last executing test programs:

4.535578834s ago: executing program 1 (id=2263):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000240)={0x1f, 0x0, @any, 0x1}, 0x30)
listen(r1, 0x0)
ppoll(&(0x7f0000000a00)=[{r1, 0x2000}], 0x1, &(0x7f0000000a80), 0x0, 0x0)
ioctl$VT_DISALLOCATE(r0, 0x5608)

4.512400055s ago: executing program 1 (id=2264):
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb85000000430000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x200080, &(0x7f0000000600)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@version_9p2000}]}})

4.490187025s ago: executing program 1 (id=2266):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$nfc_llcp(r0, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x2, 0x0, 0x49, "c46e9fd1a84b7fa0bf2cca6beb9363a680b652a86bcf56a1b9ca5386103a5ccbe47b7b9aa6d8d701a3ba00000000b97800001022f987617c318500", 0x3a}, 0x60)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000004000000000000000000000095000000e146b1390e8f6f90fa55114e4cc4e200000000"], &(0x7f0000000780)='GPL\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYRES8=r0, @ANYRESDEC=r3, @ANYRES32=r3], 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x20040098)
r5 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r5, 0x0)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000340)='kfree\x00', r7}, 0x18)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='\x00\x00\x00\x00\x00')
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue1\x00', 0x800005})
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r6, 0x40605346, &(0x7f0000000100)={0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0x80000}, 0x100})
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[@ANYBLOB='+hugetlb'], 0x9)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r8, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_buf(r9, 0x118, 0x2b, 0x0, &(0x7f0000000140)=0x5b)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4c000000020603000000000000000000050000000c00078008000800000000400900020073797a32000020000500040000000000050005000a00000005000100060000000500050016000000"], 0x4c}}, 0x80)
r11 = socket(0xa, 0x3, 0x87)
sendto(r11, 0x0, 0x0, 0x800, &(0x7f0000000600)=@l2tp6={0xa, 0x0, 0x7, @local, 0x5}, 0x80)
ppoll(&(0x7f0000000000)=[{r11}], 0x1, &(0x7f0000000080), 0x0, 0x0)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r11, 0x84, 0xc, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101002, 0x2e)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x100000b, 0x2013, r12, 0x0)
mkdirat(r12, &(0x7f0000000100)='./file2\x00', 0x0)

