last executing test programs:

8m20.488071272s ago: executing program 2 (id=41):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32=<r0=>0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000004000000040000000100000000000000", @ANYRES32=0x1], 0x50)
r2 = socket$kcm(0xa, 0x5, 0x0)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2282, &(0x7f0000000040))
r3 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x2, 0x2, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f00000005c0)='\x00]', 0x2}], 0x1}, 0x64)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r4, 0x84, 0x1, &(0x7f0000000040)={0x0, 0xa, 0xbd1f, 0x5e0b, 0x1, 0x2a}, 0x14)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES16=r0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESOCT=r2], 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r6, 0x0, 0xffffffffffffffff}, 0x18)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000700)=ANY=[@ANYBLOB="020300030f000000000700000000000005000900e000000001d78771b90bd8a3b4914783c58777003d5b9538a9d03e6e9bfdac550000000003000600000000000200000000000000000000000000000002000100000000000000030d00000000030005000000000002"], 0x78}, 0x1, 0x7}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
setsockopt$sock_attach_bpf(r3, 0x84, 0x1e, &(0x7f0000000240), 0x4)
r8 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x8916, &(0x7f0000000000)={r8})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x8936, &(0x7f0000000000)={r8})
r9 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x2000, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff1d, 0x0, 0x0, 0x10, 0x7}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r10}, 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYRES64=r10, @ANYRES32=r9, @ANYRES16, @ANYRES32, @ANYRES64=r9], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r11, 0x0, 0x1034}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
getpeername$tipc(0xffffffffffffffff, 0x0, 0x0)
r12 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup/syz0\x00', 0x200002, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000340)={r11, r12, 0x0, 0x0, @void}, 0x10)

8m19.275275617s ago: executing program 2 (id=47):
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
ftruncate(r1, 0x65f1bdc3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180080000200edff0000000004000000850000000f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x26, &(0x7f0000000000))
syz_mount_image$iso9660(&(0x7f0000001080), &(0x7f00000010c0)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='block=0x0000c00,overriderockperm,nocompress,\x00'/54], 0x1, 0x1045, &(0x7f0000001140)="$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")
syz_open_dev$sg(&(0x7f00000002c0), 0xe6, 0x4a602)
r5 = socket$kcm(0x11, 0x200000000000002, 0x300)
r6 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000000000850000002e000000b70900000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r5, 0x1, 0x32, &(0x7f0000000d00)=r7, 0x4)
syz_emit_ethernet(0x36, &(0x7f0000000180)={@local, @link_local={0x17, 0x80, 0xc2, 0x6, 0x5, 0xe}, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "182325", 0x0, 0x2c, 0x0, @remote, @local}}}}, 0x0)

8m18.395997913s ago: executing program 2 (id=52):
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000002c0)='sched_kthread_work_queue_work\x00', r3}, 0x10)
fcntl$getownex(r1, 0x10, &(0x7f0000000340)={0x0, <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x40, 0x10, 0x581, 0x2, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x4d014}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bond={{0x9}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BOND_DOWNDELAY={0x8, 0x1f, 0x7fffffff}, @IFLA_BOND_ARP_IP_TARGET={0x4}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20004003}, 0x0)
rt_sigqueueinfo(r4, 0x1f, &(0x7f0000000540)={0x29, 0x676, 0x6})
socketpair(0xf, 0x3, 0x9, &(0x7f00000001c0))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x3, &(0x7f0000000180)=[{0x4c}, {0x4d}, {0x6}]})
r6 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000200)={0x0, r0}, 0x8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x1, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000ff1f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x22, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000006c0)='kfree\x00', r7}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@abort}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@nogrpid}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
capset(0x0, &(0x7f0000000280)={0x0, 0x0, 0x10000, 0xfffffffd})
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x1e2e81)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000000780)={0xfffffffe, 0x0, 0x0, 'queue0\x00', 0x48})
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r8, 0x40bc5311, &(0x7f0000000100)={0x80, 0x1, 'client1\x00', 0xffffffff80000004, "00000000ffffffe3", "e4a18560d99f00", 0x800000})
write$sndseq(r8, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4)
r9 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r9, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x1}, 0x8)

8m17.235494903s ago: executing program 2 (id=57):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x51c, &(0x7f0000002a00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x105042, 0x1fe)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8004, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x0)

8m16.255629322s ago: executing program 2 (id=58):
syz_emit_ethernet(0x33, 0x0, 0x0)
r0 = socket(0x200000000000011, 0x2, 0x1)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x6a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa424e1aa2e0d4080045000014"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x43}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

8m14.536356405s ago: executing program 2 (id=68):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x1c, 0x3, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

8m13.684974022s ago: executing program 32 (id=68):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x1c, 0x3, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

7m28.015697555s ago: executing program 6 (id=239):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f68737200000000140001"], 0xfc}}, 0x0)

7m27.538555034s ago: executing program 6 (id=245):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xb, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
socket(0x10, 0x3, 0x9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000010000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000240000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000005600)='sys_enter\x00', r3, 0x0, 0x2}, 0x18)
pipe(&(0x7f0000000080))
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[], 0x48)

7m27.265777033s ago: executing program 6 (id=247):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
socket(0x10, 0x3, 0x9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000010000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000005600)='sys_enter\x00', r2, 0x0, 0x2}, 0x18)
pipe(&(0x7f0000000080))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8000}, 0x0)
pipe2(0x0, 0x80c80)
rt_sigprocmask(0x3, 0x0, &(0x7f0000000240), 0xfea4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000), 0x10, 0x0}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[], 0x48)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r3, 0x5607, 0x2c)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
ioctl$TIOCL_SETVESABLANK(r5, 0x560e, &(0x7f0000000140))
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$VT_ACTIVATE(r6, 0x5606, 0x4)
ioctl$TIOCL_BLANKSCREEN(r6, 0x541c, &(0x7f0000000000))
set_tid_address(&(0x7f0000000040))
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8923, &(0x7f00000000c0)={'bond_slave_0\x00', @random="0137013710ff"})
ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f0000000080)={0xd, 0x8, 0x2, 0x0, 0x0, 0x1000})
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)

7m25.921054407s ago: executing program 6 (id=256):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x51c, &(0x7f0000002a00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x105042, 0x1fe)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(0x0, 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8004, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x0)

7m25.371972986s ago: executing program 6 (id=262):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00>'], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
r0 = io_uring_setup(0x53b5, 0x0)
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000000000), 0x1)

7m24.852209764s ago: executing program 6 (id=266):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'tunl0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a003806c3d442463d98f8e407b02e89933dbe170e82b50388fe21477a6c916b1cf51aa6982379110d6c48f0b09454d1c9c248a4cce12c06420cb11833e13ba1c3574a325e0614f8d632a0e2763d3a1a1e0f6c30d825e1ae8afb976eedd628768acd3b79a8d9652505cb44538e81bd7adf98d0e6fd8e1a277d81e0245cff5ee5b0cf64d07f083f162a10ce335de1efad4b74ef735f6a167af3af50f6d8c8e96d0946786a6199ebe63bab3e8b63570ded359dd45e42b3f8c891467ec5738f166cfb4996d0b6e8d79f117063882f74a79951", @ANYRES32=r3, @ANYBLOB], 0x40}}, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r8}, 0x10)
r9 = socket$xdp(0x2c, 0x3, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$XDP_RX_RING(r9, 0x11b, 0x2, &(0x7f0000000040)=0x1000000, 0x4)
writev(r10, &(0x7f0000000100)=[{&(0x7f0000000180)="480000001400190d7ebdeb75fd0d9c562c84d8c033aae421962ea6ff3cd3c461ebe430a2ed7a80ffe0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6", 0x48}], 0x1)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_io_uring_setup(0x2f90, &(0x7f0000000180)={0x0, 0xc383, 0x3010, 0x2, 0x200004}, &(0x7f0000000100), &(0x7f0000000140))
r12 = epoll_create(0xaf2)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000540)=<r13=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000580)=<r14=>0x0)
sendmsg$NFC_CMD_DEP_LINK_UP(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000400), 0xc, &(0x7f0000000640)={&(0x7f00000004c0)=ANY=[@ANYBLOB="c7d30000", @ANYRES16=0x0, @ANYBLOB="040027bd7000fddbdf250400000008000100", @ANYRES32=0x0, @ANYBLOB="05000a0000000000080004000000000005000a000100000008000100", @ANYRES32=0x0, @ANYRES64=r13, @ANYRES32=r13, @ANYBLOB="08000100", @ANYRES32=r14, @ANYBLOB="05000a000100000005000a0001000000"], 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010)
epoll_pwait2(r12, &(0x7f0000000280)=[{}], 0x1, 0x0, 0x0, 0x0)

7m23.823719993s ago: executing program 33 (id=266):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'tunl0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a003806c3d442463d98f8e407b02e89933dbe170e82b50388fe21477a6c916b1cf51aa6982379110d6c48f0b09454d1c9c248a4cce12c06420cb11833e13ba1c3574a325e0614f8d632a0e2763d3a1a1e0f6c30d825e1ae8afb976eedd628768acd3b79a8d9652505cb44538e81bd7adf98d0e6fd8e1a277d81e0245cff5ee5b0cf64d07f083f162a10ce335de1efad4b74ef735f6a167af3af50f6d8c8e96d0946786a6199ebe63bab3e8b63570ded359dd45e42b3f8c891467ec5738f166cfb4996d0b6e8d79f117063882f74a79951", @ANYRES32=r3, @ANYBLOB], 0x40}}, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r8}, 0x10)
r9 = socket$xdp(0x2c, 0x3, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$XDP_RX_RING(r9, 0x11b, 0x2, &(0x7f0000000040)=0x1000000, 0x4)
writev(r10, &(0x7f0000000100)=[{&(0x7f0000000180)="480000001400190d7ebdeb75fd0d9c562c84d8c033aae421962ea6ff3cd3c461ebe430a2ed7a80ffe0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6", 0x48}], 0x1)
sendmsg$IPVS_CMD_NEW_DAEMON(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0100000000000000000009000000440003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x58}}, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_io_uring_setup(0x2f90, &(0x7f0000000180)={0x0, 0xc383, 0x3010, 0x2, 0x200004}, &(0x7f0000000100), &(0x7f0000000140))
r12 = epoll_create(0xaf2)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000540)=<r13=>0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000580)=<r14=>0x0)
sendmsg$NFC_CMD_DEP_LINK_UP(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000400), 0xc, &(0x7f0000000640)={&(0x7f00000004c0)=ANY=[@ANYBLOB="c7d30000", @ANYRES16=0x0, @ANYBLOB="040027bd7000fddbdf250400000008000100", @ANYRES32=0x0, @ANYBLOB="05000a0000000000080004000000000005000a000100000008000100", @ANYRES32=0x0, @ANYRES64=r13, @ANYRES32=r13, @ANYBLOB="08000100", @ANYRES32=r14, @ANYBLOB="05000a000100000005000a0001000000"], 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010)
epoll_pwait2(r12, &(0x7f0000000280)=[{}], 0x1, 0x0, 0x0, 0x0)

7m22.363838607s ago: executing program 0 (id=280):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x129c81, 0x0)
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f00000000c0)={0x0, 0x0, 0x6, 0x6, 0x1, "42341f9b1000007e4f00"})
r2 = syz_open_pts(r1, 0x80000)
splice(r2, 0x0, r0, 0x0, 0x3, 0xb)

7m22.091156388s ago: executing program 0 (id=283):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000180000003d030100000000009500f000000000006926000000000000bf67000000000000560602000f020000d706000020000000620a04ff0ee60000bf250000000000002d350000000000006507000002080000070700004c0000001f75000000000000bf54000000000000070400000400f9ffcd35010000000000ce040000000000001c000000000000009500000000000000db13d5d8b741f2cdaabc8383c8f56bb5df3083d20f8c2bf30400000081"], 0x0}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000280)={@val={0x0, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0xb, 0x0, 0x500, 0x0, 0x1c, {[@window={0xb, 0x3}, @timestamp={0x5, 0x2, 0xfffe, 0x88000}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0x4e)

7m20.67587775s ago: executing program 0 (id=288):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xb, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
socket(0x10, 0x3, 0x9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000010000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000005600)='sys_enter\x00', r3, 0x0, 0x2}, 0x18)
pipe(&(0x7f0000000080))
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[], 0x48)

7m20.416910653s ago: executing program 0 (id=290):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0), 0x1, 0x51c, &(0x7f0000002a00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x105042, 0x1fe)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(0x0, 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8004, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x200]})
open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x0)

7m19.931676802s ago: executing program 0 (id=293):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB=' \x00\x00\x00>'], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
r0 = io_uring_setup(0x53b5, &(0x7f0000000580)={0x0, 0xbf6b, 0x1000, 0x2, 0x30f})
io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, 0x0, 0x0)

7m16.551908434s ago: executing program 0 (id=313):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x20004003}, 0x0)

7m15.310768279s ago: executing program 34 (id=313):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x20004003}, 0x0)

3m33.510023909s ago: executing program 8 (id=1738):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000003c0)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
connect$unix(0xffffffffffffffff, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001500)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f1c46b7b31afdc1338d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade", 0x55}], 0x1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4010)

3m30.477396124s ago: executing program 8 (id=1745):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x4, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
statfs(0x0, 0x0)

3m28.508376345s ago: executing program 8 (id=1759):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000005c0)='\"', 0x1, 0x4fed0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000100)={0x8, 0x100000001, 0x4, 0x5})
sendfile(r0, r0, 0x0, 0xe3aa6ea)

3m28.283931368s ago: executing program 8 (id=1763):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a31000000000800054000000004"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000800)="3aae1baf930b4569b9ddef9797ffd935c7d80e6466b3e4e62dc9603583f5d4b61fbc65b6ac744d7319535e75bf552062e4cfde1ba7ce29263322e18ea9740aa82ca692f123993e57cda00d2b1f4e799bd41e3f76258180fa91a42aaa8b1ebc4e0ea8fb12f2c71e6e5bc57a8e91f254005514721d93c13c5606ae1fea7f31f558d562bd5a8dfb0b9fed873efa221fccffa847cd374c92e6cbb03e6a9de890ce323f000000abcc6c01326d588495b7c1a7db31ec4129e6336f26bb9e0b7552af3cd2d5dda1632799bbc98425c433384d8a8e4071ff39a36dfdfdf05af35a4ddd340cfecd7ec935f4ce7d3e851583ba1cf53a90a7f7bce5703de57ce93ddef7849b30a01de0637e6d5e507b801d32e582e0c2d564539ebfc84c098a23e765552767b122885fb1629e9c180be47da7931bd125b80de15aab0c56a2edf2e0483b87f5ab299dc046076203dea10ccbfc631d5bf4a87ce67004519f248f086346ce6a8a9d181789a59f81d9b7f6781daac3e229914b8b8998c15c3b6302a519331cb05995bc60b7cb872dd3b5b43331c77c5d72e21f7bd2b1a915ff3204e3f20d3a20b22d6a58155b5a4ebf6d1d1cd90c656ecada531c07ff91deb3efa91762cdecfbcc43553750f22ac5c18cc5e8b6f790c2f4e6373af9f98d10e6df49ff8e5cbcbd68e11ed0b967add11410dc2e34f08dea658eb95d4d1153b4c6093192a340eb30fcc71619888c6486746a049585d249efb96b9cace83320b8f96b40ebe3a9a788d05a053380d1026b9434df87a3a387549bcabe88684c4dbf0da9a5212f3dbc8d1dff240856691243b203d7edd4d3cc89a38a6c80fdb1229a01044af7aaecb20d5570ebf24b30bbc6dfc3f70d85cd9f0d60ebd8fedd161d199d9997a0e2d18d1c99bc7158564e0ddb4673055de196535d706d142e1dc7d404583923cb1b286cfc5418884ac7e605d93652dc48ff690894405a0b6abc3c4d0f6a16c0a95c0508bd7eeffcd1da0b17f7701448658864b429e9472edfeffbf34d6e7c78f4aa73c0", 0x2de}, {&(0x7f0000000340)="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", 0x249}, {&(0x7f00000006c0)="5be08105437c98b91b9455046f57b5fc090014bde2bb01000000000000001a7838d859207067c30aa7352abbdf98e9bf033a3184a11e84639d3b9164d9c5d729f3dd409d39ff041e657c8df70e1607d58c863d5f323f6d5cf367", 0x5a}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

3m27.761585524s ago: executing program 8 (id=1767):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003880)=[{{&(0x7f0000000280)={0xa, 0x4e20, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, 0x805}, 0x1c, &(0x7f0000000600)=[{&(0x7f0000000340)='^', 0x1}], 0x1}}, {{&(0x7f0000000840)={0xa, 0x4e20, 0xa, @private2={0xfc, 0x2, '\x00', 0x1}, 0x5}, 0x1c, &(0x7f0000001d80)=[{&(0x7f00000002c0)="7f", 0x1}], 0x1}}], 0x2, 0x4)
shutdown(0xffffffffffffffff, 0x1)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000100)=@assoc_value, &(0x7f0000000200)=0x8)

3m27.464289689s ago: executing program 8 (id=1768):
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x8080, &(0x7f00000000c0)={0x2, 0x4e21, @empty}, 0x10)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
sendmmsg$inet(r0, &(0x7f0000003100)=[{{&(0x7f0000000100)={0x2, 0x4e21, @empty}, 0x10, 0x0}}, {{&(0x7f0000000d00)={0x2, 0x4e21, @empty}, 0x10, 0x0}}], 0x2, 0x927c408517621174)

3m12.168442656s ago: executing program 35 (id=1768):
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x8080, &(0x7f00000000c0)={0x2, 0x4e21, @empty}, 0x10)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
sendmmsg$inet(r0, &(0x7f0000003100)=[{{&(0x7f0000000100)={0x2, 0x4e21, @empty}, 0x10, 0x0}}, {{&(0x7f0000000d00)={0x2, 0x4e21, @empty}, 0x10, 0x0}}], 0x2, 0x927c408517621174)

36.562855782s ago: executing program 5 (id=2717):
r0 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2082)
fcntl$dupfd(r0, 0x0, r0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000180)={[{@usrjquota}, {@abort}, {@nombcache}, {@noload}, {@jqfmt_vfsv0}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@oldalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000000}}, {@bsdgroups}, {@bh}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
socket$kcm(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
r1 = socket$netlink(0x10, 0x3, 0x0)
pipe(&(0x7f0000000080))
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

32.6596035s ago: executing program 5 (id=2726):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/16, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010800000000000000000b00000008000300", @ANYRES32=r3, @ANYBLOB="0a000600080211000000000038005080080003000dac0f0011000100cabee339084eeef109002471f400000008000700"], 0x60}}, 0x0)

31.892341292s ago: executing program 5 (id=2730):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$inet6_udp_int(r0, 0x11, 0x65, 0x0, &(0x7f0000000080))

