last executing test programs:

2.186490595s ago: executing program 1 (id=1017):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40f80, 0x0)

2.160268685s ago: executing program 1 (id=1019):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000006c0)=ANY=[@ANYBLOB="9feb0100"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000000c40)={{0x80}, 'port0\x00', 0x0, 0x100c40, 0x5, 0x6, 0x2, 0x40, 0x3, 0x0, 0x1, 0x5})
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x28, 0x71430, 0x6c2ae3f4, 0x4, 0x3e2, 0x0, 0xfffffc00, 0x0, 0x0, 0x3})
close(r0)

2.109415356s ago: executing program 1 (id=1020):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x808080, &(0x7f0000000000), 0x2c, 0x52c, &(0x7f0000000640)="$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")
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000001000000040000180060001000a000000080005"], 0x54}}, 0x0)
sendmsg$IPVS_CMD_ZERO(r2, &(0x7f0000000500)={&(0x7f0000000380), 0xc, &(0x7f00000004c0)={&(0x7f00000003c0)={0x58, r3, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x80}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x6}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xe072}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8000}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x44004}, 0x30000800)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{0x3, 0x0, 0x9c}, {}]}, [{}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x7, 0x5}, {0x0, 0x0, 0x0, 0x2000}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {0x0, 0x400}, {}, {0x0, 0x1, 0x0, 0x0, 0xfffffffe, 0x8001}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x806, 0xffffffff}, {}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x403}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0xfffffffc}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, {0x0, 0x4, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x4000bf}, {}, {0x0, 0x0, 0x0, 0x0, 0x100}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x6}, {}, {0x0, 0xfffffffe}, {0x7, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0xd5}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x106, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x78}, {}, {0x0, 0x10}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xe6f1}, {}, {0x0, 0x0, 0x0, 0x0, 0x3e0d905c, 0x6}, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x5, 0x8, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x57, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0x5}, {}, {0xffffffff}, {}, {}, {}, {}, {0x0, 0x8, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0xfffffffe}, {0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {0x0, 0x800000}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x4}, {}, {0xa7}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, {0x0, 0x0, 0x1000}, {}, {0xd2, 0x0, 0x0, 0xfffffffc, 0x0, 0x20000000}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8}, {}, {0x4, 0x0, 0x0, 0x0, 0x1}, {}, {0x0, 0x9}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x0, 0x1, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x1000000}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x10000000}, {}, {}, {0x0, 0x1}, {}, {0x523e, 0xfffffffe}, {}, {0x4, 0x0, 0x0, 0x10}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x2}, {}, {}, {}, {}, {}, {0x4}, {}, {0x3}, {}, {}, {}, {0x5}, {0x0, 0x1}, {0x4}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x5}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {0x2}, {0x2}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {0x1}, {}, {}, {}, {}, {0x2, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, &(0x7f00000008c0), 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
r10 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r11=>0x0})
sendmsg$nl_route_sched(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0x34, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r11, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r12}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r13, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0xffff0000, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

1.719483463s ago: executing program 1 (id=1028):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pwritev(r3, &(0x7f0000000800)=[{&(0x7f0000000280)="ebcadc6e7535e427cf9730b6f3ca21b2a12c03a279932fd3a0e91c09d5527badb6cf55adc3a2380bd50dabe43f1822d31a4cb9615404f0450b1189a197ba344d2decdafbb96d99bd99a999d37e064e85d24610358d77014d3df1e4e9403a7ce20907", 0x62}, {0x0}, {&(0x7f00000003c0)="4c55f2a90ceab58bdcb365c92ea1b77163356ab4ba28e8f50b7a10e94f66776222fd3b5396ee4fbc059d201611002f3b33614d2f406e3c34666ef0faf2e69c27810d1866b961a3e36f65d97995c30491248b2b88283ac6be4e5723dba8936ba653982d353d4efd180a88433ae4b16e87bcba11d107e20c70f2650d440eac96b31005b6ae6bef62176b5c5b7b89db036d152a5f757185873b98e1999af2e0747e1e062dfbfaa835", 0xa7}, {&(0x7f0000000480)="1f421e9d68d5a5bc60c0246f83be96e5ead3622e397a6f72507d7a3148713a3fae6b96750bfff887ce04434ba7971546e0c218dddfd99110e2057c7b1b4a0c42a1fe43473fc73f6180757a7b157efe52dcf7d1cac48855c24225bd74af", 0x5d}, {0x0}, {&(0x7f0000000700)="adc48a164199e5d1138b4b7084101b0e2c7ca080e8040f5173bc7543494f4544375fedba0e9694494df1c8b875f25e2656a45b5c015316a0092ebc38d9cd78e86f5d7960c2ce7b98b70e810b180ecf4f659538c877d3b1e873d4ed69ae659f256ea65e669215be80d4aced432d7e0cc8f36e3abad51831d5d86aa7efe150159557443c2146e2bd115596404afaa89276c5f31225f64abfdbb9ac4716c456222ec3d8138c898e87c3ec69faa04f545f758ee8479401f5b7bf0de61bf2", 0xbc}], 0x6, 0x3, 0x569)
splice(r2, &(0x7f0000000880)=0x77, r2, &(0x7f00000008c0)=0xe, 0x8, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x2}, 0x18)
unshare(0x2040400)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000140)={0x2})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f0000000500), 0xc, &(0x7f0000000580)={&(0x7f0000000a00)=@RTM_NEWNSID={0x4c, 0x58, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@NETNSA_FD={0x8}, @NETNSA_NSID={0x8, 0x1, 0x2}, @NETNSA_NSID={0x8}, @NETNSA_FD={0x8}, @NETNSA_NSID={0x8, 0x1, 0x2}, @NETNSA_FD={0x8}, @NETNSA_PID={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20008080}, 0x40000)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f0000000900)=0x6008, 0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x101, 0x300, 0x0, 0x101, 0x300}})
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd2d, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0xc080}, 0x20000010)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000940)=@bpf_lsm={0xd, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x2c}, [@call={0x85, 0x0, 0x0, 0x88}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000, @void, @value}, 0x94)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='(\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000094"], 0x28}}, 0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0xc404, &(0x7f00000003c0)={[{@dots}, {@fat=@discard}, {@fat=@fmask={'fmask', 0x3d, 0x6}}, {@fat=@umask={'umask', 0x3d, 0x403}}, {@fat=@time_offset={'time_offset', 0x3d, 0x2db}}, {@nodots}, {@dots}, {@nodots}, {@dots}, {@fat=@quiet}, {@dots}, {@nodots}, {@nodots}, {@dots}, {@nodots}, {@fat=@umask={'umask', 0x3d, 0x1}}, {@dots}, {@nodots}, {@fat=@nfs_nostale_ro}, {@nodots}, {}, {@dots}]}, 0xfd, 0x207, &(0x7f0000000780)="$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")
sendmsg$SMC_PNETID_DEL(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r1, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1a0000000400000000000000010000000080", @ANYRES32=0x1, @ANYBLOB="ffffffff0000000000000000ffffffff00000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000400"/20, @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x20, &(0x7f0000000b00)=@raw=[@call={0x85, 0x0, 0x0, 0x39}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xe3c3}, @map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x2e0}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xa}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r8}}, @jmp={0x5, 0x1, 0x9, 0x8, 0x6, 0x20, 0x1}, @ldst={0x0, 0x0, 0x3, 0x9, 0x1, 0x6, 0x10}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
syz_clone(0x44044000, 0x0, 0x0, 0x0, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x40, 0x1, 0x4, 0x0, 0x0, 0x5, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_bp={0x0, 0x6}, 0x1100, 0x5dd8, 0x10001, 0x5, 0x6, 0x0, 0xfffd, 0x0, 0x0, 0x0, 0x2000000001}, 0x0, 0x8000000000004, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IEEE802154_LIST_PHY(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r10, 0x30b}, 0x14}}, 0x40000)

1.712682943s ago: executing program 4 (id=1029):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40f80, 0x0)

1.695111603s ago: executing program 4 (id=1030):
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1600000000000000040000000500000000000000", @ANYBLOB='\x00'/16, @ANYRES32=0x0, @ANYBLOB="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"], 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0xfe, 0x0, 0x0, 0xfffffffffffffffc, 0x60020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, @perf_bp={&(0x7f0000000080)}, 0x0, 0x3, 0x0, 0x0, 0x2, 0xfffffffc}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x40, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080)}, 0x10010, 0xffffffffffffdffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
r2 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0xffffffff}, 0x48, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={0x0, r5}, 0x18)
unshare(0x400)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x1)

1.501832636s ago: executing program 4 (id=1033):
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f0000000140)='./file0\x00')
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x69, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r2}, 0x18)
openat(r1, &(0x7f0000000700)='./file0/../file0\x00', 0x515a02, 0x52abe154ad664f64)

1.485597256s ago: executing program 4 (id=1034):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcff", @ANYRES32=r0, @ANYBLOB], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
remap_file_pages(&(0x7f00005fd000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
io_uring_setup(0x36dc, &(0x7f00000001c0)={0x0, 0x0, 0x10})

1.437933537s ago: executing program 1 (id=1035):
r0 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000040)={<r1=>0x0, 0x7596, 0x81, 0x9}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={r1, 0x9}, &(0x7f0000000140)=0x8)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100020, 0x0, 0x0, 0x6, 0x3, 0x0, 0xfff7, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x300, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000180), &(0x7f00000001c0)=r3}, 0x20)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r4, 0x0, 0x0}, 0x10)

1.212886971s ago: executing program 2 (id=1041):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x400}, 0x18)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x4e22, @rand_addr=0x51d0174}, 0x10, 0x0, 0x0, &(0x7f0000000980)=[@cswp={0x58, 0x114, 0x7, {{0x4, 0x7f72}, &(0x7f0000000280)=0x67af, 0x0, 0x765, 0x81, 0x9, 0xfffffffffffefffd, 0x54, 0x20000000000000}}], 0x58, 0x20040044}, 0x0)

1.212258731s ago: executing program 3 (id=1042):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
bind$tipc(r2, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000000)=[{0x200000000006, 0x0, 0x2, 0x7ffc0002}]})
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x25, &(0x7f0000000000)={0x1})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r5, 0x26, &(0x7f0000000380)={0x0, 0x1, 0x103ff, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0xffffffff, 0x0, 0x0, 0x4, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}})
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1.161909122s ago: executing program 2 (id=1044):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8)
sendto$inet6(r4, &(0x7f0000000040)="f9", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c)
close_range(r3, 0xffffffffffffffff, 0x0)

1.108252013s ago: executing program 2 (id=1045):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pwritev(r3, &(0x7f0000000800)=[{&(0x7f0000000280)="ebcadc6e7535e427cf9730b6f3ca21b2a12c03a279932fd3a0e91c09d5527badb6cf55adc3a2380bd50dabe43f1822d31a4cb9615404f0450b1189a197ba344d2decdafbb96d99bd99a999d37e064e85d24610358d77014d3df1e4e9403a7ce20907", 0x62}, {0x0}, {&(0x7f00000003c0)="4c55f2a90ceab58bdcb365c92ea1b77163356ab4ba28e8f50b7a10e94f66776222fd3b5396ee4fbc059d201611002f3b33614d2f406e3c34666ef0faf2e69c27810d1866b961a3e36f65d97995c30491248b2b88283ac6be4e5723dba8936ba653982d353d4efd180a88433ae4b16e87bcba11d107e20c70f2650d440eac96b31005b6ae6bef62176b5c5b7b89db036d152a5f757185873b98e1999af2e0747e1e062dfbfaa835", 0xa7}, {&(0x7f0000000480)="1f421e9d68d5a5bc60c0246f83be96e5ead3622e397a6f72507d7a3148713a3fae6b96750bfff887ce04434ba7971546e0c218dddfd99110e2057c7b1b4a0c42a1fe43473fc73f6180757a7b157efe52dcf7d1cac48855c24225bd74af", 0x5d}, {0x0}, {&(0x7f0000000700)="adc48a164199e5d1138b4b7084101b0e2c7ca080e8040f5173bc7543494f4544375fedba0e9694494df1c8b875f25e2656a45b5c015316a0092ebc38d9cd78e86f5d7960c2ce7b98b70e810b180ecf4f659538c877d3b1e873d4ed69ae659f256ea65e669215be80d4aced432d7e0cc8f36e3abad51831d5d86aa7efe150159557443c2146e2bd115596404afaa89276c5f31225f64abfdbb9ac4716c456222ec3d8138c898e87c3ec69faa04f545f758ee8479401f5b7bf0de61bf2", 0xbc}], 0x6, 0x3, 0x569)
splice(r2, &(0x7f0000000880)=0x77, r2, &(0x7f00000008c0)=0xe, 0x8, 0x3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x2}, 0x18)
unshare(0x2040400)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000140)={0x2})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f0000000500), 0xc, &(0x7f0000000580)={&(0x7f0000000a00)=@RTM_NEWNSID={0x4c, 0x58, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@NETNSA_FD={0x8}, @NETNSA_NSID={0x8, 0x1, 0x2}, @NETNSA_NSID={0x8}, @NETNSA_FD={0x8}, @NETNSA_NSID={0x8, 0x1, 0x2}, @NETNSA_FD={0x8}, @NETNSA_PID={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20008080}, 0x40000)
fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, &(0x7f0000000900)=0x6008, 0x4)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x101, 0x300, 0x0, 0x101, 0x300}})
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x38, 0x1403, 0x1, 0x70bd2d, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0xc080}, 0x20000010)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000940)=@bpf_lsm={0xd, 0x4, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x2c}, [@call={0x85, 0x0, 0x0, 0x88}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000, @void, @value}, 0x94)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='(\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000094"], 0x28}}, 0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0xc404, &(0x7f00000003c0)={[{@dots}, {@fat=@discard}, {@fat=@fmask={'fmask', 0x3d, 0x6}}, {@fat=@umask={'umask', 0x3d, 0x403}}, {@fat=@time_offset={'time_offset', 0x3d, 0x2db}}, {@nodots}, {@dots}, {@nodots}, {@dots}, {@fat=@quiet}, {@dots}, {@nodots}, {@nodots}, {@dots}, {@nodots}, {@fat=@umask={'umask', 0x3d, 0x1}}, {@dots}, {@nodots}, {@fat=@nfs_nostale_ro}, {@nodots}, {}, {@dots}]}, 0xfd, 0x207, &(0x7f0000000780)="$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")
sendmsg$SMC_PNETID_DEL(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r1, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)
r7 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1a0000000400000000000000010000000080", @ANYRES32=0x1, @ANYBLOB="ffffffff0000000000000000ffffffff00000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000400"/20, @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x20, &(0x7f0000000b00)=@raw=[@call={0x85, 0x0, 0x0, 0x39}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xe3c3}, @map_val={0x18, 0x6, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x2e0}, @printk={@i, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xa}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r8}}, @jmp={0x5, 0x1, 0x9, 0x8, 0x6, 0x20, 0x1}, @ldst={0x0, 0x0, 0x3, 0x9, 0x1, 0x6, 0x10}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
syz_clone(0x44044000, 0x0, 0x0, 0x0, 0x0, 0x0)
r10 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x40, 0x1, 0x4, 0x0, 0x0, 0x5, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_bp={0x0, 0x6}, 0x1100, 0x5dd8, 0x10001, 0x5, 0x6, 0x0, 0xfffd, 0x0, 0x0, 0x0, 0x2000000001}, 0x0, 0x8000000000004, 0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IEEE802154_LIST_PHY(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, r10, 0x30b}, 0x14}}, 0x40000)

