last executing test programs:

1.494104627s ago: executing program 3 (id=1715):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, 0x0, 0x0)

1.490369657s ago: executing program 3 (id=1717):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000080)={[{@nolazytime}, {}]}, 0x6, 0x4eb, &(0x7f0000000a40)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000005000000000500000900000040200000", @ANYRES32, @ANYBLOB="00001a0000000000000000000000000000000000de18a44cab198cf3f2a56c476f1687ee9984332026387f2268c611e9eed7866adcd44ffa386cc8a280ff825236727ddc976b501bfb829ea065bc5ce2cc48b9d87965d3847186bf1e7339b57d1780f2a18f4586bb348086938dca966818ef4416c915b507546083cddd70dfaa304a07c29e4f4e4ca568931b1a8771984624e91d5b27477588f81da435941a96f4cee4b7bdb17eb47eecbeca98631e9ae248e3502db69c2c159763b85c90aeb8", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'/28], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={0xffffffffffffffff, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc8, 0x8, 0x0, 0x0}}, 0x10)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000003000)=ANY=[@ANYBLOB="620af8ff0c030021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff90326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000800007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656ffff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c577eb59e3937f804fb758e662a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b201768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec5700000000000004016df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95bbef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a630bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea137fec0a294752d018702a40da8daccf080942a486721737390cbf3774cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa370246c167b096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6f5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29b2bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64480b0a3fc22dd7040000000012d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c638e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f967565f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd574d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db39a582814a6e9e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b0000000046829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12db10588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca4f8bc2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a07000000000000006adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d0104361c37c61a43b1afd865b60d8e8fbcbb3801bf4cae891b73220f17d25979a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db1183b043ef2f79d5ad5527d149d076e1a87e2df27c0cb8a67ad726bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec6fead19edd83524a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e64701b049239e7f552d816441d11c4c2647c0144623443592999d4b35ed1e4848f198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4faa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958f9148f846830e88a42d93e1fe9c0b4a4a2689217380400a9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a000000000000000000000000000020bd79e41c682139c58ac1deb0e11d70fe495906f2d5d7cb1240491778acbd4eee53a3996cb0de84bd2b059d60c0f96a53ea44e0b293865aa68df494f87db976e36ad6c06912244d4ce40c4aaa60b4a1392ce0b2f2c519663b4652ff871e0f6dfff9f7d34ecf04be0a58c3d53174b67d1886e34b81ad8c60da56acc64739c3acab24aa8d0ac92d465074f915608b1b60a948bad401b1a7fb3627bbe6c45123ed44bfdf8cc143bd1b7a663dc3d0476b8e39becffc429e41f66b1e37ae52aacaff0f8c25072e20586b19127d75fa71577f265c510000000000009ba23d0658a3ebe3918a64d1fea6ad235bcda35590c62400d6aa3e46d5643bea6291ebf64de06f452972d2e68033356ef0b4043c0aa07c3a3b811ea60250c64b344be6e1e591a8c33e869e5d95688e39231ed27bc491985def22255121b2b4fd03d4aa0eaf5c22828aadda2e1d89078073e5a8084a53f00ba42ff174a241f95d29720493d6a1d1974b7846e989022e7eb02b7fbc06b55733cbe2f47f7b930a759435e1c49469647f24b133692a9e69bc4000484651bf1fef3cf6146f37c770744a6af6bd9b100172f27dc36943b37b59f34b8f77c853f5610ab11bf2b60aefc8c9f1946f3c5a9cc2bfe48d0426f966341eec417300f453a6f361e4185c66e4084065911023033af17c5830c5e9c66979929b55a3f0af1b24ac84352df6d93ea324291ad8f1f3e4867886cd05288ec50eeee88d21addcf3d1596046fdda5742f0c83447071116a7cb951628a3cf1aa291f36563ed692a8370185a9606e9712ef179f2a12f33239785d5c48a2b858d5cab500bd908345349fd031f05e49788091d7fa16a0ed422434a5948823f6d9773184155e0cb6bdb3f866d40138d2d56cce748b586c9c49d4b88c8d1a702ba6a11044a2031aa4b744c61cdb19a1e203812c0727246d162525bfb47f18bd11fe580bd38d34723bff83a0c699aacc8418de16bc2579b8d979da1d36f011a4b36e83e6bd013f4fcc76bb48f5e8fd71d19e46806023489600d2be31f90c31b4ed546fe3f8ca2b4a15600191d8ab010627cb57d3f3036dfd0d2fe34ab534a29562816c434b3a1b7578f5438bda5b249099b6fcb8fb2ac2df5c464099b8c8651136deb5d2be947d82fa6c7056a1d852870cb126a9bcab7cf7e368b0d3ea344fe013f2aa561d2c48b3c2576d76fd67309958e93682053291cdc7fdb7e280143cdc0915fe509f1e8654538d7ac1b78e62a16a711e0e02cfd0496b15431bdac45c3b98da52e1c3656b4a8efb7b9454943b3c83b774fb3074b1c0b97d9139b232171e9c2eb00000000000000000000000000587ce7e623c06946e40454182ba7db5d4016aa85c724bd6279bbe92011fb9c1b587b5d36ad6faf49b329a42d2adfc3624d4194970ef5132ce1b199be3cb90bd7fdb6ab50adb71cac8b847aa28f974f8a006aebcf87942c097cc0d08c047203c544fd854587d77598459f9eb7d0089bb2f76cd703f962b0bfc151940b4a503b436e1ff150465228f66248d565f6f1367002bf3f302985bfb2cfa2c9412dfb5794e3e0b99cbea50c22871d032b67b3a0f97907c776f11d76ae54a532abcd446e2841d0c2675d4ca5eb2f496ce2882b252c5401ceb4c2f20db36c4bb14fde1b2c4194c12e022d02b2dc7b4d8a9bce4602aef6335d102fdd68f94a38dfd6cb534e5355e17aff9b621a8bdd7daa196a71e9572ec0b3e6dea9c35da6022ae72c6571a69676bc80af52287c3e592483887fccb37ec90b0b61640e56219ff24203f80ad5107dd54bec2487656a699165905b5f3c00000000000000000000000000465f4866a3556380e636b30000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
syz_clone3(&(0x7f0000000700)={0x2000080, 0x0, 0x0, 0x0, {0x15}, 0x0, 0x0, 0x0, &(0x7f00000006c0)=[0x0], 0x1}, 0x58)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
shutdown(0xffffffffffffffff, 0x1)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000000040))
write$binfmt_script(r4, &(0x7f0000000380), 0x208e24b)
ioctl$EXT4_IOC_MIGRATE(r4, 0x6609)

1.160312838s ago: executing program 2 (id=1729):
ioperm(0x8, 0x9, 0x5a)
bpf$OBJ_GET_PROG(0x9, &(0x7f0000000600)=@generic={0x0, 0x11, 0x10}, 0xc)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000200000005000000", @ANYRES32, @ANYBLOB="69ae100000000000000000140000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0xfc, "0062ba7d82000000000000000000f7ffffff00"})
r2 = syz_open_pts(r1, 0x0)
r3 = dup(r2)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$binfmt_aout(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="c447e1"], 0x20)
ioctl$TIOCGRS485(r4, 0x542e, &(0x7f0000000180))
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x2, 0x11, &(0x7f00000008c0)=@raw=[@exit, @exit, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffffb}, @btf_id={0x18, 0x0, 0x3, 0x0, 0x3}, @map_fd={0x18, 0xa, 0x1, 0x0, r3}, @initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x9}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @call={0x85, 0x0, 0x0, 0x6c}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r5}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r4}, &(0x7f0000000540), &(0x7f0000000580)=r4}, 0x20)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffce3)
r8 = socket(0x10, 0x803, 0x0)
sendto(r8, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r8, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x630}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0xf0}, {&(0x7f00000007c0)=""/154, 0x68}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
close(r7)
sendmsg$unix(r6, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x19}, 0x20040040)

1.087710287s ago: executing program 2 (id=1730):
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
socket$netlink(0x10, 0x3, 0xf)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000140))
pwritev(r1, &(0x7f0000000480)=[{&(0x7f0000000400)='\x00!', 0x2}], 0x1, 0x1000000, 0x0)

1.063426058s ago: executing program 2 (id=1732):
r0 = gettid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
timer_create(0x3, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

787.877139ms ago: executing program 0 (id=1746):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff", @ANYRES32=0x0], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x304}, "000000b72000", "0d07080d004fcfabd5e8ffff1a8600", "aba200fe", "865703b7e43b34e4"}, 0x28)
writev(r3, &(0x7f0000000080), 0x0)
close(r3)

757.116558ms ago: executing program 0 (id=1747):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xa, 0xe065, 0x8000, 0x828, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x2, 0x7, @void, @value, @void, @value}, 0xfffffffffffffec0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000100), &(0x7f0000000180)=r0}, 0x20)
close(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a00000002000000fb0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="001da3000000000000000000000000000000000000000002d1fe2df77e598d934f305d87cebe00000000003a14bfdf13ad0400670bfa59428b5b4ed4a9846e409b6f0c62af7a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r4 = epoll_create(0x6)
epoll_pwait(r4, &(0x7f0000000140)=[{}], 0x1, 0x6, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{}, &(0x7f0000000140), &(0x7f0000000280)=r0}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000007000000080000000800000005000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000d0000000000000000000000000000000000000000eb666616ac97561001e40bd408393224189f03774b6aad47a32fba82a76c971f8c824c1c31519f5045c3c25925a9775e9e20c4824930373f127fcda7305be998421418e0a0527b0897dbbd134b841b1a8fd4ae734f0933dd57621106c1aa4c72a3946f0bd1bbf9624c5047"], 0x48)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r5, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000001a00)={0x40000000})
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

703.497979ms ago: executing program 0 (id=1748):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0xa1081e, &(0x7f0000000200)={[{@dioread_nolock}]}, 0x1, 0x4f2, &(0x7f0000001240)="$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")

647.228678ms ago: executing program 0 (id=1749):
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r1 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r2)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000012c0)=ANY=[@ANYBLOB="1b0000008000000000000000000004007a5171a39f544edf5e6f05da10f6b04058e716ddf0f9301702ac878f1f823e3f34d3e468eebc3091d30000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000020000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000fbb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r4}, 0x10)
mkdir(&(0x7f0000000100)='./control\x00', 0x0)
rmdir(&(0x7f0000000040)='./control\x00')
r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
mmap(&(0x7f0000543000/0x1000)=nil, 0x1000, 0x0, 0x2031, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r5, 0xc0709411, &(0x7f0000000200)={{<r7=>0x0, 0x1ff, 0x154, 0xb2, 0x4, 0x6, 0x8, 0x7ff, 0x0, 0x2, 0x1, 0x8, 0x1, 0x9, 0x5c}, 0x20, [0x0, 0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f00000002c0)={{r7, 0x9, 0x100000001, 0x9d, 0x5, 0xf5c0, 0x3, 0xfffff405, 0x9, 0xc, 0x8, 0xf, 0xffffffffffffffff, 0x6, 0x4aa5e937}})
setsockopt$inet6_int(r6, 0x29, 0x4b, &(0x7f0000000180)=0xfffffff7, 0x4)
set_mempolicy_home_node(&(0x7f000065b000/0x4000)=nil, 0x4000, 0x3, 0x0)
bind$inet6(r6, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r6, 0x29, 0x1, &(0x7f00000000c0), 0x4)

496.632589ms ago: executing program 3 (id=1750):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(r3)
sendmsg$unix(r2, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x0)

457.311719ms ago: executing program 0 (id=1752):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_io_uring_setup(0x7a8e, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="100000000000000019010000"], 0x20}, 0x0, 0xe3d08660d3cd4684})
io_uring_enter(r0, 0x92, 0x0, 0x0, 0x0, 0x0)

452.781409ms ago: executing program 3 (id=1753):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, 0x0, 0x0)

430.088859ms ago: executing program 3 (id=1754):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000059c2f6632c7bb7eeed8ef387a2c42df5bcd37fdc24696abec1b599ef505e2c9b50b72a30e73cbcfb82dba5220021204d6bb7e6318c38470d27a1acd4c51f95f966eda12a0392f3e630986b010cb468a1fff5db6039a6771a9c42501ba6847f63adbc3740c74df0adf9a7c806e5a0406a08cbe06296d6e33985ae7af2405383fea49cfbd4", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014001100b7030000000000698500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
readv(r0, &(0x7f0000000000)=[{&(0x7f0000001300)=""/241, 0xf1}], 0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wg0\x00'})
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="26000000080000000c000000f406000001000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r4}, 0x10)
perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x4e, 0x1, 0x0, 0x0, 0x0, 0x210e, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x7fff, 0xaea}, 0x110104, 0x32, 0x0, 0x5, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r6 = socket(0x1, 0x803, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r7}, @IFLA_MASTER={0x8, 0xa, r7}, @IFLA_ADDRESS={0xa, 0x1, @dev}]}, 0x58}}, 0x0)
r8 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x4008032, 0xffffffffffffffff, 0x18639000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r8)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="120000000f0000000400000002"], 0x50)

420.813649ms ago: executing program 0 (id=1755):
eventfd2(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xea)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000440)=@abs, 0x6e)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @empty, @void, {@arp={0x806, @ether_ipv4={0x6, 0x500, 0x6, 0x4, 0x0, @link_local, @local, @link_local, @multicast2}}}}, 0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r5, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r5, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
open(0x0, 0x143c62, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
unshare(0x2040400)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
unshare(0x2000400)
fsmount(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000001340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000f40)=""/58, 0x3a}, 0xfffffffc}], 0x1, 0x60010020, 0x0)
sendto$inet(r5, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)

398.634289ms ago: executing program 1 (id=1756):
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
socket$netlink(0x10, 0x3, 0xf)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000140))
pwritev(r1, &(0x7f0000000480)=[{&(0x7f0000000400)='\x00!', 0x2}], 0x1, 0x1000000, 0x0)

337.339939ms ago: executing program 1 (id=1757):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff", @ANYRES32=0x0], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x304}, "000000b72000", "0d07080d004fcfabd5e8ffff1a8600", "aba200fe", "865703b7e43b34e4"}, 0x28)
writev(r3, &(0x7f0000000080), 0x0)
close(r3)

306.831109ms ago: executing program 4 (id=1758):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xa, 0xe065, 0x8000, 0x828, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x2, 0x7, @void, @value, @void, @value}, 0xfffffffffffffec0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000080)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000100), &(0x7f0000000180)=r0}, 0x20)
close(r0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a00000002000000fb0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="001da3000000000000000000000000000000000000000002d1fe2df77e598d934f305d87cebe00000000003a14bfdf13ad0400670bfa59428b5b4ed4a9846e409b6f0c62af7a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r5 = epoll_create(0x6)
epoll_pwait(r5, &(0x7f0000000140)=[{}], 0x1, 0x6, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2}, &(0x7f0000000140), &(0x7f0000000280)=r0}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000007000000080000000800000005000000", @ANYRES32=r2, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000d0000000000000000000000000000000000000000eb666616ac97561001e40bd408393224189f03774b6aad47a32fba82a76c971f8c824c1c31519f5045c3c25925a9775e9e20c4824930373f127fcda7305be998421418e0a0527b0897dbbd134b841b1a8fd4ae734f0933dd57621106c1aa4c72a3946f0bd1bbf9624c5047"], 0x48)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r6, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000001a00)={0x40000000})
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

271.68894ms ago: executing program 1 (id=1759):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000001640)='kfree\x00', r0}, 0x10)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
close(r1)

269.955509ms ago: executing program 4 (id=1760):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0xd, 0x6)

239.618889ms ago: executing program 1 (id=1761):
r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$ARCH_SET_GS(0x1e, r1, 0x0, 0x1001)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}}, r1, 0xffffffffffffffff, r0, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ff"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x6)
writev(r5, &(0x7f0000000080)=[{&(0x7f0000000040)="10000000120003474cbb65e1c3e4ffff", 0x10}], 0x1)

208.248439ms ago: executing program 4 (id=1762):
r0 = socket$inet(0x2, 0x1, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6, '\x00', 0x0, r0, 0x0, 0x5, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000100)={'syztnl2\x00', &(0x7f00000000c0)={'ip_vti0\x00', 0x0, 0x20, 0x40, 0x22, 0x80, {{0x7, 0x4, 0x2, 0x2d, 0x1c, 0x65, 0x0, 0xce, 0x2f, 0x0, @private=0xa010102, @rand_addr=0x64010102, {[@generic={0x82, 0x5, "a55af2"}]}}}}})
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000300), 0x10)
sendmsg$can_bcm(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x5, 0x401, 0x0, {0x0, 0xea60}, {0x0, 0x2710}, {0x0, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "f645dcde0a4f60ec"}}, 0x48}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000008a26b64b6e76ad5f09c800000000000072a1093b1bab94c808151e9fc0300ae9958f751bebe677e0d965ccfef3897e49d289d87b426de6790d1707bdd680ddb078b31345cb21e281496376093344ce6cb72b73a4ed73d55a9a36bf69b2cb700b6c786a5bf1ccfd481b62c62d1db895e370a4747529dc74356bad648539e71f1c8787bb6916b8ddb3548a6c149845cc19b0c48326bafbd034b40a0015fbb8003301eb5215e6c3ed7bc25929d3682ad47c19ca06d5b9794dfe679308", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r3}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='rxrpc_recvmsg\x00', r4}, 0x10)
r5 = socket(0x21, 0x2, 0x10000000000002)
connect$rxrpc(r5, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x3a)
sendmmsg(r5, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
recvmmsg(r5, &(0x7f0000002d40)=[{{0x0, 0x0, 0x0}, 0x2000000}], 0x1, 0x10101, 0x0)
pipe(&(0x7f0000000040)={<r6=>0xffffffffffffffff})
io_setup(0x3ff, &(0x7f0000000500)=<r7=>0x0)
io_submit(r7, 0x2, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}, 0x0])
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000001c0), 0x4)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r8 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r8, 0x400, 0x0)
fcntl$setlease(r8, 0x400, 0x2)
syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r8)
ioctl$MON_IOCX_GETX(0xffffffffffffffff, 0x4018920a, 0x0)

