] CPU: 0 UID: 0 PID: 11473 Comm: syz.3.2839 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  194.931254][T11473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  194.931271][T11473] Call Trace:
[  194.931278][T11473]  <TASK>
[  194.931288][T11473]  __dump_stack+0x1d/0x30
[  194.931315][T11473]  dump_stack_lvl+0xe8/0x140
[  194.931340][T11473]  dump_stack+0x15/0x1b
[  194.931356][T11473]  dump_header+0x81/0x220
[  194.931486][T11473]  oom_kill_process+0x334/0x3f0
[  194.931526][T11473]  out_of_memory+0x979/0xb80
[  194.931567][T11473]  try_charge_memcg+0x5e6/0x9e0
[  194.931691][T11473]  obj_cgroup_charge_pages+0xa6/0x150
[  194.931728][T11473]  __memcg_kmem_charge_page+0x9f/0x170
[  194.931788][T11473]  __alloc_frozen_pages_noprof+0x188/0x360
[  194.931836][T11473]  alloc_pages_mpol+0xb3/0x250
[  194.931928][T11473]  alloc_pages_noprof+0x90/0x130
[  194.931968][T11473]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  194.932053][T11473]  __kvmalloc_node_noprof+0x30f/0x4e0
[  194.932081][T11473]  ? ip_set_alloc+0x1f/0x30
[  194.932111][T11473]  ? ip_set_alloc+0x1f/0x30
[  194.932223][T11473]  ? hash_netiface_create+0x21b/0x740
[  194.932264][T11473]  ? __kmalloc_cache_noprof+0x189/0x320
[  194.932295][T11473]  ip_set_alloc+0x1f/0x30
[  194.932350][T11473]  hash_netiface_create+0x282/0x740
[  194.932403][T11473]  ? __pfx_hash_netiface_create+0x10/0x10
[  194.932446][T11473]  ip_set_create+0x3c9/0x960
[  194.932546][T11473]  ? __nla_parse+0x40/0x60
[  194.932573][T11473]  nfnetlink_rcv_msg+0x4c6/0x590
[  194.932625][T11473]  ? selinux_capable+0x1f9/0x270
[  194.932699][T11473]  netlink_rcv_skb+0x120/0x220
[  194.932735][T11473]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  194.932773][T11473]  nfnetlink_rcv+0x16b/0x1690
[  194.932813][T11473]  ? __kfree_skb+0x109/0x150
[  194.932851][T11473]  ? nlmon_xmit+0x4f/0x60
[  194.932871][T11473]  ? consume_skb+0x49/0x150
[  194.932908][T11473]  ? nlmon_xmit+0x4f/0x60
[  194.932984][T11473]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  194.933030][T11473]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  194.933062][T11473]  ? __dev_queue_xmit+0x182/0x1fb0
[  194.933131][T11473]  ? ref_tracker_free+0x37d/0x3e0
[  194.933222][T11473]  ? __netlink_deliver_tap+0x4dc/0x500
[  194.933261][T11473]  netlink_unicast+0x5a8/0x680
[  194.933302][T11473]  netlink_sendmsg+0x58b/0x6b0
[  194.933338][T11473]  ? __pfx_netlink_sendmsg+0x10/0x10
[  194.933406][T11473]  __sock_sendmsg+0x145/0x180
[  194.933431][T11473]  ____sys_sendmsg+0x31e/0x4e0
[  194.933560][T11473]  ___sys_sendmsg+0x17b/0x1d0
[  194.933623][T11473]  __x64_sys_sendmsg+0xd4/0x160
[  194.933673][T11473]  x64_sys_call+0x2999/0x2fb0
[  194.933749][T11473]  do_syscall_64+0xd2/0x200
[  194.933773][T11473]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  194.933806][T11473]  ? clear_bhb_loop+0x40/0x90
[  194.933836][T11473]  ? clear_bhb_loop+0x40/0x90
[  194.933865][T11473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.933887][T11473] RIP: 0033:0x7f8489dce9a9