4.423435959s ago: executing program 1 (id=2269):
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000000000000100000008000600e0000001050004000100000008000b0027"], 0x2c}, 0x1, 0x0, 0x0, 0x20048091}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b0000005e140602000000000e0027001000000002800000121f", 0x2e}], 0x1}, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000000c0)={<r5=>0xffffffffffffffff}, 0x106, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r4, &(0x7f00000002c0)={0x7, 0x8, 0xfa00, {r5, 0x7}}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_FLUSH(r6, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000100)=ANY=[@ANYBLOB="c4000000", @ANYRES16, @ANYBLOB="0100000000000000000001"], 0xc4}}, 0x240008c0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r9 = socket(0x400000000010, 0x3, 0x0)
r10 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r11=>0x0})
r12 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r12, 0x84, 0x6b, &(0x7f00000003c0)=[@in={0x2, 0x4e20, @private=0xa010102}], 0x10)
setsockopt(r12, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r12, 0x84, 0xc, &(0x7f0000000100), 0x4)
sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r11, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000000, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x810, 0x4, 0x5}, {0x4a7, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x97, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x8}, {0x0, 0x5, 0x1437, 0x1, 0xee57, 0xd}, {0x77d, 0x6, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x3, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x1, 0x6, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x4}, {0xfffffffc, 0x4, 0xffff, 0x2, 0xffffffff, 0xfffffffa}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x6}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0x0, 0xeac}, {0x9, 0x2, 0xd77, 0x8, 0x113, 0x8d3f}, {0x7, 0xffffffff, 0x4, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x4, 0xe, 0x3, 0xad47, 0xf83b}, {0x1ff, 0x5, 0x7, 0xfff, 0x9}, {0x100, 0x4, 0x200, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0x10001, 0x9, 0x200, 0x9, 0x1}, {0x6, 0x10, 0xf, 0x2, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0xfffffffc}, {0x80000000, 0x6, 0x0, 0x6, 0x6, 0xd}, {0x0, 0x9, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x8, 0xffffffff}, {0x4d9, 0x45db8bad, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x1, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x1, 0x7ff, 0x3, 0x4}, {0x3, 0x7, 0x4, 0x4, 0x1c716ddc, 0x8}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x1000002, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x5, 0x4, 0x4, 0x67}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x5, 0x2, 0xffff, 0x2, 0x2}, {0x80000001, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x6, 0x1000, 0x9, 0x9}, {0xa, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0x2, 0x8, 0xfffffff7, 0x1, 0x6, 0xa}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f5, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x8, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x80, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0x7fffffff, 0x8, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x3, 0x9, 0x0, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x5, 0x5, 0x4, 0x3649}, {0x7, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x7, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x100, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0x3, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x0, 0xfc, 0x7, 0x6, 0xc}, {0xf, 0x1, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0xd9, 0x6, 0x1, 0x9, 0xfffffff8}, {0x3, 0x3, 0x7, 0x9, 0x10, 0x1}, {0x8f000000, 0x100, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0xa, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x4}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x7, 0x10000, 0x9, 0x0, 0x88}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0xfce, 0x80000001, 0x5, 0x4, 0x1ff}, {0x3, 0x3, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0x2}, {0x10001, 0x100, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x0, 0x3, 0x6, 0x800, 0x3}, {0x0, 0x0, 0x3, 0x8, 0x1, 0x3}, {0x3, 0x3, 0xffffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0x1, 0x3}, {0x5, 0x7, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0x3, 0x5, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffffa, 0x1, 0x800003, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x4, 0x96, 0x81, 0x0, 0x101, 0xa}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x6}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0x1, 0x3}, {0x1, 0xe2, 0x7ff, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x6, 0x0, 0x7, 0x9, 0x7, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6f}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x2, 0x4, 0x2, 0x1, 0x6, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x0, 0xe71, 0xc5c3, 0x3, 0x1}, {0x7, 0x2, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x0, 0x6, 0x10001, 0xce7, 0xec, 0x1000}, {0xffffffff, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0x6}, {0x37, 0x622, 0x2, 0x1, 0x7, 0x2}], [{0x5}, {0xccffbfc290ab3baa}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4, 0x1}, {}, {0x1, 0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x2}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x5, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x2}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x3, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159, 0x1}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x7, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x2}, {}, {0x2}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x3, 0x1}, {}, {0x1, 0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x2, 0xb}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x81}, 0x800)

4.40925297s ago: executing program 3 (id=2270):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
r2 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x6}, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000580)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r2, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x4, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r6}, 0x18)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a2809302060000ff41fd01020400000a00120002002800000019002d007fffffff0022de1330d54400009b84136ef75afb83de066a5900e1baac968300000000f2ff000001000000", 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0)
syz_usb_connect(0x2, 0xfffffffffffffe86, 0x0, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