206.670219ms ago: executing program 2 (id=1763):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2201000, &(0x7f0000000240)={[{@nojournal_checksum}, {@nombcache}, {@errors_remount}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x20000080}}, {@bh}, {@nodelalloc}, {@usrquota}, {@noauto_da_alloc}]}, 0xfa, 0x57a, &(0x7f00000013c0)="$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")
open(&(0x7f0000000040)='./bus\x00', 0x1ed37e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
quotactl_fd$Q_QUOTAOFF(r0, 0xffffffff80000301, 0x0, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000400)='./bus\x00', 0x0, &(0x7f0000000840)=ANY=[], 0x1, 0x37f, &(0x7f0000000440)="$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")
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000003b810100850000006d000000850000005000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_create(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$selinux_create(r2, &(0x7f0000000380)=@objname={'system_u:object_r:apt_lock_t:s0', 0x20, 'system_u:system_r:kernel_t:s0', 0x20, 0x6, 0x20, './file0\x00'}, 0x5b)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000034f29d131b7fcbc81dfbe43"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000a00)=@newtaction={0x894, 0x30, 0x12f, 0x4000, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x7c3, 0x2, 0x3, 0xffffff81, 0x10, 0xc, 0x2, 0x3, 0x40, 0x200, 0x8, 0x9, 0x6, 0x5, 0xaa21, 0x8, 0xa, 0x6, 0x200, 0x1, 0x4, 0xcc37, 0x5, 0xb5, 0x649f, 0x4, 0x0, 0x4, 0xfb1, 0x72a4, 0xd, 0x7fff, 0x5, 0x3, 0x0, 0x3, 0x7, 0x28d, 0x4, 0xc, 0x0, 0xaf, 0x1, 0x6, 0x5, 0xfffffffd, 0x5, 0x80, 0xe, 0x2, 0x7, 0x6, 0x7, 0x1991, 0x8, 0xfffffe29, 0x5, 0x3, 0x101, 0xfff, 0x4, 0x5, 0x8000, 0x4, 0x7, 0x3, 0x0, 0xfffffff3, 0x1, 0x9, 0x80020001, 0x2, 0x3, 0x5, 0x101, 0x1, 0xfffffffc, 0x6, 0xfffffffb, 0x200, 0x1, 0x7329, 0x6, 0x3, 0x100, 0x2, 0x7, 0x6d3, 0x224, 0x7ff, 0x0, 0x6, 0x7, 0xfffff001, 0x6, 0x7ed8, 0x3, 0xffff, 0x0, 0x5, 0x249, 0x5, 0x2fbf, 0x2, 0x8000, 0x7, 0x25fe9fd5, 0x1, 0x9, 0x1, 0xe, 0xe, 0x0, 0x3, 0x4f, 0xffffffff, 0x8, 0x1, 0x119203c5, 0xd0, 0x7, 0x80000001, 0x3226, 0x8, 0x3, 0x4, 0xc64f, 0xffffff6d, 0x5, 0x6, 0x6, 0xfffffff7, 0x6, 0x7, 0x5, 0xc, 0xe, 0x7, 0x200, 0x60459141, 0x1, 0x5, 0x8, 0x84, 0x0, 0x1, 0x5, 0x2, 0x29dc, 0x0, 0x2d5, 0x7, 0xfffffffa, 0x1000, 0x6, 0x94, 0x15a, 0x4, 0x6, 0x2, 0x4002, 0x2, 0x4, 0xfff, 0x5, 0x1, 0x3, 0x3, 0x80, 0x7a5b054a, 0x8, 0xffffff80, 0x4b1, 0xfff, 0x3, 0xb, 0x8, 0x3, 0x4, 0x2, 0x6, 0xf, 0x2, 0x7, 0x1, 0x77, 0x9, 0x274d, 0x6, 0x40, 0xfffffffe, 0xb, 0x7, 0x1, 0x9ab, 0x7, 0xffffffc0, 0x200, 0x8, 0x3c, 0x2c7, 0x7, 0x8, 0x4, 0x0, 0x99f, 0x5, 0x800, 0x6, 0x31e1, 0x4, 0x4, 0xb, 0x7ff, 0x1e, 0x3, 0xe49, 0x56, 0x9, 0x1, 0x6, 0x2, 0x6a1c, 0x400009, 0x8, 0x4dbda2da, 0x7fff, 0x5, 0x5, 0x0, 0x7, 0x8, 0x7fff, 0xed, 0x7fff, 0x1000, 0xcbe, 0x7ff, 0x6, 0x8, 0xb, 0xff, 0x5, 0x0, 0x7, 0x9, 0x0, 0x8, 0x5, 0x4, 0xfffffffd, 0x2, 0xeffe, 0xef4, 0xfffffffa]}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xffffbff1}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x6, 0x3a40da20, 0x9, 0x6, 0x4, 0x8000, 0x7fffffff, 0x2, 0x1, 0x7fff, 0x86, 0x10000, 0x2, 0x40, 0x2, 0x99d, 0x6, 0xffffff92, 0xe9c, 0x3ff, 0x3, 0x10001, 0xa, 0xfffff000, 0x7f, 0x5, 0x0, 0x81, 0x6f0, 0x18e, 0x8, 0x4, 0x3, 0x4, 0x2, 0xffffffff, 0x0, 0x80000000, 0x3, 0x9, 0x10000, 0x2, 0xd, 0x3, 0x5, 0x1, 0x4, 0x8, 0x7, 0x2, 0xd92b, 0x7fffffff, 0x3, 0x90, 0xc0, 0x5b, 0x1, 0x48000, 0x40, 0x5, 0x1000, 0x3, 0x10, 0x0, 0x5, 0x4, 0x6, 0x100, 0xf3, 0x1, 0xa92, 0x0, 0x6, 0x7, 0x0, 0x8, 0x8, 0x10000, 0x3, 0x3, 0x0, 0xa, 0x5, 0x1, 0xee7e, 0x800, 0xd1, 0x7fff, 0x1, 0x4, 0x5, 0x4, 0xffffff89, 0x7, 0xfffffff3, 0x2, 0x2, 0x9, 0x5, 0x2, 0x101, 0x7fffffff, 0xfffff001, 0x64, 0x4, 0xffffffff, 0x5, 0x9, 0x1, 0x0, 0xb3e, 0x8, 0x3, 0x401, 0x401, 0xb, 0x8, 0x2, 0xb, 0x0, 0x0, 0x9, 0xffffffff, 0x25f, 0x7, 0x5, 0x0, 0x9, 0xfffffff9, 0x3, 0xe2, 0x8, 0x1, 0x8, 0x9, 0x0, 0x9, 0x2, 0x1, 0x9, 0x80, 0x5, 0xd3c3, 0x5, 0x2, 0x1, 0x472a8800, 0xc, 0xfffffff0, 0xfffffff8, 0x9, 0x8, 0xfffffffc, 0x9, 0x5, 0x9, 0x5, 0x6, 0x6, 0x7, 0x87f, 0x59, 0x4fedcacd, 0x1, 0x4, 0x7f, 0x2, 0x7, 0x5, 0xfff, 0x3828, 0x0, 0x1, 0x7, 0x401, 0x7f, 0x4, 0x7, 0x2120, 0xfffffffb, 0x80, 0x3, 0xdbff, 0x52b6, 0xfffffffa, 0x49, 0x70, 0x0, 0xe1, 0x401, 0x631, 0x101, 0x3ff, 0x101, 0x0, 0x7ffe, 0x80000000, 0x100003, 0xfffffff7, 0x3, 0x1, 0x7514, 0x7, 0x3, 0x1, 0x4, 0x2, 0x9, 0x4, 0x10000, 0x3ff, 0x0, 0x100, 0x7ef2, 0x0, 0x1, 0xe, 0xd, 0x4, 0x6, 0x8, 0x4, 0x10001, 0x6, 0x400, 0x436, 0x3, 0x202, 0x0, 0xffff76a6, 0x0, 0xbc, 0xa8, 0x0, 0x6, 0x7, 0x1, 0x81, 0x3, 0x2, 0x3, 0x4, 0x6, 0x2445c87b, 0x6, 0xd, 0x9, 0x2, 0x10, 0x4, 0x7, 0x57, 0x5, 0xd, 0x1000, 0x3]}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x400, 0x8, 0x3, 0x7b2, 0x400, {0x1, 0x2, 0x8, 0x624, 0x0, 0xfffffff8}, {0x9, 0x2, 0x7, 0x7ff, 0xff01, 0x4}, 0x6, 0x4, 0x923}}]]}, {0x4}, {0xc, 0xb, {0x0, 0x1}}, {0xc, 0xa}}}]}]}, 0x894}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
r7 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x1af0, &(0x7f00000007c0)={0x0, 0x4b7e, 0x4, 0x1, 0x28, 0x0, r3}, &(0x7f00000008c0), &(0x7f0000000900))
r8 = open(0x0, 0x14113e, 0x0)
getsockopt$CAN_RAW_FILTER(r8, 0x65, 0x1, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}], &(0x7f0000000180)=0x30)
fallocate(r7, 0x3, 0x0, 0x1a00)

107.57269ms ago: executing program 4 (id=1764):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, 0x0, 0x0)

107.23692ms ago: executing program 2 (id=1765):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_io_uring_setup(0x7a8e, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="100000000000000019010000"], 0x20}, 0x0, 0xe3d08660d3cd4684})
io_uring_enter(r0, 0x92, 0x0, 0x0, 0x0, 0x0)

107.02976ms ago: executing program 4 (id=1766):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x5, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r3)
close(r3)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000bc0)='./file0\x00', r4}, 0x18)
r5 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r6, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r6, &(0x7f0000002280)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001e40)=""/169, 0xa9}], 0x1}}], 0x1, 0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000240)='i\xf5\x10*\x00', &(0x7f0000000380)='$\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000ac0)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xd1\xd2\x9bu\xf4\xdd\xbb\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fBy\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\fU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sa\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\x18\xb6\xf5\x01\x80\x00\x00\x00\x00\x00\x00\v\xfbO\xf3\xff\x1bf\xedC\xbd\xd1\xf1#\xb3\xe5\t\x9a\xddk\x95\xd5N\xf3\x98\x1a\xa3\xca%N\xf8\xc6\xbcJw\xd8\x99f\xf1\xb5\x93^x|\x05\x00\x00\x00o*\xd3\xab\x05$<\xa3KQm\x00\xd3M\xb2\xd0,\xeeP\x1a\xd0 yI!\x17\x9b\xe7\xef\t\xba\xa0]\xf4\xb7\x00\x15\x1d\xcc\x0eB\x87\xe9 \x81P\"\xea\xd5#\xa4\xe5\xa1\x19Wp\x83\xf8tC\x10\xbe\xe3\xa9H\xc7\x89\x0eN\xd3\xc1\xd7\x99\xd8\x88\x1dZ\x91\r\xd1\x1c\xac\xe26b\x04\xecB[\xf3Lp\xfcQ\xf8\xec\xa0\x87\xd3\xde\x8bo\xd2\xbb~;\x8d\xc2\xf1\tP\xdfB\"VD\v\x90\xfb`\x8b\xfbr\x85B\xc3\x1c\x99\xe1ft\xd1\xdb\x0e\x86\xab\xfc;y\x9d\xe6\xe25\x9f9\nj\x8a\xba\xb5\xc7\x92`\xed\x89\xf4\xbd\xc3\xe7l\xa9\xda\xde\xe0\xcf\xeaM\xb2~\x159\x92\xf60\x0e\xa0\xc2\x17\x8aC\xa5\xcf\xcd\x16\xdb\x83v\xe8\xf1\x82\xe2\xa5\xf0\xc7K\xe4?|\xc9\xdfx\xf0\xb1\x00\x01\x00\x00\x00\x00\x00', &(0x7f0000001600)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0)
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
lsetxattr$security_selinux(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), &(0x7f00000003c0)='system_u:object_r:vmware_device_t:s0\x00', 0x25, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r7}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

44.95558ms ago: executing program 2 (id=1767):
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000140))
pwritev(r1, &(0x7f0000000480)=[{&(0x7f0000000400)='\x00!', 0x2}], 0x1, 0x1000000, 0x0)

44.58432ms ago: executing program 4 (id=1768):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000100000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = request_key(&(0x7f0000000000)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x2, 0x11}, &(0x7f0000001fee)='R\brust\xe3c*sgrVex:D0', 0x0)
r2 = socket(0x40000000015, 0x5, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bond0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r5, @ANYBLOB="00080000020000002400128009000100626f6e64000000001400028008000300040004bc"], 0x44}}, 0x0)
bind$inet(r2, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
r6 = epoll_create(0xd02)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r2, &(0x7f0000000000)={0x20000000})
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=<r7=>0x0)
r8 = getegid()
keyctl$chown(0x4, r1, r7, r8)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={r0, 0xe0, &(0x7f0000000400)={0x0, <r9=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8, &(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x53, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0x4e, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000580)={r9}, 0x4)

39.64083ms ago: executing program 1 (id=1769):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="160000000000000004000000ff", @ANYRES32=0x0], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000100)=@gcm_128={{0x304}, "000000b72000", "0d07080d004fcfabd5e8ffff1a8600", "aba200fe", "865703b7e43b34e4"}, 0x28)
writev(r3, &(0x7f0000000080), 0x0)
close(r3)

35.7716ms ago: executing program 3 (id=1770):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xa, 0xe065, 0x8000, 0x828, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x2, 0x7, @void, @value, @void, @value}, 0xfffffffffffffec0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000080)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000100), &(0x7f0000000180)=r0}, 0x20)
close(r0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a00000002000000fb0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="001da3000000000000000000000000000000000000000002d1fe2df77e598d934f305d87cebe00000000003a14bfdf13ad0400670bfa59428b5b4ed4a9846e409b6f0c62af7a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r5 = epoll_create(0x6)
epoll_pwait(r5, &(0x7f0000000140)=[{}], 0x1, 0x6, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2}, &(0x7f0000000140), &(0x7f0000000280)=r0}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000007000000080000000800000005000000", @ANYRES32=r2, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000d0000000000000000000000000000000000000000eb666616ac97561001e40bd408393224189f03774b6aad47a32fba82a76c971f8c824c1c31519f5045c3c25925a9775e9e20c4824930373f127fcda7305be998421418e0a0527b0897dbbd134b841b1a8fd4ae734f0933dd57621106c1aa4c72a3946f0bd1bbf9624c5047"], 0x48)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r6, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000001a00)={0x40000000})
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 1 (id=1771):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@bloom_filter={0x1e, 0xa, 0xe065, 0x8000, 0x828, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x2, 0x7, @void, @value, @void, @value}, 0xfffffffffffffec0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, 0x0, &(0x7f0000000180)=r0}, 0x20)
close(r0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a00000002000000fb0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="001da3000000000000000000000000000000000000000002d1fe2df77e598d934f305d87cebe00000000003a14bfdf13ad0400670bfa59428b5b4ed4a9846e409b6f0c62af7a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r5 = epoll_create(0x6)
epoll_pwait(r5, &(0x7f0000000140)=[{}], 0x1, 0x6, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r2}, &(0x7f0000000140), &(0x7f0000000280)=r0}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000007000000080000000800000005000000", @ANYRES32=r2, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000d0000000000000000000000000000000000000000eb666616ac97561001e40bd408393224189f03774b6aad47a32fba82a76c971f8c824c1c31519f5045c3c25925a9775e9e20c4824930373f127fcda7305be998421418e0a0527b0897dbbd134b841b1a8fd4ae734f0933dd57621106c1aa4c72a3946f0bd1bbf9624c5047"], 0x48)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f0000000040)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r6, 0x0)
r7 = epoll_create(0x298)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, 0xffffffffffffffff, &(0x7f0000001a00)={0x40000000})

kernel console output (not intermixed with test programs):