31.552245021s ago: executing program 5 (id=2733):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000180), 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x10500, 0x0)
r1 = syz_io_uring_setup(0xec4, &(0x7f00000003c0)={0x0, 0xfffffffc, 0x2, 0x3, 0x34b}, &(0x7f0000000500)=<r2=>0x0, &(0x7f0000000600))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r1, 0x0, 0xe876, 0x3, &(0x7f0000000040)={[0xfffffffffffffffc]}, 0x8)

30.728214618s ago: executing program 5 (id=2737):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x880, &(0x7f00000001c0)=ANY=[@ANYBLOB='shortname=lower,iocharset=iso8859-1,fmask=00000000000000000000066,uni_xlate=1,uni_xlate=0,fmask=00000000000000000000003,uid=', @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=0,utf8=1,check=strict,nonumtail=0,rodir,errors=continue,shortname=lower,umaQk=00000000000000000000007,rodir,sys_immutable,\x00'], 0x4, 0x2dc, &(0x7f0000000bc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
ioctl$FIBMAP(r0, 0x1, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, 0x0)
setxattr$security_capability(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0, 0x0, 0x2)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000865000/0x3000)=nil, 0x3000}, 0x1})
r1 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x8008af00, &(0x7f0000000000)={@local})

29.897613166s ago: executing program 5 (id=2740):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=<r7=>r5, @ANYBLOB="010000000000000000000200000014000200626f6e643000000000000000000000000900010073797ab000"], 0x40}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r8)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b00)=ANY=[@ANYRES8=r7, @ANYRES16=r9, @ANYBLOB="01002dbd7000fedbdf252c000000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x20048881}, 0x2000c800)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r10}, 0x10)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x41, 0x2)
r11 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r11, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd31875bd42a21f5b99be588e4e66bed86d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222180002bc55704cdb72b4b996ed831f3b802449db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb630e0024b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0460c25311963884e6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(r11, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x13, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="00000000000000000000000009180100002020702500000000002020207b1af8ff00000000bfa100000000000007010010f8ffffffb702000000000000b7030000000400008500000072000000956ae7696f11158861bfc43c8ff40d4cb8d438d3253355909a47c79b5aa6d42b4f588f414c93b0db23269cd5a99ab64417ebb2fd6cf0ef8984973429e726803dc2db5925a5330ae4902a6e7d000ae98429aa63e449d22e5c4745096f9e2b6f315e4db7910b07fcd2b039b79c12106457ab"], &(0x7f0000000900)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xe, 0x1e, &(0x7f0000000700)=ANY=[@ANYBLOB="180000000100008000000000f5ffffff182f00000a0000000000000000000000850000009600000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000009000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000018490000040000000000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000080000008500000006000000184a0000feffffff00000000000000009500000000000000"], &(0x7f0000000340)='GPL\x00', 0x5, 0x5c, &(0x7f00000004c0)=""/92, 0x8a3115e090f9284f, 0x0, '\x00', 0x0, @fallback=0xfa2de50c6aef57d2, 0xffffffffffffffff, 0x8, &(0x7f0000000680)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000800)={0x2, 0x3, 0x5, 0x7}, 0x10, 0x0, r1, 0x6, &(0x7f0000000840)=[r0, r0, r0, r2, r2, r2, r3, r2], &(0x7f0000000880)=[{0x4, 0x1, 0x8, 0x9}, {0x5, 0x5, 0x3, 0x5}, {0x2, 0x4, 0x7, 0x7}, {0x5, 0x5, 0x1, 0x3}, {0x3, 0x5, 0xd, 0xa}, {0x5, 0x2, 0x2}], 0x10, 0x3c}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100))
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f00000000c0), 0x4)
shmctl$SHM_UNLOCK(0x0, 0xc)

20.91928144s ago: executing program 7 (id=2743):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
write$cgroup_subtree(r1, 0x0, 0x9)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r2, 0xaf01, 0x0)

15.2622897s ago: executing program 3 (id=2756):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000cc0)={'syz1\x00', {}, 0x3, [0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f9, 0x100, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, 0x3, 0xe, 0x721a2d63, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x6], [0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x8, 0x7f, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x289, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0xa46, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x71, 0x0, 0x0, 0x0, 0xffffffff, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x5, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x3, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0xfffffffe], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000008, 0xc7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x10000, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffd, 0x400, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
ioctl$UI_DEV_DESTROY(r0, 0x5502)

13.555885664s ago: executing program 36 (id=2740):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r4, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=<r7=>r5, @ANYBLOB="010000000000000000000200000014000200626f6e643000000000000000000000000900010073797ab000"], 0x40}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r8)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b00)=ANY=[@ANYRES8=r7, @ANYRES16=r9, @ANYBLOB="01002dbd7000fedbdf252c000000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x20048881}, 0x2000c800)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r10}, 0x10)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x41, 0x2)
r11 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r11, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "5a77bd31875bd42a21f5b99be588e4e66bed86d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f6853772b21a100efb76cba37ff3111d6847e8b9398a646717af75fc008daefba68e6222180002bc55704cdb72b4b996ed831f3b802449db3a8ffff7d34171113d806726615380fe65a6a0a72e1ac2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb630e0024b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13f4e8bbf599394baea3a9ca1864f0460c25311963884e6b39905a9727d2001457df7be7e1aefe363590d1f600"})
ioctl$USBDEVFS_CLEAR_HALT(r11, 0xc0105502, &(0x7f0000000300)={0x1, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x13, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="00000000000000000000000009180100002020702500000000002020207b1af8ff00000000bfa100000000000007010010f8ffffffb702000000000000b7030000000400008500000072000000956ae7696f11158861bfc43c8ff40d4cb8d438d3253355909a47c79b5aa6d42b4f588f414c93b0db23269cd5a99ab64417ebb2fd6cf0ef8984973429e726803dc2db5925a5330ae4902a6e7d000ae98429aa63e449d22e5c4745096f9e2b6f315e4db7910b07fcd2b039b79c12106457ab"], &(0x7f0000000900)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xe, 0x1e, &(0x7f0000000700)=ANY=[@ANYBLOB="180000000100008000000000f5ffffff182f00000a0000000000000000000000850000009600000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000009000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000018490000040000000000000000000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000080000008500000006000000184a0000feffffff00000000000000009500000000000000"], &(0x7f0000000340)='GPL\x00', 0x5, 0x5c, &(0x7f00000004c0)=""/92, 0x8a3115e090f9284f, 0x0, '\x00', 0x0, @fallback=0xfa2de50c6aef57d2, 0xffffffffffffffff, 0x8, &(0x7f0000000680)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000800)={0x2, 0x3, 0x5, 0x7}, 0x10, 0x0, r1, 0x6, &(0x7f0000000840)=[r0, r0, r0, r2, r2, r2, r3, r2], &(0x7f0000000880)=[{0x4, 0x1, 0x8, 0x9}, {0x5, 0x5, 0x3, 0x5}, {0x2, 0x4, 0x7, 0x7}, {0x5, 0x5, 0x1, 0x3}, {0x3, 0x5, 0xd, 0xa}, {0x5, 0x2, 0x2}], 0x10, 0x3c}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100))
setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f00000000c0), 0x4)
shmctl$SHM_UNLOCK(0x0, 0xc)

11.931227472s ago: executing program 7 (id=2762):
openat$sndseq(0xffffffffffffff9c, 0x0, 0x40000)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNAPSHOT_PLATFORM_SUPPORT(r5, 0x330f, 0x4)

10.852478051s ago: executing program 4 (id=2766):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00'})
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, 0x0, 0x0)
sendmsg$inet_sctp(r3, 0x0, 0x40)
dup(r3)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x44080)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

10.375475771s ago: executing program 4 (id=2768):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0x401, 0x4)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=<r1=>0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x6}, 0x18)
syz_read_part_table(0x593, &(0x7f00000005c0)="$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")
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0xfc9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x18)
setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f0000000380)=0x20000, 0x4)
r7 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, 0x0, 0x0)
bind$xdp(r4, &(0x7f00000002c0)={0x2c, 0x4, r8, 0x30, r4}, 0x10)
bind$inet(r3, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'lblcr\x00', 0x15, 0x88, 0xc000067}, 0x2c)
quotactl$Q_SETQUOTA(0xffffffff80000802, &(0x7f0000000000)=@rnullb, r1, &(0x7f00000001c0)={0x3, 0xe20, 0x3, 0x1, 0xfff, 0x100000000, 0x7, 0x1, 0x7})

10.080662972s ago: executing program 3 (id=2770):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff5000/0x8000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f000000b000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000007000/0x3000)=nil, &(0x7f0000004000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket(0x11, 0x2, 0x0)
setsockopt(r0, 0x107, 0xd, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2b, &(0x7f0000000000)={0x2, {{0x2, 0x4e26, @multicast2}}, {{0x2, 0x2, @multicast1}}}, 0x108)
sendmmsg$inet_sctp(r0, &(0x7f00000043c0)=[{&(0x7f0000000000)=@in={0x2, 0x4e24, @broadcast}, 0x14, 0x0, 0x0, 0x0, 0x0, 0x4000000}], 0x1, 0x4000800)

9.197841037s ago: executing program 1 (id=2773):
syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='shortad,partition=00000000000000000005,noadinicb,uid=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00\x00\x00=', @ANYRESDEC=0x0, @ANYBLOB=',nostrict,\x00'], 0x1, 0x489, &(0x7f0000000580)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x183042, 0x15)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
read$msr(r0, &(0x7f00000003c0)=""/203, 0xcb)

9.062276016s ago: executing program 4 (id=2774):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="18070000000000000000000000000000181200003b74c1ce0c3b97374c2481fabc3f29800b47090396413c34e4e7a35e1766e5a546d5ad3aec596515a2292db9873140cad16d260e19855c322afc6f005a967c6925588fb56f43ad24350f430000000000000000", @ANYRES32=r2, @ANYBLOB="00000000fcff0400b7030000ec000000850000001b000000b7fd00000000005dfa"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_ALLOC_STREAMS(r4, 0x8008551c, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0xe)
setsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)={0x60, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x1}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x60}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x84}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
io_uring_enter(0xffffffffffffffff, 0xa3d, 0x0, 0x0, 0x0, 0xff39)
shutdown(0xffffffffffffffff, 0x1)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)

8.835845916s ago: executing program 1 (id=2776):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f00000000c0)={0x2, 0x0, 0xe, 0x20019, 0x1f7, 0x0})
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x2014050, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6(0xa, 0x80002, 0x0)
r5 = fspick(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x200c8084, 0x0, 0x0)
connect$inet6(r4, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

7.671279189s ago: executing program 1 (id=2777):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000005c0)={0x80, r1, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@WGDEVICE_A_PEERS={0x58, 0x8, 0x0, 0x1, [{0x54, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_ALLOWEDIPS={0x2c, 0x9, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x3}}]}]}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}]}, 0x80}, 0x1, 0x0, 0x0, 0x4010}, 0x4008020)

6.546322207s ago: executing program 7 (id=2778):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

6.272415273s ago: executing program 3 (id=2779):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="757466382c636865636b3d72656c61786564006e6f726f636b2c6e6f726f636b2c6d61703d6f66662c6d6f64653d3078303030303030303030303030303030334173657373696f6e3d3078303030303030303030303030303033382c756e686964652c756e686964652c636865636b3d7374726963742c6e6f726f636b2c6769643d065fbcd456d065fe88b824792fa5a634eb37231a1af3c823e663a2416eb6eb9d180b207714aab039854855d92cc155ba48a0bc8f75394ab0f0407be6cf61fd5ffdeb6b7f38c211bda3", @ANYRESHEX=0x0, @ANYBLOB=',check=relaxed,\x00'], 0x2, 0x699, &(0x7f0000000140)="$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")
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', 0x0, 0x44000, 0x0)

6.136069618s ago: executing program 7 (id=2780):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x4800, 0x0, 0x6}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000027c0)={0x14, 0x12, 0xa01, 0x0, 0x0, {0x1a}}, 0x14}}, 0x0)

6.040909628s ago: executing program 3 (id=2781):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0xf, {[@global=@item_012={0x0, 0x1, 0xa}, @local=@item_4={0x3, 0x2, 0x2, "45501821"}, @global=@item_012={0x1, 0x1, 0x9, "f5"}, @global=@item_012={0x1, 0x1, 0x7, "84"}, @main=@item_4={0x3, 0x0, 0xb, "9e3ce0b2"}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r1, 0x400c4807, &(0x7f0000000040)={0x3, 0x100, 0x7})

3.36967246s ago: executing program 9 (id=2785):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00'})
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, 0x0, 0x0)
sendmsg$inet_sctp(r3, 0x0, 0x40)
dup(r3)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000780)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x44080)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

3.152323209s ago: executing program 3 (id=2786):
clock_nanosleep(0x2, 0x0, 0x0, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000140)={0x28, 0x0, 0x2710, @local}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x972, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
listen(r0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
pause()

3.081040359s ago: executing program 9 (id=2787):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000780), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000000)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f0000000200)={0x2, 0x0, {&(0x7f0000000340)=""/177, 0xb1, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f0000000080)={0x2, 0x0, {&(0x7f0000001840)=""/141, 0x8d, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg(r0, &(0x7f0000000a40)={0x1, {&(0x7f0000000500)=""/82, 0xfffffea4, 0x0, 0x2, 0x2}}, 0x48)
write$vhost_msg_v2(r0, &(0x7f00000009c0)={0x2, 0x0, {&(0x7f00000007c0)=""/225, 0xe1, 0x0, 0x3, 0x2}}, 0x48)
write$vhost_msg_v2(r0, 0x0, 0x0)
write$vhost_msg_v2(r0, &(0x7f0000000180)={0x2, 0x0, {&(0x7f0000000440)=""/184, 0xfe53, 0x0, 0x3, 0x3}}, 0x48)

2.861663423s ago: executing program 9 (id=2788):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x29, 0x0, 0x1c)
syz_emit_ethernet(0x2a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="cb05000050000000cf4ebfa646353e6f06000000000000009500000000000000f85a5ae149bd185bbd9f1b4fcac22abad755ea65ddaaaec4c72e40d8b18c853db39a60fef5407e1c6d4db1093c"], 0x0, 0x5}, 0x94)
r2 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/246, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)

2.8176813s ago: executing program 4 (id=2789):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000100), 0x6)

2.667979109s ago: executing program 1 (id=2790):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{r0}, &(0x7f0000000600), &(0x7f0000000640)}, 0x20)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x0, 0x2, @dev={0xfe, 0x80, '\x00', 0x13}, 0x7}, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000001c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0900000000000000000002000000140001800500020001"], 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x0)

2.667498884s ago: executing program 7 (id=2791):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff5000/0x8000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f000000b000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000007000/0x3000)=nil, &(0x7f0000004000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket(0x11, 0x2, 0x0)
setsockopt(r0, 0x107, 0xd, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2b, &(0x7f0000000000)={0x2, {{0x2, 0x4e26, @multicast2}}, {{0x2, 0x2, @multicast1}}}, 0x108)
sendmmsg$inet_sctp(r0, &(0x7f00000043c0)=[{&(0x7f0000000000)=@in={0x2, 0x4e24, @broadcast}, 0x14, 0x0, 0x0, 0x0, 0x0, 0x4000000}], 0x1, 0x4000800)

2.480435436s ago: executing program 9 (id=2792):
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

2.439896745s ago: executing program 4 (id=2793):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$cdc_ncm(0x6, 0x6e, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffefffff6, 0x20031, 0xffffffffffffffff, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_int(r1, 0x0, 0x15, &(0x7f0000000040)=0x6, 0x2)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, 0x0, 0x0)
close(r4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000004080)={{r5}, &(0x7f0000004000), &(0x7f0000004040)}, 0x20)
r6 = io_uring_setup(0x758a, &(0x7f0000000140))
r7 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
recvmmsg(r7, &(0x7f0000001f80)=[{{0x0, 0x0, &(0x7f0000000100), 0x1, 0x0, 0xfffffffffffffe09}, 0x8}], 0x4000173, 0x40012102, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', 0xffffffffffffffff, 0x0, 0x8000000000004}, 0x18)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000001c0)={'sit0\x00'})
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0x6}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x40080}, 0x4000c00)

2.303046357s ago: executing program 1 (id=2794):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000006c0)={0x1, &(0x7f0000000500)=[{0x6, 0x43, 0x0, 0x7fff0000}]})
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r4, 0x0)
ppoll(&(0x7f0000000000)=[{r4, 0xc200}], 0x1, &(0x7f0000000100)={0x0, 0x3938700}, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0)
close(0xffffffffffffffff)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f00000001c0), 0x4)
r6 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r8, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_LIMIT={0x8}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendto$inet(r5, &(0x7f00000004c0)='<', 0xfdef, 0x0, 0x0, 0xfffffffffffffefb)
close_range(r3, 0xffffffffffffffff, 0x0)

1.87281506s ago: executing program 9 (id=2795):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x1f00}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
syz_mount_image$udf(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="00bb7fd1ca55450af989acdd31def4fb"], 0x1, 0x5c6, &(0x7f00000006c0)="$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")
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpgrp(0x0)
ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0})

992.114432ms ago: executing program 1 (id=2796):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
mknodat(0xffffffffffffff9c, 0x0, 0x21c0, 0x103)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="16000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

861.839288ms ago: executing program 9 (id=2797):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1, 0x8, 0x0, 0x401}, 0xc)
setsockopt$MRT6_FLUSH(r1, 0x29, 0xd4, &(0x7f0000000080)=0xc, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)

572.192603ms ago: executing program 3 (id=2798):
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000004, &(0x7f0000000c00)={[{@jqfmt_vfsold}, {@grpid}, {@debug}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}, {@noauto_da_alloc}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@debug}, {@usrjquota}, {@nolazytime}, {@norecovery}]}, 0xfe, 0x477, &(0x7f0000000780)="$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")
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3801000010000100feffffff00010000fe880000000000000000000000000001fc010000000000000000000000000001000107144e230005000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c0000007f000001000000000000000000000000000000000000000092010000000000000600000000000000ffff0000000000001c250800000000000200000000000000f8ff07000000ffff0000000000000000ffffffffffffffff00000000000000001f00000000000000feffffffffffffff02000000fcffffff000000002abd700004350000020001002000000000000000480003006465666c617465"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$inet6(0xa, 0x80000, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@loopback, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x5}}, {{@in=@multicast2, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0xe8)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="02120000"], 0x10}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0xfff)
close(0xffffffffffffffff)
r3 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="0203100802"], 0x10}}, 0x0)
sendmsg$key(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

186.576768ms ago: executing program 7 (id=2799):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000180)={[{@usrjquota}, {@abort}, {@nombcache}, {@noload}, {@jqfmt_vfsv0}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@oldalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000000}}, {@bsdgroups}, {@bh}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
socket$kcm(0xa, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = socket$netlink(0x10, 0x3, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32=r1, @ANYRES32], 0x54}, 0x1, 0x0, 0x0, 0x40814}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