3.593413065s ago: executing program 1 (id=2288):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0xa, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x5, 0x8, 0x5, 0x784, 0x22005, 0x7, 0x0, 0x0, 0x0, 0x20004006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000380)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@init_itable}, {@bh}, {@quota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}], [{@subj_role={'subj_role', 0x3d, 'syzkaller\x00'}}, {@dont_hash}]}, 0x1, 0x78f, &(0x7f0000000800)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r4, 0x0, 0x20000ffffffff}, 0x18)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r5, 0x400455c8, 0x0)
syz_usb_connect(0x2, 0xfffffffffffffe86, 0x0, 0x0)
open(&(0x7f0000000080)='.\x00', 0x518282, 0x78e22799f4a46e8e)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
socket$packet(0x11, 0x3, 0x300)
r6 = timerfd_create(0x0, 0x0)
timerfd_settime(r6, 0x3, &(0x7f0000000380)={{0x0, 0x989680}}, 0x0)
r7 = timerfd_create(0x0, 0x0)
timerfd_settime(r7, 0x3, &(0x7f0000000440)={{0x0, 0x3938700}}, 0x0)
r8 = memfd_create(&(0x7f00000005c0)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10`\xee\xa9\x8b\x06%\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xa96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xd9Jx\xaa\x8f~\xb94a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xd6m\xf7@]iNP\xf1\x1d\xab\x13\xce\x152s\xb8\x85\x98\x84\xbf\x8c\x80{\x16\t\xd6\x17P3\xe9\xebGKL\xd3\x88\xd2\rLG\x8e\xd6\xa72\xf4\x92\xeb&\xa5\xcc\x14FZN\x98%[p\x989\xf6\xf5\xb6\xedk\xe6\xb0\xa1\x8f\x90\xdb\xd6h)\x0f6\x88\x03P\x8ak\xf9\xc9\x82`\xa7Ku\x99\xab\xd4\xb2\xaa1\x99O\x8b\x99-\xe3', 0x1)
dup(r8)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

1.532725003s ago: executing program 0 (id=2310):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$l2tp(0x2, 0x2, 0x73)
recvfrom(r3, 0x0, 0x0, 0x2002, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x300}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r5, 0x0, 0xfffffffffffffffd}, 0x18)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mkdirat(0xffffffffffffff9c, 0x0, 0x88)
ioctl$SIOCSIFHWADDR(r4, 0x8943, &(0x7f0000000100)={'macvtap0\x00', @link_local})
shutdown(r3, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r7}, 0x18)
r8 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r8, 0x1, 0x3c, &(0x7f0000000040)={0x200000000000001}, 0x8)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c)
mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x9, 0x0)
get_mempolicy(0x0, 0x0, 0x7fffffffffffffff, &(0x7f0000ffd000/0x2000)=nil, 0x2)
setsockopt$inet6_IPV6_HOPOPTS(r8, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB="0017"], 0xc0)
sendmmsg$inet6(r8, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r8, 0x29, 0x39, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x5, &(0x7f0000002d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r9, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc}, 0x4000800)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003080)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000940)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x3f00, {0x0, 0x0, 0x0, r9, {0x0, 0xfff3}}}, 0x24}}, 0x0)

1.256046245s ago: executing program 0 (id=2314):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0x60002016})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x10005)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe2$9p(&(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x800)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000040), 0x200080, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@version_9p2000}]}})

1.238336356s ago: executing program 3 (id=2315):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
listen(r0, 0x8)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x4000050, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x2}, 0x8)
close_range(r2, 0xffffffffffffffff, 0x0)

1.212335357s ago: executing program 3 (id=2316):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBENT(r0, 0x560a, &(0x7f0000000240)={0x0, 0x0, 0x9})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000003800)=@newtaction={0x48, 0x31, 0x1, 0xfffffffd, 0x25dfdbfb, {0x0, 0x0, 0x11}, [{0x34, 0x1, [@m_police={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x3, {0x1}}, {0xc}}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x8800}, 0x0)