1.041129343s ago: executing program 0 (id=1046):
r0 = socket$netlink(0x10, 0x3, 0x5)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, r1, 0x0, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x4, 0x44}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_PMK={0x14, 0xfe, "4a943235a437b26e41aef654126875a8"}, @NL80211_ATTR_PMK={0x14, 0xfe, "c69e964b7b6f9277db6d07681044d31e"}]}, 0x68}, 0x1, 0x0, 0x0, 0x8000040}, 0x1)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000240)={0x19c, r3, 0x8, 0x70bd27, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xe80}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x80}]}, @TIPC_NLA_NODE={0x150, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "8de18cb08b174b269241810d9fd918f651218c50aa"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xb3, 0x3, "aefd10c2b9136223f9f4018988e1fd6616ed7d5b2a2e7e315f4483fd6c8b44463e157786bf088e8a6b4bf0675369bd963d24a24fe9e4b03170c325cd55e1d4327fa6d42489b5cc2772e2c7c6af3e2f76f32372f5b6ec05f2982c6cc8e00bc5280ba1763ed3cae2e67ead008d23e99b031fbc1dd717a4c2fde68193698a18c9fd943d16b11ad4c4b2ef90f000bf2ae613e40a2070add7c7eed085a3d074a9667c633695ccb0cba85ed2bef5dc15436a"}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "508521cc9f0702a7c20f4fa0ba0dc89a81dbd929a55be2e7351cca9e"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x400}, @TIPC_NLA_NODE_UP={0x4}]}]}, 0x19c}}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000004c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, r1, 0x4, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r5}, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x84}, 0x8800)
gettid()
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmsg$can_j1939(r6, &(0x7f0000001a40)={&(0x7f00000005c0)=@tipc, 0x80, &(0x7f00000009c0)=[{&(0x7f0000000640)=""/73, 0x49}, {&(0x7f00000006c0)=""/52, 0x34}, {&(0x7f0000000700)=""/213, 0xd5}, {&(0x7f0000000800)=""/108, 0x6c}, {&(0x7f0000000880)=""/9, 0x9}, {&(0x7f00000008c0)=""/32, 0x20}, {&(0x7f0000000900)=""/9, 0x9}, {&(0x7f0000000940)=""/86, 0x56}], 0x8, &(0x7f0000000a40)=""/4096, 0x1000}, 0x12000)
r7 = fsmount(0xffffffffffffffff, 0x0, 0x8)
sendmsg$TIPC_NL_NET_SET(r7, &(0x7f0000001d40)={&(0x7f0000001a80)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001ac0)={0x228, r3, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x54, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x9}, @TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "e44782f9404e40fa68c7725f676137b57dad2b05"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xffffffff}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_BEARER={0xc4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @broadcast}}, {0x14, 0x2, @in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x5}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb14}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @remote}}, {0x14, 0x2, @in={0x2, 0x4e22, @multicast2}}}}]}, @TIPC_NLA_NODE={0x4c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfffffffb}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "ea7039a30a80b02a49bf51ec888cd63c27f3e7fb73"}}]}, @TIPC_NLA_MEDIA={0x4}, @TIPC_NLA_BEARER={0x1c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x18, 0x1, @l2={'eth', 0x3a, 'veth1_virt_wifi\x00'}}]}, @TIPC_NLA_SOCK={0x80, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x80}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x4}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x401}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xa70}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}]}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xe}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x228}, 0x1, 0x0, 0x0, 0x5}, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000001d80), 0x4b0000)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000001dc0)={0xfff, 0x1, 0x1, 'queue0\x00', 0x5})
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
fcntl$setlease(r7, 0x400, 0x0)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000001e80), r7)
sendmsg$TIPC_CMD_SET_LINK_TOL(r7, &(0x7f0000001fc0)={&(0x7f0000001ec0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001f80)={&(0x7f0000001f00)={0x68, r9, 0x200, 0x70bd26, 0x25dfdbfb, {{}, {}, {0x4c, 0x18, {0x6, @link='broadcast-link\x00'}}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x68}}, 0x10)
write$cgroup_int(r0, &(0x7f0000002000)=0x2, 0x12)
ioctl$SIOCGSTAMP(r4, 0x8906, &(0x7f0000002040))
setsockopt$sock_int(r6, 0x1, 0x1e, &(0x7f0000002080)=0x6, 0x4)
socket$igmp(0x2, 0x3, 0x2)
sendmsg$nl_route(r7, &(0x7f0000002180)={&(0x7f00000020c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000002140)={&(0x7f0000002100)=@ipv4_getrule={0x1c, 0x22, 0x200, 0x70bd29, 0x25dfdbfd, {0x2, 0x14, 0x10, 0x1, 0x0, 0x0, 0x0, 0x6, 0x1000d}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000002}, 0x20000004)
creat(&(0x7f00000021c0)='./file0\x00', 0x110)
r10 = mq_open(&(0x7f0000002200)='eth', 0x40, 0x41, &(0x7f0000002240)={0x6, 0x10000, 0x5, 0x3ff800000000})
mq_timedreceive(r10, &(0x7f0000002280)=""/220, 0xdc, 0xfffffffffffff859, 0x0)
mount$cgroup(0x0, &(0x7f0000002380)='./file0\x00', &(0x7f00000023c0), 0x26001, &(0x7f0000002400)={[{@noprefix}, {@clone_children}, {@noprefix}], [{@func={'func', 0x3d, 'MODULE_CHECK'}}, {@audit}, {@subj_type={'subj_type', 0x3d, 'broadcast-link\x00'}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]})

969.397755ms ago: executing program 0 (id=1047):
r0 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x14806, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0], 0x0, 0x700, &(0x7f0000000a40)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
futimesat(r0, &(0x7f0000000000)='./file1\x00', 0x0)

968.532995ms ago: executing program 0 (id=1048):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r1, &(0x7f0000000040)={0x23, 0x2e, 0x9}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r2, &(0x7f00000000c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000100)=0x14)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000180)={'wg1\x00'})
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='sys_enter\x00', r5}, 0x18)
getresgid(&(0x7f0000000200), &(0x7f0000000300), &(0x7f0000000400))
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', <r6=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0200000004000000008001400200000000000000", @ANYRES32, @ANYBLOB='\x00'/19, @ANYRES32=r6], 0x50)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'syztnl1\x00', 0x0, 0x2f, 0x2, 0x5, 0x5, 0x18, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0, 0x8000, 0x20, 0x5, 0x3}})
sendmsg$nl_route_sched_retired(r2, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000380)={&(0x7f00000004c0)=@delchain={0x35c, 0x65, 0x100, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x4, 0x6}, {0x1, 0xb}, {0x2, 0xffe0}}, [@f_tcindex={{0xc}, {0x31c, 0x2, [@TCA_TCINDEX_POLICE={0x10, 0x6, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xffff}]}, @TCA_TCINDEX_HASH={0x8, 0x1, 0x7020}, @TCA_TCINDEX_ACT={0x40, 0x7, [@m_gact={0x3c, 0x1a, 0x0, 0x0, {{0x9}, {0x10, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x2, 0x1097, 0x7}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}, @TCA_TCINDEX_ACT={0x2c0, 0x7, [@m_nat={0x1d0, 0xb, 0x0, 0x0, {{0x8}, {0xcc, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x0, 0x8, 0x7, 0x2, 0x6}, @local, @remote, 0xff000000}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x7, 0x200, 0x5, 0x80000000, 0x6}, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x18, 0x9, 0x4, 0xcf}, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, 0xffffffff}}, @TCA_NAT_PARMS={0x28, 0x1, {{0x7, 0x5, 0xffffffffffffffff, 0x843, 0x6}, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xf5a, 0xa8, 0x7, 0x80000000, 0xa93}, @rand_addr=0x64010100, @multicast1, 0xffffff00}}]}, {0xdf, 0x6, "72f014a060caa862b0abcc77616da8d98bc17790e16a47a46de376248803a6e26a8a1ac4565dbec387350eb15767b4e6c26e0717529a7f034cb22bc7b842ce5ef5a7db47a5c655883a1a23bdeddb8b07bc90cddb8327898804d62ef0f263b0c2502d187855d43dd9946743c9b7e88b3cb62867abf05ef3e4c1410b3ca6e72ad2c521ae7c371729cc291a1b6ff9e314bf1da0b0ec3e13d706e06df6208a99578e741b94fc8f2d499ef635b4baa8abdb8192e5606dd11f18f30ec04e618c356acd006a24d25205da0949b6013581a7692d72cc310fe33ddb62b24ac1"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ife={0xec, 0x13, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0xa}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x20000004, 0x400, 0xc437}, 0x1}}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x7f, 0x1, 0x20000000, 0x3, 0x5}, 0x1}}, @TCA_IFE_DMAC={0xa, 0x3, @random="9a602dae7267"}, @TCA_IFE_SMAC={0xa, 0x4, @multicast}]}, {0x65, 0x6, "a765614f0ef27239f763036a90c612eff809a17832b0a252beb6099b42f93b8e9b7eb47afbc4197422dea58f23a67aa04d14caf8491b5e19b8025fc633777361b6b93c5a8d1dfcd31667c5bf268d909d17d19485ddfa4d42c5bb364cbc6010b2c6"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x7, 0x5}}}}]}]}}, @f_tcindex={{0xc}, {0x4}}]}, 0x35c}, 0x1, 0x0, 0x0, 0x800}, 0x44090)
socket(0x10, 0x3, 0x0)
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0xffffffff}, 0x10)
r8 = socket(0x1e, 0x4, 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r9, &(0x7f0000000180)={0x0, 0xffffffffffffffad, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r10, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0)
setsockopt$packet_tx_ring(r8, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r7, &(0x7f0000000b00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x200088d5)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000480))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000003e80)={&(0x7f0000003e40)='dlm_unlock_start\x00', r5, 0x0, 0x50000000000}, 0x18)
close_range(r0, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x880, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

820.019887ms ago: executing program 2 (id=1049):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00'}, 0x10)
creat(&(0x7f0000000000)='./bus\x00', 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001380), r1)
sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f0000000000)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000010"], 0x24}}, 0x0)

786.487718ms ago: executing program 2 (id=1050):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xe, 0x0, &(0x7f0000000180)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

726.826738ms ago: executing program 2 (id=1051):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000040000000000000000000100000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021800000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000005400038050000080080003400000000244000b802c0001800a0001006c696d69740000001c0002800c000140000000"], 0x104}}, 0x40000)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1a, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket(0x40000000015, 0x5, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc)=<r6=>0x0)
timer_settime(r6, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$getownex(r4, 0x10, &(0x7f00000003c0))
socket$inet_smc(0x2b, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x16, &(0x7f0000000240)={@local, @link_local, @void, {@llc={0x4, {@snap={0xaa, 0x0, 'C', "988b2b"}}}}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext2\x00', &(0x7f0000000740)='./file1\x00', 0x10040, &(0x7f0000000380)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@nouid32}]}, 0xfd, 0x269, &(0x7f0000000780)="$eJzs3U9oHFUcB/Df7B/jJotEvQjiHxARDYR4E7zEi0JAQhARVIiIeJJEiAnesp68eNCzSkDwEkpvTXssvYReWgo9pW0O6aXQhh4aemgPW3Znt2ySDW33b9n5fGCYmbz35r0J832zLMxsAJk1GRGzEZGPiKmIKEZE0lrh7XSZbOxulLYXI6rVL+4m9XrpfqrZbiIiKhHxUUShWba29c3e/Z3P3vtjtfju/1tflwZ1fq3293Y/P/h3/vczcx+uXb56ez6J2Sg3ylrPo5eSNn8rJBGv9KOz50RSGPYIeBoLv56+Vsv9qxHxTj3/xcg1IvvnygsXivHBPye1/evOldcHOVag96rVYu0eWKkCmZOLiHIkuemISLdzuenp9DP89fx47qfllV+mflxeXfph2DMV0CvlSHY/PTd2duJI/m/l0/wDo6scsfvlwuaN2vZBftijAfqm9dv2N9JVLf9T362/H/IPmSP/kF3yD9kl/zACOsyu/EN2dZP/F/s0JmAw3P9hhBWbG5W2xfIP2SX/MKL+a/fU6WHyD9nVmn8AIFuqY8N+AhkYlmHPPwAAAAAAAAAAAAAAAAAAwHEbpe3F5jKoPi/+HbH/SUQU2vWfr/8ecfNt4+P3klq1x5K0WVe+favLA3TpVM+evi511Oqlm73qvzOX3uzPcX87vHviP2d9KaJSqzxTKBy//pLG9de5l59QXvy+yw6e0dG3An781WD7P+rh5nD7n9uJOF+bf2bazT+5eK2+bj//lFtfsdyhnx90eQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG5lEAAAD//4oibec=")
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
bind$802154_raw(r4, &(0x7f0000000000)={0x24, @long={0x3, 0xfffd, {0xaaaaaaaaaaaa0102}}}, 0x14)
socket$inet6_tcp(0xa, 0x1, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200), 0xfffffd9d)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmmsg(r4, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
symlinkat(0x0, 0xffffffffffffffff, 0x0)

462.806503ms ago: executing program 1 (id=1052):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
bind$tipc(r1, 0x0, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r1, 0x10f, 0x88)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000000)=[{0x200000000006, 0x0, 0x2, 0x7ffc0002}]})
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x25, &(0x7f0000000000)={0x1})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x26, &(0x7f0000000380)={0x0, 0x1, 0x103ff, 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r7 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0xffffffff, 0x0, 0x0, 0x4, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}})
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$sock_inet_SIOCSIFFLAGS(r7, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x800})

462.020703ms ago: executing program 4 (id=1053):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
setgroups(0x0, 0x0)

441.586293ms ago: executing program 4 (id=1054):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000002540)={{r2}, &(0x7f00000024c0), &(0x7f0000002500)}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{}, 0x0, &(0x7f0000000040)='%-5lx  \x00'}, 0x20)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r4, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)
r5 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x17, 0x5, 0x2, 0x2000000, 0x8, 0x1, 0x11, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x6, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000a40)={r7, 0x27, 0xe80, 0x0, &(0x7f0000000000)="f8ad1dcc02cb29dcc80032008100", 0x0, 0x4000, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r8}, 0x10)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="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", 0x12d, r5)

341.893735ms ago: executing program 3 (id=1055):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030080e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000040}, 0x24004000)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18}, './file0\x00'})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
mknod(&(0x7f0000000000)='./bus\x00', 0x1000, 0x1)
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0xe0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(r3)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000140)={'veth1_to_team\x00', @link_local})
r4 = socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x19, 0x4, 0x5, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

313.437945ms ago: executing program 3 (id=1056):
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1600000000000000040000000500000000000000", @ANYBLOB='\x00'/16, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000cc21bd0cb7eded9ba7e742192645e20010000000000000000000000000000000000000b1273b186af174d79299789df1de7ce94e98e886514f6ac08afd0791b5591b6c6849f9b7b0b9cd28c0de2c26db9edbe715dfca38b4db68b94402289e0408cd66146122604734d7cabc88ba1e23a8c9df75531d646e197cf1810158f98c92cf0145a0b10b19a89613778f72d381cbb23f147bdfd3b3e04e93d67c8a87d1986c83f090d1a3f7b77ab1b3d04955802efd4a1f68f403fdad3f502c001a57565a7603e7bd81b28427569a98da06111fb58291ab7f04446d6670d9cd4201fdcde4d9a730503eb03d06697b766cd6fe70cf14d40eb139574e6e6eb1459e7b20b0bffecf906effffffff00000000e8ddc0975c42d2db03d4700869a3c5d26727fab10cb468e9aef89c0a68a04137891c8577"], 0x50)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0xfe, 0x0, 0x0, 0xfffffffffffffffc, 0x60020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x2, @perf_bp={&(0x7f0000000080)}, 0x0, 0x3, 0x0, 0x0, 0x2, 0xfffffffc}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x40, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000080)}, 0x10010, 0xffffffffffffdffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
close(r1)
r2 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0xffffffff}, 0x48, 0xffffffffffffffff)
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={0x0, r5}, 0x18)
unshare(0x400)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x1)

161.290798ms ago: executing program 3 (id=1057):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="1200000009000000040000000200000000000000", @ANYRESDEC=r0, @ANYBLOB="0000000000080e00000000000000008d00000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, &(0x7f0000000040)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'})
ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00'})

99.968879ms ago: executing program 3 (id=1058):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000210018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000270000000100000085001b9f6d0000009587ee184676dae38ca4331a1da7c39f55d9547e01f435883efaea734ae727aa2893173fa8745065d5e325590b401d7f252fc7c8830899de1b7f0aa343bd1f38d6360dc12fa387410e07e5ee795decd528cbbb7a1c108013c93db1fd7851e3cbd8b37fcc5817159ea22ab4ebf82888c73831a270d25273e297127f6d75fc17a5bbf1d478aa23a44d24ab7dcbdd8ec5646524262e488170b20ddec6d79ca60bf30c3ba2cd"], &(0x7f0000000100)='GPL\x00', 0x40000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x800)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r3=>0x0})
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000080)={r3, 0x1, 0x6, @multicast}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={0x0, r1}, 0x18)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000200)="d8000000210081044e81f782db44b9040200000000806c010000150010001400feffffff09000d2000000401a80018000a000e4006000000036010fab94dcf5c0468c1d67f6f94007134cf6ee062e1c547cbc7225e6756cfb39b0590b4800089e408e8d8ef52b49816277cf4090000001fb791643a5ee4ce1b14d6d930dfe1d9db22fe7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db701000000eafad95667e006dcdf969b3ef35ce3bb9ad809d561cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d939acd92637429397f632838", 0xd8}], 0x1}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000022007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r6}, 0x10)
process_madvise(0xffffffffffffffff, 0x0, 0x0, 0xf, 0x0)
io_setup(0x3, &(0x7f0000000340))

99.464449ms ago: executing program 0 (id=1059):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x9135}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021bc0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000900003808c000080080003400000000280000b807c000180090001006c617374000000006c000280080001400000000508000140000000090c0002"], 0x140}}, 0x0)

89.255039ms ago: executing program 0 (id=1060):
r0 = socket(0x11, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xe9, 0x4)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="3f011400e0dc14"], 0xdd12}], 0x1}, 0x20040051)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r3 = socket$inet6(0xa, 0x80002, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r4, &(0x7f0000000300)=@file={0x1, './bus\x00'}, 0x6e)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1e0000000000000005000000ff2c7236fe9d70b12e67a0fd7219ad3f3762f48f81ef0492af703b7f9f3acf9e6c5014425e43275f76a8d13ee875f294de840a5a42e15001bc829bea210aeaa5a43eece627d9a110d6f3402ec16e7d9252e847c899a2f8fa9a8ce37fe0"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r6, 0x29, 0x49, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x12, 0xc, &(0x7f0000000400)=ANY=[@ANYRESHEX=r6], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x66, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x18)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
sendto$inet6(r3, 0x0, 0x0, 0x240880c0, &(0x7f0000000280)={0xa, 0xe20, 0x0, @mcast1}, 0x1c)
sendto$inet6(r3, &(0x7f00000009c0)="c7cfcaaa22e10542fca5c0195350f15147657e0bfc59d383a47190db88690e6fedc3040ab5809ae02a54cd429cc3338c5afa0c9dce3f91950d1f567f358ac21154159130e88cbb6c43197813b2f23f3e442f80877490b393408142ebcfea6821f543e5ee9e27032e2b75d78f1b79f5a6bb6f0645e267770ef7e8f3a92148091217450ce8581e54223eeb6486205a209bf1fe854d211c03f8c3140fc3979d824082990d119473d20e94f253c9621fac339560ae46cb24b88bf2d01559bb658e343257b90f233b81bc5c398be3bbddb23a1e", 0xffd6, 0xc001, 0x0, 0xffffffffffffff0c)
setsockopt$inet6_mtu(r3, 0x29, 0x17, &(0x7f0000000640)=0x3, 0x4)
r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r8, 0xffffffffffffffff, 0x0)
unshare(0x24040000)
signalfd(r2, &(0x7f0000000200)={[0x1]}, 0x8)
unshare(0x2c020400)
sendto$inet6(r3, 0x0, 0x156, 0x4010, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r2, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x11, 0x10, &(0x7f0000002e00), &(0x7f0000001000), 0x8, 0xa0, 0x8, 0x0, 0x0}}, 0x10)
sigaltstack(&(0x7f0000000040)={&(0x7f0000000140)=""/127, 0x180000000, 0x7f}, &(0x7f00000001c0)={&(0x7f00000000c0)=""/46, 0x0, 0x2e})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={0xffffffffffffffff, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