0s ago: executing program 4 (id=2800):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x5, 0x0, 0x83, 0xffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f00000025c0)=ANY=[@ANYBLOB="b7000000010003c3bfa30000000000000703000000feffff720af0fff8ffffff71a4f0ff0000000065040200000000ff2d400500000000002000000001ed00007b030000000000001d440000000000007a0a00fe00ffffffdb03000040000000b500feff000000009500000000000000023bc065b78111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e51815548000000000000000275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7f300c095199fe3ff3128e599b0eaebbdbd732c9cc00eec36574a8f6456e2ccae25ea21714eca8cf5d803e04d83b46e21557c0afc646cb7790b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2400000000000000800643a98d9ec21ead2ed51b104d4d91af25b845b9f75dd08d123deda8ebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987af1714e72ba7616536fd9aa58f2477184b6a89adaf17b0baf587aef370a2d426a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d64364c82770c8204a0deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee7d26b34381fcb59b854e9d5a17f4720082f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67051d355d84ce97bb0c6b4a595e487efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599ddd71063be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d96c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d38df9ba60248d9a0d61282dfb15eb6841bb64a1b3045024a982f3c48153baae2c4e7bf37548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c3560811ea6c3560a43364d402ccdd9069bd50b994fd6a34ee18022a579dfc0229cc0dc9881610270928eaeb883418f562ae00003ea96d10f172c0374d6eed826407000000000000004a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea52acb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d851680f6f2f9a6a8906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f4ca2195234648e0a1ca50db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145eb6dc5f6a9037d2283c42efc54fa84323a3304f41ff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f928ba7554ba583fef3ec7932f5954f31a878e2fae6691df8b4b7ecd27ce82f7df3e7d1daac43738612e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e96753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e96735600000554f327a353511ccedde99493c31ac05a7b57f03ca91a01ba2c60ca99e8ebc15ecb4d91675767999d146aef7799738b292fd64bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d40460780000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120968308c31db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd0000000069ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a003fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b393cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9e0600f86909bc90addb7b9aee813df534aac4b32fd691b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a000000000000000000000000000006acc19808d7cf29bc974b0ea92499a419aa095e203c1bafbb9b9a7c2bca3f0a18ee4952f2d325a56390578f12205db653a536f0100e0eda300a4dc6b3fb84f3738a4b6caa84feda91f3edb32231ec75300000000000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b88b5e7885e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035ab63de71a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db1829f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2744c46570e8f46da1ab990ca053cbfe801000000000000000000000000000000d55d7182af2ea5f8d0ad495e3eb9421963a5a683c3dcb2d300aa3b2cfe946d2348c35f5d67d68ac07c8f84b3679e77c2e629ecec7c12c35d6b6971b8ae13cc00956d2227db60c0a461ed2b3ecfb16d19037c8c88c91dda1f904fbbc864e95ad43d6dd6d5eadbcea25682ba4b91e14c3fbfdfd1d680aa1af102d97681656bf56ff0674237ce097d39008cc3257778de878bcd37467386f993be6d20c93a7791e7f2a155ce379b4cda2500108052aeb9bd03ff6d4c5dbda9ff485d6576a492d436d52edcd420e7deaa4343a0add3941ae7c5f58af43866ca64750f43e583ca1ceb3a805e46beef9dca77a4edcbb42aa0caf0bbd6cec72d85540293cb4849b0610800000000000000000000000000000000f9814d5f6c8673c143ff2f901e71b8818665b56f7a03afe3d900007656859db4cb06aaaf9f02cfab5b9e61cc00e8e19429921b8df4c4c53bddea4cc48737371cdf8f681dd7a2685df194ca89da8cf6d29a2be9779181fd5d105af5786094d9130f5826b18b9667b971a994f3fd069629a1052f441e96884f90c91f4a974242aabfc8adbadc9ca27955b5c90f0bd9a46ed044272383d3768871a9c8cfd7948aea445c55684351002ed4a4af45341de8e5e1f33624bd2ec1591dd00bbe05000000f89a928662e9b9449db34394fc5e946fadaee576e28ac0feab4e3585ed43d206218f524083840a78b7236bb7f5e42b5376642f8ad4028d4ead407240e7467d1b37afe20690d7672c7e926fded95cf805516ad836eb730619a05af36fb28329d6feb33219cc9164461a8ba3afd5949b9a6046c53663df30a049414089c1ae8f3476236b05dde8dda4843a62c591f8d2b1a62d0db8dc826219bd87398b33e140792297d023ef52de2e75b9dbbfb8712ccc15c69cfb4c6c1bc2ae74621e536b9d3f09a15dada1561a8192d65cc59d7ed5a6bd61000000000000000000000000000000000000000000000000000000000000000000000000f637782e317d492b2392fd0ea81397a80227f271bad21d688af35a2bd02c15d20f3d62a50e20260642c25f304c8034a5f4d8e45e701dbd84294d1096e715662b8223e10e98c4c38451fc5c702084e3fa9b184e0d0fba44acf3bb8a846cf680dfbf312cddfdb2043288fa6b67fa762c8b75d4478756ef240f2b314e4d77a3afb4fcec92248327004d1dac7ac87a6f8cb04d82acc307d60e4713bd9a8f29091d3048c669a5f5439e0a906ce098d177b9579882586511cfe6a23e57c44d1654899f077b5636e4181f3de6b814bedcac5290ad8018bbe4424edc6d9b0e61b404bb7a2d4883bbc200de8332029cbc04a0bc52d9870cdfb950b139625fa88f5c9088fc9032a5ea07415029c74354f54e37427a4b26e559cd240b7950630d7d4da9cb8d256356bee8c827db43313e75da9c36d0f7bef4fcf23469d8c9104a917959c3bc791a54d1882f532d2597ff50d4a10fe3b80a3d67d3c3dca0dfe0e4eb039df7480542f841313ad2ec26fe7d03829f80c6f3e028d2f4495c3c523929b203048ac9ba20b012c005e36b93eb5a02768503c6c41f50d2a04999bba560f86c7c9a78e4b337983cbdb5d71be3090208a1f7eaa3edc840ea0da5f4cc01f3e87c7566176981a738bcd4dd8b8a137e7a15e57054ebf1d9ba227361be11a7d155054e154364041468e6268ea23e74eacbb5200e2d8f8919402ca20794a29dd986c6593d47b47d5cd70153908a77039a995a44e960ad037f4d2569751eea3ae70fc49f32c30d6be0594bfda189f0be84d1eaf70e0e90223a3c97ade9973e9219c5a2e1c68efe6adf744710eb0ad8e555be26855496bc6b5e13078380230728b1862f0d93397b88ebf5197b61d27b6c555502aed27d2f2b127aeeae41dd4324fad2e7a962"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

kernel console output (not intermixed with test programs):