 __kvmalloc_node_noprof+0x72/0x170
[   64.700945][ T5596]  xt_alloc_table_info+0x3d/0x80
[   64.705923][ T5596]  do_ip6t_set_ctl+0x678/0x8c0
[   64.710700][ T5596]  ? __rcu_read_unlock+0x4e/0x70
[   64.715662][ T5596]  nf_setsockopt+0x195/0x1b0
[   64.720301][ T5596]  ipv6_setsockopt+0x10f/0x130
[   64.725161][ T5596]  udpv6_setsockopt+0x95/0xb0
[   64.729879][ T5596]  sock_common_setsockopt+0x64/0x80
[   64.735108][ T5596]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   64.741073][ T5596]  __sys_setsockopt+0x1cc/0x240
[   64.745992][ T5596]  __x64_sys_setsockopt+0x66/0x80
[   64.751044][ T5596]  x64_sys_call+0x278d/0x2d60
[   64.755756][ T5596]  do_syscall_64+0xc9/0x1c0
[   64.760274][ T5596]  ? clear_bhb_loop+0x55/0xb0
[   64.765104][ T5596]  ? clear_bhb_loop+0x55/0xb0
[   64.769792][ T5596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.775714][ T5596] RIP: 0033:0x7f69f39ce719
[   64.780159][ T5596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.799899][ T5596] RSP: 002b:00007f69f2626038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   64.808332][ T5596] RAX: ffffffffffffffda RBX: 00007f69f3b86058 RCX: 00007f69f39ce719
[   64.816319][ T5596] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000008
[   64.824358][ T5596] RBP: 00007f69f2626090 R08: 0000000000000420 R09: 0000000000000000
[   64.832337][ T5596] R10: 0000000020000600 R11: 0000000000000246 R12: 0000000000000001
[   64.840314][ T5596] R13: 0000000000000000 R14: 00007f69f3b86058 R15: 00007ffcfd03e868
[   64.848345][ T5596]  </TASK>
[   64.858731][ T5597] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #19: comm syz.3.826: corrupted inode contents
[   64.871106][ T5597] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #19: comm syz.3.826: mark_inode_dirty error
[   64.871481][ T5599] loop2: detected capacity change from 0 to 256
[   64.882668][ T5597] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #19: comm syz.3.826: corrupted inode contents
[   64.900859][ T5599] FAT-fs (loop2): Directory bread(block 1285) failed
[   64.909360][ T5599] FAT-fs (loop2): Directory bread(block 1285) failed
[   64.916280][ T5599] FAT-fs (loop2): Directory bread(block 1285) failed
[   64.923045][ T5599] FAT-fs (loop2): Directory bread(block 1285) failed
[   64.939860][ T5597] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3006: inode #19: comm syz.3.826: mark_inode_dirty error
[   64.954599][ T5597] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3009: inode #19: comm syz.3.826: mark inode dirty (error -117)
[   64.969394][ T5597] EXT4-fs warning (device loop3): ext4_evict_inode:276: xattr delete (err -117)
[   64.982071][ T5610] netlink: 'syz.4.838': attribute type 10 has an invalid length.
[   64.992813][ T5610] team0: Device hsr_slave_0 failed to register rx_handler
[   65.034281][ T5612] IPv6: Can't replace route, no match found
[   65.052802][ T5610] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   65.064578][ T5610] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   65.123121][ T5624] serio: Serial port ptm1
[   65.179342][ T5631] loop4: detected capacity change from 0 to 1024
[   65.186823][ T5631] EXT4-fs (loop4): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   65.243827][ T5635] IPv6: Can't replace route, no match found
[   65.324374][ T5642] loop3: detected capacity change from 0 to 512
[   65.337497][ T5642] EXT4-fs (loop3): too many log groups per flexible block group
[   65.345296][ T5642] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   65.352130][ T5642] EXT4-fs (loop3): mount failed
[   65.376904][ T5646] netlink: 20 bytes leftover after parsing attributes in process `syz.3.852'.
[   65.472025][ T5662] IPv6: Can't replace route, no match found
[   65.547540][ T5671] loop3: detected capacity change from 0 to 512
[   65.577931][ T5671] EXT4-fs (loop3): too many log groups per flexible block group
[   65.585830][ T5671] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   65.593007][ T5671] EXT4-fs (loop3): mount failed
[   65.722663][ T3390] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.730313][ T3390] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   65.738385][ T3390] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   65.939586][ T5716] loop3: detected capacity change from 0 to 8192
[   65.961904][ T5721] loop2: detected capacity change from 0 to 2048
[   65.975850][ T5716]  loop3: p2 p3 p4
[   65.979859][ T5716] loop3: p2 start 452985600 is beyond EOD, truncated
[   65.979883][ T5716] loop3: p3 start 4177527808 is beyond EOD, truncated
[   65.979904][ T5716] loop3: p4 size 3599499392 extends beyond EOD, truncated
[   66.013368][ T5726] netlink: 'syz.0.888': attribute type 39 has an invalid length.
[   66.025003][ T5726] veth1_macvtap: left promiscuous mode
[   66.054040][ T5737] selinux_netlink_send: 2 callbacks suppressed
[   66.054055][ T5737] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5737 comm=syz.1.892
[   66.065335][ T5739] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5739 comm=syz.2.893
[   66.137305][ T5747] IPv6: Can't replace route, no match found
[   66.149615][ T5749] IPv6: Can't replace route, no match found
[   66.195951][ T5757] loop4: detected capacity change from 0 to 256
[   66.204471][ T5757] FAT-fs (loop4): Directory bread(block 1285) failed
[   66.213057][ T5757] FAT-fs (loop4): Directory bread(block 1285) failed
[   66.220473][ T5757] FAT-fs (loop4): Directory bread(block 1285) failed
[   66.228127][ T5757] FAT-fs (loop4): Directory bread(block 1285) failed
[   66.255505][ T5765] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5765 comm=syz.2.904
[   66.327064][ T5779] loop2: detected capacity change from 0 to 256
[   66.338341][ T5779] FAULT_INJECTION: forcing a failure.
[   66.338341][ T5779] name failslab, interval 1, probability 0, space 0, times 0
[   66.340619][ T5780] loop4: detected capacity change from 0 to 1024
[   66.351174][ T5779] CPU: 0 UID: 0 PID: 5779 Comm: syz.2.910 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   66.359580][ T5780] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   66.368092][ T5779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   66.368110][ T5779] Call Trace:
[   66.368118][ T5779]  <TASK>
[   66.368127][ T5779]  dump_stack_lvl+0xf2/0x150
[   66.368162][ T5779]  dump_stack+0x15/0x20
[   66.379110][ T5780] JBD2: no valid journal superblock found
[   66.388371][ T5779]  should_fail_ex+0x223/0x230
[   66.388421][ T5779]  ? audit_log_d_path+0x96/0x250
[   66.391732][ T5780] EXT4-fs (loop4): Could not load journal inode
[   66.394631][ T5779]  should_failslab+0x8f/0xb0
[   66.429837][ T5779]  __kmalloc_cache_noprof+0x4b/0x2a0
[   66.435171][ T5779]  audit_log_d_path+0x96/0x250
[   66.439956][ T5779]  ? get_file_rcu+0xeb/0x100
[   66.444635][ T5779]  ? __rcu_read_unlock+0x4e/0x70
[   66.449601][ T5779]  audit_log_d_path_exe+0x42/0x70
[   66.454637][ T5779]  audit_log_task+0x155/0x180
[   66.459324][ T5779]  audit_seccomp+0x68/0x130
[   66.463842][ T5779]  __seccomp_filter+0x6fa/0x1180
[   66.468846][ T5779]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   66.474595][ T5779]  ? vfs_write+0x596/0x920
[   66.479033][ T5779]  ? __schedule+0x6fa/0x930
[   66.483560][ T5779]  __secure_computing+0x9f/0x1c0
[   66.488558][ T5779]  syscall_trace_enter+0xd1/0x1f0
[   66.493617][ T5779]  do_syscall_64+0xaa/0x1c0
[   66.498167][ T5779]  ? clear_bhb_loop+0x55/0xb0
[   66.502905][ T5779]  ? clear_bhb_loop+0x55/0xb0
[   66.507658][ T5779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.513793][ T5779] RIP: 0033:0x7f53d02bcfb7
[   66.518298][ T5779] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.537925][ T5779] RSP: 002b:00007f53cef30e68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102
[   66.546382][ T5779] RAX: ffffffffffffffda RBX: 00007f53cef30ef0 RCX: 00007f53d02bcfb7
[   66.554373][ T5779] RDX: 00000000000001ff RSI: 0000000020000040 RDI: 00000000ffffff9c
[   66.562393][ T5779] RBP: 0000000020000140 R08: 00000000200000c0 R09: 0000000000000000
[   66.570459][ T5779] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000020000040
[   66.578438][ T5779] R13: 00007f53cef30eb0 R14: 0000000000000000 R15: 0000000000000000
[   66.586437][ T5779]  </TASK>
[   66.673016][ T5790] loop2: detected capacity change from 0 to 256
[   66.690631][ T5790] FAT-fs (loop2): Directory bread(block 64) failed
[   66.699328][ T5790] FAT-fs (loop2): Directory bread(block 65) failed
[   66.706272][ T5790] FAT-fs (loop2): Directory bread(block 66) failed
[   66.712930][ T5790] FAT-fs (loop2): Directory bread(block 67) failed
[   66.719473][ T5792] loop3: detected capacity change from 0 to 256
[   66.726506][ T5792] FAT-fs (loop3): Directory bread(block 1285) failed
[   66.726682][ T5790] FAT-fs (loop2): Directory bread(block 68) failed
[   66.734876][ T5792] FAT-fs (loop3): Directory bread(block 1285) failed
[   66.739841][ T5790] FAT-fs (loop2): Directory bread(block 69) failed
[   66.747949][ T5792] FAT-fs (loop3): Directory bread(block 1285) failed
[   66.753301][ T5790] FAT-fs (loop2): Directory bread(block 70) failed
[   66.760470][ T5792] FAT-fs (loop3): Directory bread(block 1285) failed
[   66.766619][ T5790] FAT-fs (loop2): Directory bread(block 71) failed
[   66.780108][ T5790] FAT-fs (loop2): Directory bread(block 72) failed
[   66.787775][ T5790] FAT-fs (loop2): Directory bread(block 73) failed
[   66.886732][ T5803] loop3: detected capacity change from 0 to 512
[   66.897892][ T5803] EXT4-fs (loop3): too many log groups per flexible block group
[   66.905640][ T5803] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   66.912720][ T5803] EXT4-fs (loop3): mount failed
[   67.018451][ T5790] process 'syz.2.915' launched './file0' with NULL argv: empty string added
[   67.028018][ T5790] syz.2.915: attempt to access beyond end of device
[   67.028018][ T5790] loop2: rw=524288, sector=1736, nr_sectors = 32 limit=256
[   67.041922][ T5790] syz.2.915: attempt to access beyond end of device
[   67.041922][ T5790] loop2: rw=0, sector=1736, nr_sectors = 8 limit=256
[   67.136476][ T5823] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5823 comm=syz.0.928
[   67.219826][ T5833] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.227364][ T5833] batman_adv: batadv0: Removing interface: batadv_slave_0
[   67.235741][ T5833] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.243197][ T5833] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.253154][ T5833] bond0: (slave batadv0): Releasing backup interface
[   67.261534][ T5838] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5838 comm=syz.1.935
[   67.279967][ T5835] IPv6: Can't replace route, no match found
[   67.346294][ T5848] serio: Serial port ptm1
[   67.397359][ T5856] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5856 comm=syz.0.943
[   67.428761][ T5861] IPv6: Can't replace route, no match found
[   67.452452][ T5866] IPv6: Can't replace route, no match found
[   67.474625][ T5869] netlink: 'syz.1.948': attribute type 10 has an invalid length.
[   67.485930][ T5869] team0: Device hsr_slave_0 failed to register rx_handler
[   67.535476][ T5872] sch_tbf: burst 1 is lower than device lo mtu (65550) !
[   67.550214][ T5872] macvlan0: entered allmulticast mode
[   67.555759][ T5872] veth1_vlan: entered allmulticast mode
[   67.563457][ T5869] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0'
[   67.625460][   T29] kauditd_printk_skb: 589 callbacks suppressed
[   67.625477][   T29] audit: type=1400 audit(1731836254.838:3141): avc:  denied  { accept } for  pid=5875 comm="syz.2.950" laddr=::1 lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   67.629710][ T5882] loop2: detected capacity change from 0 to 2048
[   67.665262][ T5883] syz.1.952[5883] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.665336][ T5883] syz.1.952[5883] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.670006][ T5882] msdos: Unknown parameter ''
[   67.681665][ T5883] syz.1.952[5883] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   67.698881][ T5882] loop2: detected capacity change from 0 to 512
[   67.718228][ T5882] EXT4-fs: Ignoring removed bh option
[   67.749008][ T5888] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   67.767196][ T5882] EXT4-fs mount: 44 callbacks suppressed
[   67.767215][ T5882] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   67.808173][ T5893] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5893 comm=syz.0.955
[   67.842285][ T5882] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.863206][ T5895] serio: Serial port ptm1
[   67.872772][   T29] audit: type=1326 audit(1731836255.098:3142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5875 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53d02be719 code=0x7ffc0000
[   67.899427][   T29] audit: type=1326 audit(1731836255.118:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5875 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f53d02be719 code=0x7ffc0000
[   67.922338][   T29] audit: type=1326 audit(1731836255.118:3144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5875 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53d02be719 code=0x7ffc0000
[   67.948163][   T29] audit: type=1326 audit(1731836255.168:3145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5875 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53d02be719 code=0x7ffc0000
[   67.971237][   T29] audit: type=1326 audit(1731836255.168:3146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5875 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53d02be719 code=0x7ffc0000
[   67.994269][   T29] audit: type=1326 audit(1731836255.168:3147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5875 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53d02be719 code=0x7ffc0000
[   68.019359][   T29] audit: type=1326 audit(1731836255.248:3148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5896 comm="syz.1.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   68.042786][   T29] audit: type=1326 audit(1731836255.248:3149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5896 comm="syz.1.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   68.066240][   T29] audit: type=1326 audit(1731836255.248:3150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5896 comm="syz.1.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   68.092512][ T5906] IPv6: Can't replace route, no match found
[   68.115041][ T5908] IPv6: Can't replace route, no match found
[   68.233905][ T5922] syz.1.967[5922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   68.241114][ T5922] syz.1.967[5922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   68.254898][ T5922] syz.1.967[5922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   68.271909][ T5931] serio: Serial port ptm0
[   68.355941][ T5945] IPv6: Can't replace route, no match found
[   68.364990][ T5946] loop4: detected capacity change from 0 to 512
[   68.391838][ T5952] FAULT_INJECTION: forcing a failure.
[   68.391838][ T5952] name failslab, interval 1, probability 0, space 0, times 0
[   68.397712][ T5946] EXT4-fs (loop4): too many log groups per flexible block group
[   68.404708][ T5952] CPU: 0 UID: 0 PID: 5952 Comm: syz.3.977 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   68.412232][ T5946] EXT4-fs (loop4): failed to initialize mballoc (-12)
[   68.422698][ T5952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   68.422717][ T5952] Call Trace:
[   68.422726][ T5952]  <TASK>
[   68.422783][ T5952]  dump_stack_lvl+0xf2/0x150
[   68.422818][ T5952]  dump_stack+0x15/0x20
[   68.431415][ T5946] EXT4-fs (loop4): mount failed
[   68.439632][ T5952]  should_fail_ex+0x223/0x230
[   68.439687][ T5952]  ? __alloc_skb+0x10b/0x310
[   68.468841][ T5952]  should_failslab+0x8f/0xb0
[   68.473464][ T5952]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   68.479362][ T5952]  __alloc_skb+0x10b/0x310
[   68.483829][ T5952]  audit_log_start+0x368/0x6b0
[   68.488679][ T5952]  audit_seccomp+0x4b/0x130
[   68.493228][ T5952]  __seccomp_filter+0x6fa/0x1180
[   68.498302][ T5952]  ? _raw_spin_unlock+0x26/0x50
[   68.503212][ T5952]  ? __mark_inode_dirty+0x3c6/0x7e0
[   68.508439][ T5952]  ? mnt_put_write_access+0x55/0x70
[   68.513685][ T5952]  ? touch_atime+0x2bb/0x350
[   68.518301][ T5952]  __secure_computing+0x9f/0x1c0
[   68.523355][ T5952]  syscall_trace_enter+0xd1/0x1f0
[   68.528571][ T5952]  do_syscall_64+0xaa/0x1c0
[   68.533261][ T5952]  ? clear_bhb_loop+0x55/0xb0
[   68.537951][ T5952]  ? clear_bhb_loop+0x55/0xb0
[   68.542712][ T5952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.548788][ T5952] RIP: 0033:0x7f82ca3dd15c
[   68.553223][ T5952] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[   68.572965][ T5952] RSP: 002b:00007f82c9057030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   68.581405][ T5952] RAX: ffffffffffffffda RBX: 00007f82ca595f80 RCX: 00007f82ca3dd15c
[   68.589476][ T5952] RDX: 000000000000000f RSI: 00007f82c90570a0 RDI: 0000000000000005
[   68.597457][ T5952] RBP: 00007f82c9057090 R08: 0000000000000000 R09: 0000000000000000
[   68.605496][ T5952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   68.613473][ T5952] R13: 0000000000000000 R14: 00007f82ca595f80 R15: 00007fff3e4a53c8
[   68.621525][ T5952]  </TASK>
[   68.626627][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   68.646463][ T5956] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5956 comm=syz.2.978
[   68.677143][ T5959] IPv6: Can't replace route, no match found
[   68.729149][ T5969] FAULT_INJECTION: forcing a failure.
[   68.729149][ T5969] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.742393][ T5969] CPU: 0 UID: 0 PID: 5969 Comm: syz.1.983 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   68.753249][ T5969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   68.763327][ T5969] Call Trace:
[   68.766663][ T5969]  <TASK>
[   68.769633][ T5969]  dump_stack_lvl+0xf2/0x150
[   68.774373][ T5969]  dump_stack+0x15/0x20
[   68.778617][ T5969]  should_fail_ex+0x223/0x230
[   68.783425][ T5969]  should_fail+0xb/0x10
[   68.787649][ T5969]  should_fail_usercopy+0x1a/0x20
[   68.792769][ T5969]  _copy_to_user+0x20/0xa0
[   68.797243][ T5969]  bpf_verifier_vlog+0x214/0x4d0
[   68.802216][ T5969]  __btf_verifier_log+0x80/0xb0
[   68.807105][ T5969]  ? should_fail_ex+0xd7/0x230
[   68.811917][ T5969]  ? btf_parse_hdr+0x213/0x3a0
[   68.816828][ T5969]  ? should_fail_ex+0xd7/0x230
[   68.821656][ T5969]  btf_parse_hdr+0x225/0x3a0
[   68.826340][ T5969]  btf_new_fd+0x270/0x790
[   68.830704][ T5969]  bpf_btf_load+0x115/0x130
[   68.835237][ T5969]  __sys_bpf+0x686/0x7a0
[   68.839543][ T5969]  __x64_sys_bpf+0x43/0x50
[   68.844003][ T5969]  x64_sys_call+0x2625/0x2d60
[   68.849134][ T5969]  do_syscall_64+0xc9/0x1c0
[   68.853685][ T5969]  ? clear_bhb_loop+0x55/0xb0
[   68.858391][ T5969]  ? clear_bhb_loop+0x55/0xb0
[   68.863148][ T5969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.869163][ T5969] RIP: 0033:0x7fd69d84e719
[   68.873636][ T5969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.893394][ T5969] RSP: 002b:00007fd69c4c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   68.901839][ T5969] RAX: ffffffffffffffda RBX: 00007fd69da05f80 RCX: 00007fd69d84e719
[   68.909828][ T5969] RDX: 0000000000000028 RSI: 0000000020000400 RDI: 0000000000000012
[   68.917892][ T5969] RBP: 00007fd69c4c1090 R08: 0000000000000000 R09: 0000000000000000
[   68.925870][ T5969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   68.933860][ T5969] R13: 0000000000000001 R14: 00007fd69da05f80 R15: 00007ffd45cb8658
[   68.941921][ T5969]  </TASK>
[   68.948509][ T5971] syz.3.984[5971] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   68.949069][ T5971] syz.3.984[5971] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   68.963911][ T5971] syz.3.984[5971] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   69.047222][ T5989] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5989 comm=syz.0.991
[   69.100644][ T5987] IPv6: Can't replace route, no match found
[   69.253327][ T6013] IPv6: Can't replace route, no match found
[   69.280359][ T6018] syz.0.998[6018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   69.338255][ T6022] IPv6: Can't replace route, no match found
[   69.362238][ T6023] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1002'.