65.377849ms ago: executing program 0 (id=1061):
socket$kcm(0x11, 0x200000000000002, 0x300)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2608054c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
pipe2(&(0x7f0000001cc0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',access=', @ANYBLOB='+'])
getsockname$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000200)=0x14)
r4 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000240), 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x11, &(0x7f0000000040)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x7ff}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000100)='GPL\x00', 0x8, 0x7, &(0x7f0000000140)=""/7, 0x40f00, 0x1, '\x00', r3, 0x25, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000280)={0x5, 0x6, 0x2dec, 0x800}, 0x10, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000300)=[{0x0, 0x2, 0x5, 0xa}], 0x10, 0x5, @void, @value}, 0x94)

0s ago: executing program 3 (id=1062):
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext, 0x0, 0xb2, 0x0, 0x0, 0x81, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$binfmt_elf32(0xffffffffffffffff, 0x0, 0x0)
modify_ldt$read(0x0, &(0x7f0000000080)=""/184, 0xb8)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3, 0x0, 0x7}, 0x18)
write(r2, &(0x7f0000000240)="2338dcfa67c78a50095e74401b6cc0914ab28f7554d2f66e4932ccbd9df4aa717439252e20a2196296f5328f0800000000d05807f47d5d5db836f81553dae5", 0xfffffd5f)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000480)={0x0, 0xf, 0xa, 0x6, 0x1a, "607f30ec133d135e"})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x12, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000580)='kfree\x00', r4, 0x0, 0x4}, 0x18)
r5 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r5, 0xc058534b, &(0x7f00000003c0)={0x1000, 0x6, 0x3, 0xcf2b, 0x7fffffff, 0x2})
write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f0000000380)={0xc, 0x8, 0xfa00, {&(0x7f0000001140)}}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000020000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4, 0x0, 0x10001}, 0x18)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
timer_create(0x0, &(0x7f0000000180)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=<r6=>0x0)
timer_settime(r6, 0x1, &(0x7f0000000300)={{0x77359400}, {0x0, 0x989680}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000500)={<r7=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000600)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x3, @loopback, 0x1}, {0xa, 0x0, 0x5, @mcast2}, r7}}, 0x48)
mount_setattr(0xffffffffffffffff, 0x0, 0x8000, 0x0, 0x0)
syz_open_dev$hiddev(&(0x7f0000000000), 0x43, 0x80401)

kernel console output (not intermixed with test programs):