5] team0 (unregistering): Port device dummy0 removed
[  451.456115][ T7081] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.501597][T11789] loop5: detected capacity change from 0 to 16
[  451.565968][T11791] loop4: detected capacity change from 0 to 128
[  451.611093][T11530] 8021q: adding VLAN 0 to HW filter on device batadv0
[  451.620555][T11791] FAT-fs (loop4): bogus number of FAT structure
[  451.626224][T11789] erofs (device loop5): mounted with root inode @ nid 36.
[  451.655923][T11791] FAT-fs (loop4): Can't find a valid FAT filesystem
[  451.670502][   T30] kauditd_printk_skb: 25 callbacks suppressed
[  451.670525][   T30] audit: type=1326 audit(1757956320.405:2501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11787 comm="syz.5.1960" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbe0878eba9 code=0x0
[  452.015301][ T5975] IPVS: stop unused estimator thread 0...
[  453.436267][T11831] loop3: detected capacity change from 0 to 512
[  453.441626][T11825] syzkaller0: entered promiscuous mode
[  453.483630][T11831] EXT4-fs error (device loop3): ext4_xattr_inode_iget:440: comm syz.3.1975: error while reading EA inode 32 err=-116
[  453.501948][T11831] EXT4-fs (loop3): Remounting filesystem read-only
[  453.513727][T11825] syzkaller0: entered allmulticast mode
[  453.517500][T11831] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  453.583084][T11831] EXT4-fs (loop3): 1 orphan inode deleted
[  453.597952][T11831] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.115733][ T5867] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.481334][T11859] loop7: detected capacity change from 0 to 128
[  454.545432][T11859] FAT-fs (loop7): bogus number of FAT structure
[  454.581809][T11859] FAT-fs (loop7): Can't find a valid FAT filesystem
[  456.293227][T11530] veth0_vlan: entered promiscuous mode
[  456.339166][T11530] veth1_vlan: entered promiscuous mode
[  456.502629][T11530] veth0_macvtap: entered promiscuous mode
[  456.563104][T11530] veth1_macvtap: entered promiscuous mode
[  456.751824][T11530] batman_adv: batadv0: Interface activated: batadv_slave_0
[  456.958787][T11530] batman_adv: batadv0: Interface activated: batadv_slave_1
[  457.110764][ T6044] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  457.327342][ T6044] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  457.347321][ T6044] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  457.375810][T11886] loop3: detected capacity change from 0 to 512
[  457.400203][T11897] loop4: detected capacity change from 0 to 256
[  457.447538][T11886] EXT4-fs error (device loop3): ext4_xattr_inode_iget:440: comm syz.3.1995: error while reading EA inode 32 err=-116
[  457.466855][ T6044] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  457.728755][T11886] EXT4-fs (loop3): Remounting filesystem read-only
[  457.735664][T11897] FAT-fs (loop4): Directory bread(block 64) failed
[  457.744324][T11886] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  457.755201][T11886] EXT4-fs (loop3): 1 orphan inode deleted
[  457.767237][T11886] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  457.782341][T11897] FAT-fs (loop4): Directory bread(block 65) failed
[  457.834572][T11897] FAT-fs (loop4): Directory bread(block 66) failed
[  457.842423][T11897] FAT-fs (loop4): Directory bread(block 67) failed
[  457.877979][T11897] FAT-fs (loop4): Directory bread(block 68) failed
[  457.912924][T11897] FAT-fs (loop4): Directory bread(block 69) failed
[  457.923203][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  457.931203][T11897] FAT-fs (loop4): Directory bread(block 70) failed
[  457.953378][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  457.979535][T11897] FAT-fs (loop4): Directory bread(block 71) failed
[  458.027108][T11897] FAT-fs (loop4): Directory bread(block 72) failed
[  458.062184][T11897] FAT-fs (loop4): Directory bread(block 73) failed
[  458.150658][ T6044] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  458.176322][ T5867] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.221242][ T6044] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  458.330245][T11897] bio_check_eod: 102 callbacks suppressed
[  458.330269][T11897] syz.4.2001: attempt to access beyond end of device
[  458.330269][T11897] loop4: rw=524288, sector=1192, nr_sectors = 4 limit=256
[  458.363277][T11897] syz.4.2001: attempt to access beyond end of device
[  458.363277][T11897] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256
[  458.430341][   T30] audit: type=1800 audit(1757956327.165:2502): pid=11897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2001" name="file1" dev="loop4" ino=1048636 res=0 errno=0
[  458.752558][T11919] syzkaller0: entered promiscuous mode
[  458.779874][T11919] syzkaller0: entered allmulticast mode
[  459.352033][T11918] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  459.358716][T11918] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  459.364914][T11918] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  459.371117][T11918] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  459.378035][T11918] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  459.384331][T11918] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  459.390361][T11918] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  459.398991][T11918] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  459.758979][T11951] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2019'.
[  459.768133][T11951] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2019'.
[  460.922743][ T5881] Bluetooth: hci1: command 0x0c1a tx timeout
[  461.381133][ T5882] Bluetooth: hci2: command 0x0c1a tx timeout
[  461.388487][ T5178] Bluetooth: hci3: command 0x0c1a tx timeout
[  461.397613][ T5881] Bluetooth: hci5: command 0x0c1a tx timeout
[  461.452338][ T5881] Bluetooth: hci6: command 0x0c1a tx timeout
[  461.459236][ T5178] Bluetooth: hci0: command 0x0c1a tx timeout
[  462.037903][T11991] loop3: detected capacity change from 0 to 16
[  462.066443][T11991] erofs (device loop3): mounted with root inode @ nid 36.
[  462.122561][   T30] audit: type=1326 audit(1757956330.835:2503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11990 comm="syz.3.2032" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f111b78eba9 code=0x0
[  462.321472][T11999] loop9: detected capacity change from 0 to 128
[  462.329555][T11999] msdos: Unknown parameter 'nodohs'
[  462.336455][T12000] fuse: Bad value for 'fd'
[  463.264138][T11989] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  463.271592][T11989] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  463.277984][T11989] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  463.285399][T11989] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  463.291661][T11989] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  463.300828][T11989] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  465.292606][ T5881] Bluetooth: hci0: command 0x0c1a tx timeout
[  465.298807][ T5881] Bluetooth: hci5: command 0x0c1a tx timeout
[  465.302381][ T5178] Bluetooth: hci3: command 0x0c1a tx timeout
[  465.304902][ T5881] Bluetooth: hci2: command 0x0c1a tx timeout
[  465.310793][ T5178] Bluetooth: hci1: command 0x0c1a tx timeout
[  465.372254][ T5178] Bluetooth: hci6: command 0x0c1a tx timeout
[  465.757567][T12064] syzkaller0: entered promiscuous mode
[  465.802313][T12064] syzkaller0: entered allmulticast mode
[  467.462440][ T5178] Bluetooth: hci6: command 0x0c1a tx timeout
[  467.961276][T12100] loop7: detected capacity change from 0 to 512
[  468.081066][T12100] EXT4-fs error (device loop7): ext4_xattr_inode_iget:440: comm syz.7.2068: error while reading EA inode 32 err=-116
[  468.150724][T12100] EXT4-fs (loop7): Remounting filesystem read-only
[  468.191140][T12100] EXT4-fs warning (device loop7): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  468.207307][T12108] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2074'.
[  468.216674][T12108] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2074'.
[  468.254155][T12100] EXT4-fs (loop7): 1 orphan inode deleted
[  468.274261][T12100] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  468.451914][T12115] loop5: detected capacity change from 0 to 128
[  468.466588][T12115] msdos: Unknown parameter 'nodohs'
[  469.625416][T12131] loop3: detected capacity change from 0 to 128
[  469.890003][T12131] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2082'.
[  470.525817][T12136] loop5: detected capacity change from 0 to 2048
[  470.591594][T12136]  loop5: p2 p3 p7
[  470.966934][T12131] (unnamed net_device) (uninitialized): option ad_select: invalid value (46)
[  471.098033][ T7081] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.449571][T12155] atomic_op ffff88805bee0998 conn xmit_atomic 0000000000000000
[  471.871349][T12168] cgroup: fork rejected by pids controller in /syz4
[  473.424725][T12174] syzkaller0: entered promiscuous mode
[  473.454207][T12174] syzkaller0: entered allmulticast mode
[  473.667261][T12179] loop5: detected capacity change from 0 to 512
[  473.709506][T12179] EXT4-fs error (device loop5): ext4_xattr_inode_iget:440: comm syz.5.2101: error while reading EA inode 32 err=-116
[  473.724855][T12179] EXT4-fs (loop5): Remounting filesystem read-only
[  473.732064][T12179] EXT4-fs warning (device loop5): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  473.742373][T12179] EXT4-fs (loop5): 1 orphan inode deleted
[  473.749660][T12179] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  473.780011][T12187] netlink: 'syz.7.2100': attribute type 13 has an invalid length.
[  474.285066][T12162] warn_alloc: 1 callbacks suppressed
[  474.285100][T12162] syz.9.2094: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  474.309318][T12162] CPU: 1 UID: 0 PID: 12162 Comm: syz.9.2094 Not tainted syzkaller #0 PREEMPT(full) 
[  474.309365][T12162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  474.309387][T12162] Call Trace:
[  474.309399][T12162]  <TASK>
[  474.309411][T12162]  dump_stack_lvl+0x16c/0x1f0
[  474.309479][T12162]  warn_alloc+0x248/0x3a0
[  474.309542][T12162]  ? __pfx_warn_alloc+0x10/0x10
[  474.309624][T12162]  ? hash_netport4_resize+0x1d8/0x1c50
[  474.309672][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.309720][T12162]  ? __vmalloc_node_noprof+0xad/0xf0
[  474.309781][T12162]  __vmalloc_node_range_noprof+0x101b/0x14b0
[  474.309833][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.309897][T12162]  ? hash_netport4_resize+0x1d8/0x1c50
[  474.309960][T12162]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  474.310013][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.310054][T12162]  ? ___kmalloc_large_node+0xed/0x160
[  474.310103][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.310153][T12162]  __kvmalloc_node_noprof+0x30a/0x620
[  474.310205][T12162]  ? hash_netport4_resize+0x1d8/0x1c50
[  474.310247][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.310289][T12162]  ? __kmalloc_noprof+0x242/0x510
[  474.310338][T12162]  ? hash_netport4_resize+0x1d8/0x1c50
[  474.310381][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.310432][T12162]  ? hash_netport4_resize+0x1d8/0x1c50
[  474.310474][T12162]  hash_netport4_resize+0x1d8/0x1c50
[  474.310521][T12162]  ? __pfx_hash_netport4_add+0x10/0x10
[  474.310566][T12162]  ? __pfx_hash_netport4_uadt+0x10/0x10
[  474.310603][T12162]  ? __pfx___mutex_lock+0x10/0x10
[  474.310643][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.310695][T12162]  ? __pfx_hash_netport4_resize+0x10/0x10
[  474.310743][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.310791][T12162]  call_ad.constprop.0+0x36d/0x940
[  474.310837][T12162]  ? __pfx_hash_netport4_resize+0x10/0x10
[  474.310889][T12162]  ? __pfx_call_ad.constprop.0+0x10/0x10
[  474.310932][T12162]  ? __pfx___nla_validate_parse+0x10/0x10
[  474.310979][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.311023][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.311082][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.311125][T12162]  ? __nla_parse+0x40/0x60
[  474.311170][T12162]  ip_set_ad.constprop.0.isra.0+0x3ce/0x870
[  474.311229][T12162]  ? __pfx_ip_set_ad.constprop.0.isra.0+0x10/0x10
[  474.311280][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.311321][T12162]  ? call_rcu_tasks_generic+0x400/0x920
[  474.311417][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.311459][T12162]  ? find_held_lock+0x2b/0x80
[  474.311508][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.311559][T12162]  nfnetlink_rcv_msg+0x9fc/0x1200
[  474.311623][T12162]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  474.311675][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.311717][T12162]  ? consume_skb+0xcc/0x100
[  474.311798][T12162]  ? __pfx___dev_queue_xmit+0x10/0x10
[  474.311855][T12162]  netlink_rcv_skb+0x158/0x420
[  474.311889][T12162]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  474.311939][T12162]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  474.311971][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.312038][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.312088][T12162]  ? ns_capable+0xd7/0x110
[  474.312138][T12162]  nfnetlink_rcv+0x1b3/0x430
[  474.312182][T12162]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  474.312225][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.312267][T12162]  ? netlink_deliver_tap+0x1ae/0xd30
[  474.312332][T12162]  netlink_unicast+0x5aa/0x870
[  474.312374][T12162]  ? __pfx_netlink_unicast+0x10/0x10
[  474.312434][T12162]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  474.312490][T12162]  ? __lock_acquire+0xb97/0x1ce0
[  474.312561][T12162]  netlink_sendmsg+0x8d1/0xdd0
[  474.312605][T12162]  ? __pfx_netlink_sendmsg+0x10/0x10
[  474.312636][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.312686][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.312729][T12162]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  474.312779][T12162]  ____sys_sendmsg+0xa98/0xc70
[  474.312822][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.312865][T12162]  ? copy_msghdr_from_user+0x10a/0x160
[  474.312921][T12162]  ? __pfx_____sys_sendmsg+0x10/0x10
[  474.312975][T12162]  ? __pfx_futex_wake_mark+0x10/0x10
[  474.313023][T12162]  ___sys_sendmsg+0x134/0x1d0
[  474.313089][T12162]  ? __pfx____sys_sendmsg+0x10/0x10
[  474.313171][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.313250][T12162]  __sys_sendmsg+0x16d/0x220
[  474.313306][T12162]  ? __pfx___sys_sendmsg+0x10/0x10
[  474.313361][T12162]  ? __pfx_bpf_trace_run2+0x10/0x10
[  474.313411][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.313460][T12162]  ? srso_alias_return_thunk+0x5/0xfbef5
[  474.313502][T12162]  ? rcu_is_watching+0x12/0xc0
[  474.313554][T12162]  do_syscall_64+0xcd/0x4e0
[  474.313592][T12162]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  474.313629][T12162] RIP: 0033:0x7ff177f8eba9
[  474.313656][T12162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  474.313691][T12162] RSP: 002b:00007ff178e16038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  474.313724][T12162] RAX: ffffffffffffffda RBX: 00007ff1781d5fa0 RCX: 00007ff177f8eba9
[  474.313748][T12162] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 000000000000000e
[  474.313771][T12162] RBP: 00007ff178011e19 R08: 0000000000000000 R09: 0000000000000000
[  474.313793][T12162] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  474.313816][T12162] R13: 00007ff1781d6038 R14: 00007ff1781d5fa0 R15: 00007ffd92a5be68
[  474.313863][T12162]  </TASK>
[  474.865717][T12162] Mem-Info:
[  474.868922][T12162] active_anon:7966 inactive_anon:0 isolated_anon:0
[  474.868922][T12162]  active_file:4243 inactive_file:40027 isolated_file:0
[  474.868922][T12162]  unevictable:768 dirty:207 writeback:0
[  474.868922][T12162]  slab_reclaimable:12425 slab_unreclaimable:234471
[  474.868922][T12162]  mapped:37151 shmem:3666 pagetables:1626
[  474.868922][T12162]  sec_pagetables:0 bounce:0
[  474.868922][T12162]  kernel_misc_reclaimable:0
[  474.868922][T12162]  free:1171403 free_pcp:13523 free_cma:0
[  474.918614][T12162] Node 0 active_anon:31864kB inactive_anon:0kB active_file:16972kB inactive_file:159908kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:148604kB dirty:828kB writeback:0kB shmem:13128kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12820kB pagetables:6356kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  474.951269][T12162] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  474.987492][T12162] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  475.016459][    C0] vkms_vblank_simulate: vblank timer overrun
[  475.022968][T12162] lowmem_reserve[]: 0 2479 2481 2481 2481
[  475.028806][T12162] Node 0 DMA32 free:768464kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:31820kB inactive_anon:0kB active_file:16972kB inactive_file:158592kB unevictable:1536kB writepending:828kB present:3129332kB managed:2539452kB mlocked:0kB bounce:0kB free_pcp:37208kB local_pcp:13744kB free_cma:0kB
[  475.061097][    C0] vkms_vblank_simulate: vblank timer overrun
[  475.069314][T12162] lowmem_reserve[]: 0 0 1 1 1
[  475.074521][T12162] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  475.103558][    C0] vkms_vblank_simulate: vblank timer overrun
[  475.110298][T12162] lowmem_reserve[]: 0 0 0 0 0
[  475.115138][T12162] Node 1 Normal free:3901768kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:16908kB local_pcp:9484kB free_cma:0kB
[  475.146345][    C0] vkms_vblank_simulate: vblank timer overrun
[  475.153226][T12162] lowmem_reserve[]: 0 0 0 0 0
[  475.158005][T12162] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  475.171516][T12162] Node 0 DMA32: 573*4kB (UE) 928*8kB (UME) 665*16kB (UME) 470*32kB (UME) 500*64kB (UME) 325*128kB (UME) 184*256kB (UME) 98*512kB (UME) 63*1024kB (UME) 31*2048kB (UME) 106*4096kB (UM) = 768452kB
[  475.190974][T12162] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  475.203798][T12162] Node 1 Normal: 202*4kB (UE) 50*8kB (UME) 33*16kB (UME) 150*32kB (UME) 41*64kB (UME) 7*128kB (UME) 6*256kB (UME) 4*512kB (UM) 1*1024kB (M) 2*2048kB (UE) 948*4096kB (M) = 3901768kB
[  475.222837][T12162] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  475.232611][T12162] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  475.242037][T12162] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  475.251746][T12162] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  475.261152][T12162] 47928 total pagecache pages
[  475.266583][T12162] 0 pages in swap cache
[  475.270738][T12162] Free swap  = 124996kB
[  475.274926][T12162] Total swap = 124996kB
[  475.279121][T12162] 2097051 pages RAM
[  475.283050][T12162] 0 pages HighMem/MovableOnly
[  475.287723][T12162] 430226 pages reserved
[  475.291895][T12162] 0 pages cma reserved
[  475.471244][T12194] atomic_op ffff888055961198 conn xmit_atomic 0000000000000000
[  476.558461][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.588381][T12190] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2103'.
[  476.755062][T12198] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  476.792678][T12198] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  476.798857][T12198] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  476.877347][T12098] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.895862][T12198] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  476.943264][T12198] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  476.997218][T12098] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.126106][T12098] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.206180][T12098] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.343605][T12217] loop7: detected capacity change from 0 to 512
[  477.382224][T12217] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  477.444234][T12217] EXT4-fs (loop7): 1 truncate cleaned up
[  477.466060][T12217] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  478.813861][ T5882] Bluetooth: hci2: command 0x0c1a tx timeout
[  478.820423][ T5882] Bluetooth: hci1: command 0x0c1a tx timeout
[  478.827583][ T5178] Bluetooth: hci5: command 0x0c1a tx timeout
[  478.994914][ T5178] Bluetooth: hci0: command 0x0c1a tx timeout
[  478.994941][ T5882] Bluetooth: hci6: command 0x0c1a tx timeout
[  479.174156][ T5882] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  479.192933][ T5882] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  479.200738][ T5882] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  479.220331][ T5882] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  479.229842][ T5882] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  480.010165][T12251] syzkaller0: entered promiscuous mode
[  480.053184][T12251] syzkaller0: entered allmulticast mode
[  480.108348][T12098] tipc: Left network mode
[  481.076563][T12273] netlink: 'syz.5.2123': attribute type 13 has an invalid length.
[  481.304576][ T5882] Bluetooth: hci3: command tx timeout
[  482.189049][T12098] hsr_slave_0: left promiscuous mode
[  482.221725][T12098] hsr_slave_1: left promiscuous mode
[  482.261952][T12288] loop9: detected capacity change from 0 to 164
[  482.265297][T12098] veth1_vlan: left promiscuous mode
[  482.282347][T12098] veth0_vlan: left promiscuous mode
[  483.374018][ T5882] Bluetooth: hci3: command tx timeout
[  484.618355][T12320] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2146'.
[  484.792727][T12247] chnl_net:caif_netlink_parms(): no params data found
[  484.798958][T12098] IPVS: stop unused estimator thread 0...
[  484.992851][ T7081] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  485.324189][T12247] bridge0: port 1(bridge_slave_0) entered blocking state
[  485.334782][T12247] bridge0: port 1(bridge_slave_0) entered disabled state
[  485.353684][T12247] bridge_slave_0: entered allmulticast mode
[  485.370972][T12247] bridge_slave_0: entered promiscuous mode
[  485.398346][T12247] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.424563][T12247] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.441979][T12247] bridge_slave_1: entered allmulticast mode
[  485.460342][ T5882] Bluetooth: hci3: command tx timeout
[  485.469911][T12247] bridge_slave_1: entered promiscuous mode
[  485.648872][T12351] netlink: 'syz.7.2152': attribute type 13 has an invalid length.
[  486.025853][T12247] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  486.114921][T12247] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  486.388128][T12247] team0: Port device team_slave_0 added
[  486.404945][T12373] fuse: Bad value for 'fd'
[  486.415422][T12247] team0: Port device team_slave_1 added
[  486.449154][ T5872] cgroup: fork rejected by pids controller in /syz1
[  486.578511][T12367] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  486.593029][T12367] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  486.599288][T12367] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  486.619777][T12247] batman_adv: batadv0: Adding interface: batadv_slave_0
[  486.630420][T12367] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  486.647386][T12247] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  486.693019][T12367] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  486.708315][T12367] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  486.714606][T12247] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  486.737246][T12367] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  486.792474][T12247] batman_adv: batadv0: Adding interface: batadv_slave_1
[  486.799453][T12247] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  487.000034][T12247] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  487.049990][T12367] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  487.377422][T12247] hsr_slave_0: entered promiscuous mode
[  487.397000][T12247] hsr_slave_1: entered promiscuous mode
[  487.423180][T12247] debugfs: 'hsr0' already exists in 'hsr'