[   69.372015][ T6023] netlink: 'syz.2.1002': attribute type 10 has an invalid length.
[   69.379984][ T6023] batman_adv: batadv0: Removing interface: dummy0
[   69.389817][ T6023] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   69.870028][ T6031] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   69.879869][ T6031] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   69.938873][ T6043] IPv6: Can't replace route, no match found
[   69.995954][ T6048] netlink: 'syz.1.1011': attribute type 10 has an invalid length.
[   70.043661][ T6051] loop4: detected capacity change from 0 to 4096
[   70.050975][ T6055] IPv6: Can't replace route, no match found
[   70.053556][ T6051] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.188628][ T6063] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6063 comm=syz.0.1018
[   70.347927][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.386654][ T6091] random: crng reseeded on system resumption
[   70.449718][ T6103] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1029'.
[   70.472348][ T6095] netlink: 'syz.0.1029': attribute type 10 has an invalid length.
[   70.496465][ T6106] IPv6: Can't replace route, no match found
[   70.681744][ T6134] FAULT_INJECTION: forcing a failure.
[   70.681744][ T6134] name failslab, interval 1, probability 0, space 0, times 0
[   70.694497][ T6134] CPU: 1 UID: 0 PID: 6134 Comm: syz.2.1047 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   70.705197][ T6134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   70.715309][ T6134] Call Trace:
[   70.718630][ T6134]  <TASK>
[   70.721592][ T6134]  dump_stack_lvl+0xf2/0x150
[   70.726238][ T6134]  dump_stack+0x15/0x20
[   70.730425][ T6134]  should_fail_ex+0x223/0x230
[   70.735149][ T6134]  ? mas_dup_build+0x1e8/0xd10
[   70.739972][ T6134]  should_failslab+0x8f/0xb0
[   70.744654][ T6134]  kmem_cache_alloc_noprof+0x4c/0x290
[   70.750117][ T6134]  ? pcpu_memcg_post_alloc_hook+0x158/0x1c0
[   70.756056][ T6134]  mas_dup_build+0x1e8/0xd10
[   70.760733][ T6134]  __mt_dup+0xcf/0x190
[   70.765004][ T6134]  copy_mm+0x332/0x10e0
[   70.769186][ T6134]  copy_process+0xd5b/0x1f90
[   70.773865][ T6134]  kernel_clone+0x167/0x5e0
[   70.778454][ T6134]  ? vfs_write+0x596/0x920
[   70.782948][ T6134]  ? __pfx_kfree_link+0x10/0x10
[   70.787867][ T6134]  __x64_sys_clone+0xe8/0x120
[   70.792602][ T6134]  x64_sys_call+0x2d23/0x2d60
[   70.797299][ T6134]  do_syscall_64+0xc9/0x1c0
[   70.801814][ T6134]  ? clear_bhb_loop+0x55/0xb0
[   70.806508][ T6134]  ? clear_bhb_loop+0x55/0xb0
[   70.811206][ T6134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.817130][ T6134] RIP: 0033:0x7f53d02be719
[   70.821561][ T6134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.841281][ T6134] RSP: 002b:00007f53cef30fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   70.849733][ T6134] RAX: ffffffffffffffda RBX: 00007f53d0475f80 RCX: 00007f53d02be719
[   70.857712][ T6134] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[   70.865688][ T6134] RBP: 00007f53cef31090 R08: 0000000000000000 R09: 0000000000000000
[   70.873671][ T6134] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   70.881659][ T6134] R13: 0000000000000000 R14: 00007f53d0475f80 R15: 00007fff4efa54b8
[   70.889647][ T6134]  </TASK>
[   71.012857][ T6155] IPv6: Can't replace route, no match found
[   71.191433][ T6169] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1061'.
[   71.200454][ T6169] batman_adv: batadv0: Removing interface: dummy0
[   71.219368][ T6169] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   71.225653][ T6173] loop2: detected capacity change from 0 to 1024
[   71.227338][ T6169] batman_adv: batadv0: Removing interface: batadv_slave_0
[   71.241436][ T6173] EXT4-fs (loop2): stripe (8) is not aligned with cluster size (16), stripe is disabled
[   71.261443][ T6169] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   71.269057][ T6169] batman_adv: batadv0: Removing interface: batadv_slave_1
[   71.279323][ T6173] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.286754][ T6174] loop4: detected capacity change from 0 to 512
[   71.305316][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.340903][ T6174] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   71.365744][ T6174] ext4 filesystem being mounted at /206/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   71.437948][ T6186] loop2: detected capacity change from 0 to 256
[   71.456398][ T6186] FAT-fs (loop2): Directory bread(block 1285) failed
[   71.472390][ T6186] FAT-fs (loop2): Directory bread(block 1285) failed
[   71.489163][ T6186] FAT-fs (loop2): Directory bread(block 1285) failed
[   71.503210][ T6186] FAT-fs (loop2): Directory bread(block 1285) failed
[   71.513293][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   71.570879][ T6196] IPv6: Can't replace route, no match found
[   71.607156][ T6199] loop4: detected capacity change from 0 to 1024
[   71.614976][ T6199] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   71.627513][ T6199] JBD2: no valid journal superblock found
[   71.633298][ T6199] EXT4-fs (loop4): Could not load journal inode
[   71.695925][ T6210] serio: Serial port ptm1
[   71.725804][ T6211] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1072'.
[   71.735397][ T6211] netlink: 'syz.3.1072': attribute type 10 has an invalid length.
[   71.885956][ T6215] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   71.956296][ T6228] netlink: 'syz.1.1078': attribute type 10 has an invalid length.
[   71.984665][ T6232] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.1077' sets config #0
[   72.020283][ T6240] netlink: 'syz.1.1079': attribute type 10 has an invalid length.
[   72.165889][ T6253] IPv6: Can't replace route, no match found
[   72.199164][ T6257] IPv6: Can't replace route, no match found
[   72.328905][ T6265] serio: Serial port ptm1
[   72.420136][ T6271] netlink: 'syz.4.1089': attribute type 10 has an invalid length.
[   72.477404][ T6273] loop4: detected capacity change from 0 to 512
[   72.506565][ T6273] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.524969][ T6273] ext4 filesystem being mounted at /210/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.641303][   T29] kauditd_printk_skb: 350 callbacks suppressed
[   72.641321][   T29] audit: type=1400 audit(1731836259.866:3499): avc:  denied  { ioctl } for  pid=6272 comm="syz.4.1090" path="/210/file0/hugetlb.2MB.rsvd.usage_in_bytes" dev="loop4" ino=18 ioctlcmd=0x6609 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   72.684048][ T6286] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #19: comm syz.4.1090: corrupted inode contents
[   72.697771][ T6286] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #19: comm syz.4.1090: mark_inode_dirty error
[   72.710044][ T6286] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #19: comm syz.4.1090: corrupted inode contents
[   72.722318][ T6286] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3006: inode #19: comm syz.4.1090: mark_inode_dirty error
[   72.734837][ T6286] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3009: inode #19: comm syz.4.1090: mark inode dirty (error -117)
[   72.755824][ T6286] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[   72.801092][ T6304] serio: Serial port ptm0
[   72.827850][ T6305] FAULT_INJECTION: forcing a failure.
[   72.827850][ T6305] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   72.841239][ T6305] CPU: 1 UID: 0 PID: 6305 Comm: syz.1.1101 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   72.851937][ T6305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   72.862348][ T6305] Call Trace:
[   72.865639][ T6305]  <TASK>
[   72.868571][ T6305]  dump_stack_lvl+0xf2/0x150
[   72.873222][ T6305]  dump_stack+0x15/0x20
[   72.877391][ T6305]  should_fail_ex+0x223/0x230
[   72.882160][ T6305]  should_fail+0xb/0x10
[   72.886402][ T6305]  should_fail_usercopy+0x1a/0x20
[   72.891603][ T6305]  _copy_to_user+0x20/0xa0
[   72.896039][ T6305]  simple_read_from_buffer+0xa0/0x110
[   72.901681][ T6305]  proc_fail_nth_read+0xf9/0x140
[   72.906770][ T6305]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   72.912334][ T6305]  vfs_read+0x1a2/0x700
[   72.916552][ T6305]  ? __fget_files+0x1d4/0x210
[   72.921292][ T6305]  ksys_read+0xeb/0x1b0
[   72.925593][ T6305]  __x64_sys_read+0x42/0x50
[   72.930163][ T6305]  x64_sys_call+0x27d3/0x2d60
[   72.934936][ T6305]  do_syscall_64+0xc9/0x1c0
[   72.939452][ T6305]  ? clear_bhb_loop+0x55/0xb0
[   72.944164][ T6305]  ? clear_bhb_loop+0x55/0xb0
[   72.948961][ T6305]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.954940][ T6305] RIP: 0033:0x7fd69d84d15c
[   72.959432][ T6305] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[   72.979127][ T6305] RSP: 002b:00007fd69c4a0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   72.987574][ T6305] RAX: ffffffffffffffda RBX: 00007fd69da06058 RCX: 00007fd69d84d15c
[   72.995575][ T6305] RDX: 000000000000000f RSI: 00007fd69c4a00a0 RDI: 0000000000000006
[   73.003578][ T6305] RBP: 00007fd69c4a0090 R08: 0000000000000000 R09: 0000000000000000
[   73.011593][ T6305] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[   73.019614][ T6305] R13: 0000000000000000 R14: 00007fd69da06058 R15: 00007ffd45cb8658
[   73.027613][ T6305]  </TASK>
[   73.070896][ T6308] bpf_get_probe_write_proto: 5 callbacks suppressed
[   73.070931][ T6308] syz.0.1104[6308] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.084791][ T6308] syz.0.1104[6308] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.099667][ T6308] syz.0.1104[6308] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.190029][   T29] audit: type=1326 audit(1731836260.416:3500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.241448][   T29] audit: type=1326 audit(1731836260.416:3501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.264980][   T29] audit: type=1326 audit(1731836260.416:3502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.288427][   T29] audit: type=1326 audit(1731836260.416:3503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.311947][   T29] audit: type=1326 audit(1731836260.416:3504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.335492][   T29] audit: type=1326 audit(1731836260.456:3505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.358954][   T29] audit: type=1326 audit(1731836260.456:3506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.382472][   T29] audit: type=1326 audit(1731836260.456:3507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.406220][   T29] audit: type=1326 audit(1731836260.456:3508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6314 comm="syz.0.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   73.438227][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.488279][ T6330] syz.0.1111 uses obsolete (PF_INET,SOCK_PACKET)
[   73.505182][ T6329] IPv6: Can't replace route, no match found
[   73.570339][ T6336] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1111'.
[   73.579421][ T6336] netlink: 43 bytes leftover after parsing attributes in process `syz.0.1111'.
[   73.588475][ T6336] netlink: 'syz.0.1111': attribute type 6 has an invalid length.
[   73.596256][ T6336] netlink: 'syz.0.1111': attribute type 5 has an invalid length.
[   73.604013][ T6336] netlink: 43 bytes leftover after parsing attributes in process `syz.0.1111'.
[   73.681083][ T6335] syz.3.1116[6335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.682502][ T6335] syz.3.1116[6335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.684095][ T6348] netlink: 'syz.1.1117': attribute type 10 has an invalid length.
[   73.704866][ T6335] syz.3.1116[6335] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.737071][ T6352] FAULT_INJECTION: forcing a failure.
[   73.737071][ T6352] name failslab, interval 1, probability 0, space 0, times 0
[   73.761246][ T6352] CPU: 0 UID: 0 PID: 6352 Comm: syz.0.1119 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   73.771937][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   73.782077][ T6352] Call Trace:
[   73.785359][ T6352]  <TASK>
[   73.788294][ T6352]  dump_stack_lvl+0xf2/0x150
[   73.792907][ T6352]  dump_stack+0x15/0x20
[   73.797108][ T6352]  should_fail_ex+0x223/0x230
[   73.802082][ T6352]  ? __kvmalloc_node_noprof+0x72/0x170
[   73.807625][ T6352]  should_failslab+0x8f/0xb0
[   73.812290][ T6352]  __kmalloc_node_noprof+0xa8/0x380
[   73.817509][ T6352]  ? security_sid_to_context_core+0x2b8/0x2f0
[   73.823653][ T6352]  __kvmalloc_node_noprof+0x72/0x170
[   73.829062][ T6352]  simple_xattr_alloc+0x43/0x90
[   73.833956][ T6352]  shmem_initxattrs+0x18a/0x2f0
[   73.838826][ T6352]  ? __pfx_shmem_initxattrs+0x10/0x10
[   73.844210][ T6352]  security_inode_init_security+0x257/0x330
[   73.850191][ T6352]  shmem_tmpfile+0x7a/0x120
[   73.855138][ T6352]  vfs_tmpfile+0x22b/0x4d0
[   73.859584][ T6352]  do_tmpfile+0xa9/0x190
[   73.863870][ T6352]  path_openat+0x1c4c/0x1fa0
[   73.868480][ T6352]  ? _parse_integer_limit+0x167/0x180
[   73.873949][ T6352]  ? _parse_integer+0x27/0x30
[   73.878685][ T6352]  ? kstrtoull+0x110/0x140
[   73.883178][ T6352]  ? kstrtouint_from_user+0xb0/0xe0
[   73.888399][ T6352]  do_filp_open+0xf7/0x200
[   73.892884][ T6352]  do_sys_openat2+0xab/0x120
[   73.897492][ T6352]  __x64_sys_open+0xe6/0x110
[   73.902166][ T6352]  x64_sys_call+0x1321/0x2d60
[   73.906910][ T6352]  do_syscall_64+0xc9/0x1c0
[   73.911456][ T6352]  ? clear_bhb_loop+0x55/0xb0
[   73.916149][ T6352]  ? clear_bhb_loop+0x55/0xb0
[   73.920834][ T6352]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.926791][ T6352] RIP: 0033:0x7f69f39ce719
[   73.931210][ T6352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.950829][ T6352] RSP: 002b:00007f69f2647038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   73.959286][ T6352] RAX: ffffffffffffffda RBX: 00007f69f3b85f80 RCX: 00007f69f39ce719
[   73.967299][ T6352] RDX: 0000000000000008 RSI: 0000000000418601 RDI: 0000000020000040
[   73.975280][ T6352] RBP: 00007f69f2647090 R08: 0000000000000000 R09: 0000000000000000
[   73.983281][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   73.991260][ T6352] R13: 0000000000000000 R14: 00007f69f3b85f80 R15: 00007ffcfd03e868
[   73.999252][ T6352]  </TASK>
[   74.025098][ T6358] serio: Serial port ptm1
[   74.030015][ T6356] FAULT_INJECTION: forcing a failure.
[   74.030015][ T6356] name failslab, interval 1, probability 0, space 0, times 0
[   74.042727][ T6356] CPU: 0 UID: 0 PID: 6356 Comm: syz.4.1122 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   74.053425][ T6356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   74.063578][ T6356] Call Trace:
[   74.066870][ T6356]  <TASK>
[   74.069899][ T6356]  dump_stack_lvl+0xf2/0x150
[   74.074566][ T6356]  dump_stack+0x15/0x20
[   74.078742][ T6356]  should_fail_ex+0x223/0x230
[   74.083469][ T6356]  ? alloc_vfsmnt+0x2b/0x300
[   74.088087][ T6356]  should_failslab+0x8f/0xb0
[   74.093118][ T6356]  kmem_cache_alloc_noprof+0x4c/0x290
[   74.098576][ T6356]  alloc_vfsmnt+0x2b/0x300
[   74.103145][ T6356]  clone_mnt+0x45/0x7a0
[   74.107427][ T6356]  ? is_subdir+0x79/0x170
[   74.111782][ T6356]  copy_tree+0x2df/0x7f0
[   74.116046][ T6356]  copy_mnt_ns+0x11e/0x5f0
[   74.120509][ T6356]  ? create_new_namespaces+0x3c/0x430
[   74.125918][ T6356]  ? kmem_cache_alloc_noprof+0x1a6/0x290
[   74.131593][ T6356]  create_new_namespaces+0x89/0x430
[   74.136892][ T6356]  ? security_capable+0x81/0x90
[   74.141863][ T6356]  unshare_nsproxy_namespaces+0xe6/0x120
[   74.147566][ T6356]  ksys_unshare+0x3c9/0x6e0
[   74.152155][ T6356]  __x64_sys_unshare+0x1f/0x30
[   74.156936][ T6356]  x64_sys_call+0x2c8d/0x2d60
[   74.161675][ T6356]  do_syscall_64+0xc9/0x1c0
[   74.166197][ T6356]  ? clear_bhb_loop+0x55/0xb0
[   74.170945][ T6356]  ? clear_bhb_loop+0x55/0xb0
[   74.175647][ T6356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.181639][ T6356] RIP: 0033:0x7f0ecb84e719
[   74.186082][ T6356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.206169][ T6356] RSP: 002b:00007f0eca4c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[   74.214657][ T6356] RAX: ffffffffffffffda RBX: 00007f0ecba05f80 RCX: 00007f0ecb84e719
[   74.222638][ T6356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000004a060480
[   74.230614][ T6356] RBP: 00007f0eca4c7090 R08: 0000000000000000 R09: 0000000000000000
[   74.238594][ T6356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.246596][ T6356] R13: 0000000000000000 R14: 00007f0ecba05f80 R15: 00007ffe1f789988
[   74.254612][ T6356]  </TASK>
[   74.270587][ T6363] selinux_netlink_send: 1 callbacks suppressed
[   74.270612][ T6363] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6363 comm=syz.3.1125
[   74.422516][ T6377] loop4: detected capacity change from 0 to 2048
[   74.531813][ T6379] syz.1.1131[6379] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.532573][ T6379] syz.1.1131[6379] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.546563][ T6391] FAULT_INJECTION: forcing a failure.
[   74.546563][ T6391] name failslab, interval 1, probability 0, space 0, times 0
[   74.546595][ T6391] CPU: 1 UID: 0 PID: 6391 Comm: syz.4.1134 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   74.546662][ T6391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   74.546677][ T6391] Call Trace:
[   74.546684][ T6391]  <TASK>
[   74.546693][ T6391]  dump_stack_lvl+0xf2/0x150
[   74.546725][ T6391]  dump_stack+0x15/0x20
[   74.546794][ T6391]  should_fail_ex+0x223/0x230
[   74.546898][ T6391]  ? alloc_empty_file+0xd0/0x2f0
[   74.546930][ T6391]  should_failslab+0x8f/0xb0
[   74.547010][ T6391]  kmem_cache_alloc_noprof+0x4c/0x290
[   74.547060][ T6391]  ? __rcu_read_unlock+0x4e/0x70
[   74.547099][ T6391]  alloc_empty_file+0xd0/0x2f0
[   74.547131][ T6391]  path_openat+0x6a/0x1fa0
[   74.547203][ T6391]  ? exc_page_fault+0x4fc/0x650
[   74.547228][ T6391]  ? kernelmode_fixup_or_oops+0x58/0xb0
[   74.547267][ T6391]  ? _parse_integer_limit+0x167/0x180
[   74.547302][ T6391]  ? _parse_integer+0x27/0x30
[   74.547426][ T6391]  do_filp_open+0xf7/0x200
[   74.547473][ T6391]  alloc_bprm+0xd5/0x740
[   74.547509][ T6391]  ? should_fail_ex+0xd7/0x230
[   74.547630][ T6391]  do_execveat_common+0x134/0x800
[   74.547676][ T6391]  __x64_sys_execve+0x5a/0x70
[   74.547717][ T6391]  x64_sys_call+0x1277/0x2d60
[   74.547750][ T6391]  do_syscall_64+0xc9/0x1c0
[   74.547856][ T6391]  ? clear_bhb_loop+0x55/0xb0
[   74.547883][ T6391]  ? clear_bhb_loop+0x55/0xb0
[   74.547910][ T6391]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.547957][ T6391] RIP: 0033:0x7f0ecb84e719
[   74.548046][ T6391] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.548067][ T6391] RSP: 002b:00007f0eca4c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[   74.548092][ T6391] RAX: ffffffffffffffda RBX: 00007f0ecba05f80 RCX: 00007f0ecb84e719
[   74.548170][ T6391] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180
[   74.548186][ T6391] RBP: 00007f0eca4c7090 R08: 0000000000000000 R09: 0000000000000000
[   74.548203][ T6391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.548218][ T6391] R13: 0000000000000000 R14: 00007f0ecba05f80 R15: 00007ffe1f789988
[   74.548253][ T6391]  </TASK>
[   74.606230][ T6387] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1129'.
[   74.633682][ T6379] syz.1.1131[6379] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.674201][ T6387] 0ªX¹¦À: renamed from caif0
[   74.832194][ T6387] 0ªX¹¦À: entered allmulticast mode
[   74.837526][ T6387] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   74.853365][ T6399] IPv6: Can't replace route, no match found
[   75.173361][ T6425] IPv6: Can't replace route, no match found
[   75.321155][ T6429] netlink: 'syz.2.1149': attribute type 10 has an invalid length.
[   75.342996][ T6431] syz.1.1150[6431] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.490808][ T6436] siw: device registration error -23
[   75.994277][ T6466] netlink: 'syz.0.1163': attribute type 10 has an invalid length.
[   76.034948][ T6467] siw: device registration error -23
[   76.103663][ T6476] IPv6: Can't replace route, no match found
[   76.211257][ T6478] FAULT_INJECTION: forcing a failure.
[   76.211257][ T6478] name failslab, interval 1, probability 0, space 0, times 0