9 code=0x7ffc0000
[   53.905311][ T4573] tipc: Started in network mode
[   53.909695][   T29] audit: type=1326 audit(1744596215.580:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4572 comm="syz.1.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa36489d169 code=0x7ffc0000
[   53.914334][ T4573] tipc: Node identity ac14140f, cluster identity 4711
[   53.925824][ T4573] tipc: New replicast peer: 10.1.1.2
[   53.937705][   T29] audit: type=1326 audit(1744596215.580:2418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4572 comm="syz.1.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36489d169 code=0x7ffc0000
[   53.944492][ T4573] tipc: Enabled bearer <udp:syz0>, priority 10
[   53.949766][   T29] audit: type=1326 audit(1744596215.580:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4572 comm="syz.1.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa36489d169 code=0x7ffc0000
[   54.087245][ T4569] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.142661][ T4569] netlink: 76 bytes leftover after parsing attributes in process `syz.2.357'.
[   54.157665][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.165130][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.172542][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.180547][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.188009][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.195704][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.203139][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.210578][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.218043][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.225604][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.233034][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.240473][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.247884][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.255474][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.256461][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.262868][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.279343][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.287195][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.294653][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.302117][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.309542][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.316961][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.324493][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.332026][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.339452][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.346855][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.354242][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.361716][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.369366][   T36] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   54.438596][   T36] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   54.488191][ T4590] loop2: detected capacity change from 0 to 1024
[   54.499263][ T4592] loop4: detected capacity change from 0 to 512
[   54.558245][ T4592] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   54.568000][ T4590] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.581179][ T4592] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[   54.591294][ T4592] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.366: corrupted in-inode xattr: e_value size too large
[   54.664320][ T4592] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.366: couldn't read orphan inode 15 (err -117)
[   54.716152][ T4592] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.756547][ T4610] loop1: detected capacity change from 0 to 164
[   54.773888][ T4610] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   54.797564][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.827317][ T4610] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   54.851465][ T4610] Symlink component flag not implemented
[   54.857304][ T4610] Symlink component flag not implemented
[   54.869960][ T4610] Symlink component flag not implemented (7)
[   54.876022][ T4610] Symlink component flag not implemented (116)
[   54.938720][   T36] tipc: Node number set to 2886997007
[   54.991034][ T3312] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.006029][ T4618] hub 9-0:1.0: USB hub found
[   55.013150][ T4618] hub 9-0:1.0: 8 ports detected
[   55.052787][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.060416][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.065887][ T4626] loop4: detected capacity change from 0 to 128
[   55.067932][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.082933][ T4626] EXT4-fs: Mount option(s) incompatible with ext2
[   55.083934][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.096874][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.104274][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.111714][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.111822][ T4622] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[   55.119106][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.119133][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.145047][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.152474][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.159944][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.167397][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.176258][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.183691][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.191130][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.198550][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.205955][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.213498][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.220925][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.228341][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.235885][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.243311][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.250743][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.258144][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.265599][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.273064][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.280555][   T36] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[   55.288406][   T36] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   55.322095][ T4632] loop3: detected capacity change from 0 to 128
[   55.329458][ T4632] EXT4-fs: Mount option(s) incompatible with ext2
[   55.352918][ T4635] loop1: detected capacity change from 0 to 1024
[   55.359926][ T4635] EXT4-fs: Ignoring removed nobh option
[   55.365790][ T4635] EXT4-fs: Ignoring removed bh option
[   55.376876][ T4635] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.410012][ T4640] netlink: 24 bytes leftover after parsing attributes in process `syz.0.382'.
[   55.420031][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.499036][ T4642] netlink: 'syz.0.384': attribute type 39 has an invalid length.
[   55.565699][ T4651] unsupported nla_type 52263
[   55.920514][ T4656] random: crng reseeded on system resumption
[   56.056528][ T4661] loop4: detected capacity change from 0 to 164
[   56.063749][ T4661] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   56.075421][ T4661] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   56.083976][ T4661] Symlink component flag not implemented
[   56.089776][ T4661] Symlink component flag not implemented
[   56.095677][ T4661] Symlink component flag not implemented (7)
[   56.101768][ T4661] Symlink component flag not implemented (116)
[   56.139736][ T4665] loop2: detected capacity change from 0 to 128
[   56.146855][ T4665] EXT4-fs: Mount option(s) incompatible with ext2
[   56.206824][ T4668] loop3: detected capacity change from 0 to 164
[   56.214162][ T4668] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   56.227527][ T4668] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   56.236288][ T4668] Symlink component flag not implemented
[   56.241924][ T4668] Symlink component flag not implemented
[   56.247788][ T4668] Symlink component flag not implemented (7)
[   56.253793][ T4668] Symlink component flag not implemented (116)
[   56.431219][ T4673] atomic_op ffff888136dc7128 conn xmit_atomic 0000000000000000
[   56.490223][ T4679] loop1: detected capacity change from 0 to 1024
[   56.498638][ T4679] EXT4-fs: Ignoring removed bh option
[   56.507759][ T4679] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.530951][ T4679] netlink: 76 bytes leftover after parsing attributes in process `syz.1.399'.
[   56.534831][ T4683] x_tables: duplicate underflow at hook 1
[   56.571991][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.616615][ T4685] tipc: Started in network mode
[   56.621578][ T4685] tipc: Node identity ac14140f, cluster identity 4711
[   56.628569][ T4685] tipc: New replicast peer: 255.255.255.255
[   56.634811][ T4685] tipc: Enabled bearer <udp:syz2>, priority 10
[   56.642001][ T4686] SELinux: ebitmap: truncated map
[   56.651449][ T4686] SELinux: failed to load policy
[   56.675786][ T4692] IPv6: NLM_F_CREATE should be specified when creating new route
[   56.691317][ T4692] netlink: 16 bytes leftover after parsing attributes in process `syz.0.402'.
[   56.730380][ T4694] netlink: 216 bytes leftover after parsing attributes in process `syz.0.403'.
[   56.896908][ T4697] netlink: 'syz.0.404': attribute type 13 has an invalid length.
[   56.940714][ T4697] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.947955][ T4697] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.996458][ T4697] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   57.007087][ T4697] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   57.065370][ T4697] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.073802][ T4697] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.082277][ T4697] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.090712][ T4697] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   57.142792][ T4703] netlink: 28 bytes leftover after parsing attributes in process `syz.3.407'.
[   57.151877][ T4704] loop4: detected capacity change from 0 to 1024
[   57.158822][ T4704] EXT4-fs: Ignoring removed bh option
[   57.226401][ T4703] loop3: detected capacity change from 0 to 1024
[   57.233518][ T4703] SELinux: security_context_str_to_sid (unc) failed with errno=-22
[   57.381821][ T4711] xt_hashlimit: max too large, truncated to 1048576
[   57.624860][ T3380] tipc: Node number set to 2886997007
[   57.828836][ T4720] loop3: detected capacity change from 0 to 8192
[   58.103382][ T4704] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   58.118279][ T4736] netlink: 'syz.0.416': attribute type 13 has an invalid length.
[   58.130842][ T4704] netlink: 76 bytes leftover after parsing attributes in process `syz.4.406'.
[   58.168067][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.201476][ T4743] loop1: detected capacity change from 0 to 256
[   58.220224][ T4743] msdos: Unknown parameter 'no'
[   58.247372][ T4751] loop3: detected capacity change from 0 to 164
[   58.255450][ T4751] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   58.267129][ T4751] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   58.276548][ T4751] Symlink component flag not implemented
[   58.282223][ T4751] Symlink component flag not implemented
[   58.288027][ T4751] Symlink component flag not implemented (7)
[   58.294115][ T4751] Symlink component flag not implemented (116)
[   58.324349][ T4757] FAULT_INJECTION: forcing a failure.
[   58.324349][ T4757] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.337616][ T4757] CPU: 1 UID: 0 PID: 4757 Comm: syz.3.423 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   58.337651][ T4757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   58.337664][ T4757] Call Trace:
[   58.337669][ T4757]  <TASK>
[   58.337676][ T4757]  dump_stack_lvl+0xf6/0x150
[   58.337697][ T4757]  dump_stack+0x15/0x1a
[   58.337710][ T4757]  should_fail_ex+0x261/0x270
[   58.337734][ T4757]  should_fail+0xb/0x10
[   58.337812][ T4757]  should_fail_usercopy+0x1a/0x20
[   58.337836][ T4757]  strncpy_from_user+0x25/0x230
[   58.337853][ T4757]  ? getname_flags+0x81/0x3b0
[   58.337871][ T4757]  getname_flags+0xb0/0x3b0
[   58.337957][ T4757]  do_readlinkat+0x74/0x210
[   58.337986][ T4757]  __x64_sys_readlinkat+0x53/0x60
[   58.338006][ T4757]  x64_sys_call+0x2653/0x2e10
[   58.338025][ T4757]  do_syscall_64+0xc9/0x1c0
[   58.338053][ T4757]  ? clear_bhb_loop+0x25/0x80
[   58.338149][ T4757]  ? clear_bhb_loop+0x25/0x80
[   58.338168][ T4757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.338247][ T4757] RIP: 0033:0x7fb469ccd169
[   58.338259][ T4757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   58.338273][ T4757] RSP: 002b:00007fb468337038 EFLAGS: 00000246 ORIG_RAX: 000000000000010b
[   58.338289][ T4757] RAX: ffffffffffffffda RBX: 00007fb469ee5fa0 RCX: 00007fb469ccd169
[   58.338299][ T4757] RDX: 00002000000002c0 RSI: 00002000000001c0 RDI: 0000000000000007
[   58.338308][ T4757] RBP: 00007fb468337090 R08: 0000000000000000 R09: 0000000000000000
[   58.338370][ T4757] R10: 00000000000000c6 R11: 0000000000000246 R12: 0000000000000001
[   58.338453][ T4757] R13: 0000000000000000 R14: 00007fb469ee5fa0 R15: 00007ffc1ea0ad78
[   58.338470][ T4757]  </TASK>
[   58.961863][   T29] kauditd_printk_skb: 294 callbacks suppressed
[   58.961924][   T29] audit: type=1400 audit(1744596220.750:2714): avc:  denied  { mount } for  pid=4771 comm="syz.1.429" name="/" dev="rpc_pipefs" ino=9401 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[   58.994205][   T29] audit: type=1400 audit(1744596220.780:2715): avc:  denied  { unmount } for  pid=4771 comm="syz.1.429" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[   59.075516][ T4777] netlink: 'syz.4.431': attribute type 29 has an invalid length.
[   59.111867][   T29] audit: type=1400 audit(1744596220.900:2716): avc:  denied  { write } for  pid=4779 comm="syz.4.433" path="socket:[9429]" dev="sockfs" ino=9429 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   59.135602][   T29] audit: type=1400 audit(1744596220.930:2717): avc:  denied  { read } for  pid=4779 comm="syz.4.433" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   59.233219][ T4781] netlink: 12 bytes leftover after parsing attributes in process `syz.4.433'.
[   59.281587][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.289128][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.296559][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.304433][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.312048][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.319642][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.327121][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.334519][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.342146][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.349606][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.357171][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.364637][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.372166][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.379876][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.387286][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.394663][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.402083][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.409529][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.417055][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.424450][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.431996][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.439397][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.446857][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.454251][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.461742][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.469358][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.477006][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.484450][ T3384] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   59.492661][ T3384] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   59.607377][ T4799] netlink: 24 bytes leftover after parsing attributes in process `syz.3.439'.
[   59.659879][ T4803] loop3: detected capacity change from 0 to 1024
[   59.667268][ T4803] EXT4-fs: Ignoring removed bh option
[   59.687566][ T4803] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.723772][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.744651][   T29] audit: type=1326 audit(1744596221.530:2718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4806 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb469ccd169 code=0x7ffc0000
[   59.769348][ T4809] netlink: 'syz.1.443': attribute type 1 has an invalid length.
[   59.793465][   T29] audit: type=1326 audit(1744596221.560:2719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4806 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fb469ccd169 code=0x7ffc0000
[   59.816998][   T29] audit: type=1326 audit(1744596221.560:2720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4806 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb469ccd169 code=0x7ffc0000
[   59.840438][   T29] audit: type=1326 audit(1744596221.560:2721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4806 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fb469ccd169 code=0x7ffc0000
[   59.863872][   T29] audit: type=1326 audit(1744596221.560:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4806 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb469ccd169 code=0x7ffc0000
[   59.887300][   T29] audit: type=1326 audit(1744596221.560:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4806 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fb469ccd169 code=0x7ffc0000
[   60.043182][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.050675][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.051114][ T4822] netlink: 16 bytes leftover after parsing attributes in process `syz.1.447'.
[   60.058252][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.076002][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.083434][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.090899][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.098348][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.105835][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.113233][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.120715][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.128171][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.135603][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.143010][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.152671][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.160129][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.167748][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.175160][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.182538][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.189985][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.197414][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.204859][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.212478][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.219935][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.220090][ T4827] loop1: detected capacity change from 0 to 256
[   60.227467][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.241267][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.248715][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.256190][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.263684][ T3384] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[   60.271469][ T3384] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   60.328959][ T4833] atomic_op ffff888119849128 conn xmit_atomic 0000000000000000
[   60.383191][ T4841] random: crng reseeded on system resumption
[   60.974409][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   60.981890][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   60.989362][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.006032][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.013523][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.020976][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.028405][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.035857][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.043305][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.050727][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.058246][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.065672][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.073045][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.080691][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.088122][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.095569][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.102963][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.110428][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.110838][ T4859] netlink: 'syz.3.463': attribute type 13 has an invalid length.
[   61.117858][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.133096][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.140541][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.148073][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.155469][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.162931][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.170363][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.177890][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.185305][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.192771][   T36] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[   61.202834][   T36] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   61.225192][ T4861] capability: warning: `syz.4.465' uses 32-bit capabilities (legacy support in use)
[   61.245020][ T4865] atomic_op ffff888118ebd128 conn xmit_atomic 0000000000000000
[   61.385348][ T4873] FAULT_INJECTION: forcing a failure.
[   61.385348][ T4873] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.398691][ T4873] CPU: 1 UID: 0 PID: 4873 Comm: syz.3.471 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   61.398724][ T4873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   61.398735][ T4873] Call Trace:
[   61.398808][ T4873]  <TASK>
[   61.398816][ T4873]  dump_stack_lvl+0xf6/0x150
[   61.398854][ T4873]  dump_stack+0x15/0x1a
[   61.398874][ T4873]  should_fail_ex+0x261/0x270
[   61.398907][ T4873]  should_fail+0xb/0x10