[  487.429151][T12247] Cannot create hsr debugfs directory
[  488.333391][ T5882] Bluetooth: hci1: command 0x0c1a tx timeout
[  488.535900][   T13] bridge_slave_1: left allmulticast mode
[  488.541763][   T13] bridge_slave_1: left promiscuous mode
[  488.592437][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  488.647789][T12395] fuse: Bad value for 'fd'
[  488.665521][ T5882] Bluetooth: hci0: command 0x0c1a tx timeout
[  488.665536][ T5178] Bluetooth: hci5: command 0x0c1a tx timeout
[  488.666960][   T13] bridge_slave_0: left allmulticast mode
[  488.724516][   T13] bridge_slave_0: left promiscuous mode
[  488.730906][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  488.740997][ T5882] Bluetooth: hci3: command 0x0c1a tx timeout
[  488.746829][ T5178] Bluetooth: hci6: command 0x0c1a tx timeout
[  488.965009][ T5882] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  488.995320][ T5882] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  489.010428][ T5882] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  489.022191][ T5882] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  489.032932][ T5882] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  489.937493][T12433] loop3: detected capacity change from 0 to 512
[  489.946526][T12433] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  489.987539][T12433] EXT4-fs (loop3): 1 truncate cleaned up
[  490.016529][T12433] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  490.079490][T12437] loop7: detected capacity change from 0 to 2048
[  490.369777][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  490.388073][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  490.422582][T12437]  loop7: p2 p3 p7
[  490.430369][   T13] bond0 (unregistering): Released all slaves
[  490.470088][   T13] bond1 (unregistering): Released all slaves
[  490.558914][   T13] bond2 (unregistering): Released all slaves
[  490.654891][T12425] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  490.661020][T12425] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  490.672833][T12425] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  490.688172][T12425] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  490.696030][T12425] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  490.721476][T12425] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  490.730613][T12425] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  490.760563][   T13] tipc: Left network mode
[  490.787310][T12425] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  491.029073][T12444] pim6reg1: tun_chr_ioctl cmd 1074025676
[  491.052797][T12444] pim6reg1: owner set to 1024
[  491.053569][T12448] overlayfs: failed to resolve './cgroup': -2
[  491.405617][ T5867] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.490060][T12454] veth0_vlan: entered allmulticast mode
[  491.562290][T12458] veth0_vlan: left promiscuous mode
[  491.571063][T12458] veth0_vlan: entered promiscuous mode
[  491.698666][T12467] loop5: detected capacity change from 0 to 164
[  491.742517][   T13] hsr_slave_0: left promiscuous mode
[  491.761136][T12467] rock: directory entry would overflow storage
[  491.768814][   T13] hsr_slave_1: left promiscuous mode
[  491.779045][T12467] rock: sig=0x66, size=4, remaining=3
[  491.798102][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  491.839524][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  491.941697][T12473] loop7: detected capacity change from 0 to 2048
[  492.026764][T12473]  loop7: p2 p3 p7
[  492.378901][T12488] loop3: detected capacity change from 0 to 512
[  492.389996][T12488] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  492.427659][T12488] EXT4-fs (loop3): 1 truncate cleaned up
[  492.448786][T12488] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  492.783937][ T5178] Bluetooth: hci2: command 0x041b tx timeout
[  492.793140][ T5178] Bluetooth: hci5: command 0x0c1a tx timeout
[  492.799605][ T5881] Bluetooth: hci3: command 0x0c1a tx timeout
[  492.799794][ T5866] Bluetooth: hci6: command 0x0c1a tx timeout
[  492.806664][ T5868] Bluetooth: hci0: command 0x0c1a tx timeout
[  492.819426][ T5882] Bluetooth: hci1: command 0x0c1a tx timeout
[  492.895294][   T13] team0 (unregistering): Port device team_slave_1 removed
[  492.960782][   T13] team0 (unregistering): Port device team_slave_0 removed
[  493.749852][T12247] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  493.912565][T12247] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  494.062269][T12247] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  494.201994][T12408] chnl_net:caif_netlink_parms(): no params data found
[  494.238448][T12247] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  494.576110][T12537] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2222'.
[  494.605725][T12537] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2222'.
[  494.750043][T12543] loop5: detected capacity change from 0 to 2048
[  494.800048][   T13] IPVS: stop unused estimator thread 0...
[  494.850867][ T5867] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  494.890919][T12543]  loop5: p2 p3 p7
[  494.894870][ T5869] Bluetooth: hci3: command 0x0c1a tx timeout
[  494.894924][ T5869] Bluetooth: hci2: command 0x041b tx timeout
[  494.979477][T12408] bridge0: port 1(bridge_slave_0) entered blocking state
[  494.995453][T12408] bridge0: port 1(bridge_slave_0) entered disabled state
[  495.017810][T12408] bridge_slave_0: entered allmulticast mode
[  495.042445][T12408] bridge_slave_0: entered promiscuous mode
[  495.074375][T12408] bridge0: port 2(bridge_slave_1) entered blocking state
[  495.117732][T12408] bridge0: port 2(bridge_slave_1) entered disabled state
[  495.126970][T12408] bridge_slave_1: entered allmulticast mode
[  495.155212][T12408] bridge_slave_1: entered promiscuous mode
[  495.291285][T12408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  495.331719][T12408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  495.430303][T12408] team0: Port device team_slave_0 added
[  495.444268][T12408] team0: Port device team_slave_1 added
[  495.535991][T12408] batman_adv: batadv0: Adding interface: batadv_slave_0
[  495.554881][T12408] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  495.588276][T12408] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  495.637150][T12408] batman_adv: batadv0: Adding interface: batadv_slave_1
[  495.653600][T12408] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  495.683742][T12408] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  495.794217][T12247] 8021q: adding VLAN 0 to HW filter on device bond0
[  495.864828][T12408] hsr_slave_0: entered promiscuous mode
[  495.871702][T12408] hsr_slave_1: entered promiscuous mode
[  495.880066][T12408] debugfs: 'hsr0' already exists in 'hsr'
[  495.897866][T12408] Cannot create hsr debugfs directory
[  496.163192][T12247] 8021q: adding VLAN 0 to HW filter on device team0
[  496.225921][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  496.233153][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  496.278422][ T6044] bridge0: port 2(bridge_slave_1) entered blocking state
[  496.285629][ T6044] bridge0: port 2(bridge_slave_1) entered forwarding state
[  496.452542][T12588] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2243'.
[  496.461869][T12588] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2243'.
[  496.974050][T12492] Bluetooth: hci2: command 0x041b tx timeout
[  497.038364][T12408] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  497.051589][T12408] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  497.100285][T12408] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  497.120645][T12609] loop3: detected capacity change from 0 to 128
[  497.149703][T12408] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  497.271700][T12617] loop7: detected capacity change from 0 to 128
[  497.309622][T12247] 8021q: adding VLAN 0 to HW filter on device batadv0
[  497.559820][T12408] 8021q: adding VLAN 0 to HW filter on device bond0
[  497.619284][T12408] 8021q: adding VLAN 0 to HW filter on device team0
[  497.689755][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  497.696989][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  497.746099][ T6044] bridge0: port 2(bridge_slave_1) entered blocking state
[  497.753324][ T6044] bridge0: port 2(bridge_slave_1) entered forwarding state
[  498.337348][T12247] veth0_vlan: entered promiscuous mode
[  498.380819][T12247] veth1_vlan: entered promiscuous mode
[  498.539250][T12247] veth0_macvtap: entered promiscuous mode
[  498.624665][T12247] veth1_macvtap: entered promiscuous mode
[  498.724477][T12247] batman_adv: batadv0: Interface activated: batadv_slave_0
[  498.739666][T12247] batman_adv: batadv0: Interface activated: batadv_slave_1
[  498.841117][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  498.858878][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  499.052674][T12492] Bluetooth: hci2: command 0x041b tx timeout
[  499.079457][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  499.270346][T12659] loop7: detected capacity change from 0 to 512
[  499.324843][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  499.509749][T12667] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  499.526646][T12659] EXT4-fs error (device loop7): ext4_xattr_inode_iget:440: comm syz.7.2265: error while reading EA inode 32 err=-116
[  499.562213][T12659] EXT4-fs (loop7): Remounting filesystem read-only
[  499.588086][T12659] EXT4-fs warning (device loop7): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  499.606496][T12667] tipc: Resetting bearer <eth:syzkaller0>
[  499.643513][T12659] EXT4-fs (loop7): 1 orphan inode deleted
[  499.672853][T12659] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  499.687638][T12666] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  499.699004][T12666] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  499.738088][T12662] tipc: Disabling bearer <eth:syzkaller0>
[  499.738299][T12666] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  499.759161][T12666] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  499.765561][T12666] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  499.771867][T12666] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  499.784959][T12408] 8021q: adding VLAN 0 to HW filter on device batadv0
[  499.976813][ T7081] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.078926][T12098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  500.119834][T12098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  500.229030][T12098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  500.245337][T12408] veth0_vlan: entered promiscuous mode
[  500.262716][T12098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  500.308107][T12408] veth1_vlan: entered promiscuous mode
[  500.434792][T12408] veth0_macvtap: entered promiscuous mode
[  500.469451][T12408] veth1_macvtap: entered promiscuous mode
[  500.565207][T12408] batman_adv: batadv0: Interface activated: batadv_slave_0
[  500.619642][T12408] batman_adv: batadv0: Interface activated: batadv_slave_1
[  500.682648][ T1023] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  500.722185][ T1023] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  500.749041][ T1023] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  500.774384][ T1023] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  501.044726][ T5975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  501.070797][ T5975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  501.194614][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  501.196399][T12703] loop3: detected capacity change from 0 to 2048
[  501.232284][T12706] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  501.239227][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  501.294569][T12706] tipc: Resetting bearer <eth:syzkaller0>
[  501.327546][T12703]  loop3: p2 p3 p7
[  501.343802][T12710] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2283'.
[  501.372452][T12492] Bluetooth: hci1: command 0x0c1a tx timeout
[  501.380120][T12705] tipc: Disabling bearer <eth:syzkaller0>
[  501.392665][T12710] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2283'.
[  501.772830][T12492] Bluetooth: hci2: command 0x041b tx timeout
[  501.779184][ T5869] Bluetooth: hci3: command 0x0c1a tx timeout
[  501.779220][ T5882] Bluetooth: hci6: command 0x0c1a tx timeout
[  501.786841][ T5869] Bluetooth: hci0: command 0x0c1a tx timeout
[  501.791611][ T5882] Bluetooth: hci5: command 0x0c1a tx timeout
[  502.143362][T12732] netlink: 'syz.5.2288': attribute type 13 has an invalid length.
[  502.674155][T12744] netlink: 'syz.7.2287': attribute type 4 has an invalid length.
[  502.682012][T12744] netlink: 17 bytes leftover after parsing attributes in process `syz.7.2287'.
[  503.852377][ T5882] Bluetooth: hci2: command 0x041b tx timeout
[  503.911851][T12751] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2297'.
[  504.581623][T12755] loop5: detected capacity change from 0 to 2048
[  504.639447][T12757] tipc: Started in network mode
[  504.687836][T12757] tipc: Node identity 8611695b4121, cluster identity 4711
[  504.727484][T12757] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  504.800596][T12760] tipc: Resetting bearer <eth:syzkaller0>
[  504.830913][T12755]  loop5: p2 p3 p7
[  504.912613][T12756] tipc: Disabling bearer <eth:syzkaller0>
[  506.615552][T12781] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  506.621818][T12781] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  506.627986][T12781] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  506.634181][T12781] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  506.640369][T12781] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  506.646539][T12781] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  506.844986][T12791] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2313'.
[  506.905209][T12791] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2313'.
[  507.178845][T12795] netlink: 'syz.1.2311': attribute type 13 has an invalid length.
[  507.240309][ T5956] IPVS: starting estimator thread 0...
[  507.332520][T12797] IPVS: using max 21 ests per chain, 50400 per kthread
[  507.699977][T12795] bridge0: port 2(bridge_slave_1) entered disabled state
[  507.707985][T12795] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.572917][ T5869] Bluetooth: hci1: command 0x0c1a tx timeout
[  508.653287][ T5882] Bluetooth: hci3: command 0x0c1a tx timeout
[  508.653682][T12492] Bluetooth: hci6: command 0x0c1a tx timeout
[  508.659407][ T5882] Bluetooth: hci0: command 0x0c1a tx timeout
[  508.665777][ T5866] Bluetooth: hci5: command 0x0c1a tx timeout
[  508.671620][ T5869] Bluetooth: hci2: command 0x041b tx timeout
[  508.923195][T12795] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  508.961542][T12795] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  509.596747][T12805] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  509.616677][ T1023] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  509.658998][ T1023] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  509.789677][T12805] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  509.825426][ T1023] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  509.845232][ T1023] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  509.945567][T12805] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  510.089885][T12805] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  510.263805][ T6043] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  510.330432][ T6043] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  510.393473][T12098] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  510.441554][ T6043] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  511.063045][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  512.272482][T12856] loop3: detected capacity change from 0 to 512
[  512.303952][T12856] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  512.381802][T12856] EXT4-fs (loop3): 1 truncate cleaned up
[  512.437298][T12856] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  513.336741][T12874] loop7: detected capacity change from 0 to 2048
[  513.440521][T12837] warn_alloc: 1 callbacks suppressed
[  513.440546][T12837] syz.1.2330: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  513.496325][T12837] CPU: 1 UID: 0 PID: 12837 Comm: syz.1.2330 Not tainted syzkaller #0 PREEMPT(full) 
[  513.496376][T12837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  513.496398][T12837] Call Trace:
[  513.496409][T12837]  <TASK>
[  513.496423][T12837]  dump_stack_lvl+0x16c/0x1f0
[  513.496490][T12837]  warn_alloc+0x248/0x3a0
[  513.496553][T12837]  ? __pfx_warn_alloc+0x10/0x10
[  513.496632][T12837]  ? hash_netport4_resize+0x1d8/0x1c50
[  513.496678][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.496723][T12837]  ? __vmalloc_node_noprof+0xad/0xf0
[  513.496781][T12837]  __vmalloc_node_range_noprof+0x101b/0x14b0
[  513.496832][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.496893][T12837]  ? hash_netport4_resize+0x1d8/0x1c50
[  513.496953][T12837]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  513.497011][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.497055][T12837]  ? ___kmalloc_large_node+0xed/0x160
[  513.497099][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.497152][T12837]  __kvmalloc_node_noprof+0x30a/0x620
[  513.497207][T12837]  ? hash_netport4_resize+0x1d8/0x1c50
[  513.497254][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.497299][T12837]  ? __kmalloc_noprof+0x242/0x510
[  513.497361][T12837]  ? hash_netport4_resize+0x1d8/0x1c50
[  513.497408][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.497460][T12837]  ? hash_netport4_resize+0x1d8/0x1c50
[  513.497506][T12837]  hash_netport4_resize+0x1d8/0x1c50
[  513.497556][T12837]  ? __pfx_hash_netport4_add+0x10/0x10
[  513.497604][T12837]  ? __pfx_hash_netport4_uadt+0x10/0x10
[  513.497643][T12837]  ? __pfx___mutex_lock+0x10/0x10
[  513.497686][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.497743][T12837]  ? __pfx_hash_netport4_resize+0x10/0x10
[  513.497794][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.497846][T12837]  call_ad.constprop.0+0x36d/0x940
[  513.497895][T12837]  ? __pfx_hash_netport4_resize+0x10/0x10
[  513.497949][T12837]  ? __pfx_call_ad.constprop.0+0x10/0x10
[  513.497996][T12837]  ? __pfx___nla_validate_parse+0x10/0x10
[  513.498046][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.498092][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.498149][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.498193][T12837]  ? __nla_parse+0x40/0x60
[  513.498242][T12837]  ip_set_ad.constprop.0.isra.0+0x3ce/0x870
[  513.498306][T12837]  ? __pfx_ip_set_ad.constprop.0.isra.0+0x10/0x10
[  513.498371][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.498416][T12837]  ? call_rcu_tasks_generic+0x400/0x920
[  513.498516][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.498560][T12837]  ? find_held_lock+0x2b/0x80
[  513.498609][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.498664][T12837]  nfnetlink_rcv_msg+0x9fc/0x1200
[  513.498729][T12837]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  513.498786][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.498831][T12837]  ? stack_trace_save+0x8e/0xc0
[  513.498964][T12837]  netlink_rcv_skb+0x158/0x420
[  513.499001][T12837]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  513.499051][T12837]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  513.499085][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.499152][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.499197][T12837]  ? ns_capable+0xd7/0x110
[  513.499249][T12837]  nfnetlink_rcv+0x1b3/0x430
[  513.499295][T12837]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  513.499348][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.499393][T12837]  ? netlink_deliver_tap+0x1ae/0xd30
[  513.499450][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.499495][T12837]  ? is_vmalloc_addr+0x86/0xa0
[  513.499560][T12837]  netlink_unicast+0x5aa/0x870
[  513.499603][T12837]  ? __pfx_netlink_unicast+0x10/0x10
[  513.499665][T12837]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  513.499724][T12837]  ? __lock_acquire+0xb97/0x1ce0
[  513.499799][T12837]  netlink_sendmsg+0x8d1/0xdd0
[  513.499844][T12837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  513.499876][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.499928][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.499971][T12837]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  513.500019][T12837]  ____sys_sendmsg+0xa98/0xc70
[  513.500061][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.500104][T12837]  ? copy_msghdr_from_user+0x10a/0x160
[  513.500161][T12837]  ? __pfx_____sys_sendmsg+0x10/0x10
[  513.500220][T12874]  loop7: p2 p3 p7
[  513.500212][T12837]  ? __pfx_futex_wake_mark+0x10/0x10
[  513.500261][T12837]  ___sys_sendmsg+0x134/0x1d0
[  513.500324][T12837]  ? __pfx____sys_sendmsg+0x10/0x10
[  513.500404][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.500483][T12837]  __sys_sendmsg+0x16d/0x220
[  513.500540][T12837]  ? __pfx___sys_sendmsg+0x10/0x10
[  513.500594][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.500635][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.500698][T12837]  ? srso_alias_return_thunk+0x5/0xfbef5
[  513.500752][T12837]  do_syscall_64+0xcd/0x4e0
[  513.500790][T12837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  513.500827][T12837] RIP: 0033:0x7faf5f58eba9
[  513.500855][T12837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  513.500890][T12837] RSP: 002b:00007faf6049a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  513.500923][T12837] RAX: ffffffffffffffda RBX: 00007faf5f7d5fa0 RCX: 00007faf5f58eba9
[  513.500947][T12837] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 000000000000000e
[  513.500969][T12837] RBP: 00007faf5f611e19 R08: 0000000000000000 R09: 0000000000000000
[  513.500992][T12837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  513.501013][T12837] R13: 00007faf5f7d6038 R14: 00007faf5f7d5fa0 R15: 00007fff38528ee8
[  513.501062][T12837]  </TASK>
[  513.501074][T12837] Mem-Info:
[  514.070088][T12837] active_anon:11482 inactive_anon:0 isolated_anon:0
[  514.070088][T12837]  active_file:4373 inactive_file:40046 isolated_file:0
[  514.070088][T12837]  unevictable:768 dirty:180 writeback:0
[  514.070088][T12837]  slab_reclaimable:12573 slab_unreclaimable:231517
[  514.070088][T12837]  mapped:37955 shmem:7301 pagetables:1755
[  514.070088][T12837]  sec_pagetables:0 bounce:0
[  514.070088][T12837]  kernel_misc_reclaimable:0
[  514.070088][T12837]  free:1074987 free_pcp:25561 free_cma:0
[  514.219247][T12837] Node 0 active_anon:43028kB inactive_anon:0kB active_file:17492kB inactive_file:159984kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:140420kB dirty:720kB writeback:0kB shmem:24868kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12616kB pagetables:6672kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  514.311374][T12837] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  514.351300][ T5867] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  514.355751][T12837] Node 0 DMA free:15348kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  514.398206][T12837] lowmem_reserve[]: 0 2479 2481 2481 2481
[  514.460258][T12837] Node 0 DMA32 free:449908kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:26424kB inactive_anon:0kB active_file:17492kB inactive_file:158668kB unevictable:1536kB writepending:668kB present:3129332kB managed:2539452kB mlocked:0kB bounce:0kB free_pcp:57980kB local_pcp:21564kB free_cma:0kB
[  514.566058][T12837] lowmem_reserve[]: 0 0 1 1 1
[  514.583268][T12837] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  514.622963][   T30] audit: type=1326 audit(1757956383.365:2504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12888 comm="syz.7.2350" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdc7278eba9 code=0x0