[  194.933907][T11473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.933930][T11473] RSP: 002b:00007f848842f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  194.933954][T11473] RAX: ffffffffffffffda RBX: 00007f8489ff5fa0 RCX: 00007f8489dce9a9
[  194.933971][T11473] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 000000000000000a
[  194.934037][T11473] RBP: 00007f8489e50d69 R08: 0000000000000000 R09: 0000000000000000
[  194.934049][T11473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  194.934061][T11473] R13: 0000000000000000 R14: 00007f8489ff5fa0 R15: 00007ffc9be633a8
[  194.934081][T11473]  </TASK>
[  194.934088][T11473] memory: usage 307200kB, limit 307200kB, failcnt 1442
[  195.293675][T11473] memory+swap: usage 311496kB, limit 9007199254740988kB, failcnt 0
[  195.301776][T11473] kmem: usage 307124kB, limit 9007199254740988kB, failcnt 0
[  195.309176][T11473] Memory cgroup stats for /syz3:
[  195.329349][T11473] cache 0
[  195.337321][T11473] rss 0
[  195.340154][T11473] shmem 0
[  195.343242][T11473] mapped_file 0
[  195.346728][T11473] dirty 0
[  195.349803][T11473] writeback 0
[  195.353118][T11473] workingset_refault_anon 284
[  195.357901][T11473] workingset_refault_file 1032
[  195.362806][T11473] swap 4399104
[  195.366245][T11473] swapcached 4096
[  195.369994][T11473] pgpgin 205098
[  195.373474][T11473] pgpgout 205096
[  195.377152][T11473] pgfault 200193
[  195.380806][T11473] pgmajfault 212
[  195.384391][T11473] inactive_anon 0
[  195.388050][T11473] active_anon 4096
[  195.391843][T11473] inactive_file 0
[  195.395493][T11473] active_file 4096
[  195.399313][T11473] unevictable 0
[  195.402823][T11473] hierarchical_memory_limit 314572800
[  195.408261][T11473] hierarchical_memsw_limit 9223372036854771712
[  195.414476][T11473] total_cache 0
[  195.418163][T11473] total_rss 0
[  195.421479][T11473] total_shmem 0
[  195.424996][T11473] total_mapped_file 0
[  195.429175][T11473] total_dirty 0
[  195.432664][T11473] total_writeback 0
[  195.436516][T11473] total_workingset_refault_anon 284
[  195.441731][T11473] total_workingset_refault_file 1032
[  195.447113][T11473] total_swap 4399104
[  195.451090][T11473] total_swapcached 4096
[  195.455353][T11473] total_pgpgin 205098
[  195.459367][T11473] total_pgpgout 205096
[  195.463452][T11473] total_pgfault 200193
[  195.467603][T11473] total_pgmajfault 212
[  195.471685][T11473] total_inactive_anon 0
[  195.476016][T11473] total_active_anon 4096
[  195.480283][T11473] total_inactive_file 0
[  195.484529][T11473] total_active_file 4096
[  195.488921][T11473] total_unevictable 0
[  195.492927][T11473] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.2839,pid=11471,uid=0
[  195.508007][T11473] Memory cgroup out of memory: Killed process 11471 (syz.3.2839) total-vm:100104kB, anon-rss:1068kB, file-rss:26428kB, shmem-rss:0kB, UID:0 pgtables:136kB oom_score_adj:1000
[  195.972557][T11559] loop0: detected capacity change from 0 to 2048
[  196.025579][T11559] EXT4-fs (loop0): shut down requested (0)
[  196.067588][T11557] lo speed is unknown, defaulting to 1000
[  196.168611][T11557] chnl_net:caif_netlink_parms(): no params data found
[  196.183751][T11583] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2870'.