1.182614209s ago: executing program 3 (id=2317):
r0 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@dev={0xfe, 0x80, '\x00', 0x80}, 0x800, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x20)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r2, &(0x7f0000000280)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@usrquota}, {@data_err_ignore}, {@nobarrier}, {@oldalloc}, {@grpquota}, {@noload}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000680), 0x1, 0x482, &(0x7f0000001040)="$eJzs281rHGUYAPBnJh9t7UdirR+tVaNFCIpJk1btwYuiIFJR0EPFU0y2JXTbSBPF1mJTkXoRpKBn8Sj6F3gTQdST4FUvnqRQtJe2niIzO5OPbTa1zSYTk98PNvu+O+/uPM/O1zvvuwlgw+rL/iQR2yLit4joaVQXNuhrPF27cnb0+pWzo0nMzLz2V5K3u3rl7GjZtHzf1qLSn0akHyXFShaaPH3m+Ei9XjtV1AenTrw9OHn6zBPvnhg5VjtWOzl86NDBA0NPPzX8ZFvyzPK6uueDib27X3zj4sujRy6+9dM3WbzbiuXz82iXvizxv2dyzcsebffKKrZ9XjnprDAQbklHRGSbqys//nuiI+Y2Xk+88GGlwQErKrs2bWq9eHoGWMeSqDoCoBrlhT67/y0fq9T1WBMuP9u4AcryvlY8Gks6Iy3adDXd37ZTX0Qcmf7ni+wRKzQOAQAw3yejnx/ujoj3r3/9Utb36JldksY9+fMf+d8dxRxKb0TcGRE7I+KuiNgVEXdH5G3vjYj7lhnPjf2f9NIyP3JJWf/vmWJua2H/r+z9RW9HUdue59+VHB2v1/YX30l/dG3K6kNLrOO753/9tNWy+f2/7JGtv+wLFnFc6mwaoBsbmRrJO6VtcPl8xJ7OxfJPZmcCkojYHRF7bu2jd5SF8ce+2tuq0c3zX0Ib5plmvszSm87yn46m/EvJ/PnJ8RvmJwc3R722f7DcK2708y8XXm21/mXl3waXa43nedu/uUlvMvdl1E5N3vo6Lvz+cct7mtvc/9Pu5PV8nrm7eO29kampU0MR3cnhvL7g9eG595b1sn22//fvW/z431m8J0v+/ojIduIHIuLBiHioiP3hiHgkIvYtkf+Pz7VeVuYfaUXb/3zE2KLnv9n9P9v+c/P1t1HoOP7Dt63W/9+2/8G81F+8kp//bmKxcLLTRXOAy/nuAAAA4P8izX8Dn6QDs+U0HRho/IZ/V9yR1icmpx4/OvHOybHGb+V7oystR7p6ivHQ+ni9NpRMF5/YGB8dLsaKy/HSA8W48WcdW/L6wOhEfazi3GGj29ri+M/82VF1dMAK27Loq8Pdqx4IUIHmefR0YfXcK+FkAOuV/9eGjesmx3+6WnEAq+92r/9vtjkOYPUtdvyfa6qbC4D1yf0/bFyOf9ig0u+rjgCokOs/bEjL+b/+FSxsXhthVFNYqxslL0SUhXRNxKOwQoWqz0wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADt8W8AAAD//4jb5iA=")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x14)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4001000010003735d90c700ea5e881520400000040ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="83450500000000002000128009000100697069700000000010000280040013000500090089000000"], 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="5001000010001307fefffffff8dbdf256401010100000000000000000000000020010000000000000000000000000002000000004e2100020a00000029000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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"], 0x150}, 0x1, 0x0, 0x0, 0x880}, 0x0)