[  514.639561][T12837] lowmem_reserve[]: 0 0 0 0 0
[  514.669745][T12837] Node 1 Normal free:3880152kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:38268kB local_pcp:33728kB free_cma:0kB
[  514.731424][T12837] lowmem_reserve[]: 0 0 0 0 0
[  514.736544][T12837] Node 0 DMA: 1*4kB (M) 2*8kB (UM) 2*16kB (UM) 2*32kB (UM) 2*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 3*1024kB (UM) 1*2048kB (U) 2*4096kB (UM) = 15348kB
[  514.815837][T12837] Node 0 DMA32: 1559*4kB (UME) 662*8kB (UME) 458*16kB (UME) 770*32kB (UME) 334*64kB (UME) 436*128kB (UME) 265*256kB (UME) 142*512kB (UME) 54*1024kB (UME) 25*2048kB (UME) 27*4096kB (UM) = 478316kB
[  514.857238][T12837] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  514.902209][T12837] Node 1 Normal: 142*4kB (UE) 49*8kB (UE) 18*16kB (UME) 217*32kB (UME) 77*64kB (UME) 20*128kB (UME) 8*256kB (UME) 6*512kB (UM) 1*1024kB (M) 2*2048kB (UE) 941*4096kB (M) = 3880256kB
[  514.939730][T12837] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  514.967559][T12837] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  514.989524][T12837] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  515.026290][T12837] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  515.072336][T12837] 47858 total pagecache pages
[  515.077062][T12837] 0 pages in swap cache
[  515.081221][T12837] Free swap  = 124996kB
[  515.122347][T12837] Total swap = 124996kB
[  515.126551][T12837] 2097051 pages RAM
[  515.130357][T12837] 0 pages HighMem/MovableOnly
[  515.162148][T12837] 430226 pages reserved
[  515.166352][T12837] 0 pages cma reserved
[  516.003610][T12919] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  516.009804][T12919] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  516.016294][T12919] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  516.023632][T12919] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  516.029724][T12919] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  516.036117][T12919] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  516.141325][T12922] loop4: detected capacity change from 0 to 2048
[  516.476953][    T9] IPVS: starting estimator thread 0...
[  516.540671][T12922]  loop4: p2 p3 p7
[  516.582376][T12932] IPVS: using max 22 ests per chain, 52800 per kthread
[  518.012229][T12492] Bluetooth: hci1: command 0x0c1a tx timeout
[  518.092421][T12492] Bluetooth: hci2: command 0x041b tx timeout
[  518.098550][ T5869] Bluetooth: hci3: command 0x0c1a tx timeout
[  518.105338][ T5866] Bluetooth: hci6: command 0x0c1a tx timeout
[  518.111431][ T5178] Bluetooth: hci0: command 0x0c1a tx timeout
[  518.111450][ T5882] Bluetooth: hci5: command 0x0c1a tx timeout
[  520.005009][T13017] netlink: 'syz.1.2388': attribute type 4 has an invalid length.
[  520.042140][T13017] netlink: 17 bytes leftover after parsing attributes in process `syz.1.2388'.
[  520.292407][T13025] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2402'.
[  520.502516][T13025] 8021q: adding VLAN 0 to HW filter on device bond2
[  520.574912][T13027] vlan2: entered promiscuous mode
[  520.579984][T13027] bond2: entered promiscuous mode
[  520.637869][T13027] vlan2: entered allmulticast mode
[  520.689547][T13027] bond2: entered allmulticast mode
[  520.759330][T13039] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2404'.
[  520.779444][T13029] gretap1: entered promiscuous mode
[  520.782302][T13039] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2404'.
[  520.794239][T13029] gretap1: entered allmulticast mode
[  520.801018][T13029] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  521.445762][T13042] loop3: detected capacity change from 0 to 512
[  521.611380][T13045] cgroup: fork rejected by pids controller in /syz7
[  521.637807][T13042] EXT4-fs error (device loop3): ext4_xattr_inode_iget:440: comm syz.3.2407: error while reading EA inode 32 err=-116
[  521.653404][T13042] EXT4-fs (loop3): Remounting filesystem read-only
[  521.682849][T13042] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  521.747617][T13042] EXT4-fs (loop3): 1 orphan inode deleted
[  521.817053][T13042] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  522.175478][ T5867] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  522.949660][   T13] bridge_slave_1: left allmulticast mode
[  522.970851][T13073] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2420'.
[  522.970949][   T13] bridge_slave_1: left promiscuous mode
[  523.016517][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  523.113468][   T13] bridge_slave_0: left allmulticast mode
[  523.152470][   T13] bridge_slave_0: left promiscuous mode
[  523.169361][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  523.969125][ T5869] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  523.987315][ T5869] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  524.006338][ T5869] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  524.024603][ T5869] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  524.038572][ T5869] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  524.230644][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  524.253866][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  524.274100][   T13] bond0 (unregistering): Released all slaves
[  524.477038][   T13] tipc: Left network mode
[  524.603260][T13095] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2427'.
[  524.795860][T13095] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2427'.
[  525.134312][   T13] hsr_slave_0: left promiscuous mode
[  525.146272][   T13] hsr_slave_1: left promiscuous mode
[  525.153244][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  525.166815][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  525.274954][T13104] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2429'.
[  525.753391][T13108] loop4: detected capacity change from 0 to 256
[  526.092960][ T5882] Bluetooth: hci0: command tx timeout
[  527.330389][T13130] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2438'.
[  527.347218][T13130] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2438'.
[  527.633198][T13134] bond1: entered promiscuous mode
[  527.638483][T13134] bond1: entered allmulticast mode
[  527.645433][T13134] 8021q: adding VLAN 0 to HW filter on device bond1
[  527.864551][T13137] 9pnet: Could not find request transport: fd0xffffffffffffffff
[  527.959309][T13134] bond1 (unregistering): Released all slaves
[  528.177177][ T5882] Bluetooth: hci0: command tx timeout
[  528.618821][T13147] loop5: detected capacity change from 0 to 512
[  528.690700][T13147] EXT4-fs error (device loop5): ext4_xattr_inode_iget:440: comm syz.5.2445: error while reading EA inode 32 err=-116
[  528.738360][T13147] EXT4-fs (loop5): Remounting filesystem read-only
[  528.777718][T13147] EXT4-fs warning (device loop5): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  528.818016][T13147] EXT4-fs (loop5): 1 orphan inode deleted
[  528.841965][T13147] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  529.040964][T13090] chnl_net:caif_netlink_parms(): no params data found
[  529.239786][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  529.358066][   T13] IPVS: stop unused estimator thread 0...
[  529.426130][T13175] pim6reg: entered allmulticast mode
[  529.624221][T13175] pim6reg: left allmulticast mode
[  529.659547][T13090] bridge0: port 1(bridge_slave_0) entered blocking state
[  529.679857][T13090] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.709156][T13090] bridge_slave_0: entered allmulticast mode
[  529.726463][ T6197] IPVS: starting estimator thread 0...
[  529.732463][T13090] bridge_slave_0: entered promiscuous mode
[  529.769249][T13090] bridge0: port 2(bridge_slave_1) entered blocking state
[  529.785512][T13090] bridge0: port 2(bridge_slave_1) entered disabled state
[  529.797722][T13090] bridge_slave_1: entered allmulticast mode
[  529.807955][T13090] bridge_slave_1: entered promiscuous mode
[  529.832218][T13187] IPVS: using max 21 ests per chain, 50400 per kthread
[  530.004141][T13090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  530.077795][   T30] audit: type=1326 audit(1757956398.815:2505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.173394][   T30] audit: type=1326 audit(1757956398.835:2506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.247577][   T30] audit: type=1326 audit(1757956398.845:2507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.277310][ T5882] Bluetooth: hci0: command tx timeout
[  530.293837][T13090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  530.313259][   T30] audit: type=1326 audit(1757956398.845:2508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.357382][   T30] audit: type=1326 audit(1757956398.845:2509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.380765][   T30] audit: type=1326 audit(1757956398.865:2510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.411623][   T30] audit: type=1326 audit(1757956398.865:2511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.443247][   T30] audit: type=1326 audit(1757956398.865:2512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.454930][T13198] loop4: detected capacity change from 0 to 512
[  530.466891][   T30] audit: type=1326 audit(1757956398.865:2513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.498145][   T30] audit: type=1326 audit(1757956398.875:2514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13190 comm="syz.1.2459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7faf5f58eba9 code=0x7ffc0000
[  530.552209][T13198] EXT4-fs (loop4): orphan cleanup on readonly fs
[  530.581013][T13198] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.2461: bg 0: block 248: padding at end of block bitmap is not set
[  530.655126][T13090] team0: Port device team_slave_0 added
[  530.668283][T13198] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.2461: Failed to acquire dquot type 1
[  530.700903][T13090] team0: Port device team_slave_1 added
[  530.780924][T13198] EXT4-fs (loop4): 1 truncate cleaned up
[  530.823476][T13198] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  530.862435][T13205] loop5: detected capacity change from 0 to 2048
[  530.981374][T13205] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  531.025660][T13201] infiniband syz!: set down
[  531.030460][T13201] infiniband syz!: added team_slave_0
[  531.096942][T13201] RDS/IB: syz!: added
[  531.099306][T13090] batman_adv: batadv0: Adding interface: batadv_slave_0
[  531.116148][T13090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  531.117633][T12247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.148053][T13090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  531.154410][T13201] smc: adding ib device syz! with port count 1
[  531.165217][T13090] batman_adv: batadv0: Adding interface: batadv_slave_1
[  531.176624][T13090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  531.202977][T13090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  531.228180][T13201] smc:    ib device syz! port 1 has pnetid 
[  531.516331][T13090] hsr_slave_0: entered promiscuous mode
[  531.533693][T13090] hsr_slave_1: entered promiscuous mode
[  531.536041][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x1
[  531.540060][T13090] debugfs: 'hsr0' already exists in 'hsr'
[  531.553075][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  531.582212][T13090] Cannot create hsr debugfs directory
[  531.587604][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.637454][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  531.662105][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  531.682429][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  531.701232][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  531.732421][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  531.745575][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  531.767159][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  531.774816][ T6197] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2
[  531.798077][ T6197] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz1
[  531.978539][T13216] 9pnet: Could not find request transport: f0xffffffffffffffff
[  532.332308][ T5869] Bluetooth: hci0: command tx timeout
[  532.359834][T13229] netlink: 'syz.9.2473': attribute type 11 has an invalid length.
[  532.409006][T13229] netlink: 36 bytes leftover after parsing attributes in process `syz.9.2473'.
[  532.451365][T13225] bond3: entered promiscuous mode
[  532.470460][T13225] bond3: entered allmulticast mode
[  532.476250][T13225] 8021q: adding VLAN 0 to HW filter on device bond3
[  532.680828][T13225] bond3 (unregistering): Released all slaves
[  534.966149][T13192] infiniband !yz!: set down
[  534.981922][T13192] infiniband !yz!: added team_slave_0
[  534.992817][T13192] !yz!: rxe_create_cq: returned err = -12
[  534.998803][T13192] infiniband !yz!: Couldn't create ib_mad CQ
[  535.025350][T13192] infiniband !yz!: Couldn't open port 1
[  535.084402][   T30] kauditd_printk_skb: 236 callbacks suppressed
[  535.084430][   T30] audit: type=1326 audit(1757956403.825:2749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6ac5185b67 code=0x7ffc0000
[  535.102340][T13192] RDS/IB: !yz!: added
[  535.178977][   T30] audit: type=1326 audit(1757956403.855:2750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6ac512ada9 code=0x7ffc0000
[  535.194573][T13192] smc: adding ib device !yz! with port count 1
[  535.248746][   T30] audit: type=1326 audit(1757956403.855:2751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6ac5185b67 code=0x7ffc0000
[  535.281389][   T30] audit: type=1326 audit(1757956403.855:2752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6ac512ada9 code=0x7ffc0000
[  535.310831][T13192] smc:    ib device !yz! port 1 has pnetid 
[  535.328164][   T30] audit: type=1326 audit(1757956403.855:2753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  535.370464][   T30] audit: type=1326 audit(1757956403.865:2754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6ac5185b67 code=0x7ffc0000
[  535.481246][   T30] audit: type=1326 audit(1757956403.865:2755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6ac512ada9 code=0x7ffc0000
[  535.544089][   T30] audit: type=1326 audit(1757956403.865:2756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  536.180240][   T30] audit: type=1326 audit(1757956403.865:2757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6ac5185b67 code=0x7ffc0000
[  536.265647][T13270] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2488'.
[  536.287800][   T30] audit: type=1326 audit(1757956403.865:2758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13254 comm="syz.4.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6ac512ada9 code=0x7ffc0000
[  536.312691][T13267] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  536.319492][T13267] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  536.325809][T13267] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  536.331927][T13267] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  536.338519][T13267] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  536.344696][T13267] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  536.350715][T13267] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  536.386189][T13267] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  536.641218][T13275] syzkaller0: entered promiscuous mode
[  536.649658][T13275] syzkaller0: entered allmulticast mode
[  536.675223][T13279] bridge_slave_0: left allmulticast mode
[  536.682249][T13279] bridge_slave_0: left promiscuous mode
[  536.691028][T13279] bridge0: port 1(bridge_slave_0) entered disabled state
[  536.705936][T13279] bridge_slave_1: left allmulticast mode
[  536.712556][T13279] bridge_slave_1: left promiscuous mode
[  536.718412][T13279] bridge0: port 2(bridge_slave_1) entered disabled state
[  536.730328][T13279] bond0: (slave bond_slave_0): Releasing backup interface
[  536.739878][T13279] bond0: (slave bond_slave_1): Releasing backup interface
[  536.749829][T13279] team0: Port device team_slave_0 removed
[  536.757611][T13279] team0: Port device team_slave_1 removed
[  536.764533][T13279] batman_adv: batadv0: Removing interface: batadv_slave_0
[  536.777274][T13279] batman_adv: batadv0: Removing interface: batadv_slave_1
[  536.787753][T13279] bond2: (slave gretap1): Releasing backup interface
[  536.803703][T13279] gretap1: left promiscuous mode
[  536.810035][T13279] gretap1: left allmulticast mode
[  537.321147][T13289] loop5: detected capacity change from 0 to 512
[  537.329656][T13289] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  537.357367][T13289] EXT4-fs (loop5): 1 truncate cleaned up
[  537.365997][T13289] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  537.844392][T13295] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2497'.
[  537.853679][T13295] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2497'.
[  538.332423][ T5882] Bluetooth: hci3: command 0x0c1a tx timeout
[  538.338508][ T5869] Bluetooth: hci6: command 0x0c1a tx timeout
[  538.343054][ T5882] Bluetooth: hci5: command 0x0c1a tx timeout
[  538.345576][T12492] Bluetooth: hci1: command 0x0c1a tx timeout
[  538.412382][T12492] Bluetooth: hci0: command 0x0c1a tx timeout
[  538.412720][ T5866] Bluetooth: hci2: command 0x041b tx timeout
[  538.710451][T13090] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  538.827891][T13090] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  538.954865][T13090] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  538.981244][T13299] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2499'.
[  539.018278][T13090] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  539.045232][T13300] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2499'.
[  539.087553][T13302] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2500'.
[  539.561856][T13090] 8021q: adding VLAN 0 to HW filter on device bond0
[  539.573492][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  539.656778][T13090] 8021q: adding VLAN 0 to HW filter on device team0
[  539.682999][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  539.690177][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  539.738318][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  539.745548][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  539.910176][T13090] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  539.968209][T13320] loop4: detected capacity change from 0 to 1024
[  540.007631][T13320] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  540.044603][T13320] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  540.050972][T13326] netlink: 76 bytes leftover after parsing attributes in process `syz.5.2506'.
[  540.086896][T13320] JBD2: no valid journal superblock found
[  540.122164][T13320] EXT4-fs (loop4): Could not load journal inode
[  540.315097][T13329] loop5: detected capacity change from 0 to 512
[  540.352793][T13329] EXT4-fs: Ignoring removed oldalloc option
[  540.358789][T13329] EXT4-fs: Ignoring removed bh option
[  540.422415][T13329] EXT4-fs error (device loop5): ext4_iget_extra_inode:5103: inode #15: comm syz.5.2507: corrupted in-inode xattr: e_value size too large
[  540.492804][ T5866] Bluetooth: hci0: command 0x0c1a tx timeout
[  540.508659][T13329] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.2507: couldn't read orphan inode 15 (err -117)
[  540.547614][T13329] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  540.551265][T13090] 8021q: adding VLAN 0 to HW filter on device batadv0
[  540.632515][T13329] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2507'.
[  540.824434][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  540.837805][T13339] 9pnet: Could not find request transport: fd0xffffffffffffffff
[  541.052324][   T30] kauditd_printk_skb: 62 callbacks suppressed
[  541.052360][   T30] audit: type=1326 audit(1757956409.785:2821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  541.148752][   T30] audit: type=1326 audit(1757956409.785:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  541.196124][   T30] audit: type=1326 audit(1757956409.825:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  541.636009][T13090] veth0_vlan: entered promiscuous mode
[  541.664927][T13090] veth1_vlan: entered promiscuous mode
[  541.774896][T13090] veth0_macvtap: entered promiscuous mode
[  541.843013][   T30] audit: type=1326 audit(1757956410.585:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  541.852675][T13090] veth1_macvtap: entered promiscuous mode
[  541.876797][   T30] audit: type=1326 audit(1757956410.615:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  541.905739][   T30] audit: type=1326 audit(1757956410.645:2826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  541.962482][   T30] audit: type=1326 audit(1757956410.645:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  542.005211][T13090] batman_adv: batadv0: Interface activated: batadv_slave_0
[  542.015884][   T30] audit: type=1326 audit(1757956410.645:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  542.058870][T13090] batman_adv: batadv0: Interface activated: batadv_slave_1
[  542.081942][   T30] audit: type=1326 audit(1757956410.645:2829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  542.113525][   T30] audit: type=1326 audit(1757956410.645:2830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13347 comm="syz.9.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff177f8eba9 code=0x7ffc0000
[  542.150769][ T1023] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  542.202708][ T6044] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  542.232480][ T6044] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  542.263736][   T13] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  542.487533][T12098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  542.518969][T12098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  542.572337][ T5866] Bluetooth: hci0: command 0x0c1a tx timeout
[  542.597183][T13368] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2520'.
[  542.621765][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  542.661451][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  544.309602][T13386] 9pnet_fd: Insufficient options for proto=fd
[  544.981073][T13403] bridge_slave_0: left allmulticast mode
[  544.995379][T13403] bridge_slave_0: left promiscuous mode
[  545.009857][T13403] bridge0: port 1(bridge_slave_0) entered disabled state
[  545.184921][T13403] bridge_slave_1: left allmulticast mode
[  545.190678][T13403] bridge_slave_1: left promiscuous mode
[  545.198151][T13403] bridge0: port 2(bridge_slave_1) entered disabled state
[  545.321448][T13409] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2535'.
[  545.345140][T13403] bond0: (slave bond_slave_0): Releasing backup interface
[  545.404254][T13403] bond0: (slave bond_slave_1): Releasing backup interface
[  545.466146][T13403] team0: Port device team_slave_0 removed
[  545.509874][T13403] team0: Port device team_slave_1 removed
[  545.524450][T13403] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  545.548909][T13403] batman_adv: batadv0: Removing interface: batadv_slave_0
[  545.622023][T13403] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  545.631088][T13403] batman_adv: batadv0: Removing interface: batadv_slave_1
[  546.235800][   T30] kauditd_printk_skb: 49 callbacks suppressed
[  546.235826][   T30] audit: type=1326 audit(1757956414.975:2880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  546.264369][    C1] vkms_vblank_simulate: vblank timer overrun
[  546.291276][   T30] audit: type=1326 audit(1757956414.975:2881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  546.313884][    C1] vkms_vblank_simulate: vblank timer overrun