[  196.249764][T11557] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.257083][T11557] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.266729][T11557] bridge_slave_0: entered allmulticast mode
[  196.273678][T11557] bridge_slave_0: entered promiscuous mode
[  196.287427][T11557] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.294580][T11557] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.302227][T11557] bridge_slave_1: entered allmulticast mode
[  196.309271][T11557] bridge_slave_1: entered promiscuous mode
[  196.430551][ T7874] $H� (unregistering): (slave 
3
0
): Releasing backup interface
[  196.441571][ T7874] $H� (unregistering): Released all slaves
[  196.453651][ T7874] bond1 (unregistering): Released all slaves
[  196.464335][ T7874] bond0 (unregistering): Released all slaves
[  196.500794][T11557] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  196.522751][T11557] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  196.535632][ T7874] tipc: Disabling bearer <udp:syz2>
[  196.540929][ T7874] tipc: Left network mode
[  196.582393][T11557] team0: Port device team_slave_0 added
[  196.598340][T11557] team0: Port device team_slave_1 added
[  196.612238][ T7874] hsr_slave_0: left promiscuous mode
[  196.619250][ T7874] hsr_slave_1: left promiscuous mode
[  196.669789][ T7874] team0 (unregistering): Port device team_slave_1 removed
[  196.682426][ T7874] team0 (unregistering): Port device team_slave_0 removed
[  196.702132][T11619] loop3: detected capacity change from 0 to 2048
[  196.721514][T11619] EXT4-fs mount: 10 callbacks suppressed
[  196.721533][T11619] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.761973][T11557] batman_adv: batadv0: Adding interface: batadv_slave_0
[  196.769021][T11557] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  196.795198][T11557] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  196.806849][T11557] batman_adv: batadv0: Adding interface: batadv_slave_1
[  196.813873][T11557] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  196.839854][T11557] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  196.884337][T11626] loop6: detected capacity change from 0 to 2048
[  196.908893][T11557] hsr_slave_0: entered promiscuous mode
[  196.915064][T11557] hsr_slave_1: entered promiscuous mode
[  196.921412][T11557] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  196.922815][T11362] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.929285][T11557] Cannot create hsr debugfs directory
[  196.941190][T11626] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.957454][T11626] EXT4-fs (loop6): shut down requested (0)
[  196.980255][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.073366][ T7874] IPVS: stop unused estimator thread 0...
[  197.279406][T11557] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  197.302426][T11557] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  197.316903][T11557] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  197.324731][T11653] loop3: detected capacity change from 0 to 2048
[  197.331785][T11655] loop6: detected capacity change from 0 to 1024
[  197.337476][T11557] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  197.350168][T11655] EXT4-fs: Ignoring removed orlov option
[  197.351233][T11661] netlink: 'syz.5.2901': attribute type 1 has an invalid length.
[  197.365960][T11655] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.377111][T11661] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  197.389832][T11661] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  197.398756][T11653] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.418161][T11653] EXT4-fs (loop3): shut down requested (0)
[  197.441715][T11557] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.456153][T11557] 8021q: adding VLAN 0 to HW filter on device team0
[  197.473026][ T7874] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.480231][ T7874] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.490849][T11362] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.508649][ T7872] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.515813][ T7872] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.733140][T11557] 8021q: adding VLAN 0 to HW filter on device batadv0
[  197.850574][T11557] veth0_vlan: entered promiscuous mode
[  197.861989][T11557] veth1_vlan: entered promiscuous mode
[  197.887787][T11557] veth0_macvtap: entered promiscuous mode
[  197.895766][T11557] veth1_macvtap: entered promiscuous mode
[  197.909565][T11557] batman_adv: batadv0: Interface activated: batadv_slave_0
[  197.921777][T11557] batman_adv: batadv0: Interface activated: batadv_slave_1