[   61.398934][ T4873]  should_fail_usercopy+0x1a/0x20
[   61.399003][ T4873]  _copy_from_user+0x1c/0xa0
[   61.399035][ T4873]  kstrtouint_from_user+0x84/0x100
[   61.399061][ T4873]  ? 0xffffffff81000000
[   61.399110][ T4873]  ? selinux_file_permission+0x22d/0x360
[   61.399141][ T4873]  proc_fail_nth_write+0x54/0x160
[   61.399199][ T4873]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   61.399223][ T4873]  vfs_write+0x295/0x950
[   61.399255][ T4873]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   61.399278][ T4873]  ? __fget_files+0x186/0x1c0
[   61.399377][ T4873]  ksys_write+0xeb/0x1b0
[   61.399408][ T4873]  __x64_sys_write+0x42/0x50
[   61.399436][ T4873]  x64_sys_call+0x2a45/0x2e10
[   61.399457][ T4873]  do_syscall_64+0xc9/0x1c0
[   61.399492][ T4873]  ? clear_bhb_loop+0x25/0x80
[   61.399543][ T4873]  ? clear_bhb_loop+0x25/0x80
[   61.399606][ T4873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.399626][ T4873] RIP: 0033:0x7fb469ccbc1f
[   61.399639][ T4873] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   61.399657][ T4873] RSP: 002b:00007fb468337030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   61.399685][ T4873] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb469ccbc1f
[   61.399699][ T4873] RDX: 0000000000000001 RSI: 00007fb4683370a0 RDI: 0000000000000005
[   61.399713][ T4873] RBP: 00007fb468337090 R08: 0000000000000000 R09: 0000000000000000
[   61.399726][ T4873] R10: 0000200000000140 R11: 0000000000000293 R12: 0000000000000001
[   61.399762][ T4873] R13: 0000000000000000 R14: 00007fb469ee5fa0 R15: 00007ffc1ea0ad78
[   61.399783][ T4873]  </TASK>
[   61.664200][ T4884] loop3: detected capacity change from 0 to 8192
[   61.713264][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.721102][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.728650][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.736469][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.743952][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.751385][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.758920][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.759216][ T4890] FAULT_INJECTION: forcing a failure.
[   61.759216][ T4890] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   61.766309][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.766345][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   61.779560][ T4890] CPU: 1 UID: 0 PID: 4890 Comm: syz.3.477 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   61.779594][ T4890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   61.779611][ T4890] Call Trace:
[   61.779619][ T4890]  <TASK>
[   61.779627][ T4890]  dump_stack_lvl+0xf6/0x150
[   61.779659][ T4890]  dump_stack+0x15/0x1a
[   61.779681][ T4890]  should_fail_ex+0x261/0x270
[   61.779717][ T4890]  should_fail_alloc_page+0xfd/0x110
[   61.779758][ T4890]  __alloc_frozen_pages_noprof+0x11d/0x360
[   61.779799][ T4890]  alloc_pages_mpol+0xb6/0x260
[   61.779830][ T4890]  alloc_pages_noprof+0xe8/0x130
[   61.779860][ T4890]  __pmd_alloc+0x4d/0x440
[   61.779883][ T4890]  copy_page_range+0x374c/0x3a20
[   61.779918][ T4890]  ? mod_objcg_state+0x3f9/0x530
[   61.779953][ T4890]  ? mas_wr_store_type+0x6da/0xb50
[   61.779996][ T4890]  ? mas_store+0x546/0x740
[   61.780035][ T4890]  copy_mm+0xabc/0x1360
[   61.780084][ T4890]  copy_process+0xcfc/0x1f60
[   61.780123][ T4890]  kernel_clone+0x168/0x5d0
[   61.780159][ T4890]  __x64_sys_clone+0xe9/0x120
[   61.780203][ T4890]  x64_sys_call+0x2dc9/0x2e10
[   61.780230][ T4890]  do_syscall_64+0xc9/0x1c0
[   61.780267][ T4890]  ? clear_bhb_loop+0x25/0x80
[   61.780292][ T4890]  ? clear_bhb_loop+0x25/0x80
[   61.780332][ T4890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.780357][ T4890] RIP: 0033:0x7fb469ccd169
[   61.780376][ T4890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.780396][ T4890] RSP: 002b:00007fb468336fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   61.780419][ T4890] RAX: ffffffffffffffda RBX: 00007fb469ee5fa0 RCX: 00007fb469ccd169
[   61.780434][ T4890] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000400
[   61.780456][ T4890] RBP: 00007fb468337090 R08: 0000000000000000 R09: 0000000000000000
[   61.780470][ T4890] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   61.780484][ T4890] R13: 0000000000000000 R14: 00007fb469ee5fa0 R15: 00007ffc1ea0ad78
[   61.780509][ T4890]  </TASK>
[   62.000086][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.007494][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.014907][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.022279][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.029958][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.037497][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.044944][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.052324][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.059751][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.067216][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.074635][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.082042][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.089483][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.096870][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.104307][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.111807][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.119213][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.126601][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.134058][ T3355] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[   62.142295][ T3355] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   62.166790][ T4897] atomic_op ffff888119849928 conn xmit_atomic 0000000000000000
[   62.181307][ T4899] siw: device registration error -23
[   62.290202][ T4905] loop1: detected capacity change from 0 to 164
[   62.298811][ T4905] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   62.312210][ T4905] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   62.320856][ T4905] Symlink component flag not implemented
[   62.326569][ T4905] Symlink component flag not implemented
[   62.332783][ T4905] Symlink component flag not implemented (7)
[   62.338894][ T4905] Symlink component flag not implemented (116)
[   62.367926][ T4911] netlink: 'syz.1.487': attribute type 29 has an invalid length.
[   62.428270][ T4917] loop1: detected capacity change from 0 to 1024
[   62.435748][ T4917] EXT4-fs: Ignoring removed bh option
[   62.450134][ T4917] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.478671][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.486119][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.493723][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.505356][ T4924] loop4: detected capacity change from 0 to 8192
[   62.522148][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.533299][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.540841][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.548282][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.555745][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.563201][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.570628][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.578049][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.581375][ T4928] atomic_op ffff8881194c4528 conn xmit_atomic 0000000000000000
[   62.585446][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.585470][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.585490][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.585604][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.623615][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.631106][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.631568][ T4930] loop1: detected capacity change from 0 to 1024
[   62.638519][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.638547][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.659310][ T4930] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.659641][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.679684][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.687121][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.694568][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.701994][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.709432][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.716891][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.724342][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.731834][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.739245][ T3355] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[   62.757636][ T3355] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   62.818345][ T4942] FAULT_INJECTION: forcing a failure.
[   62.818345][ T4942] name failslab, interval 1, probability 0, space 0, times 0
[   62.831019][ T4942] CPU: 1 UID: 0 PID: 4942 Comm: syz.3.498 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   62.831051][ T4942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   62.831065][ T4942] Call Trace:
[   62.831121][ T4942]  <TASK>
[   62.831129][ T4942]  dump_stack_lvl+0xf6/0x150
[   62.831157][ T4942]  dump_stack+0x15/0x1a
[   62.831255][ T4942]  should_fail_ex+0x261/0x270
[   62.831286][ T4942]  should_failslab+0x8f/0xb0
[   62.831335][ T4942]  __kmalloc_cache_noprof+0x55/0x320
[   62.831362][ T4942]  ? netdevice_event+0x2b8/0x620
[   62.831389][ T4942]  netdevice_event+0x2b8/0x620
[   62.831415][ T4942]  ? __pfx_del_netdev_ips+0x10/0x10
[   62.831438][ T4942]  ? __pfx_pass_all_filter+0x10/0x10
[   62.831518][ T4942]  ? __pfx_netdevice_event+0x10/0x10
[   62.831539][ T4942]  raw_notifier_call_chain+0x6f/0x1d0
[   62.831570][ T4942]  ? mutex_is_locked+0x12/0x30
[   62.831607][ T4942]  call_netdevice_notifiers_info+0xae/0x100
[   62.831644][ T4942]  unregister_netdevice_many_notify+0xd12/0x1600
[   62.831691][ T4942]  unregister_netdevice_queue+0x1fd/0x230
[   62.831745][ T4942]  __tun_detach+0x7de/0xae0
[   62.831775][ T4942]  tun_chr_close+0x58/0xf0
[   62.831794][ T4942]  ? __pfx_tun_chr_close+0x10/0x10
[   62.831814][ T4942]  __fput+0x2ac/0x640
[   62.831838][ T4942]  fput_close_sync+0xc0/0x110
[   62.831879][ T4942]  __x64_sys_close+0x55/0xe0
[   62.831903][ T4942]  x64_sys_call+0x262b/0x2e10
[   62.831927][ T4942]  do_syscall_64+0xc9/0x1c0
[   62.831960][ T4942]  ? clear_bhb_loop+0x25/0x80
[   62.832002][ T4942]  ? clear_bhb_loop+0x25/0x80
[   62.832027][ T4942]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.832051][ T4942] RIP: 0033:0x7fb469ccd169
[   62.832068][ T4942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   62.832094][ T4942] RSP: 002b:00007fb468337038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   62.832116][ T4942] RAX: ffffffffffffffda RBX: 00007fb469ee5fa0 RCX: 00007fb469ccd169
[   62.832177][ T4942] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[   62.832191][ T4942] RBP: 00007fb468337090 R08: 0000000000000000 R09: 0000000000000000
[   62.832204][ T4942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   62.832260][ T4942] R13: 0000000000000000 R14: 00007fb469ee5fa0 R15: 00007ffc1ea0ad78
[   62.832278][ T4942]  </TASK>
[   63.075407][ T4945] netlink: 'syz.0.499': attribute type 29 has an invalid length.
[   63.231439][ T4948] vlan2: entered allmulticast mode
[   63.481467][ T4953] loop3: detected capacity change from 0 to 2048
[   63.519156][ T4953] No source specified
[   63.567816][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.593973][ T4956] netlink: 8 bytes leftover after parsing attributes in process `syz.2.503'.
[   63.628219][ T4961] netlink: 12 bytes leftover after parsing attributes in process `syz.3.505'.
[   63.680450][ T4961] loop3: detected capacity change from 0 to 128
[   63.703622][ T4961] EXT4-fs: Mount option(s) incompatible with ext2
[   63.721813][ T4959] loop1: detected capacity change from 0 to 8192
[   63.728391][ T4967] FAULT_INJECTION: forcing a failure.
[   63.728391][ T4967] name failslab, interval 1, probability 0, space 0, times 0
[   63.741150][ T4967] CPU: 0 UID: 0 PID: 4967 Comm: syz.4.507 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   63.741175][ T4967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   63.741186][ T4967] Call Trace:
[   63.741193][ T4967]  <TASK>
[   63.741248][ T4967]  dump_stack_lvl+0xf6/0x150
[   63.741280][ T4967]  dump_stack+0x15/0x1a
[   63.741301][ T4967]  should_fail_ex+0x261/0x270
[   63.741337][ T4967]  should_failslab+0x8f/0xb0
[   63.741375][ T4967]  __kmalloc_cache_noprof+0x55/0x320
[   63.741447][ T4967]  ? genl_start+0x11e/0x3a0
[   63.741546][ T4967]  genl_start+0x11e/0x3a0
[   63.741585][ T4967]  __netlink_dump_start+0x32a/0x520
[   63.741617][ T4967]  genl_rcv_msg+0x55e/0x6f0
[   63.741663][ T4967]  ? __pfx_nl80211_dump_interface+0x10/0x10
[   63.741724][ T4967]  ? __pfx_genl_start+0x10/0x10
[   63.741851][ T4967]  ? __pfx_genl_dumpit+0x10/0x10
[   63.741888][ T4967]  ? __pfx_genl_done+0x10/0x10
[   63.741931][ T4967]  netlink_rcv_skb+0x12f/0x230
[   63.741976][ T4967]  ? __pfx_genl_rcv_msg+0x10/0x10
[   63.742039][ T4967]  genl_rcv+0x28/0x40
[   63.742213][ T4967]  netlink_unicast+0x605/0x6c0
[   63.742267][ T4967]  netlink_sendmsg+0x609/0x720
[   63.742434][ T4967]  ? __pfx_netlink_sendmsg+0x10/0x10
[   63.742486][ T4967]  __sock_sendmsg+0x140/0x180
[   63.742508][ T4967]  ____sys_sendmsg+0x350/0x4e0
[   63.742544][ T4967]  __sys_sendmsg+0x1a0/0x240
[   63.742596][ T4967]  __x64_sys_sendmsg+0x46/0x50
[   63.742698][ T4967]  x64_sys_call+0x26f3/0x2e10
[   63.742728][ T4967]  do_syscall_64+0xc9/0x1c0
[   63.742766][ T4967]  ? clear_bhb_loop+0x25/0x80
[   63.742793][ T4967]  ? clear_bhb_loop+0x25/0x80
[   63.742836][ T4967]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   63.742863][ T4967] RIP: 0033:0x7f393557d169
[   63.742880][ T4967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   63.742902][ T4967] RSP: 002b:00007f3933be7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   63.742925][ T4967] RAX: ffffffffffffffda RBX: 00007f3935795fa0 RCX: 00007f393557d169
[   63.742940][ T4967] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000007
[   63.742955][ T4967] RBP: 00007f3933be7090 R08: 0000000000000000 R09: 0000000000000000
[   63.742999][ T4967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   63.743014][ T4967] R13: 0000000000000000 R14: 00007f3935795fa0 R15: 00007ffcd10334c8
[   63.743037][ T4967]  </TASK>
[   63.890056][ T4972] loop4: detected capacity change from 0 to 1024
[   64.036811][ T4972] EXT4-fs: Ignoring removed nobh option
[   64.042461][ T4972] EXT4-fs: Ignoring removed bh option
[   64.059173][ T4972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   64.088032][   T29] kauditd_printk_skb: 521 callbacks suppressed
[   64.088048][   T29] audit: type=1400 audit(1744596225.880:3245): avc:  denied  { read write } for  pid=4971 comm="syz.4.508" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   64.100592][ T4972] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[   64.146078][   T29] audit: type=1400 audit(1744596225.880:3246): avc:  denied  { open } for  pid=4971 comm="syz.4.508" path="/127/file1/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   64.169703][   T29] audit: type=1400 audit(1744596225.890:3247): avc:  denied  { connect } for  pid=4971 comm="syz.4.508" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   64.238892][   T29] audit: type=1400 audit(1744596226.030:3248): avc:  denied  { map } for  pid=4971 comm="syz.4.508" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=9778 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   64.267985][   T29] audit: type=1400 audit(1744596226.030:3249): avc:  denied  { read write } for  pid=4971 comm="syz.4.508" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=9778 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[   64.293112][   T29] audit: type=1400 audit(1744596226.060:3250): avc:  denied  { read } for  pid=4971 comm="syz.4.508" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   64.315727][   T29] audit: type=1400 audit(1744596226.060:3251): avc:  denied  { open } for  pid=4971 comm="syz.4.508" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   64.335843][ T4983] FAULT_INJECTION: forcing a failure.
[   64.335843][ T4983] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.352283][ T4983] CPU: 0 UID: 0 PID: 4983 Comm: syz.1.512 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   64.352309][ T4983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   64.352320][ T4983] Call Trace:
[   64.352326][ T4983]  <TASK>
[   64.352332][ T4983]  dump_stack_lvl+0xf6/0x150
[   64.352359][ T4983]  dump_stack+0x15/0x1a
[   64.352378][ T4983]  should_fail_ex+0x261/0x270
[   64.352409][ T4983]  should_fail+0xb/0x10
[   64.352483][ T4983]  should_fail_usercopy+0x1a/0x20
[   64.352593][ T4983]  _copy_from_user+0x1c/0xa0
[   64.352678][ T4983]  copy_msghdr_from_user+0x54/0x2b0
[   64.352723][ T4983]  __sys_sendmsg+0x141/0x240
[   64.352796][ T4983]  __x64_sys_sendmsg+0x46/0x50
[   64.352957][ T4983]  x64_sys_call+0x26f3/0x2e10
[   64.352978][ T4983]  do_syscall_64+0xc9/0x1c0
[   64.353007][ T4983]  ? clear_bhb_loop+0x25/0x80
[   64.353071][ T4983]  ? clear_bhb_loop+0x25/0x80
[   64.353097][ T4983]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   64.353122][ T4983] RIP: 0033:0x7fa36489d169
[   64.353143][ T4983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   64.353160][ T4983] RSP: 002b:00007fa362f07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   64.353177][ T4983] RAX: ffffffffffffffda RBX: 00007fa364ab5fa0 RCX: 00007fa36489d169
[   64.353190][ T4983] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[   64.353204][ T4983] RBP: 00007fa362f07090 R08: 0000000000000000 R09: 0000000000000000
[   64.353215][ T4983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   64.353279][ T4983] R13: 0000000000000000 R14: 00007fa364ab5fa0 R15: 00007fff56a87b28
[   64.353301][ T4983]  </TASK>
[   64.528070][ T4984] netlink: 'syz.2.510': attribute type 29 has an invalid length.
[   64.580509][ T4987] siw: device registration error -23
[   64.590907][ T4987] loop3: detected capacity change from 0 to 256
[   64.596630][   T29] audit: type=1400 audit(1744596226.380:3252): avc:  denied  { setopt } for  pid=4979 comm="syz.0.511" lport=5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   64.618854][ T4987] msdos: Unknown parameter 'no'
[   64.645484][ T4989] atomic_op ffff888119612d28 conn xmit_atomic 0000000000000000
[   64.727470][   T29] audit: type=1326 audit(1744596226.520:3253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4991 comm="syz.2.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   64.764827][   T29] audit: type=1326 audit(1744596226.520:3254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4991 comm="syz.2.515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   64.802678][ T4997] loop1: detected capacity change from 0 to 1024
[   64.815801][ T4997] EXT4-fs: Ignoring removed bh option
[   64.851494][ T5001] netlink: 76 bytes leftover after parsing attributes in process `syz.0.519'.
[   64.863452][ T4997] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   64.892959][ T4997] netlink: 76 bytes leftover after parsing attributes in process `syz.1.517'.
[   65.057700][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.244987][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.295608][ T5016] netlink: 'syz.1.526': attribute type 29 has an invalid length.
[   65.310665][ T5018] IPv6: NLM_F_CREATE should be specified when creating new route
[   65.323076][ T5018] netlink: 16 bytes leftover after parsing attributes in process `syz.4.525'.
[   65.344690][ T5023] atomic_op ffff88811984a128 conn xmit_atomic 0000000000000000
[   65.419438][ T5034] loop3: detected capacity change from 0 to 1024
[   65.426597][ T5029] Restarting kernel threads ... done.
[   65.472079][ T5034] EXT4-fs: Ignoring removed bh option
[   65.495053][ T5040] netlink: 8 bytes leftover after parsing attributes in process `syz.2.534'.
[   65.506180][ T5034] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.564970][ T5032] FAULT_INJECTION: forcing a failure.
[   65.564970][ T5032] name failslab, interval 1, probability 0, space 0, times 0
[   65.578302][ T5032] CPU: 1 UID: 0 PID: 5032 Comm: syz.0.532 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   65.578369][ T5032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   65.578381][ T5032] Call Trace:
[   65.578389][ T5032]  <TASK>
[   65.578404][ T5032]  dump_stack_lvl+0xf6/0x150
[   65.578429][ T5032]  dump_stack+0x15/0x1a
[   65.578486][ T5032]  should_fail_ex+0x261/0x270
[   65.578519][ T5032]  should_failslab+0x8f/0xb0
[   65.578620][ T5032]  __kmalloc_noprof+0xad/0x410
[   65.578641][ T5032]  ? io_cqring_event_overflow+0x5a/0x300
[   65.578668][ T5032]  io_cqring_event_overflow+0x5a/0x300
[   65.578698][ T5032]  io_req_cqe_overflow+0x89/0xb0
[   65.578731][ T5032]  __io_submit_flush_completions+0x361/0xa00
[   65.578765][ T5032]  ctx_flush_and_put+0xa9/0x170
[   65.578855][ T5032]  ? __pfx_io_waitid_cb+0x10/0x10
[   65.578876][ T5032]  io_handle_tw_list+0x1af/0x1d0
[   65.578904][ T5032]  tctx_task_work_run+0x6e/0x1c0
[   65.578973][ T5032]  tctx_task_work+0x44/0x80
[   65.579002][ T5032]  task_work_run+0x13c/0x1b0
[   65.579033][ T5032]  get_signal+0xee2/0x1080
[   65.579081][ T5032]  ? kernel_wait4+0x194/0x1d0
[   65.579112][ T5032]  ? __pfx_child_wait_callback+0x10/0x10
[   65.579150][ T5032]  arch_do_signal_or_restart+0x9a/0x4b0
[   65.579270][ T5032]  syscall_exit_to_user_mode+0x62/0x120
[   65.579304][ T5032]  do_syscall_64+0xd6/0x1c0
[   65.579337][ T5032]  ? clear_bhb_loop+0x25/0x80
[   65.579410][ T5032]  ? clear_bhb_loop+0x25/0x80
[   65.579430][ T5032]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   65.579455][ T5032] RIP: 0033:0x7f3bc14cd169
[   65.579472][ T5032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   65.579493][ T5032] RSP: 002b:00007f3bbfb2f038 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[   65.579552][ T5032] RAX: fffffffffffffff2 RBX: 00007f3bc16e5fa0 RCX: 00007f3bc14cd169
[   65.579567][ T5032] RDX: 0000000000000008 RSI: 9999999999999999 RDI: 0000000000000000
[   65.579580][ T5032] RBP: 00007f3bbfb2f090 R08: 0000000000000000 R09: 0000000000000000
[   65.579595][ T5032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   65.579608][ T5032] R13: 0000000000000000 R14: 00007f3bc16e5fa0 R15: 00007ffd37dcf938
[   65.579632][ T5032]  </TASK>
[   65.809858][ T5034] netlink: 76 bytes leftover after parsing attributes in process `syz.3.531'.
[   65.866584][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   66.071188][ T5058] netlink: 'syz.4.539': attribute type 29 has an invalid length.