[  546.370342][   T30] audit: type=1326 audit(1757956414.975:2882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  546.441095][   T30] audit: type=1326 audit(1757956415.095:2883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  546.463598][    C1] vkms_vblank_simulate: vblank timer overrun
[  546.519616][   T30] audit: type=1326 audit(1757956415.095:2884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  546.599307][   T30] audit: type=1326 audit(1757956415.095:2885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13429 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f111b7c1465 code=0x7ffc0000
[  546.669767][   T30] audit: type=1326 audit(1757956415.135:2886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  546.734922][   T30] audit: type=1326 audit(1757956415.135:2887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  546.799892][   T30] audit: type=1326 audit(1757956415.135:2888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  546.894494][   T30] audit: type=1326 audit(1757956415.175:2889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.2540" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f111b78eba9 code=0x7ffc0000
[  547.095756][T13408] warn_alloc: 1 callbacks suppressed
[  547.095783][T13408] syz.7.2534: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  547.187393][T13408] CPU: 0 UID: 0 PID: 13408 Comm: syz.7.2534 Not tainted syzkaller #0 PREEMPT(full) 
[  547.187445][T13408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  547.187469][T13408] Call Trace:
[  547.187481][T13408]  <TASK>
[  547.187494][T13408]  dump_stack_lvl+0x16c/0x1f0
[  547.187562][T13408]  warn_alloc+0x248/0x3a0
[  547.187625][T13408]  ? __pfx_warn_alloc+0x10/0x10
[  547.187706][T13408]  ? hash_netport4_resize+0x1d8/0x1c50
[  547.187754][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.187801][T13408]  ? __vmalloc_node_noprof+0xad/0xf0
[  547.187861][T13408]  __vmalloc_node_range_noprof+0x101b/0x14b0
[  547.187913][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.187975][T13408]  ? hash_netport4_resize+0x1d8/0x1c50
[  547.188037][T13408]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  547.188097][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.188143][T13408]  ? ___kmalloc_large_node+0xed/0x160
[  547.188190][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.188248][T13408]  __kvmalloc_node_noprof+0x30a/0x620
[  547.188306][T13408]  ? hash_netport4_resize+0x1d8/0x1c50
[  547.188360][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.188407][T13408]  ? __kmalloc_noprof+0x242/0x510
[  547.188463][T13408]  ? hash_netport4_resize+0x1d8/0x1c50
[  547.188510][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.188566][T13408]  ? hash_netport4_resize+0x1d8/0x1c50
[  547.188613][T13408]  hash_netport4_resize+0x1d8/0x1c50
[  547.188665][T13408]  ? __pfx_hash_netport4_add+0x10/0x10
[  547.188714][T13408]  ? __pfx_hash_netport4_uadt+0x10/0x10
[  547.188755][T13408]  ? __pfx___mutex_lock+0x10/0x10
[  547.188797][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.188856][T13408]  ? __pfx_hash_netport4_resize+0x10/0x10
[  547.188908][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.188961][T13408]  call_ad.constprop.0+0x36d/0x940
[  547.189012][T13408]  ? __pfx_hash_netport4_resize+0x10/0x10
[  547.189068][T13408]  ? __pfx_call_ad.constprop.0+0x10/0x10
[  547.189115][T13408]  ? __pfx___nla_validate_parse+0x10/0x10
[  547.189165][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.189213][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.189272][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.189317][T13408]  ? __nla_parse+0x40/0x60
[  547.189373][T13408]  ip_set_ad.constprop.0.isra.0+0x3ce/0x870
[  547.189436][T13408]  ? __pfx_ip_set_ad.constprop.0.isra.0+0x10/0x10
[  547.189491][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.189537][T13408]  ? call_rcu_tasks_generic+0x400/0x920
[  547.189640][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.189685][T13408]  ? find_held_lock+0x2b/0x80
[  547.189737][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.189792][T13408]  nfnetlink_rcv_msg+0x9fc/0x1200
[  547.189860][T13408]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  547.189917][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.189963][T13408]  ? consume_skb+0xcc/0x100
[  547.190048][T13408]  ? __pfx___dev_queue_xmit+0x10/0x10
[  547.190110][T13408]  netlink_rcv_skb+0x158/0x420
[  547.190147][T13408]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  547.190201][T13408]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  547.190234][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.190305][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.190355][T13408]  ? ns_capable+0xd7/0x110
[  547.190407][T13408]  nfnetlink_rcv+0x1b3/0x430
[  547.190455][T13408]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  547.190500][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.190546][T13408]  ? netlink_deliver_tap+0x1ae/0xd30
[  547.190618][T13408]  netlink_unicast+0x5aa/0x870
[  547.190661][T13408]  ? __pfx_netlink_unicast+0x10/0x10
[  547.190726][T13408]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  547.190786][T13408]  ? __lock_acquire+0xb97/0x1ce0
[  547.190862][T13408]  netlink_sendmsg+0x8d1/0xdd0
[  547.190907][T13408]  ? __pfx_netlink_sendmsg+0x10/0x10
[  547.190940][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.190993][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.191038][T13408]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  547.191089][T13408]  ____sys_sendmsg+0xa98/0xc70
[  547.191133][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.191178][T13408]  ? copy_msghdr_from_user+0x10a/0x160
[  547.191238][T13408]  ? __pfx_____sys_sendmsg+0x10/0x10
[  547.191295][T13408]  ? __pfx_futex_wake_mark+0x10/0x10
[  547.191354][T13408]  ___sys_sendmsg+0x134/0x1d0
[  547.191417][T13408]  ? __pfx____sys_sendmsg+0x10/0x10
[  547.191503][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.191588][T13408]  __sys_sendmsg+0x16d/0x220
[  547.191649][T13408]  ? __pfx___sys_sendmsg+0x10/0x10
[  547.191708][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.191753][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.191820][T13408]  ? srso_alias_return_thunk+0x5/0xfbef5
[  547.191879][T13408]  do_syscall_64+0xcd/0x4e0
[  547.191919][T13408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.191956][T13408] RIP: 0033:0x7f72de38eba9
[  547.191985][T13408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.192020][T13408] RSP: 002b:00007f72df2a8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  547.192055][T13408] RAX: ffffffffffffffda RBX: 00007f72de5d5fa0 RCX: 00007f72de38eba9
[  547.192080][T13408] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 000000000000000c
[  547.192102][T13408] RBP: 00007f72de411e19 R08: 0000000000000000 R09: 0000000000000000
[  547.192124][T13408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  547.192147][T13408] R13: 00007f72de5d6038 R14: 00007f72de5d5fa0 R15: 00007fffdc9e3188
[  547.192200][T13408]  </TASK>
[  548.047096][T13408] Mem-Info:
[  548.050253][T13408] active_anon:11415 inactive_anon:0 isolated_anon:0
[  548.050253][T13408]  active_file:13517 inactive_file:40055 isolated_file:0
[  548.050253][T13408]  unevictable:768 dirty:289 writeback:0
[  548.050253][T13408]  slab_reclaimable:12506 slab_unreclaimable:220858
[  548.050253][T13408]  mapped:40627 shmem:7291 pagetables:1744
[  548.050253][T13408]  sec_pagetables:0 bounce:0
[  548.050253][T13408]  kernel_misc_reclaimable:0
[  548.050253][T13408]  free:1161698 free_pcp:25670 free_cma:0
[  548.095789][    C1] vkms_vblank_simulate: vblank timer overrun
[  548.136479][T13447] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2550'.
[  548.292216][T13408] Node 0 active_anon:45676kB inactive_anon:0kB active_file:54068kB inactive_file:160020kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:162508kB dirty:1164kB writeback:0kB shmem:27628kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12608kB pagetables:6680kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  548.324254][    C1] vkms_vblank_simulate: vblank timer overrun
[  548.340995][T13449] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2551'.
[  548.350128][T13408] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  548.380072][    C1] vkms_vblank_simulate: vblank timer overrun
[  548.445829][T13408] Node 0 DMA free:15348kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  548.483917][T13408] lowmem_reserve[]: 0 2479 2481 2481 2481
[  548.489754][T13408] Node 0 DMA32 free:766368kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:34020kB inactive_anon:0kB active_file:54068kB inactive_file:158704kB unevictable:1536kB writepending:1172kB present:3129332kB managed:2539452kB mlocked:0kB bounce:0kB free_pcp:60508kB local_pcp:23364kB free_cma:0kB
[  548.540073][T13408] lowmem_reserve[]: 0 0 1 1 1
[  548.547211][T13408] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  548.604197][T13408] lowmem_reserve[]: 0 0 0 0 0
[  548.609120][T13408] Node 1 Normal free:3883516kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:35088kB local_pcp:32960kB free_cma:0kB
[  548.640397][    C1] vkms_vblank_simulate: vblank timer overrun
[  548.652892][T13408] lowmem_reserve[]: 0 0 0 0 0
[  548.664598][T13408] Node 0 DMA: 1*4kB (M) 2*8kB (UM) 2*16kB (UM) 2*32kB (UM) 2*64kB (UM) 2*128kB (UM) 2*256kB (UM) 2*512kB (UM) 3*1024kB (UM) 1*2048kB (U) 2*4096kB (UM) = 15348kB
[  548.727934][T13408] Node 0 DMA32: 672*4kB (UME) 391*8kB (UME) 303*16kB (UM) 329*32kB (UME) 546*64kB (UME) 639*128kB (UME) 461*256kB (UME) 217*512kB (UME) 178*1024kB (UME) 28*2048kB (UME) 39*4096kB (UM) = 766408kB
[  548.793311][T13408] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  548.819723][T13454] pim6reg: entered allmulticast mode
[  548.842393][T13455] pim6reg: left allmulticast mode
[  548.847592][T13408] Node 1 Normal: 203*4kB (UE) 50*8kB (UME) 32*16kB (UME) 220*32kB (UME) 77*64kB (UME) 21*128kB (UME) 8*256kB (UME) 5*512kB (UM) 2*1024kB (UM) 3*2048kB (UME) 941*4096kB (M) = 3883516kB
[  548.911661][T13408] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  548.936781][T13408] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  548.958983][T13408] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  548.987624][T13408] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  548.987664][T13408] 59511 total pagecache pages
[  548.987679][T13408] 0 pages in swap cache
[  548.987692][T13408] Free swap  = 124996kB
[  548.987706][T13408] Total swap = 124996kB
[  548.987723][T13408] 2097051 pages RAM
[  548.987736][T13408] 0 pages HighMem/MovableOnly
[  548.987750][T13408] 430226 pages reserved
[  548.987764][T13408] 0 pages cma reserved
[  549.369583][T13469] loop4: detected capacity change from 0 to 2048
[  549.474864][T13469] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  550.050879][T12247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.254311][T13489] warning: `syz.4.2564' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  550.353086][T13492] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2566'.
[  550.687824][T13502] pim6reg: entered allmulticast mode
[  550.726686][T13502] pim6reg: left allmulticast mode
[  551.094793][T13521] syzkaller0: entered allmulticast mode
[  556.657097][T13584] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2601'.
[  556.687960][T13584] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2601'.
[  558.415979][T13620] loop7: detected capacity change from 0 to 512
[  558.645795][T13620] EXT4-fs error (device loop7): ext4_xattr_inode_iget:440: comm syz.7.2617: error while reading EA inode 32 err=-116
[  558.671641][T13620] EXT4-fs (loop7): Remounting filesystem read-only
[  558.678381][T13620] EXT4-fs warning (device loop7): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  558.696701][T13620] EXT4-fs (loop7): 1 orphan inode deleted
[  558.708354][T13620] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  560.236455][T13557] pim6reg: entered allmulticast mode
[  560.260981][T13561] pim6reg: left allmulticast mode
[  560.432362][T13592] bond_slave_1: entered promiscuous mode
[  560.468643][T13592] bond_slave_1: entered allmulticast mode
[  561.230385][T13090] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  566.066544][T13665] netlink: 'syz.7.2631': attribute type 13 has an invalid length.
[  566.455755][T13665] bridge0: port 2(bridge_slave_1) entered disabled state
[  566.463585][T13665] bridge0: port 1(bridge_slave_0) entered disabled state
[  567.405899][   T30] kauditd_printk_skb: 37 callbacks suppressed
[  567.405925][   T30] audit: type=1326 audit(1757956436.145:2927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.434521][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.470958][T13665] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  567.499786][T13665] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  567.512563][   T30] audit: type=1326 audit(1757956436.145:2928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.536201][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.604956][   T30] audit: type=1326 audit(1757956436.185:2929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.662645][   T30] audit: type=1326 audit(1757956436.185:2930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.685095][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.721780][   T30] audit: type=1326 audit(1757956436.185:2931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.765037][   T30] audit: type=1326 audit(1757956436.185:2932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.787465][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.831415][   T30] audit: type=1326 audit(1757956436.185:2933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.853855][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.897292][   T30] audit: type=1326 audit(1757956436.185:2934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.919746][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.960871][   T30] audit: type=1326 audit(1757956436.185:2935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  567.983326][    C1] vkms_vblank_simulate: vblank timer overrun
[  567.999741][T13682] pim6reg: entered allmulticast mode
[  568.019321][T13683] pim6reg: left allmulticast mode
[  568.028943][   T30] audit: type=1326 audit(1757956436.185:2936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13679 comm="syz.4.2640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  568.051389][    C1] vkms_vblank_simulate: vblank timer overrun
[  568.059274][T13677] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  568.065869][T13677] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  568.071964][T13677] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  568.078373][T13677] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  568.084555][T13677] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  568.090637][T13677] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  568.122323][   T12] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  568.202480][   T12] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  568.272248][   T12] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  568.314129][   T12] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  570.173005][T12492] Bluetooth: hci0: command 0x0c1a tx timeout
[  570.174830][ T5866] Bluetooth: hci2: command 0x041b tx timeout
[  570.179051][T12492] Bluetooth: hci3: command 0x0c1a tx timeout
[  570.185070][ T5866] Bluetooth: hci6: command 0x0c1a tx timeout
[  570.191953][T12492] Bluetooth: hci5: command 0x0c1a tx timeout
[  570.197450][ T5869] Bluetooth: hci1: command 0x0c1a tx timeout
[  570.229327][T13723] loop5: detected capacity change from 0 to 512
[  570.312232][T13723] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  570.406978][T13725] syzkaller0: entered promiscuous mode
[  570.433599][T13723] EXT4-fs (loop5): 1 truncate cleaned up
[  570.442771][T13725] syzkaller0: entered allmulticast mode
[  570.473129][T13723] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  571.551758][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.906170][T13745] pim6reg: entered allmulticast mode
[  572.003799][T13750] pim6reg: left allmulticast mode
[  572.448743][T13756] loop5: detected capacity change from 0 to 512
[  572.504868][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  572.598632][T13760] netlink: 'syz.1.2659': attribute type 13 has an invalid length.
[  572.650884][T13756] EXT4-fs error (device loop5): ext4_xattr_inode_iget:440: comm syz.5.2660: error while reading EA inode 32 err=-116
[  572.686612][T13756] EXT4-fs (loop5): Remounting filesystem read-only
[  572.704537][T13756] EXT4-fs warning (device loop5): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  572.735140][T13756] EXT4-fs (loop5): 1 orphan inode deleted
[  572.746747][T13756] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  572.896825][T13765] loop7: detected capacity change from 0 to 512
[  572.964426][T13765] EXT4-fs: Ignoring removed oldalloc option
[  572.970411][T13765] EXT4-fs: Ignoring removed bh option
[  573.032726][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  573.040657][T13769] 9pnet_fd: p9_fd_create_tcp (13769): problem connecting socket to 127.0.0.1
[  573.146268][T13765] EXT4-fs error (device loop7): ext4_iget_extra_inode:5103: inode #15: comm syz.7.2666: corrupted in-inode xattr: e_value size too large
[  573.274921][T13765] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.2666: couldn't read orphan inode 15 (err -117)
[  573.306931][T13772] pimreg: entered allmulticast mode
[  573.454780][T13765] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  573.734964][T13765] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2666'.
[  573.994287][T13090] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  575.141036][T13787] loop7: detected capacity change from 0 to 512
[  575.238759][T13787] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  575.352641][T13787] EXT4-fs (loop7): 1 truncate cleaned up
[  575.381870][T13787] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  582.460504][T13090] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.672193][T13806] pim6reg: entered allmulticast mode
[  582.700596][T13806] pim6reg: left allmulticast mode
[  582.931563][T13811] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2684'.
[  583.607057][T13817] loop3: detected capacity change from 0 to 512
[  583.688304][T13817] EXT4-fs error (device loop3): ext4_xattr_inode_iget:440: comm syz.3.2682: error while reading EA inode 32 err=-116
[  583.772455][T13817] EXT4-fs (loop3): Remounting filesystem read-only
[  583.996057][T13817] EXT4-fs warning (device loop3): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  584.041537][T13830] loop4: detected capacity change from 0 to 512
[  584.064302][T13817] EXT4-fs (loop3): 1 orphan inode deleted
[  584.123959][T13830] EXT4-fs: Ignoring removed oldalloc option
[  584.565138][T13817] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  584.570488][T13830] EXT4-fs: Ignoring removed bh option
[  584.684798][T13830] EXT4-fs error (device loop4): ext4_iget_extra_inode:5103: inode #15: comm syz.4.2686: corrupted in-inode xattr: e_value size too large
[  586.245064][T13830] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.2686: couldn't read orphan inode 15 (err -117)
[  586.327873][T13830] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  586.546443][ T5867] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  586.573585][T13830] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2686'.
[  586.915684][T12247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  587.387618][T13860] netlink: 564 bytes leftover after parsing attributes in process `syz.4.2696'.
[  588.183785][   T30] kauditd_printk_skb: 59 callbacks suppressed
[  588.183811][   T30] audit: type=1326 audit(1757956456.925:2996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13864 comm="syz.4.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  588.376322][   T30] audit: type=1326 audit(1757956456.925:2997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13864 comm="syz.4.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  588.562111][   T30] audit: type=1326 audit(1757956456.945:2998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13864 comm="syz.4.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  588.682183][   T30] audit: type=1326 audit(1757956456.945:2999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13864 comm="syz.4.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  588.831650][   T30] audit: type=1326 audit(1757956456.945:3000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13864 comm="syz.4.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  589.193386][   T30] audit: type=1326 audit(1757956456.945:3001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13864 comm="syz.4.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  589.298918][   T30] audit: type=1326 audit(1757956457.045:3002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13864 comm="syz.4.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  589.480003][   T30] audit: type=1326 audit(1757956457.045:3003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13864 comm="syz.4.2699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ac518eba9 code=0x7ffc0000
[  589.730052][T13881] loop4: detected capacity change from 0 to 164
[  589.800499][ T5869] Bluetooth: hci3: unexpected event for opcode 0x202d
[  590.417985][T13884] loop5: detected capacity change from 0 to 512
[  590.618670][T13887] loop4: detected capacity change from 0 to 128
[  590.701150][T13884] EXT4-fs error (device loop5): ext4_xattr_inode_iget:440: comm syz.5.2705: error while reading EA inode 32 err=-116
[  590.839678][T13884] EXT4-fs (loop5): Remounting filesystem read-only
[  590.848638][T13884] EXT4-fs warning (device loop5): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  590.900430][T13884] EXT4-fs (loop5): 1 orphan inode deleted
[  590.917954][T13884] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  591.364243][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.402593][ T5869] Bluetooth: hci1: Received unexpected HCI Event 0x00
[  592.735871][T13913] loop5: detected capacity change from 0 to 512
[  592.772195][T13913] EXT4-fs: Ignoring removed oldalloc option
[  592.856986][T13913] EXT4-fs: Ignoring removed bh option
[  592.952412][T13913] EXT4-fs error (device loop5): ext4_iget_extra_inode:5103: inode #15: comm syz.5.2717: corrupted in-inode xattr: e_value size too large
[  592.985390][T13913] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.2717: couldn't read orphan inode 15 (err -117)
[  593.098180][T13913] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  596.303295][ T5879] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.650603][T13962] netlink: 'syz.4.2728': attribute type 13 has an invalid length.
[  598.437936][T13968] loop5: detected capacity change from 0 to 256
[  598.556171][T13968] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  598.668862][T13968] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  598.748694][T13968] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  598.787693][   T30] audit: type=1800 audit(1757956467.525:3004): pid=13968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2737" name="file1" dev="loop5" ino=1048651 res=0 errno=0
[  598.927195][T13973] loop7: detected capacity change from 0 to 512
[  598.991127][T13973] EXT4-fs: Ignoring removed oldalloc option
[  599.068937][T13973] EXT4-fs: Ignoring removed bh option
[  599.406579][T13973] EXT4-fs error (device loop7): ext4_iget_extra_inode:5103: inode #15: comm syz.7.2739: corrupted in-inode xattr: e_value size too large
[  599.425433][T13976] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2740'.
[  599.528961][T13973] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.2739: couldn't read orphan inode 15 (err -117)