[   76.223984][ T6478] CPU: 0 UID: 0 PID: 6478 Comm: syz.1.1168 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   76.234674][ T6478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   76.244767][ T6478] Call Trace:
[   76.248088][ T6478]  <TASK>
[   76.251210][ T6478]  dump_stack_lvl+0xf2/0x150
[   76.255838][ T6478]  dump_stack+0x15/0x20
[   76.260033][ T6478]  should_fail_ex+0x223/0x230
[   76.264840][ T6478]  ? __alloc_skb+0x10b/0x310
[   76.269479][ T6478]  should_failslab+0x8f/0xb0
[   76.274127][ T6478]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   76.280022][ T6478]  __alloc_skb+0x10b/0x310
[   76.284542][ T6478]  netlink_alloc_large_skb+0xad/0xe0
[   76.289887][ T6478]  netlink_sendmsg+0x3b4/0x6e0
[   76.294764][ T6478]  ? __pfx_netlink_sendmsg+0x10/0x10
[   76.300081][ T6478]  __sock_sendmsg+0x140/0x180
[   76.304857][ T6478]  ____sys_sendmsg+0x312/0x410
[   76.309667][ T6478]  __sys_sendmsg+0x1d9/0x270
[   76.314299][ T6478]  __x64_sys_sendmsg+0x46/0x50
[   76.319129][ T6478]  x64_sys_call+0x2689/0x2d60
[   76.323881][ T6478]  do_syscall_64+0xc9/0x1c0
[   76.328417][ T6478]  ? clear_bhb_loop+0x55/0xb0
[   76.333109][ T6478]  ? clear_bhb_loop+0x55/0xb0
[   76.337820][ T6478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.343818][ T6478] RIP: 0033:0x7fd69d84e719
[   76.348254][ T6478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.367924][ T6478] RSP: 002b:00007fd69c4c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.376383][ T6478] RAX: ffffffffffffffda RBX: 00007fd69da05f80 RCX: 00007fd69d84e719
[   76.384409][ T6478] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000006
[   76.392423][ T6478] RBP: 00007fd69c4c1090 R08: 0000000000000000 R09: 0000000000000000
[   76.400417][ T6478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.408441][ T6478] R13: 0000000000000000 R14: 00007fd69da05f80 R15: 00007ffd45cb8658
[   76.416433][ T6478]  </TASK>
[   76.464701][ T6487] IPv6: Can't replace route, no match found
[   76.884052][ T6504] netlink: 'syz.1.1177': attribute type 10 has an invalid length.
[   77.129551][ T6520] loop4: detected capacity change from 0 to 256
[   77.138062][ T6520] FAT-fs (loop4): Directory bread(block 1285) failed
[   77.150723][ T6520] FAT-fs (loop4): Directory bread(block 1285) failed
[   77.167808][ T6520] FAT-fs (loop4): Directory bread(block 1285) failed
[   77.183246][ T6520] FAT-fs (loop4): Directory bread(block 1285) failed
[   77.208347][ T6530] netlink: 'syz.0.1188': attribute type 10 has an invalid length.
[   77.238205][ T6533] IPv6: Can't replace route, no match found
[   77.308977][ T6536] block device autoloading is deprecated and will be removed.
[   77.328572][ T6538] FAULT_INJECTION: forcing a failure.
[   77.328572][ T6538] name failslab, interval 1, probability 0, space 0, times 0
[   77.341280][ T6538] CPU: 0 UID: 0 PID: 6538 Comm: syz.0.1191 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   77.352028][ T6538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   77.362120][ T6538] Call Trace:
[   77.365511][ T6538]  <TASK>
[   77.368460][ T6538]  dump_stack_lvl+0xf2/0x150
[   77.373254][ T6538]  dump_stack+0x15/0x20
[   77.377454][ T6538]  should_fail_ex+0x223/0x230
[   77.382226][ T6538]  ? sel_netport_sid+0x1e0/0x420
[   77.387223][ T6538]  should_failslab+0x8f/0xb0
[   77.391879][ T6538]  __kmalloc_cache_noprof+0x4b/0x2a0
[   77.397287][ T6538]  sel_netport_sid+0x1e0/0x420
[   77.402095][ T6538]  selinux_socket_connect_helper+0x37c/0x4b0
[   77.408189][ T6538]  selinux_sctp_bind_connect+0x1b8/0x270
[   77.413944][ T6538]  security_sctp_bind_connect+0x51/0x90
[   77.419619][ T6538]  sctp_sendmsg+0xeda/0x1920
[   77.424293][ T6538]  ? __pfx_sctp_sendmsg+0x10/0x10
[   77.429427][ T6538]  inet_sendmsg+0xc5/0xd0
[   77.433920][ T6538]  __sock_sendmsg+0x102/0x180
[   77.438625][ T6538]  ____sys_sendmsg+0x312/0x410
[   77.443448][ T6538]  __sys_sendmsg+0x1d9/0x270
[   77.448188][ T6538]  __x64_sys_sendmsg+0x46/0x50
[   77.453009][ T6538]  x64_sys_call+0x2689/0x2d60
[   77.457810][ T6538]  do_syscall_64+0xc9/0x1c0
[   77.462328][ T6538]  ? clear_bhb_loop+0x55/0xb0
[   77.467025][ T6538]  ? clear_bhb_loop+0x55/0xb0
[   77.471855][ T6538]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.477946][ T6538] RIP: 0033:0x7f69f39ce719
[   77.482409][ T6538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.502062][ T6538] RSP: 002b:00007f69f2647038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   77.510507][ T6538] RAX: ffffffffffffffda RBX: 00007f69f3b85f80 RCX: 00007f69f39ce719
[   77.518558][ T6538] RDX: 0000000000000060 RSI: 0000000020000380 RDI: 0000000000000006
[   77.526538][ T6538] RBP: 00007f69f2647090 R08: 0000000000000000 R09: 0000000000000000
[   77.534556][ T6538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.542555][ T6538] R13: 0000000000000000 R14: 00007f69f3b85f80 R15: 00007ffcfd03e868
[   77.550742][ T6538]  </TASK>
[   77.617189][ T6552] serio: Serial port ptm1
[   77.643951][ T6556] IPv6: Can't replace route, no match found
[   77.739552][ T6563] netlink: 'syz.3.1201': attribute type 10 has an invalid length.
[   77.815611][ T6565] loop3: detected capacity change from 0 to 4096
[   77.822538][ T6565] /dev/loop3: Can't open blockdev
[   78.003668][ T6574] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6574 comm=syz.2.1206
[   78.187321][ T6584] IPv6: Can't replace route, no match found
[   78.198821][ T6585] netlink: 'syz.2.1207': attribute type 15 has an invalid length.
[   78.248994][ T6588] netlink: 'syz.4.1212': attribute type 10 has an invalid length.
[   78.277431][ T6585] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1207'.
[   78.346175][   T29] kauditd_printk_skb: 234 callbacks suppressed
[   78.346267][   T29] audit: type=1326 audit(1731836265.576:3743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.375962][   T29] audit: type=1326 audit(1731836265.576:3744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.401419][ T6593] loop4: detected capacity change from 0 to 256
[   78.408706][   T29] audit: type=1326 audit(1731836265.616:3745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.432138][   T29] audit: type=1326 audit(1731836265.616:3746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.455634][   T29] audit: type=1326 audit(1731836265.616:3747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.471643][ T6593] FAT-fs (loop4): Directory bread(block 64) failed
[   78.479127][   T29] audit: type=1326 audit(1731836265.616:3748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.509096][   T29] audit: type=1326 audit(1731836265.616:3749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.532801][   T29] audit: type=1326 audit(1731836265.616:3750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.545546][ T6593] FAT-fs (loop4): Directory bread(block 65) failed
[   78.556238][   T29] audit: type=1326 audit(1731836265.616:3751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fd69d84e719 code=0x7ffc0000
[   78.586341][   T29] audit: type=1326 audit(1731836265.616:3752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6590 comm="syz.1.1213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd69d84e753 code=0x7ffc0000
[   78.591544][ T6593] FAT-fs (loop4): Directory bread(block 66) failed
[   78.636395][ T6593] FAT-fs (loop4): Directory bread(block 67) failed
[   78.642987][ T6593] FAT-fs (loop4): Directory bread(block 68) failed
[   78.651244][ T6593] FAT-fs (loop4): Directory bread(block 69) failed
[   78.695581][ T6593] FAT-fs (loop4): Directory bread(block 70) failed
[   78.705228][ T6593] FAT-fs (loop4): Directory bread(block 71) failed
[   78.711803][ T6593] FAT-fs (loop4): Directory bread(block 72) failed
[   78.727304][ T6598] IPv6: Can't replace route, no match found
[   78.744198][ T6593] FAT-fs (loop4): Directory bread(block 73) failed
[   78.847795][ T6614] bond2: entered promiscuous mode
[   78.852886][ T6614] bond2: entered allmulticast mode
[   78.875803][ T6619] siw: device registration error -23
[   78.898566][ T6614] 8021q: adding VLAN 0 to HW filter on device bond2
[   78.920079][ T6614] bond2 (unregistering): Released all slaves
[   78.957755][ T6622] bridge0: entered promiscuous mode
[   78.963731][ T6593] syz.4.1214: attempt to access beyond end of device
[   78.963731][ T6593] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256
[   78.971808][ T6622] macvlan2: entered promiscuous mode
[   78.977842][ T6593] syz.4.1214: attempt to access beyond end of device
[   78.977842][ T6593] loop4: rw=0, sector=1736, nr_sectors = 8 limit=256
[   78.988827][ T6622] bridge0: port 4(macvlan2) entered blocking state
[   79.002871][ T6622] bridge0: port 4(macvlan2) entered disabled state
[   79.012177][ T6622] macvlan2: entered allmulticast mode
[   79.017693][ T6622] bridge0: entered allmulticast mode
[   79.023553][ T6622] macvlan2: left allmulticast mode
[   79.028865][ T6622] bridge0: left allmulticast mode
[   79.036993][ T6622] bridge0: left promiscuous mode
[   79.066831][ T6621] netlink: 'syz.1.1224': attribute type 10 has an invalid length.
[   79.074930][ T6627] IPv6: Can't replace route, no match found
[   79.116658][ T6631] bpf_get_probe_write_proto: 5 callbacks suppressed
[   79.116676][ T6631] syz.4.1226[6631] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.123580][ T6631] syz.4.1226[6631] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.135409][ T6631] syz.4.1226[6631] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.221027][ T6645] IPv6: Can't replace route, no match found
[   79.277573][ T6649] SELinux:  Context system_u:object_r:vmware_device_t:s0 is not valid (left unmapped).
[   79.327826][ T6658] netlink: 'syz.4.1238': attribute type 10 has an invalid length.
[   79.516539][ T6686] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1250'.
[   79.673308][ T6701] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6701 comm=syz.1.1258
[   79.696691][ T6705] FAULT_INJECTION: forcing a failure.
[   79.696691][ T6705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.709978][ T6705] CPU: 1 UID: 0 PID: 6705 Comm: syz.4.1257 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   79.720725][ T6705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   79.730884][ T6705] Call Trace:
[   79.734252][ T6705]  <TASK>
[   79.737191][ T6705]  dump_stack_lvl+0xf2/0x150
[   79.741803][ T6705]  dump_stack+0x15/0x20
[   79.745969][ T6705]  should_fail_ex+0x223/0x230
[   79.750669][ T6705]  should_fail+0xb/0x10
[   79.754842][ T6705]  should_fail_usercopy+0x1a/0x20
[   79.759898][ T6705]  _copy_from_iter+0xd5/0xd00
[   79.764708][ T6705]  ? alloc_pages_mpol_noprof+0xd5/0x1e0
[   79.770345][ T6705]  copy_page_from_iter+0x14f/0x280
[   79.775478][ T6705]  tun_get_user+0x686/0x24e0
[   79.780105][ T6705]  ? _parse_integer+0x27/0x30
[   79.784801][ T6705]  ? ref_tracker_alloc+0x1f5/0x2f0
[   79.790415][ T6705]  tun_chr_write_iter+0x188/0x240
[   79.795472][ T6705]  vfs_write+0x77f/0x920
[   79.799735][ T6705]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   79.805329][ T6705]  ksys_write+0xeb/0x1b0
[   79.809624][ T6705]  __x64_sys_write+0x42/0x50
[   79.814393][ T6705]  x64_sys_call+0x27dd/0x2d60
[   79.819146][ T6705]  do_syscall_64+0xc9/0x1c0
[   79.823664][ T6705]  ? clear_bhb_loop+0x55/0xb0
[   79.828352][ T6705]  ? clear_bhb_loop+0x55/0xb0
[   79.833176][ T6705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.839104][ T6705] RIP: 0033:0x7f0ecb84d1ff
[   79.843614][ T6705] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[   79.863242][ T6705] RSP: 002b:00007f0eca4a6000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   79.871830][ T6705] RAX: ffffffffffffffda RBX: 00007f0ecba06058 RCX: 00007f0ecb84d1ff
[   79.879934][ T6705] RDX: 000000000000004e RSI: 0000000020000800 RDI: 00000000000000c8
[   79.888038][ T6705] RBP: 00007f0eca4a6090 R08: 0000000000000000 R09: 0000000000000000
[   79.896019][ T6705] R10: 000000000000004e R11: 0000000000000293 R12: 0000000000000001
[   79.904113][ T6705] R13: 0000000000000001 R14: 00007f0ecba06058 R15: 00007ffe1f789988
[   79.912100][ T6705]  </TASK>
[   79.920246][ T6703] siw: device registration error -23
[   79.926201][ T6708] 9pnet_fd: Insufficient options for proto=fd
[   79.937075][ T6708] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1260'.
[   79.979958][ T6714] IPv6: Can't replace route, no match found
[   79.999058][ T6719] IPv6: Can't replace route, no match found
[   80.085555][ T6730] IPv6: Can't replace route, no match found
[   80.138427][ T6735] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1270'.
[   80.150227][ T6735] netlink: 'syz.1.1270': attribute type 10 has an invalid length.
[   80.281783][ T6751] IPv6: Can't replace route, no match found
[   80.355145][ T6760] IPv6: Can't replace route, no match found
[   80.358522][ T6754] loop4: detected capacity change from 0 to 8192
[   80.395659][ T6754]  loop4: p1 p2 p3 p4
[   80.399771][ T6754] loop4: p1 start 51379968 is beyond EOD, truncated
[   80.407668][ T6754] loop4: p3 size 100663552 extends beyond EOD, truncated
[   80.415084][ T6754] loop4: p4 size 81920 extends beyond EOD, truncated
[   80.477542][ T6767] netlink: 'syz.4.1278': attribute type 15 has an invalid length.
[   80.538604][ T6767] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1278'.
[   80.690033][ T6777] IPv6: Can't replace route, no match found
[   80.724467][ T6780] loop4: detected capacity change from 0 to 256
[   80.812609][ T6786] syz.4.1292[6786] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.813759][ T6786] syz.4.1292[6786] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.828190][ T6786] syz.4.1292[6786] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.863593][ T6791] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1294'.
[   81.087618][ T6810] block device autoloading is deprecated and will be removed.
[   81.136554][ T6818] IPv6: Can't replace route, no match found
[   81.166754][ T6820] loop1: detected capacity change from 0 to 1024
[   81.183933][ T6820] /dev/loop1: Can't open blockdev
[   81.314440][ T6828] syz.4.1309[6828] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.318850][ T6828] syz.4.1309[6828] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.334363][ T6828] syz.4.1309[6828] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   81.391417][ T6834] siw: device registration error -23
[   81.498964][ T6846] loop3: detected capacity change from 0 to 256
[   81.513453][ T6848] IPv6: Can't replace route, no match found
[   81.543280][ T6846] FAT-fs (loop3): Directory bread(block 64) failed
[   81.561136][ T6846] FAT-fs (loop3): Directory bread(block 65) failed
[   81.568096][ T6846] FAT-fs (loop3): Directory bread(block 66) failed
[   81.574853][ T6846] FAT-fs (loop3): Directory bread(block 67) failed
[   81.582277][ T6846] FAT-fs (loop3): Directory bread(block 68) failed
[   81.590404][ T6846] FAT-fs (loop3): Directory bread(block 69) failed
[   81.597861][ T6846] FAT-fs (loop3): Directory bread(block 70) failed
[   81.604685][ T6846] FAT-fs (loop3): Directory bread(block 71) failed
[   81.611713][ T6846] FAT-fs (loop3): Directory bread(block 72) failed
[   81.619093][ T6846] FAT-fs (loop3): Directory bread(block 73) failed
[   81.686412][ T6851] loop4: detected capacity change from 0 to 8192
[   81.746378][ T6851]  loop4: p1 p2 p3 p4
[   81.754925][ T6851] loop4: p1 start 51379968 is beyond EOD, truncated
[   81.769755][ T6851] loop4: p3 size 100663552 extends beyond EOD, truncated
[   81.786572][ T6851] loop4: p4 size 81920 extends beyond EOD, truncated
[   81.810128][ T6846] syz.3.1316: attempt to access beyond end of device
[   81.810128][ T6846] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[   81.824286][ T6846] syz.3.1316: attempt to access beyond end of device
[   81.824286][ T6846] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[   81.858617][ T6853] netlink: 'syz.4.1318': attribute type 15 has an invalid length.
[   81.934588][ T6853] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1318'.
[   82.047679][ T6864] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   82.056020][ T6864] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   82.066495][ T6865] siw: device registration error -23
[   82.078129][ T6860] syz.3.1322[6860] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.093684][ T6864] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1323'.
[   82.208573][ T6873] loop0: detected capacity change from 0 to 4096
[   82.240308][ T6873] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.261306][ T6882] IPv6: Can't replace route, no match found
[   82.303673][ T6886] FAULT_INJECTION: forcing a failure.
[   82.303673][ T6886] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.316928][ T6886] CPU: 0 UID: 0 PID: 6886 Comm: syz.4.1330 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   82.327674][ T6886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   82.337773][ T6886] Call Trace:
[   82.341118][ T6886]  <TASK>
[   82.344079][ T6886]  dump_stack_lvl+0xf2/0x150
[   82.348813][ T6886]  dump_stack+0x15/0x20
[   82.353007][ T6886]  should_fail_ex+0x223/0x230
[   82.357736][ T6886]  should_fail+0xb/0x10
[   82.362051][ T6886]  should_fail_usercopy+0x1a/0x20
[   82.367110][ T6886]  _copy_to_user+0x20/0xa0
[   82.371556][ T6886]  simple_read_from_buffer+0xa0/0x110
[   82.376953][ T6886]  proc_fail_nth_read+0xf9/0x140
[   82.382008][ T6886]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   82.387617][ T6886]  vfs_read+0x1a2/0x700
[   82.391962][ T6886]  ? __fget_files+0x1d4/0x210
[   82.396676][ T6886]  ksys_read+0xeb/0x1b0
[   82.400888][ T6886]  __x64_sys_read+0x42/0x50
[   82.405477][ T6886]  x64_sys_call+0x27d3/0x2d60
[   82.410277][ T6886]  do_syscall_64+0xc9/0x1c0
[   82.414815][ T6886]  ? clear_bhb_loop+0x55/0xb0
[   82.419640][ T6886]  ? clear_bhb_loop+0x55/0xb0
[   82.424347][ T6886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.430370][ T6886] RIP: 0033:0x7f0ecb84d15c
[   82.434863][ T6886] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[   82.454564][ T6886] RSP: 002b:00007f0eca4c7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   82.463068][ T6886] RAX: ffffffffffffffda RBX: 00007f0ecba05f80 RCX: 00007f0ecb84d15c
[   82.471067][ T6886] RDX: 000000000000000f RSI: 00007f0eca4c70a0 RDI: 0000000000000003
[   82.479067][ T6886] RBP: 00007f0eca4c7090 R08: 0000000000000000 R09: 0000000000000000
[   82.487070][ T6886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.495125][ T6886] R13: 0000000000000000 R14: 00007f0ecba05f80 R15: 00007ffe1f789988
[   82.503294][ T6886]  </TASK>
[   82.581158][ T6893] loop3: detected capacity change from 0 to 2048
[   82.589236][ T6894] loop4: detected capacity change from 0 to 1024
[   82.596476][ T6894] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   82.607762][ T6894] JBD2: no valid journal superblock found
[   82.613605][ T6894] EXT4-fs (loop4): Could not load journal inode
[   82.636394][ T6893] Alternate GPT is invalid, using primary GPT.
[   82.642934][ T6893]  loop3: p1 p2 p3
[   82.735529][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.738025][ T6902] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6902 comm=syz.3.1337
[   82.791761][ T6905] siw: device registration error -23
[   82.866418][ T6910] loop3: detected capacity change from 0 to 8192
[   82.895372][ T6910]  loop3: p1 p2 p3 p4
[   82.899666][ T6910] loop3: p1 start 51379968 is beyond EOD, truncated
[   82.906969][ T6910] loop3: p3 size 100663552 extends beyond EOD, truncated
[   82.914823][ T6910] loop3: p4 size 81920 extends beyond EOD, truncated
[   82.924975][ T6928] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6928 comm=syz.1.1348
[   82.940129][ T6926] loop0: detected capacity change from 0 to 4096
[   82.959015][ T6926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.976628][ T6935] netlink: 'syz.3.1339': attribute type 15 has an invalid length.
[   82.987985][ T6931] loop1: detected capacity change from 0 to 164
[   83.007365][ T6931] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1349'.
[   83.059225][ T6935] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1339'.
[   83.221609][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.259116][ T6948] loop2: detected capacity change from 0 to 1024
[   83.265890][ T6948] EXT4-fs: Ignoring removed orlov option
[   83.271610][ T6948] EXT4-fs: Ignoring removed nomblk_io_submit option