[   66.112286][ T5062] netlink: 76 bytes leftover after parsing attributes in process `syz.0.540'.
[   66.165848][ T5074] netlink: 16 bytes leftover after parsing attributes in process `syz.0.545'.
[   66.186940][ T5076] netlink: 28 bytes leftover after parsing attributes in process `syz.4.546'.
[   66.237302][ T5080] hsr_slave_1 (unregistering): left promiscuous mode
[   66.312456][ T5086] atomic_op ffff888119849528 conn xmit_atomic 0000000000000000
[   66.434217][ T5103] @: renamed from vlan0 (while UP)
[   66.451481][ T5103] geneve0: entered allmulticast mode
[   66.491454][ T5113] atomic_op ffff888119849128 conn xmit_atomic 0000000000000000
[   66.630323][ T5131] FAULT_INJECTION: forcing a failure.
[   66.630323][ T5131] name failslab, interval 1, probability 0, space 0, times 0
[   66.643049][ T5131] CPU: 0 UID: 0 PID: 5131 Comm: syz.4.572 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   66.643083][ T5131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   66.643098][ T5131] Call Trace:
[   66.643105][ T5131]  <TASK>
[   66.643113][ T5131]  dump_stack_lvl+0xf6/0x150
[   66.643140][ T5131]  dump_stack+0x15/0x1a
[   66.643158][ T5131]  should_fail_ex+0x261/0x270
[   66.643192][ T5131]  should_failslab+0x8f/0xb0
[   66.643278][ T5131]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   66.643302][ T5131]  ? __alloc_skb+0x10d/0x320
[   66.643326][ T5131]  __alloc_skb+0x10d/0x320
[   66.643365][ T5131]  netlink_ack+0xf1/0x4f0
[   66.643393][ T5131]  ? ref_tracker_free+0x3b8/0x420
[   66.643471][ T5131]  netlink_rcv_skb+0x19f/0x230
[   66.643557][ T5131]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   66.643616][ T5131]  rtnetlink_rcv+0x1c/0x30
[   66.643648][ T5131]  netlink_unicast+0x605/0x6c0
[   66.643671][ T5131]  netlink_sendmsg+0x609/0x720
[   66.643756][ T5131]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.643781][ T5131]  __sock_sendmsg+0x140/0x180
[   66.643797][ T5131]  ____sys_sendmsg+0x350/0x4e0
[   66.643825][ T5131]  __sys_sendmsg+0x1a0/0x240
[   66.643868][ T5131]  __x64_sys_sendmsg+0x46/0x50
[   66.643949][ T5131]  x64_sys_call+0x26f3/0x2e10
[   66.643968][ T5131]  do_syscall_64+0xc9/0x1c0
[   66.643999][ T5131]  ? clear_bhb_loop+0x25/0x80
[   66.644055][ T5131]  ? clear_bhb_loop+0x25/0x80
[   66.644079][ T5131]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.644166][ T5131] RIP: 0033:0x7f393557d169
[   66.644259][ T5131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.644278][ T5131] RSP: 002b:00007f3933be7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.644295][ T5131] RAX: ffffffffffffffda RBX: 00007f3935795fa0 RCX: 00007f393557d169
[   66.644305][ T5131] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[   66.644315][ T5131] RBP: 00007f3933be7090 R08: 0000000000000000 R09: 0000000000000000
[   66.644325][ T5131] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   66.644337][ T5131] R13: 0000000000000000 R14: 00007f3935795fa0 R15: 00007ffcd10334c8
[   66.644400][ T5131]  </TASK>
[   67.026411][ T5144] netlink: 'syz.4.576': attribute type 13 has an invalid length.
[   67.029682][ T5146] syzkaller0: entered allmulticast mode
[   67.089870][ T5144] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.097153][ T5144] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.190721][ T5144] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.202645][ T5144] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   67.239701][ T5144] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.248198][ T5144] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.256671][ T5144] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.265059][ T5144] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.349740][ T5152] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   67.392010][ T5154] syz.4.580: attempt to access beyond end of device
[   67.392010][ T5154] loop9: rw=0, sector=0, nr_sectors = 1 limit=0
[   67.408444][ T5154] FAT-fs (loop9): unable to read boot sector
[   67.447811][ T5156] FAULT_INJECTION: forcing a failure.
[   67.447811][ T5156] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   67.460989][ T5156] CPU: 0 UID: 0 PID: 5156 Comm: syz.4.581 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   67.461037][ T5156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   67.461048][ T5156] Call Trace:
[   67.461053][ T5156]  <TASK>
[   67.461059][ T5156]  dump_stack_lvl+0xf6/0x150
[   67.461080][ T5156]  dump_stack+0x15/0x1a
[   67.461114][ T5156]  should_fail_ex+0x261/0x270
[   67.461145][ T5156]  should_fail+0xb/0x10
[   67.461257][ T5156]  should_fail_usercopy+0x1a/0x20
[   67.461289][ T5156]  _copy_from_user+0x1c/0xa0
[   67.461355][ T5156]  copy_msghdr_from_user+0x54/0x2b0
[   67.461391][ T5156]  ? __fget_files+0x186/0x1c0
[   67.461411][ T5156]  __sys_sendmsg+0x141/0x240
[   67.461453][ T5156]  __x64_sys_sendmsg+0x46/0x50
[   67.461527][ T5156]  x64_sys_call+0x26f3/0x2e10
[   67.461553][ T5156]  do_syscall_64+0xc9/0x1c0
[   67.461581][ T5156]  ? clear_bhb_loop+0x25/0x80
[   67.461661][ T5156]  ? clear_bhb_loop+0x25/0x80
[   67.461686][ T5156]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.461709][ T5156] RIP: 0033:0x7f393557d169
[   67.461722][ T5156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   67.461738][ T5156] RSP: 002b:00007f3933be7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   67.461755][ T5156] RAX: ffffffffffffffda RBX: 00007f3935795fa0 RCX: 00007f393557d169
[   67.461766][ T5156] RDX: 0000000000000000 RSI: 00002000000012c0 RDI: 0000000000000006
[   67.461779][ T5156] RBP: 00007f3933be7090 R08: 0000000000000000 R09: 0000000000000000
[   67.461847][ T5156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   67.461860][ T5156] R13: 0000000000000000 R14: 00007f3935795fa0 R15: 00007ffcd10334c8
[   67.461882][ T5156]  </TASK>
[   67.857106][ T5145] syzkaller0: left allmulticast mode
[   67.881915][ T5169] loop3: detected capacity change from 0 to 164
[   67.891728][ T5170] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   67.891728][ T5170] The task syz.4.584 (5170) triggered the difference, watch for misbehavior.
[   68.016983][ T5177] netlink: 'syz.0.588': attribute type 39 has an invalid length.
[   68.074477][ T5185] loop3: detected capacity change from 0 to 128
[   68.081548][ T5185] EXT4-fs: Mount option(s) incompatible with ext2
[   68.561245][ T5200] netlink: 'syz.2.597': attribute type 21 has an invalid length.
[   68.964868][ T5215] loop3: detected capacity change from 0 to 1024
[   68.971771][ T5215] EXT4-fs: Ignoring removed bh option
[   68.998212][ T5215] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.038364][ T5215] __nla_validate_parse: 8 callbacks suppressed
[   69.038382][ T5215] netlink: 76 bytes leftover after parsing attributes in process `syz.3.603'.
[   69.075535][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.102474][ T5224] netlink: 16 bytes leftover after parsing attributes in process `syz.0.606'.
[   69.116884][   T29] kauditd_printk_skb: 219 callbacks suppressed
[   69.116899][   T29] audit: type=1400 audit(1744596230.910:3474): avc:  denied  { write } for  pid=5222 comm="syz.4.605" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   69.144847][ T5225] netlink: 16 bytes leftover after parsing attributes in process `syz.4.605'.
[   69.176509][   T29] audit: type=1400 audit(1744596230.970:3475): avc:  denied  { execute_no_trans } for  pid=5228 comm="syz.3.607" path="/115/file0" dev="tmpfs" ino=642 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   69.199903][   T29] audit: type=1400 audit(1744596230.970:3476): avc:  denied  { execute } for  pid=5228 comm="syz.3.607" name="file0" dev="tmpfs" ino=642 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   69.222586][   T29] audit: type=1400 audit(1744596230.980:3477): avc:  denied  { prog_load } for  pid=5232 comm="syz.2.610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   69.241618][   T29] audit: type=1400 audit(1744596230.980:3478): avc:  denied  { bpf } for  pid=5232 comm="syz.2.610" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   69.262125][   T29] audit: type=1400 audit(1744596230.980:3479): avc:  denied  { perfmon } for  pid=5232 comm="syz.2.610" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   69.283100][   T29] audit: type=1400 audit(1744596230.990:3480): avc:  denied  { open } for  pid=5232 comm="syz.2.610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   69.302276][   T29] audit: type=1400 audit(1744596230.990:3481): avc:  denied  { kernel } for  pid=5232 comm="syz.2.610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   69.321614][   T29] audit: type=1400 audit(1744596231.000:3482): avc:  denied  { recv } for  pid=3310 comm="syz-executor" saddr=10.128.0.163 src=30030 daddr=10.128.10.56 dest=35758 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[   69.347298][   T29] audit: type=1400 audit(1744596231.000:3483): avc:  denied  { read write } for  pid=3310 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   69.521857][ T5256] loop3: detected capacity change from 0 to 1024
[   69.530233][ T5256] EXT4-fs: Ignoring removed bh option
[   69.542631][ T5258] netlink: 24 bytes leftover after parsing attributes in process `syz.0.619'.
[   69.558765][ T5256] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   69.595253][ T5260] netlink: 76 bytes leftover after parsing attributes in process `syz.2.620'.
[   69.604868][ T5256] netlink: 76 bytes leftover after parsing attributes in process `syz.3.618'.
[   69.636709][ T5268] FAULT_INJECTION: forcing a failure.
[   69.636709][ T5268] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   69.649967][ T5268] CPU: 0 UID: 0 PID: 5268 Comm: syz.0.623 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   69.650024][ T5268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   69.650035][ T5268] Call Trace:
[   69.650040][ T5268]  <TASK>
[   69.650077][ T5268]  dump_stack_lvl+0xf6/0x150
[   69.650098][ T5268]  dump_stack+0x15/0x1a
[   69.650112][ T5268]  should_fail_ex+0x261/0x270
[   69.650136][ T5268]  should_fail+0xb/0x10
[   69.650157][ T5268]  should_fail_usercopy+0x1a/0x20
[   69.650182][ T5268]  _copy_to_user+0x20/0xa0
[   69.650272][ T5268]  simple_read_from_buffer+0xb2/0x130
[   69.650300][ T5268]  proc_fail_nth_read+0x103/0x140
[   69.650318][ T5268]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   69.650376][ T5268]  vfs_read+0x1b2/0x710
[   69.650398][ T5268]  ? bpf_trace_run2+0x12c/0x1d0
[   69.650424][ T5268]  ? __rcu_read_unlock+0x4e/0x70
[   69.650527][ T5268]  ? __fget_files+0x186/0x1c0
[   69.650546][ T5268]  ksys_read+0xeb/0x1b0
[   69.650571][ T5268]  __x64_sys_read+0x42/0x50
[   69.650595][ T5268]  x64_sys_call+0x2a3b/0x2e10
[   69.650615][ T5268]  do_syscall_64+0xc9/0x1c0
[   69.650693][ T5268]  ? clear_bhb_loop+0x25/0x80
[   69.650712][ T5268]  ? clear_bhb_loop+0x25/0x80
[   69.650748][ T5268]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.650767][ T5268] RIP: 0033:0x7f3bc14cbb7c
[   69.650781][ T5268] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   69.650863][ T5268] RSP: 002b:00007f3bbfb2f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   69.650879][ T5268] RAX: ffffffffffffffda RBX: 00007f3bc16e5fa0 RCX: 00007f3bc14cbb7c
[   69.650891][ T5268] RDX: 000000000000000f RSI: 00007f3bbfb2f0a0 RDI: 0000000000000008
[   69.650902][ T5268] RBP: 00007f3bbfb2f090 R08: 0000000000000000 R09: 0000000000000000
[   69.650913][ T5268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.650924][ T5268] R13: 0000000000000000 R14: 00007f3bc16e5fa0 R15: 00007ffd37dcf938
[   69.650941][ T5268]  </TASK>
[   69.866842][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.870811][ T5273] syz.2.624 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   70.133836][ T5289] netlink: 20 bytes leftover after parsing attributes in process `syz.0.630'.
[   70.214323][ T5301] netlink: 12 bytes leftover after parsing attributes in process `syz.0.637'.
[   70.256487][ T5303] netlink: 76 bytes leftover after parsing attributes in process `syz.2.636'.
[   70.267419][ T5307] FAULT_INJECTION: forcing a failure.
[   70.267419][ T5307] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.267705][ T5309] netlink: 'syz.4.640': attribute type 39 has an invalid length.
[   70.280614][ T5307] CPU: 1 UID: 0 PID: 5307 Comm: syz.3.639 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   70.280653][ T5307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   70.280668][ T5307] Call Trace:
[   70.280675][ T5307]  <TASK>
[   70.280695][ T5307]  dump_stack_lvl+0xf6/0x150
[   70.280723][ T5307]  dump_stack+0x15/0x1a
[   70.280773][ T5307]  should_fail_ex+0x261/0x270
[   70.280805][ T5307]  should_fail+0xb/0x10
[   70.280847][ T5307]  should_fail_usercopy+0x1a/0x20
[   70.280882][ T5307]  _copy_to_user+0x20/0xa0
[   70.280920][ T5307]  bpf_prog_test_run_raw_tp+0x381/0x3c0
[   70.280949][ T5307]  ? __pfx_bpf_prog_test_run_raw_tp+0x10/0x10
[   70.280976][ T5307]  bpf_prog_test_run+0x20e/0x3a0
[   70.281047][ T5307]  __sys_bpf+0x440/0x800
[   70.281147][ T5307]  __x64_sys_bpf+0x43/0x50
[   70.281179][ T5307]  x64_sys_call+0x23da/0x2e10
[   70.281211][ T5307]  do_syscall_64+0xc9/0x1c0
[   70.281245][ T5307]  ? clear_bhb_loop+0x25/0x80
[   70.281269][ T5307]  ? clear_bhb_loop+0x25/0x80
[   70.281294][ T5307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.281317][ T5307] RIP: 0033:0x7fb469ccd169
[   70.281334][ T5307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.281422][ T5307] RSP: 002b:00007fb468337038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   70.281443][ T5307] RAX: ffffffffffffffda RBX: 00007fb469ee5fa0 RCX: 00007fb469ccd169
[   70.281456][ T5307] RDX: 000000000000000c RSI: 0000200000000080 RDI: 000000000000000a
[   70.281537][ T5307] RBP: 00007fb468337090 R08: 0000000000000000 R09: 0000000000000000
[   70.281550][ T5307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.281563][ T5307] R13: 0000000000000000 R14: 00007fb469ee5fa0 R15: 00007ffc1ea0ad78
[   70.281584][ T5307]  </TASK>
[   70.558459][ T5326] FAULT_INJECTION: forcing a failure.
[   70.558459][ T5326] name failslab, interval 1, probability 0, space 0, times 0
[   70.571261][ T5326] CPU: 1 UID: 0 PID: 5326 Comm: syz.4.648 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   70.571302][ T5326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   70.571315][ T5326] Call Trace:
[   70.571322][ T5326]  <TASK>
[   70.571329][ T5326]  dump_stack_lvl+0xf6/0x150
[   70.571412][ T5326]  dump_stack+0x15/0x1a
[   70.571431][ T5326]  should_fail_ex+0x261/0x270
[   70.571460][ T5326]  should_failslab+0x8f/0xb0
[   70.571537][ T5326]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   70.571558][ T5326]  ? set_task_ioprio+0x16a/0x260
[   70.571642][ T5326]  set_task_ioprio+0x16a/0x260
[   70.571671][ T5326]  __se_sys_ioprio_set+0x30d/0x580
[   70.571691][ T5326]  __x64_sys_ioprio_set+0x43/0x50
[   70.571773][ T5326]  x64_sys_call+0x163a/0x2e10
[   70.571797][ T5326]  do_syscall_64+0xc9/0x1c0
[   70.571827][ T5326]  ? clear_bhb_loop+0x25/0x80
[   70.571849][ T5326]  ? clear_bhb_loop+0x25/0x80
[   70.571959][ T5326]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   70.571983][ T5326] RIP: 0033:0x7f393557d169
[   70.571998][ T5326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.572018][ T5326] RSP: 002b:00007f3933be7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fb
[   70.572037][ T5326] RAX: ffffffffffffffda RBX: 00007f3935795fa0 RCX: 00007f393557d169
[   70.572128][ T5326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[   70.572138][ T5326] RBP: 00007f3933be7090 R08: 0000000000000000 R09: 0000000000000000
[   70.572174][ T5326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   70.572186][ T5326] R13: 0000000000000000 R14: 00007f3935795fa0 R15: 00007ffcd10334c8
[   70.572204][ T5326]  </TASK>
[   70.581029][ T5329] loop3: detected capacity change from 0 to 128
[   70.755191][ T5329] EXT4-fs: Mount option(s) incompatible with ext2
[   70.824932][ T5337] netlink: 'syz.1.653': attribute type 39 has an invalid length.
[   70.892851][ T5344] netlink: 'syz.4.654': attribute type 13 has an invalid length.
[   70.936309][ T5346] IPv6: NLM_F_CREATE should be specified when creating new route
[   70.947986][ T5346] netlink: 16 bytes leftover after parsing attributes in process `syz.2.656'.
[   71.053256][ T5356] loop4: detected capacity change from 0 to 8192
[   71.227734][ T5375] netlink: 'syz.4.668': attribute type 13 has an invalid length.
[   71.491612][ T5393] loop3: detected capacity change from 0 to 8192
[   71.672977][ T5420] loop3: detected capacity change from 0 to 128
[   71.680403][ T5420] EXT4-fs: Mount option(s) incompatible with ext2
[   71.863189][ T5433] loop4: detected capacity change from 0 to 8192
[   71.938129][ T5445] atomic_op ffff8881196db928 conn xmit_atomic 0000000000000000
[   71.983136][ T5453] IPv6: NLM_F_CREATE should be specified when creating new route
[   72.056345][ T5460] loop1: detected capacity change from 0 to 256
[   72.063612][ T5460] msdos: Unknown parameter 'no'
[   72.432392][ T5482] atomic_op ffff888119849928 conn xmit_atomic 0000000000000000
[   72.513615][ T5486] IPv6: NLM_F_CREATE should be specified when creating new route
[   72.570651][ T5490] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.714' sets config #0
[   72.651383][ T5503] siw: device registration error -23
[   72.659279][ T5503] loop3: detected capacity change from 0 to 256
[   72.666210][ T5503] msdos: Unknown parameter 'no'
[   72.736277][ T5507] netlink: 'syz.1.720': attribute type 39 has an invalid length.
[   72.759336][ T5509] atomic_op ffff888119848528 conn xmit_atomic 0000000000000000
[   72.803235][ T5513] loop4: detected capacity change from 0 to 128
[   72.810366][ T5513] EXT4-fs: Mount option(s) incompatible with ext2
[   72.833110][ T5517] FAULT_INJECTION: forcing a failure.
[   72.833110][ T5517] name failslab, interval 1, probability 0, space 0, times 0
[   72.845855][ T5517] CPU: 0 UID: 0 PID: 5517 Comm: syz.1.725 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   72.845888][ T5517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   72.845903][ T5517] Call Trace:
[   72.845910][ T5517]  <TASK>
[   72.845919][ T5517]  dump_stack_lvl+0xf6/0x150
[   72.845945][ T5517]  dump_stack+0x15/0x1a
[   72.846011][ T5517]  should_fail_ex+0x261/0x270
[   72.846067][ T5517]  should_failslab+0x8f/0xb0
[   72.846096][ T5517]  __kvmalloc_node_noprof+0x12c/0x520
[   72.846143][ T5517]  ? alloc_fdtable+0xa5/0x1b0
[   72.846219][ T5517]  ? __kmalloc_cache_noprof+0x22b/0x320
[   72.846249][ T5517]  alloc_fdtable+0xa5/0x1b0
[   72.846288][ T5517]  dup_fd+0x508/0x580
[   72.846320][ T5517]  copy_files+0x98/0xe0
[   72.846421][ T5517]  copy_process+0xc60/0x1f60
[   72.846448][ T5517]  ? copy_clone_args_from_user+0x413/0x4b0
[   72.846482][ T5517]  kernel_clone+0x168/0x5d0
[   72.846512][ T5517]  ? __se_sys_clone3+0xed/0x200
[   72.846617][ T5517]  __se_sys_clone3+0x1c6/0x200
[   72.846668][ T5517]  __x64_sys_clone3+0x31/0x40
[   72.846700][ T5517]  x64_sys_call+0x11e9/0x2e10
[   72.846793][ T5517]  do_syscall_64+0xc9/0x1c0
[   72.846829][ T5517]  ? clear_bhb_loop+0x25/0x80
[   72.846855][ T5517]  ? clear_bhb_loop+0x25/0x80
[   72.846882][ T5517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.846940][ T5517] RIP: 0033:0x7fa36489d169
[   72.846958][ T5517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.846980][ T5517] RSP: 002b:00007fa362f06f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[   72.847002][ T5517] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007fa36489d169
[   72.847018][ T5517] RDX: 00007fa362f06f20 RSI: 0000000000000058 RDI: 00007fa362f06f20
[   72.847032][ T5517] RBP: 00007fa362f07090 R08: 0000000000000000 R09: 0000000000000058
[   72.847047][ T5517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.847076][ T5517] R13: 0000000000000000 R14: 00007fa364ab5fa0 R15: 00007fff56a87b28
[   72.847098][ T5517]  </TASK>
[   73.133654][ T5527] loop1: detected capacity change from 0 to 164
[   73.159305][ T5527] iso9660: Corrupted directory entry in block 4 of inode 1792
[   73.183540][ T5530] loop3: detected capacity change from 0 to 164
[   73.232646][ T5530] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   73.258189][ T5530] FAULT_INJECTION: forcing a failure.
[   73.258189][ T5530] name failslab, interval 1, probability 0, space 0, times 0
[   73.270943][ T5530] CPU: 1 UID: 0 PID: 5530 Comm: syz.3.728 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   73.270969][ T5530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   73.271012][ T5530] Call Trace:
[   73.271017][ T5530]  <TASK>
[   73.271023][ T5530]  dump_stack_lvl+0xf6/0x150
[   73.271046][ T5530]  dump_stack+0x15/0x1a
[   73.271061][ T5530]  should_fail_ex+0x261/0x270
[   73.271088][ T5530]  should_failslab+0x8f/0xb0
[   73.271141][ T5530]  kmem_cache_alloc_node_noprof+0x5c/0x340
[   73.271168][ T5530]  ? __alloc_skb+0x10d/0x320
[   73.271196][ T5530]  __alloc_skb+0x10d/0x320
[   73.271235][ T5530]  pfkey_sendmsg+0x10f/0x950
[   73.271259][ T5530]  ? avc_has_perm+0xd6/0x150
[   73.271349][ T5530]  ? selinux_socket_sendmsg+0x18a/0x1c0
[   73.271384][ T5530]  ? __pfx_pfkey_sendmsg+0x10/0x10
[   73.271476][ T5530]  __sock_sendmsg+0x140/0x180
[   73.271495][ T5530]  ____sys_sendmsg+0x350/0x4e0
[   73.271549][ T5530]  __sys_sendmsg+0x1a0/0x240
[   73.271600][ T5530]  __x64_sys_sendmsg+0x46/0x50
[   73.271657][ T5530]  x64_sys_call+0x26f3/0x2e10
[   73.271680][ T5530]  do_syscall_64+0xc9/0x1c0
[   73.271712][ T5530]  ? clear_bhb_loop+0x25/0x80
[   73.271737][ T5530]  ? clear_bhb_loop+0x25/0x80
[   73.271763][ T5530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.271856][ T5530] RIP: 0033:0x7fb469ccd169
[   73.271874][ T5530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.271895][ T5530] RSP: 002b:00007fb46824d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   73.271913][ T5530] RAX: ffffffffffffffda RBX: 00007fb469ee6080 RCX: 00007fb469ccd169
[   73.271930][ T5530] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000009
[   73.271941][ T5530] RBP: 00007fb46824d090 R08: 0000000000000000 R09: 0000000000000000
[   73.272026][ T5530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.272038][ T5530] R13: 0000000000000000 R14: 00007fb469ee6080 R15: 00007ffc1ea0ad78
[   73.272060][ T5530]  </TASK>
[   73.513972][ T5542] FAULT_INJECTION: forcing a failure.
[   73.513972][ T5542] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.527148][ T5542] CPU: 1 UID: 0 PID: 5542 Comm: syz.1.734 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   73.527180][ T5542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   73.527220][ T5542] Call Trace:
[   73.527226][ T5542]  <TASK>
[   73.527233][ T5542]  dump_stack_lvl+0xf6/0x150