[  599.643629][T13973] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  600.034127][T13090] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.027383][T13981] pim6reg: entered allmulticast mode
[  608.077961][T13982] pim6reg: left allmulticast mode
[  608.148924][ T1023] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  608.213922][ T1023] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  608.279449][ T1023] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  608.325371][ T1023] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  609.442345][T13999] loop3: detected capacity change from 0 to 1024
[  610.915182][T14003] loop4: detected capacity change from 0 to 2048
[  611.037982][T14003] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  611.094545][T14003] UDF-fs: Scanning with blocksize 512 failed
[  611.223423][T14003] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  618.216920][ T5866] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  618.232399][ T5866] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  618.242169][ T5866] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  618.284031][ T5866] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  618.292465][ T5866] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  618.635587][T14056] input: syz1 as /devices/virtual/input/input5
[  618.788382][T14058] loop4: detected capacity change from 0 to 2048
[  619.410878][T14062] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  619.462376][T14062] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  619.512755][T14062] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  619.518907][T14062] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  619.558081][T14058]  loop4: p2 p3 p7
[  619.622980][T14062] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  619.687853][T14062] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  619.772686][T14062] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  619.892984][T14062] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  621.718871][ T5869] Bluetooth: hci1: command 0x0c1a tx timeout
[  621.725028][ T5869] Bluetooth: hci2: command 0x041b tx timeout
[  621.731060][ T5869] Bluetooth: hci3: command 0x0c1a tx timeout
[  621.737192][ T5869] Bluetooth: hci6: command 0x0c1a tx timeout
[  621.743308][ T5869] Bluetooth: hci4: command 0x041b tx timeout
[  621.750368][ T5869] Bluetooth: hci0: command 0x0c1a tx timeout
[  622.763625][T14089] loop3: detected capacity change from 0 to 164
[  623.289542][   T43] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  623.491442][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  623.508562][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  623.549787][   T43] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  623.577297][   T43] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  623.614739][   T43] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  623.646684][   T43] usb 4-1: config 0 descriptor??
[  623.679463][   T13] bond0 (unregistering): Released all slaves
[  623.775785][ T5866] Bluetooth: hci4: command 0x041b tx timeout
[  624.309572][   T43] plantronics 0003:047F:FFFF.0003: ignoring exceeding usage max
[  624.620237][   T43] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  624.687172][T14078] warn_alloc: 1 callbacks suppressed
[  624.687197][T14078] syz.4.2774: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  624.752773][T14078] CPU: 1 UID: 0 PID: 14078 Comm: syz.4.2774 Not tainted syzkaller #0 PREEMPT(full) 
[  624.752820][T14078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  624.752842][T14078] Call Trace:
[  624.752852][T14078]  <TASK>
[  624.752865][T14078]  dump_stack_lvl+0x16c/0x1f0
[  624.752926][T14078]  warn_alloc+0x248/0x3a0
[  624.752985][T14078]  ? __pfx_warn_alloc+0x10/0x10
[  624.753059][T14078]  ? hash_netport4_resize+0x1d8/0x1c50
[  624.753103][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.753146][T14078]  ? __vmalloc_node_noprof+0xad/0xf0
[  624.753202][T14078]  __vmalloc_node_range_noprof+0x101b/0x14b0
[  624.753250][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.753307][T14078]  ? hash_netport4_resize+0x1d8/0x1c50
[  624.753373][T14078]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  624.753429][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.753471][T14078]  ? ___kmalloc_large_node+0xed/0x160
[  624.753513][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.753563][T14078]  __kvmalloc_node_noprof+0x30a/0x620
[  624.753616][T14078]  ? hash_netport4_resize+0x1d8/0x1c50
[  624.753659][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.753704][T14078]  ? __kmalloc_noprof+0x242/0x510
[  624.753757][T14078]  ? hash_netport4_resize+0x1d8/0x1c50
[  624.753800][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.753851][T14078]  ? hash_netport4_resize+0x1d8/0x1c50
[  624.753895][T14078]  hash_netport4_resize+0x1d8/0x1c50
[  624.753943][T14078]  ? __pfx_hash_netport4_add+0x10/0x10
[  624.753990][T14078]  ? __pfx_hash_netport4_uadt+0x10/0x10
[  624.754027][T14078]  ? __pfx___mutex_lock+0x10/0x10
[  624.754069][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.754126][T14078]  ? __pfx_hash_netport4_resize+0x10/0x10
[  624.754174][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.754224][T14078]  call_ad.constprop.0+0x36d/0x940
[  624.754270][T14078]  ? __pfx_hash_netport4_resize+0x10/0x10
[  624.754322][T14078]  ? __pfx_call_ad.constprop.0+0x10/0x10
[  624.754366][T14078]  ? __pfx___nla_validate_parse+0x10/0x10
[  624.754419][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.754464][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.754518][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.754560][T14078]  ? __nla_parse+0x40/0x60
[  624.754606][T14078]  ip_set_ad.constprop.0.isra.0+0x3ce/0x870
[  624.754666][T14078]  ? __pfx_ip_set_ad.constprop.0.isra.0+0x10/0x10
[  624.754717][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.754760][T14078]  ? call_rcu_tasks_generic+0x400/0x920
[  624.754859][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.754902][T14078]  ? find_held_lock+0x2b/0x80
[  624.754949][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.755001][T14078]  nfnetlink_rcv_msg+0x9fc/0x1200
[  624.755066][T14078]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  624.755121][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.755164][T14078]  ? stack_trace_save+0x8e/0xc0
[  624.755274][T14078]  netlink_rcv_skb+0x158/0x420
[  624.755307][T14078]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  624.755357][T14078]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  624.755395][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.755463][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.755503][T14078]  ? ns_capable+0xd7/0x110
[  624.755553][T14078]  nfnetlink_rcv+0x1b3/0x430
[  624.755600][T14078]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  624.755644][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.755686][T14078]  ? netlink_deliver_tap+0x1ae/0xd30
[  624.755742][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.755786][T14078]  ? is_vmalloc_addr+0x86/0xa0
[  624.755848][T14078]  netlink_unicast+0x5aa/0x870
[  624.755887][T14078]  ? __pfx_netlink_unicast+0x10/0x10
[  624.755948][T14078]  ? __pfx_netlink_autobind.isra.0+0x10/0x10
[  624.756023][T14078]  netlink_sendmsg+0x8d1/0xdd0
[  624.756065][T14078]  ? __pfx_netlink_sendmsg+0x10/0x10
[  624.756096][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.756146][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.756188][T14078]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  624.756237][T14078]  ____sys_sendmsg+0xa98/0xc70
[  624.756280][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.756323][T14078]  ? copy_msghdr_from_user+0x10a/0x160
[  624.756386][T14078]  ? __pfx_____sys_sendmsg+0x10/0x10
[  624.756440][T14078]  ? __pfx_futex_wake_mark+0x10/0x10
[  624.756489][T14078]  ___sys_sendmsg+0x134/0x1d0
[  624.756549][T14078]  ? __pfx____sys_sendmsg+0x10/0x10
[  624.756632][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.756711][T14078]  __sys_sendmsg+0x16d/0x220
[  624.756770][T14078]  ? __pfx___sys_sendmsg+0x10/0x10
[  624.756828][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.756872][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.756936][T14078]  ? srso_alias_return_thunk+0x5/0xfbef5
[  624.756992][T14078]  do_syscall_64+0xcd/0x4e0
[  624.757030][T14078]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  624.757067][T14078] RIP: 0033:0x7f6ac518eba9
[  624.757095][T14078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  624.757130][T14078] RSP: 002b:00007f6ac5fcf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  624.757164][T14078] RAX: ffffffffffffffda RBX: 00007f6ac53d5fa0 RCX: 00007f6ac518eba9
[  624.757189][T14078] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 000000000000000c
[  624.757211][T14078] RBP: 00007f6ac5211e19 R08: 0000000000000000 R09: 0000000000000000
[  624.757235][T14078] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  624.757258][T14078] R13: 00007f6ac53d6038 R14: 00007f6ac53d5fa0 R15: 00007fffa79ec5d8
[  624.757308][T14078]  </TASK>
[  624.757321][T14078] Mem-Info:
[  624.904522][ T5846] usb 4-1: USB disconnect, device number 2
[  624.929634][T14078] active_anon:5685 inactive_anon:0 isolated_anon:12
[  624.929634][T14078]  active_file:23183 inactive_file:39578 isolated_file:450
[  624.929634][T14078]  unevictable:756 dirty:137 writeback:0
[  624.929634][T14078]  slab_reclaimable:12860 slab_unreclaimable:258473
[  624.929634][T14078]  mapped:34901 shmem:1551 pagetables:1684
[  624.929634][T14078]  sec_pagetables:0 bounce:0
[  624.929634][T14078]  kernel_misc_reclaimable:0
[  624.929634][T14078]  free:1125352 free_pcp:19440 free_cma:0
[  625.360331][T14078] Node 0 active_anon:22736kB inactive_anon:0kB active_file:92732kB inactive_file:159936kB unevictable:1500kB isolated(anon):48kB isolated(file):76kB mapped:139568kB dirty:580kB writeback:0kB shmem:4668kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12616kB pagetables:6584kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  625.393659][T14078] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  625.424352][T14078] Node 0 DMA free:11716kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:1588kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  625.454266][T14078] lowmem_reserve[]: 0 2479 2481 2481 2481
[  625.460093][T14078] Node 0 DMA32 free:708232kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22692kB inactive_anon:0kB active_file:91132kB inactive_file:157936kB unevictable:1500kB writepending:576kB present:3129332kB managed:2539452kB mlocked:12kB bounce:0kB free_pcp:67276kB local_pcp:44728kB free_cma:0kB
[  625.521717][   T13] bond1 (unregistering): Released all slaves
[  625.548962][T14078] lowmem_reserve[]: 0 0 1 1 1
[  625.565174][T14078] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:12kB inactive_file:1300kB unevictable:0kB writepending:4kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB
[  625.613622][T14078] lowmem_reserve[]: 0 0 0 0 0
[  625.618444][T14078] Node 1 Normal free:3793748kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  625.665904][T14078] lowmem_reserve[]: 0 0 0 0 0
[  625.736304][T14078] Node 0 DMA: 1*4kB (M) 2*8kB (M) 9*16kB (M) 5*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 0*512kB 2*1024kB (UM) 2*2048kB (M) 1*4096kB (U) = 11716kB
[  625.760007][T14078] Node 0 DMA32: 764*4kB (UME) 588*8kB (UME) 457*16kB (M) 457*32kB (UME) 785*64kB (UM) 848*128kB (UM) 507*256kB (UM) 271*512kB (UM) 142*1024kB (UM) 12*2048kB (UM) 18*4096kB (UM) = 700736kB
[  625.794485][T14078] Node 0 Normal: 3*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  625.809923][T14078] Node 1 Normal: 205*4kB (UE) 50*8kB (UME) 33*16kB (UME) 226*32kB (UME) 87*64kB (UME) 33*128kB (UME) 16*256kB (UME) 7*512kB (UM) 1*1024kB (M) 3*2048kB (UME) 918*4096kB (UM) = 3793748kB
[  625.858864][ T5866] Bluetooth: hci4: command 0x041b tx timeout
[  625.866603][T14078] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  625.889816][T14078] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  625.911138][T14078] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  625.937116][T14078] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  625.965490][T14078] 65129 total pagecache pages
[  625.970193][T14078] 0 pages in swap cache
[  625.974681][T14078] Free swap  = 124996kB
[  625.978917][T14078] Total swap = 124996kB
[  625.983464][T14078] 2097051 pages RAM
[  625.989819][T14078] 0 pages HighMem/MovableOnly
[  626.007132][T14078] 430226 pages reserved
[  626.011410][T14078] 0 pages cma reserved
[  626.042194][   T13] bond2 (unregistering): Released all slaves
[  626.331985][   T13] tipc: Left network mode
[  626.383178][T14116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2790'.
[  626.452185][T14116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2790'.
[  627.723822][T14136] netlink: 'syz.4.2793': attribute type 13 has an invalid length.
[  627.932122][ T5866] Bluetooth: hci4: command 0x041b tx timeout
[  628.524763][T14148] loop3: detected capacity change from 0 to 512
[  628.552295][T14144] pim6reg: entered allmulticast mode
[  628.558464][T14148] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  628.586635][T14148] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002]
[  628.602165][T14146] pim6reg: left allmulticast mode
[  628.658688][T14148] System zones: 1-12
[  628.685749][T14148] EXT4-fs error (device loop3): ext4_iget_extra_inode:5103: inode #15: comm syz.3.2798: corrupted in-inode xattr: e_value size too large
[  628.764105][T14148] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.2798: couldn't read orphan inode 15 (err -117)
[  628.847763][T14154] loop7: detected capacity change from 0 to 512
[  628.876859][T14154] EXT4-fs: Ignoring removed oldalloc option
[  628.887117][T14148] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  628.915317][T14154] EXT4-fs: Ignoring removed bh option
[  629.002289][T14154] EXT4-fs error (device loop7): ext4_iget_extra_inode:5103: inode #15: comm syz.7.2799: corrupted in-inode xattr: e_value size too large
[  629.045435][T14051] chnl_net:caif_netlink_parms(): no params data found
[  629.103154][T14157] ------------[ cut here ]------------
[  629.108659][T14157] verifier bug: scc exit: no visit info for call chain (1)(1)
[  629.123282][T14154] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.2799: couldn't read orphan inode 15 (err -117)
[  629.148441][T14154] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  629.162435][T14157] WARNING: CPU: 0 PID: 14157 at kernel/bpf/verifier.c:1949 maybe_exit_scc+0x768/0x8d0
[  629.172485][T14157] Modules linked in:
[  629.176402][T14157] CPU: 0 UID: 0 PID: 14157 Comm: syz.4.2800 Not tainted syzkaller #0 PREEMPT(full) 
[  629.186058][T14157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  629.196184][T14157] RIP: 0010:maybe_exit_scc+0x768/0x8d0
[  629.201699][T14157] Code: ff ff e8 6b 82 e8 ff c6 05 83 e2 c0 0e 01 90 48 89 ee 48 89 df e8 f8 47 fb ff 48 c7 c7 00 95 b5 8b 48 89 c6 e8 a9 27 a7 ff 90 <0f> 0b 90 90 e9 4e ff ff ff e8 6a ec 4d 00 e9 7f f9 ff ff 4c 8b 4c
[  629.221546][T14157] RSP: 0018:ffffc9000b137500 EFLAGS: 00010282
[  629.227897][T14157] RAX: 0000000000000000 RBX: ffff8880af920000 RCX: ffffc9000f5a6000
[  629.235974][T14157] RDX: 0000000000080000 RSI: ffffffff817a4395 RDI: 0000000000000001
[  629.244070][T14157] RBP: ffff8880af926328 R08: 0000000000000001 R09: 0000000000000000
[  629.252319][T14157] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff92001626ea7
[  629.260314][T14157] R13: 0000000000000000 R14: ffff888034a69800 R15: dffffc0000000000
[  629.268360][T14157] FS:  00007f6ac5fcf6c0(0000) GS:ffff8881246b3000(0000) knlGS:0000000000000000
[  629.277870][T14157] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  629.284862][T14157] CR2: 0000000000000000 CR3: 0000000058887000 CR4: 0000000000350ef0
[  629.292906][T14157] Call Trace:
[  629.296192][T14157]  <TASK>
[  629.299141][T14157]  ? __pfx_maybe_exit_scc+0x10/0x10
[  629.304435][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.310096][T14157]  ? check_atomic_rmw+0xa26/0x1100
[  629.315306][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.320966][T14157]  ? check_atomic_rmw+0x81/0x1100
[  629.326078][T14157]  do_check_common+0x20cc/0xb410
[  629.331889][T14157]  ? __pfx_do_check_common+0x10/0x10
[  629.337287][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.343017][T14157]  ? lockdep_hardirqs_on+0x51/0x110
[  629.348265][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.353967][T14157]  ? kfree+0x2b4/0x4d0
[  629.358083][T14157]  ? bpf_check+0x7cf8/0xc4d0
[  629.362900][T14157]  bpf_check+0x8763/0xc4d0
[  629.367435][T14157]  ? __pfx_bpf_check+0x10/0x10
[  629.372383][T14157]  ? __lock_acquire+0xb97/0x1ce0
[  629.377624][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.383536][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.389218][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.394962][T14157]  ? __asan_memset+0x23/0x50
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  629.399593][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.405327][T14157]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  629.410384][T14157]  bpf_prog_load+0xe41/0x2490
[  629.415155][T14157]  ? __pfx_bpf_prog_load+0x10/0x10
[  629.420331][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.426049][T14157]  __sys_bpf+0x4a3f/0x4de0
[  629.430506][T14157]  ? __pfx_futex_wake+0x10/0x10
[  629.435529][T14157]  ? __pfx___sys_bpf+0x10/0x10
[  629.440340][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.446080][T14157]  ? cap_capable+0xb3/0x250
[  629.450624][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.456471][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.462170][T14157]  ? do_futex+0x122/0x350
[  629.466555][T14157]  ? __pfx_do_futex+0x10/0x10
[  629.471299][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.477040][T14157]  ? xfd_validate_state+0x61/0x180
[  629.482499][T14157]  __x64_sys_bpf+0x78/0xc0
[  629.486951][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.492938][T14157]  ? lockdep_hardirqs_on+0x7c/0x110
[  629.498246][T14157]  do_syscall_64+0xcd/0x4e0
[  629.502869][T14157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.508795][T14157] RIP: 0033:0x7f6ac518eba9
[  629.513295][T14157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  629.518596][T14154] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2799'.
[  629.533051][T14157] RSP: 002b:00007f6ac5fcf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  629.533097][T14157] RAX: ffffffffffffffda RBX: 00007f6ac53d5fa0 RCX: 00007f6ac518eba9
[  629.533131][T14157] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  629.533156][T14157] RBP: 00007f6ac5211e19 R08: 0000000000000000 R09: 0000000000000000
[  629.533181][T14157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  629.533206][T14157] R13: 00007f6ac53d6038 R14: 00007f6ac53d5fa0 R15: 00007fffa79ec5d8
[  629.533255][T14157]  </TASK>
[  629.533274][T14157] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  629.533308][T14157] CPU: 0 UID: 0 PID: 14157 Comm: syz.4.2800 Not tainted syzkaller #0 PREEMPT(full) 
[  629.533353][T14157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  629.533375][T14157] Call Trace:
[  629.533387][T14157]  <TASK>
[  629.533402][T14157]  dump_stack_lvl+0x3d/0x1f0
[  629.533471][T14157]  vpanic+0x6e8/0x7a0
[  629.533531][T14157]  ? __pfx_vpanic+0x10/0x10
[  629.533590][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.533642][T14157]  ? maybe_exit_scc+0x768/0x8d0
[  629.533698][T14157]  panic+0xca/0xd0
[  629.533754][T14157]  ? __pfx_panic+0x10/0x10
[  629.533830][T14157]  check_panic_on_warn+0xab/0xb0
[  629.533866][T14157]  __warn+0xf6/0x3c0
[  629.533896][T14157]  ? preempt_schedule_notrace+0x62/0xe0
[  629.533952][T14157]  ? maybe_exit_scc+0x768/0x8d0
[  629.534012][T14157]  report_bug+0x3c3/0x580
[  629.534064][T14157]  ? maybe_exit_scc+0x768/0x8d0
[  629.534114][T14157]  handle_bug+0x184/0x210
[  629.534221][T14157]  exc_invalid_op+0x17/0x50
[  629.534260][T14157]  asm_exc_invalid_op+0x1a/0x20
[  629.534295][T14157] RIP: 0010:maybe_exit_scc+0x768/0x8d0
[  629.534344][T14157] Code: ff ff e8 6b 82 e8 ff c6 05 83 e2 c0 0e 01 90 48 89 ee 48 89 df e8 f8 47 fb ff 48 c7 c7 00 95 b5 8b 48 89 c6 e8 a9 27 a7 ff 90 <0f> 0b 90 90 e9 4e ff ff ff e8 6a ec 4d 00 e9 7f f9 ff ff 4c 8b 4c
[  629.534379][T14157] RSP: 0018:ffffc9000b137500 EFLAGS: 00010282
[  629.534408][T14157] RAX: 0000000000000000 RBX: ffff8880af920000 RCX: ffffc9000f5a6000
[  629.534433][T14157] RDX: 0000000000080000 RSI: ffffffff817a4395 RDI: 0000000000000001
[  629.534457][T14157] RBP: ffff8880af926328 R08: 0000000000000001 R09: 0000000000000000
[  629.534481][T14157] R10: 0000000000000001 R11: 0000000000000000 R12: 1ffff92001626ea7
[  629.534504][T14157] R13: 0000000000000000 R14: ffff888034a69800 R15: dffffc0000000000
[  629.534543][T14157]  ? __warn_printk+0x1a5/0x350
[  629.534613][T14157]  ? __pfx_maybe_exit_scc+0x10/0x10
[  629.534660][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.534704][T14157]  ? check_atomic_rmw+0xa26/0x1100
[  629.534754][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.534797][T14157]  ? check_atomic_rmw+0x81/0x1100
[  629.534856][T14157]  do_check_common+0x20cc/0xb410
[  629.534961][T14157]  ? __pfx_do_check_common+0x10/0x10
[  629.535014][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.535057][T14157]  ? lockdep_hardirqs_on+0x51/0x110
[  629.535118][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.535180][T14157]  ? kfree+0x2b4/0x4d0
[  629.535226][T14157]  ? bpf_check+0x7cf8/0xc4d0
[  629.535289][T14157]  bpf_check+0x8763/0xc4d0
[  629.535384][T14157]  ? __pfx_bpf_check+0x10/0x10
[  629.535437][T14157]  ? __lock_acquire+0xb97/0x1ce0
[  629.535513][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.535559][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.535616][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.535658][T14157]  ? __asan_memset+0x23/0x50
[  629.535707][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.535750][T14157]  ? bpf_obj_name_cpy+0x14a/0x1a0
[  629.535795][T14157]  bpf_prog_load+0xe41/0x2490
[  629.535846][T14157]  ? __pfx_bpf_prog_load+0x10/0x10
[  629.535924][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.535974][T14157]  __sys_bpf+0x4a3f/0x4de0
[  629.536013][T14157]  ? __pfx_futex_wake+0x10/0x10
[  629.536058][T14157]  ? __pfx___sys_bpf+0x10/0x10
[  629.536100][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.536150][T14157]  ? cap_capable+0xb3/0x250
[  629.536185][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.536235][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.536277][T14157]  ? do_futex+0x122/0x350
[  629.536335][T14157]  ? __pfx_do_futex+0x10/0x10
[  629.536417][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.536461][T14157]  ? xfd_validate_state+0x61/0x180
[  629.536530][T14157]  __x64_sys_bpf+0x78/0xc0
[  629.536571][T14157]  ? srso_alias_return_thunk+0x5/0xfbef5
[  629.536614][T14157]  ? lockdep_hardirqs_on+0x7c/0x110
[  629.536670][T14157]  do_syscall_64+0xcd/0x4e0
[  629.536707][T14157]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  629.536744][T14157] RIP: 0033:0x7f6ac518eba9
[  629.536774][T14157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  629.536810][T14157] RSP: 002b:00007f6ac5fcf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  629.536844][T14157] RAX: ffffffffffffffda RBX: 00007f6ac53d5fa0 RCX: 00007f6ac518eba9
[  629.536870][T14157] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  629.536893][T14157] RBP: 00007f6ac5211e19 R08: 0000000000000000 R09: 0000000000000000
[  629.536917][T14157] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  629.536940][T14157] R13: 00007f6ac53d6038 R14: 00007f6ac53d5fa0 R15: 00007fffa79ec5d8
[  629.536988][T14157]  </TASK>
[  629.542635][T14157] Kernel Offset: disabled