[   83.292959][ T6953] loop3: detected capacity change from 0 to 512
[   83.302086][ T6948] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.318449][ T6960] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6960 comm=syz.0.1359
[   83.332271][ T3323] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.343733][ T6953] EXT4-fs (loop3): too many log groups per flexible block group
[   83.351529][ T6953] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   83.368960][ T6953] EXT4-fs (loop3): mount failed
[   83.413069][   T29] kauditd_printk_skb: 464 callbacks suppressed
[   83.413084][   T29] audit: type=1326 audit(1731836270.628:4215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.443295][   T29] audit: type=1326 audit(1731836270.628:4216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.466788][   T29] audit: type=1326 audit(1731836270.658:4217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.490632][   T29] audit: type=1326 audit(1731836270.658:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.514302][   T29] audit: type=1326 audit(1731836270.658:4219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.526371][ T6984] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1362'.
[   83.538152][   T29] audit: type=1326 audit(1731836270.658:4220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.558416][ T6986] loop2: detected capacity change from 0 to 256
[   83.570244][   T29] audit: type=1326 audit(1731836270.658:4221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.592895][ T6982] loop0: detected capacity change from 0 to 8192
[   83.600181][   T29] audit: type=1326 audit(1731836270.658:4222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.630020][   T29] audit: type=1326 audit(1731836270.658:4223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.639781][ T6986] FAT-fs (loop2): Directory bread(block 1285) failed
[   83.653498][   T29] audit: type=1326 audit(1731836270.658:4224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6968 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   83.668600][ T6984] netlink: 'syz.4.1362': attribute type 10 has an invalid length.
[   83.694489][ T6984] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   83.705880][ T6982]  loop0: p1 p2 p3 p4
[   83.714540][ T6982] loop0: p1 start 51379968 is beyond EOD, truncated
[   83.718304][ T6975] FAT-fs (loop2): Directory bread(block 1285) failed
[   83.723610][ T6982] loop0: p3 size 100663552 extends beyond EOD, truncated
[   83.729479][ T6975] FAT-fs (loop2): Directory bread(block 1285) failed
[   83.738362][ T6982] loop0: p4 size 81920 extends beyond EOD, truncated
[   83.742182][ T6975] FAT-fs (loop2): Directory bread(block 1285) failed
[   83.801639][ T6996] bond1: entered promiscuous mode
[   83.806832][ T6996] bond1: entered allmulticast mode
[   83.812458][ T6996] 8021q: adding VLAN 0 to HW filter on device bond1
[   83.824716][ T6996] bond1 (unregistering): Released all slaves
[   83.835556][ T6992] netlink: 'syz.0.1368': attribute type 15 has an invalid length.
[   83.852459][ T7002] loop3: detected capacity change from 0 to 1024
[   83.860092][ T7002] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   83.872327][ T7002] JBD2: no valid journal superblock found
[   83.878154][ T7002] EXT4-fs (loop3): Could not load journal inode
[   83.896703][ T6992] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1368'.
[   83.986450][ T7012] SELinux:  Context Ü is not valid (left unmapped).
[   84.044062][ T7015] FAULT_INJECTION: forcing a failure.
[   84.044062][ T7015] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.057310][ T7015] CPU: 1 UID: 0 PID: 7015 Comm: syz.1.1378 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   84.068047][ T7015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   84.078126][ T7015] Call Trace:
[   84.081441][ T7015]  <TASK>
[   84.084388][ T7015]  dump_stack_lvl+0xf2/0x150
[   84.089016][ T7015]  dump_stack+0x15/0x20
[   84.093200][ T7015]  should_fail_ex+0x223/0x230
[   84.098051][ T7015]  should_fail+0xb/0x10
[   84.102294][ T7015]  should_fail_usercopy+0x1a/0x20
[   84.107340][ T7015]  _copy_from_iter+0xd5/0xd00
[   84.112079][ T7015]  ? kmalloc_reserve+0x16e/0x190
[   84.117157][ T7015]  ? __build_skb_around+0x196/0x1f0
[   84.122391][ T7015]  ? __alloc_skb+0x21f/0x310
[   84.127108][ T7015]  ? __virt_addr_valid+0x1ed/0x250
[   84.132239][ T7015]  ? __check_object_size+0x364/0x520
[   84.137632][ T7015]  netlink_sendmsg+0x460/0x6e0
[   84.142426][ T7015]  ? __pfx_netlink_sendmsg+0x10/0x10
[   84.147737][ T7015]  __sock_sendmsg+0x140/0x180
[   84.152473][ T7015]  ____sys_sendmsg+0x312/0x410
[   84.157337][ T7015]  __sys_sendmsg+0x1d9/0x270
[   84.162005][ T7015]  __x64_sys_sendmsg+0x46/0x50
[   84.166797][ T7015]  x64_sys_call+0x2689/0x2d60
[   84.171530][ T7015]  do_syscall_64+0xc9/0x1c0
[   84.176099][ T7015]  ? clear_bhb_loop+0x55/0xb0
[   84.180840][ T7015]  ? clear_bhb_loop+0x55/0xb0
[   84.185545][ T7015]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.191545][ T7015] RIP: 0033:0x7fd69d84e719
[   84.195979][ T7015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.215780][ T7015] RSP: 002b:00007fd69c4c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.224221][ T7015] RAX: ffffffffffffffda RBX: 00007fd69da05f80 RCX: 00007fd69d84e719
[   84.232282][ T7015] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[   84.240278][ T7015] RBP: 00007fd69c4c1090 R08: 0000000000000000 R09: 0000000000000000
[   84.248315][ T7015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.256318][ T7015] R13: 0000000000000000 R14: 00007fd69da05f80 R15: 00007ffd45cb8658
[   84.264391][ T7015]  </TASK>
[   84.275626][ T7019] bridge0: port 3(macvlan0) entered blocking state
[   84.282242][ T7019] bridge0: port 3(macvlan0) entered disabled state
[   84.289055][ T7019] macvlan0: entered allmulticast mode
[   84.294543][ T7019] veth1_vlan: entered allmulticast mode
[   84.301002][ T7019] macvlan0: entered promiscuous mode
[   84.308697][ T7019] bridge0: port 3(macvlan0) entered blocking state
[   84.315303][ T7019] bridge0: port 3(macvlan0) entered forwarding state
[   84.326096][ T7021] IPv6: Can't replace route, no match found
[   84.369100][ T7025] siw: device registration error -23
[   84.383178][ T7034] loop4: detected capacity change from 0 to 512
[   84.391653][ T7034] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   84.401594][ T7034] EXT4-fs (loop4): inodes count not valid: 23 vs 32
[   84.442376][ T7045] loop0: detected capacity change from 0 to 512
[   84.451081][ T7045] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   84.463898][ T7045] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1388: corrupted in-inode xattr: e_name out of bounds
[   84.478153][ T7045] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.1388: couldn't read orphan inode 15 (err -117)
[   84.490913][ T7045] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.525475][ T7049] serio: Serial port ptm0
[   84.526326][ T3314] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.548854][ T7051] FAULT_INJECTION: forcing a failure.
[   84.548854][ T7051] name failslab, interval 1, probability 0, space 0, times 0
[   84.561552][ T7051] CPU: 1 UID: 0 PID: 7051 Comm: syz.0.1392 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   84.572256][ T7051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   84.582406][ T7051] Call Trace:
[   84.585741][ T7051]  <TASK>
[   84.588704][ T7051]  dump_stack_lvl+0xf2/0x150
[   84.593370][ T7051]  dump_stack+0x15/0x20
[   84.597549][ T7051]  should_fail_ex+0x223/0x230
[   84.602346][ T7051]  ? dst_alloc+0xc0/0x100
[   84.606697][ T7051]  should_failslab+0x8f/0xb0
[   84.611316][ T7051]  kmem_cache_alloc_noprof+0x4c/0x290
[   84.616728][ T7051]  dst_alloc+0xc0/0x100
[   84.621012][ T7051]  ip_route_input_rcu+0x1725/0x1c10
[   84.626242][ T7051]  ? __list_del_entry_valid_or_report+0x5f/0xf0
[   84.632506][ T7051]  ip_route_input_noref+0x63/0xa0
[   84.637606][ T7051]  ip_rcv_finish_core+0x304/0xb20
[   84.642698][ T7051]  ? __pfx_ip_rcv+0x10/0x10
[   84.647217][ T7051]  ip_rcv_finish+0xfe/0x1b0
[   84.651861][ T7051]  ? __pfx_ip_rcv+0x10/0x10
[   84.656379][ T7051]  ip_rcv+0x64/0x140
[   84.660303][ T7051]  ? __pfx_ip_rcv_finish+0x10/0x10
[   84.665450][ T7051]  ? __pfx_ip_rcv+0x10/0x10
[   84.669989][ T7051]  __netif_receive_skb+0x10a/0x280
[   84.675163][ T7051]  netif_receive_skb+0x4a/0x320
[   84.680061][ T7051]  ? tun_rx_batched+0xba/0x410
[   84.684850][ T7051]  tun_rx_batched+0xf0/0x410
[   84.689468][ T7051]  tun_get_user+0x1eaf/0x24e0
[   84.694196][ T7051]  ? _parse_integer+0x27/0x30
[   84.698892][ T7051]  ? ref_tracker_alloc+0x1f5/0x2f0
[   84.704047][ T7051]  tun_chr_write_iter+0x188/0x240
[   84.709105][ T7051]  vfs_write+0x77f/0x920
[   84.713421][ T7051]  ? __pfx_kfree_link+0x10/0x10
[   84.718403][ T7051]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   84.723972][ T7051]  ksys_write+0xeb/0x1b0
[   84.728252][ T7051]  __x64_sys_write+0x42/0x50
[   84.732873][ T7051]  x64_sys_call+0x27dd/0x2d60
[   84.737624][ T7051]  do_syscall_64+0xc9/0x1c0
[   84.742155][ T7051]  ? clear_bhb_loop+0x55/0xb0
[   84.746845][ T7051]  ? clear_bhb_loop+0x55/0xb0
[   84.752046][ T7051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.757966][ T7051] RIP: 0033:0x7f69f39cd1ff
[   84.762422][ T7051] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[   84.782052][ T7051] RSP: 002b:00007f69f2647000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   84.790942][ T7051] RAX: ffffffffffffffda RBX: 00007f69f3b85f80 RCX: 00007f69f39cd1ff
[   84.798922][ T7051] RDX: 000000000000002a RSI: 0000000020001800 RDI: 00000000000000c8
[   84.806952][ T7051] RBP: 00007f69f2647090 R08: 0000000000000000 R09: 0000000000000000
[   84.814930][ T7051] R10: 000000000000002a R11: 0000000000000293 R12: 0000000000000001
[   84.822943][ T7051] R13: 0000000000000000 R14: 00007f69f3b85f80 R15: 00007ffcfd03e868
[   84.830967][ T7051]  </TASK>
[   84.974993][ T7064] siw: device registration error -23
[   84.997238][ T7072] IPv6: Can't replace route, no match found
[   85.051474][ T7077] bond1: entered promiscuous mode
[   85.056756][ T7077] bond1: entered allmulticast mode
[   85.062429][ T7077] 8021q: adding VLAN 0 to HW filter on device bond1
[   85.074447][ T7077] bond1 (unregistering): Released all slaves
[   85.123929][ T7084] loop4: detected capacity change from 0 to 512
[   85.139891][ T7084] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.166446][ T7084] ext4 filesystem being mounted at /289/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.220758][ T7095] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7095 comm=syz.2.1408
[   85.266659][ T7092] bpf_get_probe_write_proto: 5 callbacks suppressed
[   85.266693][ T7092] syz.1.1407[7092] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.274662][ T7092] syz.1.1407[7092] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.287546][ T7092] syz.1.1407[7092] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   85.392360][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.422767][ T7107] loop1: detected capacity change from 0 to 512
[   85.442065][ T7107] EXT4-fs (loop1): too many log groups per flexible block group
[   85.449985][ T7107] EXT4-fs (loop1): failed to initialize mballoc (-12)
[   85.457077][ T7105] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1409'.
[   85.467589][ T7107] EXT4-fs (loop1): mount failed
[   85.488615][ T7109] loop2: detected capacity change from 0 to 8192
[   85.510744][ T7119] loop4: detected capacity change from 0 to 256
[   85.518239][ T7119] FAT-fs (loop4): Directory bread(block 1285) failed
[   85.526003][ T7119] FAT-fs (loop4): Directory bread(block 1285) failed
[   85.532836][ T7119] FAT-fs (loop4): Directory bread(block 1285) failed
[   85.539747][ T7119] FAT-fs (loop4): Directory bread(block 1285) failed
[   85.540011][ T7109]  loop2: p1 p2 p3 p4
[   85.550913][ T7109] loop2: p1 start 51379968 is beyond EOD, truncated
[   85.558509][ T7109] loop2: p3 size 100663552 extends beyond EOD, truncated
[   85.566842][ T7109] loop2: p4 size 81920 extends beyond EOD, truncated
[   85.611101][ T7129] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7129 comm=syz.4.1420
[   85.631277][ T7130] netlink: 'syz.2.1414': attribute type 15 has an invalid length.
[   85.671452][ T7136] FAULT_INJECTION: forcing a failure.
[   85.671452][ T7136] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   85.684597][ T7136] CPU: 1 UID: 0 PID: 7136 Comm: syz.2.1422 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   85.695403][ T7136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   85.705483][ T7136] Call Trace:
[   85.708834][ T7136]  <TASK>
[   85.711784][ T7136]  dump_stack_lvl+0xf2/0x150
[   85.716483][ T7136]  dump_stack+0x15/0x20
[   85.720697][ T7136]  should_fail_ex+0x223/0x230
[   85.725504][ T7136]  should_fail+0xb/0x10
[   85.729853][ T7136]  should_fail_usercopy+0x1a/0x20
[   85.734949][ T7136]  _copy_from_iter+0xd5/0xd00
[   85.739758][ T7136]  ? kstrtouint+0x77/0xc0
[   85.744248][ T7136]  ? should_fail_ex+0xd7/0x230
[   85.749070][ T7136]  ? kernfs_fop_write_iter+0xe1/0x2c0
[   85.754540][ T7136]  ? __virt_addr_valid+0x1ed/0x250
[   85.759683][ T7136]  ? __check_object_size+0x364/0x520
[   85.765061][ T7136]  kernfs_fop_write_iter+0x131/0x2c0
[   85.770426][ T7136]  vfs_write+0x77f/0x920
[   85.774682][ T7136]  ? __pfx_kfree_link+0x10/0x10
[   85.779550][ T7136]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[   85.785415][ T7136]  ksys_write+0xeb/0x1b0
[   85.789753][ T7136]  __x64_sys_write+0x42/0x50
[   85.794374][ T7136]  x64_sys_call+0x27dd/0x2d60
[   85.799066][ T7136]  do_syscall_64+0xc9/0x1c0
[   85.803593][ T7136]  ? clear_bhb_loop+0x55/0xb0
[   85.808276][ T7136]  ? clear_bhb_loop+0x55/0xb0
[   85.812974][ T7136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.818889][ T7136] RIP: 0033:0x7f53d02be719
[   85.823327][ T7136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.843015][ T7136] RSP: 002b:00007f53cef31038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   85.851454][ T7136] RAX: ffffffffffffffda RBX: 00007f53d0475f80 RCX: 00007f53d02be719
[   85.859453][ T7136] RDX: 00000000000000c1 RSI: 00000000200002c0 RDI: 0000000000000005
[   85.867439][ T7136] RBP: 00007f53cef31090 R08: 0000000000000000 R09: 0000000000000000
[   85.875430][ T7136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   85.883422][ T7136] R13: 0000000000000000 R14: 00007f53d0475f80 R15: 00007fff4efa54b8
[   85.891468][ T7136]  </TASK>
[   85.973795][ T7146] loop2: detected capacity change from 0 to 512
[   85.986680][ T7146] EXT4-fs (loop2): too many log groups per flexible block group
[   85.994702][ T7146] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   86.002108][ T7146] EXT4-fs (loop2): mount failed
[   86.127809][ T7156] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7156 comm=syz.0.1431
[   86.201687][ T7164] TCP: tcp_parse_options: Illegal window scaling value 112 > 14 received
[   86.300233][ T7172] loop2: detected capacity change from 0 to 512
[   86.327062][ T7172] EXT4-fs (loop2): too many log groups per flexible block group
[   86.334936][ T7172] EXT4-fs (loop2): failed to initialize mballoc (-12)
[   86.344941][ T7170] syz.0.1438[7170] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   86.346012][ T7170] syz.0.1438[7170] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   86.372976][ T7172] EXT4-fs (loop2): mount failed
[   86.394888][ T7170] syz.0.1438[7170] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   86.452634][ T7180] FAULT_INJECTION: forcing a failure.
[   86.452634][ T7180] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   86.477170][ T7180] CPU: 0 UID: 0 PID: 7180 Comm: syz.1.1441 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   86.487915][ T7180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   86.498049][ T7180] Call Trace:
[   86.501364][ T7180]  <TASK>
[   86.504353][ T7180]  dump_stack_lvl+0xf2/0x150
[   86.508965][ T7180]  dump_stack+0x15/0x20
[   86.513134][ T7180]  should_fail_ex+0x223/0x230
[   86.517840][ T7180]  should_fail+0xb/0x10
[   86.522087][ T7180]  should_fail_usercopy+0x1a/0x20
[   86.527158][ T7180]  _copy_from_user+0x1e/0xb0
[   86.531765][ T7180]  move_addr_to_kernel+0x82/0x120
[   86.536811][ T7180]  copy_msghdr_from_user+0x271/0x2a0
[   86.542121][ T7180]  __sys_sendmsg+0x171/0x270
[   86.546811][ T7180]  __x64_sys_sendmsg+0x46/0x50
[   86.551585][ T7180]  x64_sys_call+0x2689/0x2d60
[   86.556344][ T7180]  do_syscall_64+0xc9/0x1c0
[   86.560934][ T7180]  ? clear_bhb_loop+0x55/0xb0
[   86.565650][ T7180]  ? clear_bhb_loop+0x55/0xb0
[   86.570419][ T7180]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.576337][ T7180] RIP: 0033:0x7fd69d84e719
[   86.580790][ T7180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.600512][ T7180] RSP: 002b:00007fd69c4c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   86.609020][ T7180] RAX: ffffffffffffffda RBX: 00007fd69da05f80 RCX: 00007fd69d84e719
[   86.616997][ T7180] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000000000003
[   86.624976][ T7180] RBP: 00007fd69c4c1090 R08: 0000000000000000 R09: 0000000000000000
[   86.632953][ T7180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   86.640931][ T7180] R13: 0000000000000000 R14: 00007fd69da05f80 R15: 00007ffd45cb8658
[   86.649098][ T7180]  </TASK>
[   86.653178][ T7183] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   86.661696][ T7183] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.671217][ T7183] FAULT_INJECTION: forcing a failure.
[   86.671217][ T7183] name failslab, interval 1, probability 0, space 0, times 0
[   86.683863][ T7183] CPU: 1 UID: 0 PID: 7183 Comm: syz.2.1442 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   86.694711][ T7183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   86.704776][ T7183] Call Trace:
[   86.708070][ T7183]  <TASK>
[   86.711088][ T7183]  dump_stack_lvl+0xf2/0x150
[   86.715797][ T7183]  dump_stack+0x15/0x20
[   86.720056][ T7183]  should_fail_ex+0x223/0x230
[   86.724847][ T7183]  ? alloc_workqueue+0x644/0x1300
[   86.729994][ T7183]  should_failslab+0x8f/0xb0
[   86.734617][ T7183]  __kmalloc_cache_node_noprof+0x50/0x2b0
[   86.740390][ T7183]  alloc_workqueue+0x644/0x1300
[   86.745304][ T7183]  ? vsnprintf+0xdd8/0xe30
[   86.749764][ T7183]  nci_register_device+0x129/0x580
[   86.754891][ T7183]  virtual_ncidev_open+0xd6/0x140
[   86.759962][ T7183]  ? __pfx_virtual_ncidev_open+0x10/0x10
[   86.765705][ T7183]  misc_open+0x1d5/0x200
[   86.769971][ T7183]  chrdev_open+0x2f9/0x370
[   86.774474][ T7183]  ? __pfx_chrdev_open+0x10/0x10
[   86.779513][ T7183]  do_dentry_open+0x621/0xa20
[   86.784208][ T7183]  vfs_open+0x38/0x1f0
[   86.788299][ T7183]  path_openat+0x1ac2/0x1fa0
[   86.792973][ T7183]  ? _parse_integer_limit+0x167/0x180
[   86.798373][ T7183]  ? kstrtouint_from_user+0xb0/0xe0
[   86.803610][ T7183]  do_filp_open+0xf7/0x200
[   86.808069][ T7183]  do_sys_openat2+0xab/0x120
[   86.812703][ T7183]  __x64_sys_openat+0xf3/0x120
[   86.817540][ T7183]  x64_sys_call+0x1025/0x2d60
[   86.822241][ T7183]  do_syscall_64+0xc9/0x1c0
[   86.826786][ T7183]  ? clear_bhb_loop+0x55/0xb0
[   86.831486][ T7183]  ? clear_bhb_loop+0x55/0xb0
[   86.836172][ T7183]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.842106][ T7183] RIP: 0033:0x7f53d02be719
[   86.846549][ T7183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.866173][ T7183] RSP: 002b:00007f53cef10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   86.874598][ T7183] RAX: ffffffffffffffda RBX: 00007f53d0476058 RCX: 00007f53d02be719
[   86.882582][ T7183] RDX: 0000000000000002 RSI: 0000000020000280 RDI: ffffffffffffff9c
[   86.890575][ T7183] RBP: 00007f53cef10090 R08: 0000000000000000 R09: 0000000000000000
[   86.898715][ T7183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   86.906698][ T7183] R13: 0000000000000000 R14: 00007f53d0476058 R15: 00007fff4efa54b8
[   86.914686][ T7183]  </TASK>
[   86.964031][ T7185] serio: Serial port ptm0
[   87.019632][ T7192] serio: Serial port ptm1
[   87.111356][ T7195] loop4: detected capacity change from 0 to 8192
[   87.165735][ T7195]  loop4: p1 p2 p3 p4
[   87.169921][ T7195] loop4: p1 start 51379968 is beyond EOD, truncated