[   73.527256][ T5542]  dump_stack+0x15/0x1a
[   73.527293][ T5542]  should_fail_ex+0x261/0x270
[   73.527383][ T5542]  should_fail+0xb/0x10
[   73.527412][ T5542]  should_fail_usercopy+0x1a/0x20
[   73.527446][ T5542]  _copy_from_user+0x1c/0xa0
[   73.527490][ T5542]  copy_bpf_fprog_from_user+0xe1/0x260
[   73.527517][ T5542]  fanout_set_data+0x173/0x330
[   73.527609][ T5542]  packet_setsockopt+0x6a3/0xfe0
[   73.527640][ T5542]  ? __pfx_packet_setsockopt+0x10/0x10
[   73.527673][ T5542]  __sys_setsockopt+0x187/0x200
[   73.527702][ T5542]  __x64_sys_setsockopt+0x66/0x80
[   73.527747][ T5542]  x64_sys_call+0x2a09/0x2e10
[   73.527930][ T5542]  do_syscall_64+0xc9/0x1c0
[   73.527969][ T5542]  ? clear_bhb_loop+0x25/0x80
[   73.528006][ T5542]  ? clear_bhb_loop+0x25/0x80
[   73.528031][ T5542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.528055][ T5542] RIP: 0033:0x7fa36489d169
[   73.528072][ T5542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.528168][ T5542] RSP: 002b:00007fa362f07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   73.528190][ T5542] RAX: ffffffffffffffda RBX: 00007fa364ab5fa0 RCX: 00007fa36489d169
[   73.528205][ T5542] RDX: 0000000000000016 RSI: 0000000000000107 RDI: 0000000000000005
[   73.528218][ T5542] RBP: 00007fa362f07090 R08: 0000000000000010 R09: 0000000000000000
[   73.528232][ T5542] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[   73.528246][ T5542] R13: 0000000000000000 R14: 00007fa364ab5fa0 R15: 00007fff56a87b28
[   73.528268][ T5542]  </TASK>
[   73.540289][ T5544] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.736' sets config #0
[   73.687461][ T5550] random: crng reseeded on system resumption
[   73.864849][ T5562] loop4: detected capacity change from 0 to 164
[   73.888515][ T5564] netlink: 'syz.1.743': attribute type 3 has an invalid length.
[   73.899726][ T5564] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   73.919853][ T5562] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   74.004098][ T5569] loop1: detected capacity change from 0 to 8192
[   74.026721][ T5569] syz.1.745: attempt to access beyond end of device
[   74.026721][ T5569] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[   74.050081][ T5569] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[   74.057980][ T5569] FAT-fs (loop1): Filesystem has been set read-only
[   74.071079][ T5569] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[   74.089887][ T5569] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1)
[   74.151343][ T5582] loop1: detected capacity change from 0 to 128
[   74.167424][ T5582] EXT4-fs: Mount option(s) incompatible with ext2
[   74.233531][   T29] kauditd_printk_skb: 717 callbacks suppressed
[   74.233589][   T29] audit: type=1326 audit(1744596236.020:4201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5581 comm="syz.1.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36489d169 code=0x7ffc0000
[   74.269310][ T5589] siw: device registration error -23
[   74.275874][   T29] audit: type=1326 audit(1744596236.020:4202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5581 comm="syz.1.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7fa36489d169 code=0x7ffc0000
[   74.299491][   T29] audit: type=1326 audit(1744596236.020:4203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5581 comm="syz.1.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36489d169 code=0x7ffc0000
[   74.322835][   T29] audit: type=1326 audit(1744596236.020:4204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5581 comm="syz.1.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa36489d169 code=0x7ffc0000
[   74.355086][ T5591] random: crng reseeded on system resumption
[   74.407606][   T29] audit: type=1326 audit(1744596236.200:4205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5590 comm="syz.4.753" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f393557d169 code=0x0
[   74.478160][ T5596] __nla_validate_parse: 10 callbacks suppressed
[   74.478172][ T5596] netlink: 12 bytes leftover after parsing attributes in process `syz.4.754'.
[   74.498790][ T5596] loop4: detected capacity change from 0 to 128
[   74.505853][ T5596] EXT4-fs: Mount option(s) incompatible with ext2
[   74.560893][   T29] audit: type=1326 audit(1744596236.350:4206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5599 comm="syz.2.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   74.584353][   T29] audit: type=1326 audit(1744596236.350:4207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5599 comm="syz.2.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   74.613202][ T5602] netlink: 12 bytes leftover after parsing attributes in process `syz.0.757'.
[   74.622735][   T29] audit: type=1326 audit(1744596236.400:4208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5599 comm="syz.2.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   74.646131][   T29] audit: type=1326 audit(1744596236.400:4209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5599 comm="syz.2.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f55fbfcd1a3 code=0x7ffc0000
[   74.669306][   T29] audit: type=1326 audit(1744596236.400:4210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5599 comm="syz.2.756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f55fbfcbc1f code=0x7ffc0000
[   74.970667][ T5625] siw: device registration error -23
[   74.978930][ T5625] loop3: detected capacity change from 0 to 256
[   74.985920][ T5625] msdos: Unknown parameter 'no'
[   75.006706][ T5627] atomic_op ffff88811984a928 conn xmit_atomic 0000000000000000
[   75.087973][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.095516][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.102908][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.110567][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.118139][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.125780][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.133361][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.140829][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.148276][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.155877][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.163337][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.170790][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.178206][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.187693][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.195147][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.202539][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.210038][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.217541][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.224992][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.232526][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.239939][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.247367][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.255048][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.260341][ T5642] loop3: detected capacity change from 0 to 164
[   75.262574][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.276181][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.276711][ T5642] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   75.283615][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.299345][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.306907][ T3355] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[   75.308140][ T5642] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   75.318196][ T3355] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   75.335983][ T5642] Symlink component flag not implemented
[   75.341790][ T5642] Symlink component flag not implemented
[   75.351381][ T5642] Symlink component flag not implemented (7)
[   75.357435][ T5642] Symlink component flag not implemented (116)
[   75.407346][ T5650] netlink: 16 bytes leftover after parsing attributes in process `syz.3.777'.
[   75.434372][ T5652] netlink: 76 bytes leftover after parsing attributes in process `syz.4.778'.
[   75.493222][ T5655] atomic_op ffff8881196db128 conn xmit_atomic 0000000000000000
[   75.545963][ T5662] netlink: 'syz.0.780': attribute type 13 has an invalid length.
[   75.560789][ T5666] netlink: 'syz.4.784': attribute type 5 has an invalid length.
[   75.590488][ T5668] can0: slcan on ttyS3.
[   75.627880][ T5670] loop1: detected capacity change from 0 to 164
[   75.635011][ T5670] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   75.645742][ T5667] can0 (unregistered): slcan off ttyS3.
[   75.647571][ T5670] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   75.674282][ T5670] Symlink component flag not implemented
[   75.679996][ T5670] Symlink component flag not implemented
[   75.687259][ T5670] Symlink component flag not implemented (7)
[   75.693356][ T5670] Symlink component flag not implemented (116)
[   75.717593][ T5676] netlink: 16 bytes leftover after parsing attributes in process `syz.0.789'.
[   75.748750][ T5682] netlink: 12 bytes leftover after parsing attributes in process `syz.3.790'.
[   75.779773][ T5682] loop3: detected capacity change from 0 to 128
[   75.786742][ T5688] atomic_op ffff8881196db128 conn xmit_atomic 0000000000000000
[   75.798004][ T5682] EXT4-fs: Mount option(s) incompatible with ext2
[   76.179896][ T5716] netlink: 'syz.1.806': attribute type 3 has an invalid length.
[   76.200344][ T5716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.806'.
[   76.214994][ T5716] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   76.356504][ T5728] loop4: detected capacity change from 0 to 512
[   76.370961][ T5728] EXT4-fs: Ignoring removed oldalloc option
[   76.396802][ T5731] random: crng reseeded on system resumption
[   76.445133][ T5728] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.812: Parent and EA inode have the same ino 15
[   76.486846][ T5728] EXT4-fs (loop4): Remounting filesystem read-only
[   76.493514][ T5728] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   76.506532][ T5728] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -30)
[   76.536171][ T5728] EXT4-fs (loop4): 1 orphan inode deleted
[   76.545695][ T5728] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.600086][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.679054][ T5752] loop3: detected capacity change from 0 to 8192
[   76.698478][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.705979][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.713382][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.724414][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.731928][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.739521][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.739603][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.739625][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.762697][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.770116][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.777711][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.785167][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.792561][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.800334][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.807814][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.815306][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.822773][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.830240][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.834453][ T5763] netlink: 76 bytes leftover after parsing attributes in process `syz.3.825'.
[   76.837724][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.854126][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.861553][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.868949][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.876400][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.883858][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.891432][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.898826][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.906235][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.913698][ T3355] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[   76.921876][ T3355] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   76.955115][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   76.962613][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   76.970092][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   76.978918][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   76.986496][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   76.993970][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.001389][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.008804][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.016267][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.023716][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.031191][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.038682][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.046152][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.053715][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.061122][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.068540][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.075997][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.083367][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.090791][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.098229][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.105710][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.113092][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.120479][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.127862][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.135766][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.143196][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.150585][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.157982][ T3380] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[   77.166103][ T3380] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   77.197730][ T5773] FAULT_INJECTION: forcing a failure.
[   77.197730][ T5773] name failslab, interval 1, probability 0, space 0, times 0
[   77.210424][ T5773] CPU: 1 UID: 0 PID: 5773 Comm: syz.4.830 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   77.210456][ T5773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   77.210490][ T5773] Call Trace:
[   77.210497][ T5773]  <TASK>
[   77.210504][ T5773]  dump_stack_lvl+0xf6/0x150
[   77.210532][ T5773]  dump_stack+0x15/0x1a
[   77.210550][ T5773]  should_fail_ex+0x261/0x270
[   77.210582][ T5773]  should_failslab+0x8f/0xb0
[   77.210660][ T5773]  kmem_cache_alloc_noprof+0x59/0x340
[   77.210765][ T5773]  ? security_file_alloc+0x32/0x100
[   77.210790][ T5773]  security_file_alloc+0x32/0x100
[   77.210812][ T5773]  init_file+0x5e/0x1e0
[   77.210839][ T5773]  alloc_empty_file+0x8e/0x200
[   77.210934][ T5773]  alloc_file_pseudo+0xcb/0x160
[   77.210959][ T5773]  __shmem_file_setup+0x1bb/0x1f0
[   77.210995][ T5773]  shmem_file_setup+0x3b/0x50
[   77.211030][ T5773]  __se_sys_memfd_create+0x2e1/0x5a0
[   77.211138][ T5773]  __x64_sys_memfd_create+0x31/0x40
[   77.211258][ T5773]  x64_sys_call+0x1163/0x2e10
[   77.211283][ T5773]  do_syscall_64+0xc9/0x1c0
[   77.211324][ T5773]  ? clear_bhb_loop+0x25/0x80
[   77.211427][ T5773]  ? clear_bhb_loop+0x25/0x80
[   77.211520][ T5773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.211545][ T5773] RIP: 0033:0x7f393557d169
[   77.211562][ T5773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.211609][ T5773] RSP: 002b:00007f3933be6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   77.211631][ T5773] RAX: ffffffffffffffda RBX: 000000000000044a RCX: 00007f393557d169
[   77.211646][ T5773] RDX: 00007f3933be6ef0 RSI: 0000000000000000 RDI: 00007f39355ff32c
[   77.211660][ T5773] RBP: 0000200000000400 R08: 00007f3933be6bb7 R09: 00007f3933be6e40
[   77.211674][ T5773] R10: 000000000000000a R11: 0000000000000202 R12: 00002000000001c0
[   77.211736][ T5773] R13: 00007f3933be6ef0 R14: 00007f3933be6eb0 R15: 0000200000000040
[   77.211758][ T5773]  </TASK>
[   77.495146][ T5779] netlink: 16 bytes leftover after parsing attributes in process `syz.4.833'.
[   77.504182][ T5780] netlink: 96 bytes leftover after parsing attributes in process `syz.3.829'.
[   77.615242][ T5786] loop1: detected capacity change from 0 to 8192
[   77.670405][ T5797] random: crng reseeded on system resumption
[   77.788988][ T5805] loop1: detected capacity change from 0 to 256
[   77.796133][ T5805] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   77.872619][ T5816] loop4: detected capacity change from 0 to 256
[   77.889370][ T5820] loop1: detected capacity change from 0 to 1024
[   77.911654][ T5820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.958947][ T5820] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.850: Allocating blocks 497-513 which overlap fs metadata
[   77.997023][ T5830] netlink: 'syz.4.853': attribute type 39 has an invalid length.
[   78.045126][ T5820] EXT4-fs (loop1): pa ffff88810654e7e0: logic 16, phys. 145, len 23
[   78.053234][ T5820] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[   78.064583][ T5820] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[   78.076802][ T5820] EXT4-fs (loop1): This should not happen!! Data will be lost
[   78.076802][ T5820] 
[   78.086612][ T5820] EXT4-fs (loop1): Total free blocks count 0
[   78.092690][ T5820] EXT4-fs (loop1): Free/Dirty block details
[   78.098639][ T5820] EXT4-fs (loop1): free_blocks=16
[   78.103729][ T5820] EXT4-fs (loop1): dirty_blocks=0
[   78.108781][ T5820] EXT4-fs (loop1): Block reservation details
[   78.114796][ T5820] EXT4-fs (loop1): i_reserved_data_blocks=0
[   78.122292][ T5838] siw: device registration error -23
[   78.130758][ T5838] loop3: detected capacity change from 0 to 256
[   78.137525][ T5838] msdos: Unknown parameter 'no'
[   78.189355][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.195904][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.202041][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.212150][ T5848] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   78.219504][ T5851] atomic_op ffff8881189b3928 conn xmit_atomic 0000000000000000
[   78.223923][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.234112][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.243169][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.250397][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.256891][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.263523][ T5848] xfrm0 speed is unknown, defaulting to 1000
[   78.304975][ T5859] loop1: detected capacity change from 0 to 8192
[   78.670402][ T5887] netlink: 'syz.3.877': attribute type 29 has an invalid length.
[   78.714878][ T5891] netlink: 'syz.1.876': attribute type 13 has an invalid length.
[   78.742135][ T5890] loop3: detected capacity change from 0 to 8192
[   78.757771][ T5895] vlan2: entered allmulticast mode
[   78.809506][ T5897] loop3: detected capacity change from 0 to 764
[   78.817048][ T5897] iso9660: Unknown parameter '/dev/snd/seq'
[   78.877820][ T5904] syzkaller0: entered promiscuous mode
[   78.883342][ T5904] syzkaller0: entered allmulticast mode
[   78.910539][ T5904] FAULT_INJECTION: forcing a failure.
[   78.910539][ T5904] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.923667][ T5904] CPU: 1 UID: 0 PID: 5904 Comm: syz.1.883 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   78.923732][ T5904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   78.923746][ T5904] Call Trace:
[   78.923752][ T5904]  <TASK>
[   78.923759][ T5904]  dump_stack_lvl+0xf6/0x150
[   78.923783][ T5904]  dump_stack+0x15/0x1a
[   78.923851][ T5904]  should_fail_ex+0x261/0x270
[   78.923882][ T5904]  should_fail+0xb/0x10
[   78.923907][ T5904]  should_fail_usercopy+0x1a/0x20
[   78.923958][ T5904]  _copy_from_user+0x1c/0xa0
[   78.924056][ T5904]  copy_msghdr_from_user+0x54/0x2b0
[   78.924090][ T5904]  ? __fget_files+0x186/0x1c0
[   78.924145][ T5904]  do_recvmmsg+0x24d/0x6e0
[   78.924192][ T5904]  __x64_sys_recvmmsg+0xe4/0x170
[   78.924221][ T5904]  x64_sys_call+0x1b90/0x2e10
[   78.924319][ T5904]  do_syscall_64+0xc9/0x1c0
[   78.924352][ T5904]  ? clear_bhb_loop+0x25/0x80
[   78.924376][ T5904]  ? clear_bhb_loop+0x25/0x80
[   78.924404][ T5904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.924450][ T5904] RIP: 0033:0x7fa36489d169
[   78.924479][ T5904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.924500][ T5904] RSP: 002b:00007fa362f07038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   78.924520][ T5904] RAX: ffffffffffffffda RBX: 00007fa364ab5fa0 RCX: 00007fa36489d169
[   78.924582][ T5904] RDX: 0000000000000001 RSI: 0000200000005140 RDI: 0000000000000009
[   78.924596][ T5904] RBP: 00007fa362f07090 R08: 0000000000000000 R09: 0000000000000000
[   78.924609][ T5904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.924660][ T5904] R13: 0000000000000000 R14: 00007fa364ab5fa0 R15: 00007fff56a87b28
[   78.924681][ T5904]  </TASK>
[   79.177836][ T5916] netlink: 'syz.2.888': attribute type 29 has an invalid length.
[   79.268246][ T5927] FAULT_INJECTION: forcing a failure.
[   79.268246][ T5927] name failslab, interval 1, probability 0, space 0, times 0
[   79.281259][ T5927] CPU: 1 UID: 0 PID: 5927 Comm: syz.4.892 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   79.281290][ T5927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   79.281302][ T5927] Call Trace:
[   79.281308][ T5927]  <TASK>
[   79.281314][ T5927]  dump_stack_lvl+0xf6/0x150
[   79.281338][ T5927]  dump_stack+0x15/0x1a
[   79.281354][ T5927]  should_fail_ex+0x261/0x270
[   79.281412][ T5927]  should_failslab+0x8f/0xb0
[   79.281442][ T5927]  __kmalloc_noprof+0xad/0x410
[   79.281538][ T5927]  ? genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[   79.281575][ T5927]  genl_family_rcv_msg_attrs_parse+0x75/0x1a0
[   79.281610][ T5927]  ? __rcu_read_unlock+0x34/0x70
[   79.281638][ T5927]  genl_start+0xe7/0x3a0
[   79.281673][ T5927]  __netlink_dump_start+0x32a/0x520
[   79.281698][ T5927]  genl_rcv_msg+0x55e/0x6f0
[   79.281775][ T5927]  ? __pfx_ethnl_default_start+0x10/0x10
[   79.281801][ T5927]  ? __pfx_ethnl_default_dumpit+0x10/0x10
[   79.281839][ T5927]  ? __pfx_ethnl_default_done+0x10/0x10
[   79.281865][ T5927]  ? __pfx_genl_start+0x10/0x10
[   79.281968][ T5927]  ? __pfx_genl_dumpit+0x10/0x10
[   79.281997][ T5927]  ? __pfx_genl_done+0x10/0x10
[   79.282030][ T5927]  netlink_rcv_skb+0x12f/0x230
[   79.282124][ T5927]  ? __pfx_genl_rcv_msg+0x10/0x10
[   79.282165][ T5927]  genl_rcv+0x28/0x40