[  197.932022][T11557] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  197.940904][T11557] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  197.949866][T11557] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.958835][T11557] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  198.013835][T11706] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  198.023047][T11706] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  198.233067][ T8895] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.273743][T11708] loop0: detected capacity change from 0 to 2048
[  198.290917][T11708] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.318534][ T3892] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.962310][T11739] loop3: detected capacity change from 0 to 1024
[  198.966274][T11739] EXT4-fs: Ignoring removed orlov option
[  198.991885][T11739] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.491489][   T29] kauditd_printk_skb: 250 callbacks suppressed
[  199.491503][   T29] audit: type=1400 audit(2000000016.454:8341): avc:  denied  { module_request } for  pid=11745 comm="syz.6.2924" kmod="netdev-bridge0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  199.577592][   T29] audit: type=1400 audit(2000000016.501:8342): avc:  denied  { sys_module } for  pid=11745 comm="syz.6.2924" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  199.666011][   T29] audit: type=1400 audit(2000000016.613:8343): avc:  denied  { name_bind } for  pid=11745 comm="syz.6.2924" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  199.732025][   T29] audit: type=1400 audit(2000000016.641:8344): avc:  denied  { create } for  pid=11750 comm="syz.5.2925" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  199.792002][T11742] ==================================================================
[  199.800152][T11742] BUG: KCSAN: data-race in __writeback_single_inode / xas_set_mark
[  199.808092][T11742] 
[  199.810443][T11742] write to 0xffff888106f6e9a4 of 4 bytes by task 11739 on cpu 1:
[  199.818196][T11742]  xas_set_mark+0x12b/0x140
[  199.822830][T11742]  __folio_start_writeback+0x1dd/0x440
[  199.828335][T11742]  ext4_bio_write_folio+0x5ad/0x9f0
[  199.833576][T11742]  mpage_submit_folio+0xe4/0x170
[  199.838568][T11742]  mpage_process_page_bufs+0x39b/0x4a0
[  199.844174][T11742]  mpage_prepare_extent_to_map+0x741/0xaa0
[  199.850025][T11742]  ext4_do_writepages+0xa1a/0x21c0
[  199.855171][T11742]  ext4_writepages+0x176/0x300
[  199.859974][T11742]  do_writepages+0x1c3/0x310
[  199.864601][T11742]  file_write_and_wait_range+0x156/0x2c0
[  199.870276][T11742]  generic_buffers_fsync_noflush+0x45/0x120
[  199.876227][T11742]  ext4_sync_file+0x1ab/0x690
[  199.880938][T11742]  vfs_fsync_range+0x10d/0x130
[  199.885751][T11742]  ext4_buffered_write_iter+0x34f/0x3c0
[  199.891340][T11742]  ext4_file_write_iter+0x383/0xf00
[  199.896572][T11742]  iter_file_splice_write+0x5f2/0x970
[  199.902013][T11742]  direct_splice_actor+0x156/0x2a0
[  199.907186][T11742]  splice_direct_to_actor+0x312/0x680
[  199.912604][T11742]  do_splice_direct+0xda/0x150
[  199.917415][T11742]  do_sendfile+0x380/0x650
[  199.921861][T11742]  __x64_sys_sendfile64+0x105/0x150
[  199.927084][T11742]  x64_sys_call+0xb39/0x2fb0
[  199.931809][T11742]  do_syscall_64+0xd2/0x200
[  199.936427][T11742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.942358][T11742] 
[  199.944702][T11742] read to 0xffff888106f6e9a4 of 4 bytes by task 11742 on cpu 0:
[  199.952371][T11742]  __writeback_single_inode+0x1f9/0x7c0
[  199.957960][T11742]  writeback_single_inode+0x167/0x3e0
[  199.963370][T11742]  sync_inode_metadata+0x5b/0x90
[  199.968338][T11742]  generic_buffers_fsync_noflush+0xd9/0x120
[  199.974274][T11742]  ext4_sync_file+0x1ab/0x690
[  199.979076][T11742]  vfs_fsync_range+0x10d/0x130
[  199.983885][T11742]  ext4_buffered_write_iter+0x34f/0x3c0
[  199.989500][T11742]  ext4_file_write_iter+0x383/0xf00
[  199.994733][T11742]  iter_file_splice_write+0x5f2/0x970
[  200.000145][T11742]  direct_splice_actor+0x156/0x2a0
[  200.005297][T11742]  splice_direct_to_actor+0x312/0x680
[  200.010721][T11742]  do_splice_direct+0xda/0x150
[  200.015532][T11742]  do_sendfile+0x380/0x650
[  200.019986][T11742]  __x64_sys_sendfile64+0x105/0x150
[  200.025212][T11742]  x64_sys_call+0xb39/0x2fb0
[  200.029825][T11742]  do_syscall_64+0xd2/0x200
[  200.034347][T11742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.040268][T11742] 
[  200.042608][T11742] value changed: 0x0a000021 -> 0x04000021
[  200.048337][T11742] 
[  200.050673][T11742] Reported by Kernel Concurrency Sanitizer on:
[  200.056864][T11742] CPU: 0 UID: 0 PID: 11742 Comm: syz.3.2922 Not tainted 6.16.0-rc7-syzkaller #0 PREEMPT(voluntary) 
[  200.067649][T11742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  200.077805][T11742] ==================================================================
[  200.114386][T11362] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.