[   87.185039][ T7195] loop4: p3 size 100663552 extends beyond EOD, truncated
[   87.193019][ T7195] loop4: p4 size 81920 extends beyond EOD, truncated
[   87.266563][ T7201] netlink: 'syz.4.1447': attribute type 15 has an invalid length.
[   87.315803][ T7203] IPv6: Can't replace route, no match found
[   87.327535][ T7201] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1447'.
[   87.469027][ T7212] netlink: 'syz.0.1452': attribute type 15 has an invalid length.
[   87.538527][ T7220] siw: device registration error -23
[   87.552316][ T7214] syz.4.1454[7214] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.553257][ T7214] syz.4.1454[7214] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.565407][ T7214] syz.4.1454[7214] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.617865][ T7230] syz.0.1460[7230] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.715727][ T7218] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.735859][ T7218] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   87.743848][ T7218] FAULT_INJECTION: forcing a failure.
[   87.743848][ T7218] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.756986][ T7218] CPU: 1 UID: 0 PID: 7218 Comm: syz.1.1456 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   87.767766][ T7218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   87.777841][ T7218] Call Trace:
[   87.781183][ T7218]  <TASK>
[   87.784144][ T7218]  dump_stack_lvl+0xf2/0x150
[   87.788785][ T7218]  dump_stack+0x15/0x20
[   87.792976][ T7218]  should_fail_ex+0x223/0x230
[   87.797796][ T7218]  should_fail+0xb/0x10
[   87.801989][ T7218]  should_fail_usercopy+0x1a/0x20
[   87.807036][ T7218]  _copy_from_user+0x1e/0xb0
[   87.811693][ T7218]  memdup_user+0x64/0xc0
[   87.816070][ T7218]  raw_ioctl+0x7ad/0x1b40
[   87.820466][ T7218]  ? ioctl_has_perm+0x286/0x2e0
[   87.825415][ T7218]  ? do_vfs_ioctl+0x96e/0x1530
[   87.830216][ T7218]  ? selinux_file_ioctl+0x2f7/0x380
[   87.835427][ T7218]  ? __fget_files+0x1d4/0x210
[   87.840213][ T7218]  ? __pfx_raw_ioctl+0x10/0x10
[   87.845020][ T7218]  __se_sys_ioctl+0xcd/0x140
[   87.849655][ T7218]  __x64_sys_ioctl+0x43/0x50
[   87.854401][ T7218]  x64_sys_call+0x15cc/0x2d60
[   87.859173][ T7218]  do_syscall_64+0xc9/0x1c0
[   87.863704][ T7218]  ? clear_bhb_loop+0x55/0xb0
[   87.868486][ T7218]  ? clear_bhb_loop+0x55/0xb0
[   87.873187][ T7218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.879152][ T7218] RIP: 0033:0x7fd69d84e719
[   87.883894][ T7218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.903530][ T7218] RSP: 002b:00007fd69c4c1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   87.911954][ T7218] RAX: ffffffffffffffda RBX: 00007fd69da05f80 RCX: 00007fd69d84e719
[   87.920239][ T7218] RDX: 0000000000000000 RSI: 0000000040095505 RDI: 0000000000000006
[   87.928215][ T7218] RBP: 00007fd69c4c1090 R08: 0000000000000000 R09: 0000000000000000
[   87.936194][ T7218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.944232][ T7218] R13: 0000000000000000 R14: 00007fd69da05f80 R15: 00007ffd45cb8658
[   87.952305][ T7218]  </TASK>
[   87.961072][ T7238] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1463'.
[   87.970879][ T7238] netlink: 'syz.4.1463': attribute type 10 has an invalid length.
[   88.006584][ T7243] IPv6: Can't replace route, no match found
[   88.097789][ T7247] netlink: 'syz.3.1465': attribute type 10 has an invalid length.
[   88.189032][ T7249] loop3: detected capacity change from 0 to 8192
[   88.245481][ T7249]  loop3: p1 p2 p3 p4
[   88.249576][ T7249] loop3: p1 start 51379968 is beyond EOD, truncated
[   88.256686][ T7249] loop3: p3 size 100663552 extends beyond EOD, truncated
[   88.264265][ T7249] loop3: p4 size 81920 extends beyond EOD, truncated
[   88.326819][ T7250] netlink: 'syz.3.1466': attribute type 15 has an invalid length.
[   88.529360][ T7258] loop3: detected capacity change from 0 to 512
[   88.547917][ T7258] EXT4-fs (loop3): too many log groups per flexible block group
[   88.555774][ T7258] EXT4-fs (loop3): failed to initialize mballoc (-12)
[   88.567661][ T7258] EXT4-fs (loop3): mount failed
[   88.603715][   T29] kauditd_printk_skb: 366 callbacks suppressed
[   88.603764][   T29] audit: type=1326 audit(1731836275.821:4591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.655685][   T29] audit: type=1326 audit(1731836275.821:4592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.679249][   T29] audit: type=1326 audit(1731836275.821:4593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.689071][ T7274] netlink: 'syz.0.1476': attribute type 10 has an invalid length.
[   88.702761][   T29] audit: type=1326 audit(1731836275.821:4594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.702799][   T29] audit: type=1326 audit(1731836275.841:4595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.702828][   T29] audit: type=1326 audit(1731836275.841:4596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.781485][   T29] audit: type=1326 audit(1731836275.841:4597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.791087][ T7276] siw: device registration error -23
[   88.805288][   T29] audit: type=1326 audit(1731836275.841:4598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.833964][   T29] audit: type=1326 audit(1731836275.841:4599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.857572][   T29] audit: type=1326 audit(1731836275.841:4600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7266 comm="syz.4.1473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f0ecb84e719 code=0x7ffc0000
[   88.929839][ T7285] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1480'.
[   88.965744][ T7285] team0 (unregistering): Port device team_slave_0 removed
[   88.983385][ T7281] loop3: detected capacity change from 0 to 8192
[   88.988727][ T7285] team0 (unregistering): Port device team_slave_1 removed
[   89.001564][ T7285] team0 (unregistering): Port device geneve0 removed
[   89.019828][ T7294] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1482'.
[   89.029432][ T7294] netlink: 'syz.0.1482': attribute type 10 has an invalid length.
[   89.037721][ T7281]  loop3: p1 p2 p3 p4
[   89.041754][ T7281] loop3: p1 start 51379968 is beyond EOD, truncated
[   89.049624][ T7281] loop3: p3 size 100663552 extends beyond EOD, truncated
[   89.057803][ T7281] loop3: p4 size 81920 extends beyond EOD, truncated
[   89.112615][ T7308] loop4: detected capacity change from 0 to 256
[   89.125885][ T7309] netlink: 'syz.3.1478': attribute type 15 has an invalid length.
[   89.137750][ T7308] FAT-fs (loop4): Directory bread(block 64) failed
[   89.144451][ T7308] FAT-fs (loop4): Directory bread(block 65) failed
[   89.151215][ T7308] FAT-fs (loop4): Directory bread(block 66) failed
[   89.158720][ T7308] FAT-fs (loop4): Directory bread(block 67) failed
[   89.172470][ T7308] FAT-fs (loop4): Directory bread(block 68) failed
[   89.179877][ T7308] FAT-fs (loop4): Directory bread(block 69) failed
[   89.186576][ T7308] FAT-fs (loop4): Directory bread(block 70) failed
[   89.193303][ T7308] FAT-fs (loop4): Directory bread(block 71) failed
[   89.200613][ T7308] FAT-fs (loop4): Directory bread(block 72) failed
[   89.207470][ T7308] FAT-fs (loop4): Directory bread(block 73) failed
[   89.236750][ T7310] netlink: 'syz.1.1488': attribute type 15 has an invalid length.
[   89.325503][ T7310] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1488'.
[   89.408419][ T7308] syz.4.1490: attempt to access beyond end of device
[   89.408419][ T7308] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256
[   89.409588][ T7315] netlink: 'syz.3.1492': attribute type 10 has an invalid length.
[   89.432843][ T7308] syz.4.1490: attempt to access beyond end of device
[   89.432843][ T7308] loop4: rw=0, sector=1736, nr_sectors = 8 limit=256
[   89.636135][ T7336] loop3: detected capacity change from 0 to 8192
[   89.652245][ T7341] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1501'.
[   89.662594][ T7341] netlink: 'syz.1.1501': attribute type 10 has an invalid length.
[   89.676050][ T7336]  loop3: p1 p2 p3 p4
[   89.680308][ T7336] loop3: p1 start 51379968 is beyond EOD, truncated
[   89.688319][ T7336] loop3: p3 size 100663552 extends beyond EOD, truncated
[   89.698183][ T7336] loop3: p4 size 81920 extends beyond EOD, truncated
[   89.746045][ T7356] netlink: 'syz.2.1508': attribute type 10 has an invalid length.
[   89.761575][ T7359] netlink: 'syz.3.1502': attribute type 15 has an invalid length.
[   89.834054][ T7367] serio: Serial port ptm0
[   89.882408][ T7377] FAULT_INJECTION: forcing a failure.
[   89.882408][ T7377] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.895939][ T7377] CPU: 0 UID: 0 PID: 7377 Comm: syz.0.1517 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   89.906691][ T7377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   89.916794][ T7377] Call Trace:
[   89.920094][ T7377]  <TASK>
[   89.923039][ T7377]  dump_stack_lvl+0xf2/0x150
[   89.927675][ T7377]  dump_stack+0x15/0x20
[   89.931850][ T7377]  should_fail_ex+0x223/0x230
[   89.936549][ T7377]  should_fail+0xb/0x10
[   89.940860][ T7377]  should_fail_usercopy+0x1a/0x20
[   89.945909][ T7377]  _copy_from_user+0x1e/0xb0
[   89.950510][ T7377]  move_addr_to_kernel+0x82/0x120
[   89.955631][ T7377]  copy_msghdr_from_user+0x271/0x2a0
[   89.960960][ T7377]  __sys_sendmsg+0x171/0x270
[   89.965572][ T7377]  __x64_sys_sendmsg+0x46/0x50
[   89.970380][ T7377]  x64_sys_call+0x2689/0x2d60
[   89.975088][ T7377]  do_syscall_64+0xc9/0x1c0
[   89.979673][ T7377]  ? clear_bhb_loop+0x55/0xb0
[   89.984385][ T7377]  ? clear_bhb_loop+0x55/0xb0
[   89.989178][ T7377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.995161][ T7377] RIP: 0033:0x7f69f39ce719
[   89.999589][ T7377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.019211][ T7377] RSP: 002b:00007f69f2647038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.027745][ T7377] RAX: ffffffffffffffda RBX: 00007f69f3b85f80 RCX: 00007f69f39ce719
[   90.035805][ T7377] RDX: 0000000000000000 RSI: 0000000020000380 RDI: 0000000000000003
[   90.043798][ T7377] RBP: 00007f69f2647090 R08: 0000000000000000 R09: 0000000000000000
[   90.051795][ T7377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.059838][ T7377] R13: 0000000000000000 R14: 00007f69f3b85f80 R15: 00007ffcfd03e868
[   90.067939][ T7377]  </TASK>
[   90.248929][ T7392] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1523'.
[   90.436749][ T7405] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1529'.
[   90.534835][ T7403] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.544830][ T7403] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.039346][ T7419] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7419 comm=syz.3.1535
[   91.073086][ T7424] serio: Serial port ptm0
[   91.205126][ T7431] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1540'.
[   91.363242][ T7440] bpf_get_probe_write_proto: 2 callbacks suppressed
[   91.363266][ T7440] syz.0.1542[7440] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.371532][ T7440] syz.0.1542[7440] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.384360][ T7440] syz.0.1542[7440] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.515066][ T7455] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7455 comm=syz.1.1548
[   91.543981][ T7456] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1546'.
[   91.596499][ T7463] IPv6: Can't replace route, no match found
[   91.983832][ T7471] syz.3.1554[7471] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.984020][ T7471] syz.3.1554[7471] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.999234][ T7471] syz.3.1554[7471] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.045838][ T7475] serio: Serial port ptm1
[   92.333651][ T7489] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7489 comm=syz.3.1560
[   92.394441][ T7497] FAULT_INJECTION: forcing a failure.
[   92.394441][ T7497] name failslab, interval 1, probability 0, space 0, times 0
[   92.407339][ T7497] CPU: 0 UID: 0 PID: 7497 Comm: syz.3.1564 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   92.418104][ T7497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   92.428231][ T7497] Call Trace:
[   92.431612][ T7497]  <TASK>
[   92.434546][ T7497]  dump_stack_lvl+0xf2/0x150
[   92.439155][ T7497]  dump_stack+0x15/0x20
[   92.443409][ T7497]  should_fail_ex+0x223/0x230
[   92.448181][ T7497]  ? __alloc_skb+0x10b/0x310
[   92.452813][ T7497]  should_failslab+0x8f/0xb0
[   92.457515][ T7497]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   92.463344][ T7497]  __alloc_skb+0x10b/0x310
[   92.467785][ T7497]  netlink_alloc_large_skb+0xad/0xe0
[   92.473097][ T7497]  netlink_sendmsg+0x3b4/0x6e0
[   92.477915][ T7497]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.483277][ T7497]  __sock_sendmsg+0x140/0x180
[   92.487977][ T7497]  ____sys_sendmsg+0x312/0x410
[   92.492761][ T7497]  __sys_sendmsg+0x1d9/0x270
[   92.497374][ T7497]  __x64_sys_sendmsg+0x46/0x50
[   92.502146][ T7497]  x64_sys_call+0x2689/0x2d60
[   92.506965][ T7497]  do_syscall_64+0xc9/0x1c0
[   92.511540][ T7497]  ? clear_bhb_loop+0x55/0xb0
[   92.516396][ T7497]  ? clear_bhb_loop+0x55/0xb0
[   92.521086][ T7497]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.527076][ T7497] RIP: 0033:0x7f82ca3de719
[   92.531645][ T7497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.551368][ T7497] RSP: 002b:00007f82c9057038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   92.559837][ T7497] RAX: ffffffffffffffda RBX: 00007f82ca595f80 RCX: 00007f82ca3de719
[   92.567815][ T7497] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[   92.575804][ T7497] RBP: 00007f82c9057090 R08: 0000000000000000 R09: 0000000000000000
[   92.583861][ T7497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.591873][ T7497] R13: 0000000000000000 R14: 00007f82ca595f80 R15: 00007fff3e4a53c8
[   92.599863][ T7497]  </TASK>
[   92.618689][ T7499] syz.2.1565[7499] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.618939][ T7499] syz.2.1565[7499] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.635946][ T7499] syz.2.1565[7499] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.700726][ T7510] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1570'.
[   92.724556][ T7515] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7515 comm=syz.0.1572
[   92.737884][ T7517] serio: Serial port ptm1
[   92.758590][ T7518] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1568'.
[   92.858149][ T7529] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1576'.
[   93.015730][ T7540] IPv6: Can't replace route, no match found
[   93.089171][ T7545] syz.2.1583[7545] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.156813][ T7554] validate_nla: 8 callbacks suppressed
[   93.156831][ T7554] netlink: 'syz.2.1586': attribute type 10 has an invalid length.
[   93.604096][ T7568] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7568 comm=syz.3.1592
[   93.633925][ T7570] serio: Serial port ptm0
[   93.972419][   T29] kauditd_printk_skb: 509 callbacks suppressed
[   93.972434][   T29] audit: type=1326 audit(1731836281.195:5110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.021916][   T29] audit: type=1326 audit(1731836281.205:5111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.045566][   T29] audit: type=1326 audit(1731836281.225:5112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.069194][   T29] audit: type=1326 audit(1731836281.225:5113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.092804][   T29] audit: type=1326 audit(1731836281.225:5114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.116276][   T29] audit: type=1326 audit(1731836281.225:5115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.139605][   T29] audit: type=1326 audit(1731836281.225:5116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.163130][   T29] audit: type=1326 audit(1731836281.235:5117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.186607][   T29] audit: type=1326 audit(1731836281.235:5118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.210054][   T29] audit: type=1326 audit(1731836281.235:5119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7587 comm="syz.3.1599" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82ca3de719 code=0x7ffc0000
[   94.234243][ T7602] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7602 comm=syz.2.1603
[   94.236041][ T7591] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1598'.
[   94.256616][ T7596] netlink: 'syz.0.1598': attribute type 10 has an invalid length.
[   94.292169][ T7604] siw: device registration error -23
[   94.308184][ T7610] IPv6: Can't replace route, no match found
[   95.072018][ T7635] FAULT_INJECTION: forcing a failure.
[   95.072018][ T7635] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.085362][ T7635] CPU: 0 UID: 0 PID: 7635 Comm: syz.4.1616 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   95.096152][ T7635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   95.106226][ T7635] Call Trace:
[   95.109549][ T7635]  <TASK>
[   95.112546][ T7635]  dump_stack_lvl+0xf2/0x150
[   95.117231][ T7635]  dump_stack+0x15/0x20
[   95.121422][ T7635]  should_fail_ex+0x223/0x230
[   95.126124][ T7635]  should_fail+0xb/0x10
[   95.130413][ T7635]  should_fail_usercopy+0x1a/0x20
[   95.135458][ T7635]  _copy_from_user+0x1e/0xb0
[   95.140062][ T7635]  __sys_bpf+0x14e/0x7a0
[   95.144315][ T7635]  __x64_sys_bpf+0x43/0x50
[   95.148791][ T7635]  x64_sys_call+0x2625/0x2d60
[   95.153532][ T7635]  do_syscall_64+0xc9/0x1c0
[   95.158055][ T7635]  ? clear_bhb_loop+0x55/0xb0
[   95.162763][ T7635]  ? clear_bhb_loop+0x55/0xb0
[   95.167528][ T7635]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.173450][ T7635] RIP: 0033:0x7f0ecb84e719
[   95.177938][ T7635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.197749][ T7635] RSP: 002b:00007f0eca4c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   95.206192][ T7635] RAX: ffffffffffffffda RBX: 00007f0ecba05f80 RCX: 00007f0ecb84e719
[   95.214166][ T7635] RDX: 0000000000000040 RSI: 0000000020000100 RDI: 000000000000001c
[   95.222293][ T7635] RBP: 00007f0eca4c7090 R08: 0000000000000000 R09: 0000000000000000
[   95.230270][ T7635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.238247][ T7635] R13: 0000000000000000 R14: 00007f0ecba05f80 R15: 00007ffe1f789988
[   95.246234][ T7635]  </TASK>
[   95.255662][ T7637] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7637 comm=syz.3.1614
[   95.329640][ T7645] serio: Serial port ptm0
[   95.480914][ T7655] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1618'.
[   95.753707][ T7670] IPv6: Can't replace route, no match found
[   95.766915][ T7672] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7672 comm=syz.3.1629
[   95.787310][ T7666] FAULT_INJECTION: forcing a failure.
[   95.787310][ T7666] name failslab, interval 1, probability 0, space 0, times 0
[   95.800171][ T7666] CPU: 1 UID: 0 PID: 7666 Comm: syz.1.1626 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   95.810915][ T7666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   95.821041][ T7666] Call Trace:
[   95.824339][ T7666]  <TASK>
[   95.827295][ T7666]  dump_stack_lvl+0xf2/0x150
[   95.831923][ T7666]  dump_stack+0x15/0x20
[   95.836345][ T7666]  should_fail_ex+0x223/0x230
[   95.841131][ T7666]  ? __alloc_skb+0x10b/0x310
[   95.845786][ T7666]  should_failslab+0x8f/0xb0
[   95.850453][ T7666]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   95.856334][ T7666]  __alloc_skb+0x10b/0x310
[   95.860839][ T7666]  audit_log_start+0x368/0x6b0
[   95.865636][ T7666]  audit_seccomp+0x4b/0x130
[   95.870147][ T7666]  __seccomp_filter+0x6fa/0x1180
[   95.875181][ T7666]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   95.880864][ T7666]  ? vfs_write+0x596/0x920
[   95.885300][ T7666]  ? __rcu_read_unlock+0x4e/0x70
[   95.890270][ T7666]  ? __fget_files+0x1d4/0x210
[   95.895008][ T7666]  __secure_computing+0x9f/0x1c0
[   95.900050][ T7666]  syscall_trace_enter+0xd1/0x1f0
[   95.905170][ T7666]  ? fpregs_assert_state_consistent+0x83/0xa0
[   95.911292][ T7666]  do_syscall_64+0xaa/0x1c0
[   95.915805][ T7666]  ? clear_bhb_loop+0x55/0xb0
[   95.920556][ T7666]  ? clear_bhb_loop+0x55/0xb0
[   95.925286][ T7666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.931317][ T7666] RIP: 0033:0x7fd69d84e719