[   79.282192][ T5927]  netlink_unicast+0x605/0x6c0
[   79.282233][ T5927]  netlink_sendmsg+0x609/0x720
[   79.282268][ T5927]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.282293][ T5927]  __sock_sendmsg+0x140/0x180
[   79.282311][ T5927]  ____sys_sendmsg+0x350/0x4e0
[   79.282341][ T5927]  __sys_sendmsg+0x1a0/0x240
[   79.282419][ T5927]  __x64_sys_sendmsg+0x46/0x50
[   79.282446][ T5927]  x64_sys_call+0x26f3/0x2e10
[   79.282467][ T5927]  do_syscall_64+0xc9/0x1c0
[   79.282497][ T5927]  ? clear_bhb_loop+0x25/0x80
[   79.282552][ T5927]  ? clear_bhb_loop+0x25/0x80
[   79.282605][ T5927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.282625][ T5927] RIP: 0033:0x7f393557d169
[   79.282639][ T5927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.282671][ T5927] RSP: 002b:00007f3933be7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.282689][ T5927] RAX: ffffffffffffffda RBX: 00007f3935795fa0 RCX: 00007f393557d169
[   79.282701][ T5927] RDX: 0000000000000000 RSI: 0000200000001ac0 RDI: 0000000000000005
[   79.282712][ T5927] RBP: 00007f3933be7090 R08: 0000000000000000 R09: 0000000000000000
[   79.282723][ T5927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.282734][ T5927] R13: 0000000000000000 R14: 00007f3935795fa0 R15: 00007ffcd10334c8
[   79.282753][ T5927]  </TASK>
[   79.585422][ T5933] FAULT_INJECTION: forcing a failure.
[   79.585422][ T5933] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.598613][ T5933] CPU: 0 UID: 0 PID: 5933 Comm: syz.1.893 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   79.598653][ T5933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   79.598666][ T5933] Call Trace:
[   79.598672][ T5933]  <TASK>
[   79.598678][ T5933]  dump_stack_lvl+0xf6/0x150
[   79.598744][ T5933]  dump_stack+0x15/0x1a
[   79.598759][ T5933]  should_fail_ex+0x261/0x270
[   79.598781][ T5933]  should_fail+0xb/0x10
[   79.598801][ T5933]  should_fail_usercopy+0x1a/0x20
[   79.598830][ T5933]  strncpy_from_user+0x25/0x230
[   79.598853][ T5933]  strncpy_from_bpfptr+0x38/0x60
[   79.598962][ T5933]  bpf_prog_load+0x8c8/0x10e0
[   79.598996][ T5933]  __sys_bpf+0x533/0x800
[   79.599044][ T5933]  __x64_sys_bpf+0x43/0x50
[   79.599063][ T5933]  x64_sys_call+0x23da/0x2e10
[   79.599097][ T5933]  do_syscall_64+0xc9/0x1c0
[   79.599176][ T5933]  ? clear_bhb_loop+0x25/0x80
[   79.599199][ T5933]  ? clear_bhb_loop+0x25/0x80
[   79.599221][ T5933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.599306][ T5933] RIP: 0033:0x7fa36489d169
[   79.599321][ T5933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   79.599340][ T5933] RSP: 002b:00007fa362f07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   79.599358][ T5933] RAX: ffffffffffffffda RBX: 00007fa364ab5fa0 RCX: 00007fa36489d169
[   79.599368][ T5933] RDX: 0000000000000094 RSI: 0000200000000600 RDI: 0000000000000005
[   79.599378][ T5933] RBP: 00007fa362f07090 R08: 0000000000000000 R09: 0000000000000000
[   79.599388][ T5933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.599398][ T5933] R13: 0000000000000000 R14: 00007fa364ab5fa0 R15: 00007fff56a87b28
[   79.599494][ T5933]  </TASK>
[   79.602131][ T5935] loop4: detected capacity change from 0 to 128
[   79.626937][ T5934] random: crng reseeded on system resumption
[   79.654993][ T5935] EXT4-fs: Mount option(s) incompatible with ext2
[   79.808621][   T29] kauditd_printk_skb: 500 callbacks suppressed
[   79.808716][   T29] audit: type=1326 audit(1744596241.600:4711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5932 comm="syz.0.896" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3bc14cd169 code=0x0
[   79.814658][ T5937] siw: device registration error -23
[   79.861894][ T5937] xfrm0 speed is unknown, defaulting to 1000
[   79.869278][ T5940] __nla_validate_parse: 8 callbacks suppressed
[   79.869307][ T5940] netlink: 76 bytes leftover after parsing attributes in process `syz.1.898'.
[   79.920669][   T29] audit: type=1326 audit(1744596241.710:4712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5931 comm="syz.4.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f393557d169 code=0x7ffc0000
[   79.923474][ T5946] netlink: 76 bytes leftover after parsing attributes in process `syz.1.899'.
[   79.949713][   T29] audit: type=1326 audit(1744596241.740:4713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5931 comm="syz.4.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f393557d169 code=0x7ffc0000
[   79.977061][   T29] audit: type=1326 audit(1744596241.740:4714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5931 comm="syz.4.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f393557d169 code=0x7ffc0000
[   80.000457][   T29] audit: type=1326 audit(1744596241.740:4715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5931 comm="syz.4.895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f393557d169 code=0x7ffc0000
[   80.004691][ T5948] netlink: 16 bytes leftover after parsing attributes in process `syz.3.900'.
[   80.062733][ T5952] usb usb1: usbfs: process 5952 (syz.1.902) did not claim interface 0 before use
[   80.096172][ T5954] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[   80.112035][   T29] audit: type=1400 audit(1744596241.900:4716): avc:  denied  { bind } for  pid=5953 comm="syz.1.903" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   80.133243][   T29] audit: type=1400 audit(1744596241.900:4717): avc:  denied  { setopt } for  pid=5953 comm="syz.1.903" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   80.168947][ T5958] netlink: 'syz.2.905': attribute type 3 has an invalid length.
[   80.178670][ T5958] netlink: 8 bytes leftover after parsing attributes in process `syz.2.905'.
[   80.180190][ T5962] netlink: 76 bytes leftover after parsing attributes in process `syz.3.907'.
[   80.188046][ T5963] netlink: 'syz.1.903': attribute type 10 has an invalid length.
[   80.196791][ T5958] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   80.204092][ T5963] netlink: 40 bytes leftover after parsing attributes in process `syz.1.903'.
[   80.224018][ T5963] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.232408][ T5963] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.253461][ T5963] team0: Failed to send port change of device geneve1 via netlink (err -105)
[   80.264895][ T5963] team0: Failed to send options change via netlink (err -105)
[   80.272473][ T5963] team0: Port device geneve1 added
[   80.299877][ T5954] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.336008][ T5971] netlink: 76 bytes leftover after parsing attributes in process `syz.2.911'.
[   80.357587][ T5954] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.378219][ T5973] netlink: 16 bytes leftover after parsing attributes in process `syz.2.912'.
[   80.407540][ T5976] netlink: 'syz.2.913': attribute type 39 has an invalid length.
[   80.439066][   T29] audit: type=1400 audit(1744596242.230:4718): avc:  denied  { connect } for  pid=5977 comm="syz.2.914" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   80.460575][   T29] audit: type=1326 audit(1744596242.230:4719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5977 comm="syz.2.914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   80.483918][   T29] audit: type=1326 audit(1744596242.230:4720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5977 comm="syz.2.914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   80.538633][ T5954] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.553427][ T5954] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.565867][ T5954] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.577222][ T5954] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.587235][ T5980] netlink: 20 bytes leftover after parsing attributes in process `syz.4.915'.
[   80.636679][ T5990] netlink: 'syz.2.918': attribute type 13 has an invalid length.
[   80.686043][ T5998] netlink: 16 bytes leftover after parsing attributes in process `syz.3.923'.
[   80.700335][ T5999] netlink: 'syz.0.920': attribute type 13 has an invalid length.
[   80.729613][ T6002] loop4: detected capacity change from 0 to 128
[   80.736828][ T6002] EXT4-fs: Mount option(s) incompatible with ext2
[   80.854609][ T6011] random: crng reseeded on system resumption
[   81.744657][ T6029] netlink: 'syz.2.933': attribute type 13 has an invalid length.
[   81.916470][ T6043] loop3: detected capacity change from 0 to 128
[   81.923201][ T6043] EXT4-fs: Mount option(s) incompatible with ext2
[   82.350214][ T6059] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   82.382790][ T6061] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[   82.655580][ T6075] tipc: Enabled bearer <udp:syz2>, priority 10
[   82.662602][ T6075] tipc: Enabled bearer <eth:team0>, priority 0
[   82.975291][ T6108] loop4: detected capacity change from 0 to 128
[   82.983962][ T6108] EXT4-fs: Mount option(s) incompatible with ext2
[   83.377059][ T6143] loop1: detected capacity change from 0 to 164
[   83.384453][ T6143] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   83.397878][ T6143] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   83.406922][ T6143] Symlink component flag not implemented
[   83.412838][ T6143] Symlink component flag not implemented
[   83.419412][ T6143] Symlink component flag not implemented (7)
[   83.425439][ T6143] Symlink component flag not implemented (116)
[   83.450336][ T6147] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[   83.456879][ T6147] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   83.464465][ T6147] vhci_hcd vhci_hcd.0: Device attached
[   83.472301][ T6146] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(8)
[   83.478818][ T6146] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   83.486622][ T6146] vhci_hcd vhci_hcd.0: Device attached
[   83.493049][ T6146] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(10)
[   83.499673][ T6146] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   83.507997][ T6146] vhci_hcd vhci_hcd.0: Device attached
[   83.524377][ T6152] vhci_hcd: connection closed
[   83.524453][ T6148] vhci_hcd: connection closed
[   83.524484][ T6150] vhci_hcd: connection closed
[   83.533012][   T41] vhci_hcd: stop threads
[   83.543674][   T41] vhci_hcd: release socket
[   83.548154][   T41] vhci_hcd: disconnect device
[   83.553306][   T41] vhci_hcd: stop threads
[   83.557671][   T41] vhci_hcd: release socket
[   83.562178][   T41] vhci_hcd: disconnect device
[   83.568753][   T41] vhci_hcd: stop threads
[   83.573026][   T41] vhci_hcd: release socket
[   83.577510][   T41] vhci_hcd: disconnect device
[   83.791359][ T6164] FAULT_INJECTION: forcing a failure.
[   83.791359][ T6164] name failslab, interval 1, probability 0, space 0, times 0
[   83.804157][ T6164] CPU: 0 UID: 0 PID: 6164 Comm: syz.3.989 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   83.804187][ T6164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   83.804201][ T6164] Call Trace:
[   83.804208][ T6164]  <TASK>
[   83.804214][ T6164]  dump_stack_lvl+0xf6/0x150
[   83.804238][ T6164]  dump_stack+0x15/0x1a
[   83.804256][ T6164]  should_fail_ex+0x261/0x270
[   83.804402][ T6164]  should_failslab+0x8f/0xb0
[   83.804430][ T6164]  __kmalloc_cache_noprof+0x55/0x320
[   83.804454][ T6164]  ? inet6_dump_fib+0x187/0x700
[   83.804484][ T6164]  inet6_dump_fib+0x187/0x700
[   83.804513][ T6164]  ? __pfx_inet6_dump_fib+0x10/0x10
[   83.804572][ T6164]  rtnl_dump_all+0x1ab/0x240
[   83.804609][ T6164]  ? __pfx_rtnl_dump_all+0x10/0x10
[   83.804642][ T6164]  rtnl_dumpit+0x6c/0x130
[   83.804684][ T6164]  netlink_dump+0x3a6/0x810
[   83.804714][ T6164]  __netlink_dump_start+0x433/0x520
[   83.804746][ T6164]  ? __pfx_rtnl_dump_all+0x10/0x10
[   83.804776][ T6164]  rtnetlink_rcv_msg+0x5ad/0x740
[   83.804826][ T6164]  ? __pfx_rtnl_dump_all+0x10/0x10
[   83.804887][ T6164]  ? __pfx_rtnl_dumpit+0x10/0x10
[   83.804919][ T6164]  ? __pfx_rtnl_dump_all+0x10/0x10
[   83.805009][ T6164]  netlink_rcv_skb+0x12f/0x230
[   83.805091][ T6164]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   83.805180][ T6164]  rtnetlink_rcv+0x1c/0x30
[   83.805209][ T6164]  netlink_unicast+0x605/0x6c0
[   83.805230][ T6164]  netlink_sendmsg+0x609/0x720
[   83.805283][ T6164]  ? __pfx_netlink_sendmsg+0x10/0x10
[   83.805386][ T6164]  __sock_sendmsg+0x140/0x180
[   83.805401][ T6164]  sock_write_iter+0x186/0x1c0
[   83.805431][ T6164]  vfs_write+0x79b/0x950
[   83.805453][ T6164]  ? __pfx_sock_write_iter+0x10/0x10
[   83.805482][ T6164]  ksys_write+0xeb/0x1b0
[   83.805560][ T6164]  __x64_sys_write+0x42/0x50
[   83.805583][ T6164]  x64_sys_call+0x2a45/0x2e10
[   83.805644][ T6164]  do_syscall_64+0xc9/0x1c0
[   83.805667][ T6164]  ? clear_bhb_loop+0x25/0x80
[   83.805684][ T6164]  ? clear_bhb_loop+0x25/0x80
[   83.805700][ T6164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.805782][ T6164] RIP: 0033:0x7fb469ccd169
[   83.805792][ T6164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.805804][ T6164] RSP: 002b:00007fb468337038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   83.805891][ T6164] RAX: ffffffffffffffda RBX: 00007fb469ee5fa0 RCX: 00007fb469ccd169
[   83.805900][ T6164] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000003
[   83.805908][ T6164] RBP: 00007fb468337090 R08: 0000000000000000 R09: 0000000000000000
[   83.805917][ T6164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.805925][ T6164] R13: 0000000000000000 R14: 00007fb469ee5fa0 R15: 00007ffc1ea0ad78
[   83.805945][ T6164]  </TASK>
[   84.203824][ T6183] validate_nla: 2 callbacks suppressed
[   84.203847][ T6183] netlink: 'syz.0.997': attribute type 29 has an invalid length.
[   84.243051][ T6191] loop4: detected capacity change from 0 to 1024
[   84.268802][ T6191] EXT4-fs: Ignoring removed orlov option
[   84.279801][ T6191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.323909][ T3303] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.544165][ T6229] loop1: detected capacity change from 0 to 256
[   84.555498][ T6229] msdos: Bad value for 'gid'
[   84.560155][ T6229] msdos: Bad value for 'gid'
[   84.569624][ T6231] FAULT_INJECTION: forcing a failure.
[   84.569624][ T6231] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   84.582935][ T6231] CPU: 0 UID: 0 PID: 6231 Comm: syz.4.1015 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   84.583029][ T6231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   84.583071][ T6231] Call Trace:
[   84.583078][ T6231]  <TASK>
[   84.583085][ T6231]  dump_stack_lvl+0xf6/0x150
[   84.583114][ T6231]  dump_stack+0x15/0x1a
[   84.583134][ T6231]  should_fail_ex+0x261/0x270
[   84.583168][ T6231]  should_fail_alloc_page+0xfd/0x110
[   84.583215][ T6231]  __alloc_frozen_pages_noprof+0x11d/0x360
[   84.583247][ T6231]  alloc_pages_mpol+0xb6/0x260
[   84.583349][ T6231]  vma_alloc_folio_noprof+0x19c/0x300
[   84.583377][ T6231]  handle_mm_fault+0xdda/0x2e80
[   84.583410][ T6231]  ? __rcu_read_lock+0x36/0x50
[   84.583441][ T6231]  ? __pte_offset_map_lock+0x1d3/0x290
[   84.583498][ T6231]  __get_user_pages+0xf4e/0x2340
[   84.583540][ T6231]  __gup_longterm_locked+0x943/0xfb0
[   84.583620][ T6231]  ? selinux_ptrace_access_check+0x106/0x120
[   84.583673][ T6231]  ? down_read+0x173/0x4c0
[   84.583701][ T6231]  ? __ptrace_may_access+0x2cb/0x350
[   84.583729][ T6231]  pin_user_pages_remote+0x81/0xc0
[   84.583754][ T6231]  process_vm_rw+0x4c2/0x8a0
[   84.583795][ T6231]  ? kstrtouint+0x7b/0xc0
[   84.583868][ T6231]  ? ksys_write+0x180/0x1b0
[   84.583896][ T6231]  __x64_sys_process_vm_writev+0x7a/0x90
[   84.583918][ T6231]  x64_sys_call+0xaf3/0x2e10
[   84.583937][ T6231]  do_syscall_64+0xc9/0x1c0
[   84.584028][ T6231]  ? clear_bhb_loop+0x25/0x80
[   84.584051][ T6231]  ? clear_bhb_loop+0x25/0x80
[   84.584074][ T6231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.584140][ T6231] RIP: 0033:0x7f393557d169
[   84.584227][ T6231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.584247][ T6231] RSP: 002b:00007f3933be7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000137
[   84.584267][ T6231] RAX: ffffffffffffffda RBX: 00007f3935795fa0 RCX: 00007f393557d169
[   84.584281][ T6231] RDX: 0000000000000001 RSI: 0000200000001c80 RDI: 000000000000022b
[   84.584294][ T6231] RBP: 00007f3933be7090 R08: 0000000000000001 R09: 0000000000000000
[   84.584363][ T6231] R10: 0000200000001d80 R11: 0000000000000246 R12: 0000000000000002
[   84.584376][ T6231] R13: 0000000000000000 R14: 00007f3935795fa0 R15: 00007ffcd10334c8
[   84.584398][ T6231]  </TASK>
[   84.921135][ T6241] netlink: 'syz.2.1018': attribute type 3 has an invalid length.
[   84.942442][ T6241] __nla_validate_parse: 12 callbacks suppressed
[   84.942460][ T6241] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1018'.
[   84.959300][ T6241] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[   84.971809][ T6245] loop1: detected capacity change from 0 to 512
[   84.986272][ T6245] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[   84.995505][ T6245] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[   85.007394][   T29] kauditd_printk_skb: 934 callbacks suppressed
[   85.007407][   T29] audit: type=1326 audit(1744596246.800:5655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.025806][ T6245] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[   85.037491][   T29] audit: type=1326 audit(1744596246.800:5656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.058715][ T6245] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   85.069663][   T29] audit: type=1326 audit(1744596246.800:5657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.079796][ T6245] System zones: 
[   85.100992][   T29] audit: type=1326 audit(1744596246.800:5658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.104547][ T6245] 0-2, 18-18
[   85.127926][   T29] audit: type=1326 audit(1744596246.800:5659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.127961][   T29] audit: type=1326 audit(1744596246.800:5660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.128077][   T29] audit: type=1326 audit(1744596246.800:5661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.128109][   T29] audit: type=1326 audit(1744596246.800:5662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.128233][   T29] audit: type=1326 audit(1744596246.800:5663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.128264][   T29] audit: type=1326 audit(1744596246.800:5664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6246 comm="syz.2.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fbfcd169 code=0x7ffc0000
[   85.162672][ T6252] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1023'.
[   85.179260][ T6245] , 34-35
[   85.288146][ T6245] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   85.307730][ T6245] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1020'.
[   85.336673][ T6257] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1025'.
[   85.346284][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.367376][ T6257] batadv1: entered allmulticast mode
[   85.379491][ T6265] loop1: detected capacity change from 0 to 256
[   85.387165][ T6265] msdos: Unknown parameter 'no'
[   85.408630][ T6265] xfrm0 speed is unknown, defaulting to 1000
[   85.446973][ T6272] netlink: 'syz.4.1030': attribute type 13 has an invalid length.
[   85.458634][ T6275] netlink: 'syz.0.1031': attribute type 13 has an invalid length.
[   85.690154][ T6284] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1036'.
[   85.722268][ T6288] loop3: detected capacity change from 0 to 164
[   85.729636][ T6288] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   85.741809][ T6288] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[   85.751124][ T6288] Symlink component flag not implemented
[   85.756508][ T6290] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1038'.
[   85.756786][ T6288] Symlink component flag not implemented
[   85.757159][ T6288] Symlink component flag not implemented (7)
[   85.777564][ T6288] Symlink component flag not implemented (116)
[   85.862063][ T6299] atomic_op ffff888118f21d28 conn xmit_atomic 0000000000000000
[   85.951690][ T6306] netlink: 'syz.0.1043': attribute type 13 has an invalid length.
[   85.961666][ T6308] siw: device registration error -23
[   85.998567][ T6308] xfrm0 speed is unknown, defaulting to 1000
[   86.261122][ T6323] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1049'.
[   86.346415][ T6327] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1051'.
[   86.735567][ T6339] netlink: 'syz.3.1055': attribute type 39 has an invalid length.
[   86.815496][ T6342] netlink: 'syz.3.1056': attribute type 13 has an invalid length.
[   86.934520][ T6346] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1058'.
[   86.960526][ T6348] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1059'.
[   87.082080][ T6352] 9p: Unknown access argument +: -22
[   87.103972][ T6354] ==================================================================
[   87.112101][ T6354] BUG: KCSAN: data-race in n_tty_write / tty_set_termios
[   87.119132][ T6354] 
[   87.121463][ T6354] read-write to 0xffff8881189be914 of 4 bytes by task 6355 on cpu 1:
[   87.129541][ T6354]  tty_set_termios+0x1a2/0x8b0
[   87.134300][ T6354]  set_termios+0x364/0x4f0
[   87.138718][ T6354]  tty_mode_ioctl+0x394/0x5d0
[   87.143429][ T6354]  n_tty_ioctl_helper+0x8d/0x240
[   87.148390][ T6354]  n_tty_ioctl+0xfd/0x210
[   87.152843][ T6354]  tty_ioctl+0x878/0xbd0
[   87.157103][ T6354]  __se_sys_ioctl+0xc9/0x140
[   87.161712][ T6354]  __x64_sys_ioctl+0x43/0x50
[   87.166310][ T6354]  x64_sys_call+0x168d/0x2e10
[   87.171005][ T6354]  do_syscall_64+0xc9/0x1c0
[   87.175617][ T6354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.181522][ T6354] 
[   87.183845][ T6354] read to 0xffff8881189be914 of 4 bytes by task 6354 on cpu 0:
[   87.191379][ T6354]  n_tty_write+0xa3/0xb20
[   87.195722][ T6354]  file_tty_write+0x382/0x6a0
[   87.200401][ T6354]  tty_write+0x28/0x30
[   87.204468][ T6354]  vfs_write+0x79b/0x950
[   87.208721][ T6354]  ksys_write+0xeb/0x1b0
[   87.212987][ T6354]  __x64_sys_write+0x42/0x50
[   87.217583][ T6354]  x64_sys_call+0x2a45/0x2e10
[   87.222262][ T6354]  do_syscall_64+0xc9/0x1c0
[   87.226774][ T6354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.232664][ T6354] 
[   87.234981][ T6354] value changed: 0x00008a3b -> 0x00000006
[   87.240702][ T6354] 
[   87.243030][ T6354] Reported by Kernel Concurrency Sanitizer on:
[   87.249177][ T6354] CPU: 0 UID: 0 PID: 6354 Comm: syz.3.1062 Not tainted 6.15.0-rc1-syzkaller-00333-g5aaaedb0cb54 #0 PREEMPT(voluntary) 
[   87.261578][ T6354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   87.271625][ T6354] ==================================================================