[   95.935799][ T7666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.955516][ T7666] RSP: 002b:00007fd69c4c1038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[   95.964046][ T7666] RAX: ffffffffffffffda RBX: 00007fd69da05f80 RCX: 00007fd69d84e719
[   95.972022][ T7666] RDX: 0000000000000006 RSI: 0000000020000380 RDI: 0000000000000006
[   95.980001][ T7666] RBP: 00007fd69c4c1090 R08: 0000000000000000 R09: 0000000000000000
[   95.988108][ T7666] R10: 0000000020000200 R11: 0000000000000246 R12: 0000000000000001
[   95.996183][ T7666] R13: 0000000000000000 R14: 00007fd69da05f80 R15: 00007ffd45cb8658
[   96.004242][ T7666]  </TASK>
[   96.035368][ T7676] siw: device registration error -23
[   96.159186][ T7694] serio: Serial port ptm0
[   96.249191][ T7701] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[   96.408316][ T7709] IPv6: Can't replace route, no match found
[   96.464660][ T7714] siw: device registration error -23
[   96.587773][ T7728] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7728 comm=syz.2.1651
[   96.600848][ T7732] syz.0.1653 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   96.671813][ T7741] bpf_get_probe_write_proto: 14 callbacks suppressed
[   96.671835][ T7741] syz.0.1657[7741] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.676821][ T7743] serio: Serial port ptm0
[   96.678860][ T7741] syz.0.1657[7741] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.693858][ T7736] netlink: 'syz.2.1655': attribute type 3 has an invalid length.
[   96.694478][ T7741] syz.0.1657[7741] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.794170][ T7753] netlink: 'syz.2.1662': attribute type 3 has an invalid length.
[   96.912434][ T7761] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7761 comm=syz.2.1666
[   97.184191][ T7791] syz.2.1678[7791] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.184292][ T7791] syz.2.1678[7791] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.196002][ T7791] syz.2.1678[7791] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.217817][ T7787] syz.4.1677[7787] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.232241][ T7787] syz.4.1677[7787] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.248700][ T7787] syz.4.1677[7787] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.310813][ T7799] serio: Serial port ptm0
[   97.678406][ T7823] syz.4.1692[7823] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.723999][ T7827] siw: device registration error -23
[   97.766236][ T7835] FAULT_INJECTION: forcing a failure.
[   97.766236][ T7835] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.779460][ T7835] CPU: 0 UID: 0 PID: 7835 Comm: syz.3.1696 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   97.790242][ T7835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   97.800687][ T7835] Call Trace:
[   97.804001][ T7835]  <TASK>
[   97.806957][ T7835]  dump_stack_lvl+0xf2/0x150
[   97.811589][ T7835]  dump_stack+0x15/0x20
[   97.815759][ T7835]  should_fail_ex+0x223/0x230
[   97.820524][ T7835]  should_fail+0xb/0x10
[   97.824750][ T7835]  should_fail_usercopy+0x1a/0x20
[   97.829939][ T7835]  _copy_from_user+0x1e/0xb0
[   97.834549][ T7835]  copy_from_sockptr_offset+0x6b/0xb0
[   97.839973][ T7835]  do_arpt_set_ctl+0x6b2/0xa20
[   97.844888][ T7835]  ? _raw_spin_unlock_bh+0x36/0x40
[   97.850045][ T7835]  nf_setsockopt+0x195/0x1b0
[   97.854655][ T7835]  ip_setsockopt+0xea/0x100
[   97.859240][ T7835]  udp_setsockopt+0x95/0xb0
[   97.863853][ T7835]  sock_common_setsockopt+0x64/0x80
[   97.869096][ T7835]  ? __pfx_sock_common_setsockopt+0x10/0x10
[   97.875064][ T7835]  __sys_setsockopt+0x1cc/0x240
[   97.880133][ T7835]  __x64_sys_setsockopt+0x66/0x80
[   97.885183][ T7835]  x64_sys_call+0x278d/0x2d60
[   97.889905][ T7835]  do_syscall_64+0xc9/0x1c0
[   97.894505][ T7835]  ? clear_bhb_loop+0x55/0xb0
[   97.899283][ T7835]  ? clear_bhb_loop+0x55/0xb0
[   97.903984][ T7835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.909988][ T7835] RIP: 0033:0x7f82ca3de719
[   97.914435][ T7835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.934240][ T7835] RSP: 002b:00007f82c9057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   97.942662][ T7835] RAX: ffffffffffffffda RBX: 00007f82ca595f80 RCX: 00007f82ca3de719
[   97.950666][ T7835] RDX: 0000000000000060 RSI: 0a02000000000000 RDI: 0000000000000005
[   97.958647][ T7835] RBP: 00007f82c9057090 R08: 0000000000000438 R09: 0000000000000000
[   97.966650][ T7835] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[   97.974628][ T7835] R13: 0000000000000000 R14: 00007f82ca595f80 R15: 00007fff3e4a53c8
[   97.982690][ T7835]  </TASK>
[   98.008311][ T7850] serio: Serial port ptm0
[   98.335062][ T7875] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7875 comm=syz.1.1713
[   98.516011][ T7903] serio: Serial port ptm0
[   98.533599][ T7900] FAULT_INJECTION: forcing a failure.
[   98.533599][ T7900] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.546854][ T7900] CPU: 0 UID: 0 PID: 7900 Comm: syz.1.1725 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[   98.557588][ T7900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   98.567658][ T7900] Call Trace:
[   98.570960][ T7900]  <TASK>
[   98.573909][ T7900]  dump_stack_lvl+0xf2/0x150
[   98.578677][ T7900]  dump_stack+0x15/0x20
[   98.582938][ T7900]  should_fail_ex+0x223/0x230
[   98.587722][ T7900]  should_fail+0xb/0x10
[   98.591988][ T7900]  should_fail_usercopy+0x1a/0x20
[   98.597034][ T7900]  _copy_from_user+0x1e/0xb0
[   98.601680][ T7900]  restore_altstack+0x48/0xd0
[   98.606388][ T7900]  __do_sys_rt_sigreturn+0xd7/0x160
[   98.611750][ T7900]  x64_sys_call+0x28e1/0x2d60
[   98.616472][ T7900]  do_syscall_64+0xc9/0x1c0
[   98.621008][ T7900]  ? clear_bhb_loop+0x55/0xb0
[   98.625735][ T7900]  ? clear_bhb_loop+0x55/0xb0
[   98.630446][ T7900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.636502][ T7900] RIP: 0033:0x7fd69d7ea099
[   98.640969][ T7900] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[   98.660664][ T7900] RSP: 002b:00007fd69c4c0a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[   98.669111][ T7900] RAX: ffffffffffffffda RBX: 00007fd69da05f80 RCX: 00007fd69d7ea099
[   98.677146][ T7900] RDX: 00007fd69c4c0a80 RSI: 00007fd69c4c0bb0 RDI: 0000000000000021
[   98.685235][ T7900] RBP: 00007fd69c4c1090 R08: 0000000000000000 R09: 0000000000000000
[   98.693292][ T7900] R10: 0000000000010101 R11: 0000000000000202 R12: 0000000000000001
[   98.701296][ T7900] R13: 0000000000000000 R14: 00007fd69da05f80 R15: 00007ffd45cb8658
[   98.709306][ T7900]  </TASK>
[   99.101139][   T29] kauditd_printk_skb: 396 callbacks suppressed
[   99.101157][   T29] audit: type=1326 audit(1731836286.325:5512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.130868][   T29] audit: type=1326 audit(1731836286.325:5513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.156043][   T29] audit: type=1326 audit(1731836286.325:5514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.179827][   T29] audit: type=1326 audit(1731836286.325:5515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.203591][   T29] audit: type=1326 audit(1731836286.335:5516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.215321][ T7962] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1743'.
[   99.227016][   T29] audit: type=1326 audit(1731836286.335:5517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.259525][   T29] audit: type=1326 audit(1731836286.335:5518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.283428][   T29] audit: type=1326 audit(1731836286.335:5519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.307000][   T29] audit: type=1326 audit(1731836286.335:5520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.330567][   T29] audit: type=1326 audit(1731836286.335:5521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7958 comm="syz.0.1747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f39ce719 code=0x7ffc0000
[   99.437376][ T7974] serio: Serial port ptm0
[   99.827134][ T8010] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1768'.
[   99.836333][ T8010] bond0: option miimon: invalid value (18446744072568963076)
[   99.843732][ T8010] bond0: option miimon: allowed values 0 - 2147483647
[   99.854723][ T3299] ==================================================================
[   99.862825][ T3299] BUG: KCSAN: data-race in virtqueue_disable_cb / virtqueue_disable_cb
[   99.871078][ T3299] 
[   99.873390][ T3299] read to 0xffff888101e3d978 of 2 bytes by interrupt on cpu 0:
[   99.880933][ T3299]  virtqueue_disable_cb+0x63/0x180
[   99.886136][ T3299]  skb_xmit_done+0x5f/0x140
[   99.890644][ T3299]  vring_interrupt+0x161/0x190
[   99.895420][ T3299]  __handle_irq_event_percpu+0x95/0x490
[   99.901000][ T3299]  handle_irq_event+0x64/0xf0
[   99.905778][ T3299]  handle_edge_irq+0x16d/0x5b0
[   99.910555][ T3299]  __common_interrupt+0x58/0xe0
[   99.915411][ T3299]  common_interrupt+0x7c/0x90
[   99.920109][ T3299]  asm_common_interrupt+0x26/0x40
[   99.925169][ T3299]  kcsan_setup_watchpoint+0x404/0x410
[   99.930566][ T3299]  vm_normal_page+0x83/0x1b0
[   99.935162][ T3299]  copy_page_range+0x939/0x3860
[   99.940021][ T3299]  copy_mm+0x96c/0x10e0
[   99.944176][ T3299]  copy_process+0xd5b/0x1f90
[   99.948794][ T3299]  kernel_clone+0x167/0x5e0
[   99.953323][ T3299]  __x64_sys_clone+0xe8/0x120
[   99.958003][ T3299]  x64_sys_call+0x2d23/0x2d60
[   99.962769][ T3299]  do_syscall_64+0xc9/0x1c0
[   99.967278][ T3299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.973201][ T3299] 
[   99.975536][ T3299] write to 0xffff888101e3d978 of 2 bytes by task 3299 on cpu 1:
[   99.983193][ T3299]  virtqueue_disable_cb+0x85/0x180
[   99.988307][ T3299]  start_xmit+0x14b/0x1280
[   99.992747][ T3299]  dev_hard_start_xmit+0x119/0x3f0
[   99.997870][ T3299]  sch_direct_xmit+0x1a9/0x580
[  100.002648][ T3299]  __dev_queue_xmit+0xf1a/0x2040
[  100.007603][ T3299]  ip_finish_output2+0x73d/0x8b0
[  100.012551][ T3299]  ip_finish_output+0x11a/0x2a0
[  100.017402][ T3299]  ip_output+0xab/0x170
[  100.021595][ T3299]  __ip_queue_xmit+0xbcc/0xbf0
[  100.026357][ T3299]  ip_queue_xmit+0x38/0x50
[  100.030795][ T3299]  __tcp_transmit_skb+0x15b0/0x1970
[  100.036026][ T3299]  tcp_write_xmit+0x1410/0x3220
[  100.040891][ T3299]  __tcp_push_pending_frames+0x6a/0x1a0
[  100.046882][ T3299]  tcp_push+0x320/0x340
[  100.051042][ T3299]  tcp_sendmsg_locked+0x21ff/0x2700
[  100.056246][ T3299]  tcp_sendmsg+0x30/0x50
[  100.060527][ T3299]  inet_sendmsg+0x77/0xd0
[  100.064949][ T3299]  __sock_sendmsg+0x102/0x180
[  100.069651][ T3299]  sock_write_iter+0x15e/0x1a0
[  100.074444][ T3299]  vfs_write+0x77f/0x920
[  100.078697][ T3299]  ksys_write+0xeb/0x1b0
[  100.082948][ T3299]  __x64_sys_write+0x42/0x50
[  100.087554][ T3299]  x64_sys_call+0x27dd/0x2d60
[  100.092243][ T3299]  do_syscall_64+0xc9/0x1c0
[  100.096751][ T3299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.102675][ T3299] 
[  100.104988][ T3299] value changed: 0x0000 -> 0x0001
[  100.110002][ T3299] 
[  100.112319][ T3299] Reported by Kernel Concurrency Sanitizer on:
SYZFAIL: failed to send rpc
fd=3 want=56 sent=0 n=-1 (errno 32: Broken pipe)
[  100.118458][ T3299] CPU: 1 UID: 0 PID: 3299 Comm: syz-executor Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0
[  100.129310][ T3299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[  100.139385][ T3299] ==================================================================
[  100.241194][ T4774] bridge0: port 3(syz_tun) entered disabled state
[  100.290499][ T4774] syz_tun (unregistering): left allmulticast mode
[  100.297095][ T4774] syz_tun (unregistering): left promiscuous mode
[  100.303548][ T4774] bridge0: port 3(syz_tun) entered disabled state
[  100.399491][ T6933] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.528950][ T6933] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.638596][ T6933] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.677895][ T6933] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.737072][ T6933] bridge_slave_1: left allmulticast mode
[  100.742808][ T6933] bridge_slave_1: left promiscuous mode
[  100.748679][ T6933] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.756505][ T6933] bridge_slave_0: left allmulticast mode
[  100.762148][ T6933] bridge_slave_0: left promiscuous mode
[  100.767812][ T6933] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.821850][ T6933] team0: Port device geneve0 removed
[  100.857701][ T6933] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  100.868216][ T6933] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.878451][ T6933] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  100.888025][ T6933] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  100.896998][ T6933] bond0 (unregistering): Released all slaves
[  100.905591][ T6933] bond1 (unregistering): Released all slaves
[  102.288817][ T6933] hsr_slave_0: left promiscuous mode
[  102.294604][ T6933] hsr_slave_1: left promiscuous mode
[  102.300404][ T6933] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.307859][ T6933] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.315781][ T6933] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.323198][ T6933] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.332219][ T6933] veth1_macvtap: left promiscuous mode
[  102.337726][ T6933] veth0_macvtap: left promiscuous mode
[  102.343343][ T6933] veth1_vlan: left promiscuous mode
[  102.348804][ T6933] veth0_vlan: left promiscuous mode
[  102.423320][ T6933] team0 (unregistering): Port device team_slave_1 removed
[  102.433853][ T6933] team0 (unregistering): Port device team_slave_0 removed
[  102.819867][ T6933] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.897949][ T6933] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.948213][ T6933] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.998891][ T6933] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.080412][ T6933] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.148425][ T6933] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.218145][ T6933] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.267749][ T6933] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.348870][ T6933] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.386740][ T6933] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.446975][ T6933] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.486897][ T6933] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.547530][ T6933] bridge_slave_1: left allmulticast mode
[  103.553195][ T6933] bridge_slave_1: left promiscuous mode
[  103.558870][ T6933] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.566653][ T6933] bridge_slave_0: left allmulticast mode
[  103.572305][ T6933] bridge_slave_0: left promiscuous mode
[  103.578051][ T6933] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.586297][ T6933] macvlan0: left allmulticast mode
[  103.591474][ T6933] veth1_vlan: left allmulticast mode
[  103.596831][ T6933] macvlan0: left promiscuous mode
[  103.602012][ T6933] bridge0: port 3(macvlan0) entered disabled state
[  103.609132][ T6933] bridge_slave_1: left allmulticast mode
[  103.614779][ T6933] bridge_slave_1: left promiscuous mode
[  103.620487][ T6933] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.628332][ T6933] bridge_slave_0: left allmulticast mode
[  103.634001][ T6933] bridge_slave_0: left promiscuous mode
[  103.639725][ T6933] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.773785][ T6933] dvmrp1 (unregistering): left allmulticast mode
[  103.826748][ T6933] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  103.877456][ T6933] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  103.887571][ T6933] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  103.898181][ T6933] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  103.907007][ T6933] bond0 (unregistering): Released all slaves
[  103.916208][ T6933] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  103.926358][ T6933] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  103.936580][ T6933] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  103.945927][ T6933] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  103.955470][ T6933] bond0 (unregistering): Released all slaves
[  103.964643][ T6933] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  103.974958][ T6933] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  103.985251][ T6933] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  103.993938][ T6933] bond0 (unregistering): Released all slaves
[  104.067288][ T6933] tipc: Disabling bearer <udp:syz2>
[  104.072638][ T6933] tipc: Left network mode
[  104.082602][ T6933] hsr_slave_0: left promiscuous mode
[  104.088612][ T6933] hsr_slave_1: left promiscuous mode
[  104.095988][ T6933] hsr_slave_0: left promiscuous mode
[  104.101785][ T6933] hsr_slave_1: left promiscuous mode
[  104.107382][ T6933] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.114827][ T6933] batman_adv: batadv0: Removing interface: batadv_slave_0
[  104.122611][ T6933] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.130071][ T6933] batman_adv: batadv0: Removing interface: batadv_slave_1
[  104.139209][ T6933] hsr_slave_0: left promiscuous mode
[  104.144803][ T6933] hsr_slave_1: left promiscuous mode
[  104.154527][ T6933] veth0_macvtap: left promiscuous mode
[  104.160090][ T6933] veth1_vlan: left allmulticast mode
[  104.165431][ T6933] veth1_vlan: left promiscuous mode
[  104.170699][ T6933] veth0_vlan: left promiscuous mode
[  104.176451][ T6933] veth1_macvtap: left promiscuous mode
[  104.181926][ T6933] veth0_macvtap: left promiscuous mode
[  104.187530][ T6933] veth1_vlan: left promiscuous mode
[  104.192741][ T6933] veth0_vlan: left promiscuous mode
[  104.198400][ T6933] veth1_macvtap: left promiscuous mode
[  104.203884][ T6933] veth0_macvtap: left promiscuous mode
[  104.209432][ T6933] veth1_vlan: left promiscuous mode
[  104.214689][ T6933] veth0_vlan: left promiscuous mode
[  104.340063][ T6933] macvlan0 (unregistering): left allmulticast mode
[  104.366366][ T6933] team0 (unregistering): Port device team_slave_1 removed
[  104.376509][ T6933] team0 (unregistering): Port device team_slave_0 removed
[  104.437891][ T6933] team0 (unregistering): Port device team_slave_1 removed
[  104.448220][ T6933] team0 (unregistering): Port device team_slave_0 removed
[  104.507726][ T6933] team0 (unregistering): Port device team_slave_1 removed
[  104.517334][ T6933] team0 (unregistering): Port device team_slave_0 removed
[  105.258283][ T6933] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.306732][ T6933] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.386815][ T6933] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.446804][ T6933] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.507705][ T6933] bridge_slave_1: left allmulticast mode
[  105.513403][ T6933] bridge_slave_1: left promiscuous mode
[  105.519177][ T6933] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.526969][ T6933] bridge_slave_0: left allmulticast mode
[  105.532699][ T6933] bridge_slave_0: left promiscuous mode
[  105.538426][ T6933] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.637678][ T6933] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  105.647568][ T6933] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  105.657524][ T6933] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  105.666765][ T6933] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  105.675279][ T6933] bond0 (unregistering): Released all slaves
[  105.726379][ T6933] tipc: Disabling bearer <udp:syz2>
[  105.731636][ T6933] tipc: Left network mode
[  105.738996][ T6933] hsr_slave_0: left promiscuous mode
[  105.744863][ T6933] hsr_slave_1: left promiscuous mode
[  105.750782][ T6933] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.758254][ T6933] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.765805][ T6933] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.773289][ T6933] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.782026][ T6933] veth1_macvtap: left promiscuous mode
[  105.787564][ T6933] veth0_macvtap: left promiscuous mode
[  105.793064][ T6933] veth1_vlan: left promiscuous mode
[  105.798372][ T6933] veth0_vlan: left promiscuous mode