1.181048899s ago: executing program 0 (id=2318):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000480)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x1e00, 0x3e, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000380)='kfree\x00', r0, 0x0, 0x4ab}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x4)
r5 = eventfd2(0x0, 0x0)
io_setup(0x6, &(0x7f0000000140)=<r6=>0x0)
io_submit(r6, 0x2, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0xfffd, r4, 0x0, 0x0, 0x0, 0x0, 0x3, r5}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}])
shutdown(r4, 0x0)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000d0000000000010000000000000001410000001c0017"], 0x38}}, 0x0)
unshare(0x4040600)
openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x200000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
sendmsg$nl_route_sched(r1, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000100)=@deltaction={0x114, 0x31, 0x20, 0x70bd2a, 0x1, {}, [@TCA_ACT_TAB={0x5c, 0x1, [{0x10, 0x5, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0xc, 0x14, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x80000000}}, {0x10, 0x7f, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x4}}, {0xc, 0x10, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xe9}}, {0x14, 0x1a, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}]}, @TCA_ACT_TAB={0x60, 0x1, [{0x10, 0x17, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x18, 0x0, 0x0, @TCA_ACT_KIND={0x7, 0x1, 'xt\x00'}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xa}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x1d2}}, {0xc, 0x9, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0x10, 0x6, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'skbmod\x00'}}, {0xc, 0x18, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0xfffffffd}}]}, @TCA_ACT_TAB={0x44, 0x1, [{0x10, 0x1f, 0x0, 0x0, @TCA_ACT_KIND={0xc, 0x1, 'skbedit\x00'}}, {0xc, 0x8, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0x15, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x2}}, {0xc, 0xf, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x6}}, {0xc, 0x11, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x4}, 0x0)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x7fff, 0x420, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)

1.056721264s ago: executing program 0 (id=2319):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088018000c8014000b80080009000000000008000a00feff"], 0x44}}, 0x0)

1.017346546s ago: executing program 0 (id=2321):
syz_usb_connect(0x6, 0x1fc, &(0x7f0000000780)=ANY=[], 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000050000004943000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000002b40)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdff030018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000080)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

996.690976ms ago: executing program 2 (id=2322):
setreuid(0x0, 0xee00)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x28, 0x0, 0x0, 0xffffefff}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000002840)={0x0, 0x0, &(0x7f0000002800)={&(0x7f0000000880)=ANY=[@ANYBLOB], 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x4040010)

976.707917ms ago: executing program 3 (id=2323):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

975.741598ms ago: executing program 2 (id=2324):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = signalfd(r0, &(0x7f0000000040)={[0x38]}, 0x8)
inotify_add_watch(r1, &(0x7f00000001c0)='./file0\x00', 0x5000010) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) (async)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@noblock_validity}]}, 0x1, 0xbb6, &(0x7f0000000c00)="$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") (async)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
socket$nl_route(0x10, 0x3, 0x0) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x54, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad, 0x21}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TOS={0x5, 0x4, 0x6}, @IFLA_GENEVE_LABEL={0x8, 0xb, 0x1, 0x0, 0x7f}, @IFLA_GENEVE_TTL_INHERIT={0x5}, @IFLA_GENEVE_DF={0x5, 0xd, 0x2}]}}}]}, 0x54}}, 0x8000) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
setitimer(0x0, 0x0, &(0x7f0000000240)) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10) (async)
pipe(0x0)
r5 = open(&(0x7f0000000240)='./file2\x00', 0x145142, 0x0)
sendfile(r5, r5, 0x0, 0x800000009) (async)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r6, 0x0, 0x9}, 0x18) (async)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000380)='./file0\x00', 0x2000002, &(0x7f0000000340), 0x9, 0x558, &(0x7f0000001a80)="$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") (async)
removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000000)=@known='system.posix_acl_default\x00')

926.76019ms ago: executing program 3 (id=2325):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x18)
r2 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x6}, &(0x7f00000001c0)=<r3=>0x0, &(0x7f0000000580)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r2, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
openat$dir(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x4, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x31, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r6}, 0x18)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a2809302060000ff41fd01020400000a00120002002800000019002d007fffffff0022de1330d54400009b84136ef75afb83de066a5900e1baac968300000000f2ff000001000000", 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0)
syz_usb_connect(0x2, 0xfffffffffffffe86, 0x0, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

852.303993ms ago: executing program 2 (id=2326):
r0 = socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010102, 0x4e21, 0x3, 'lc\x00', 0x5, 0x8, 0x77}, {@remote, 0x4e20, 0x10000, 0xcd, 0x84}}, 0x44)

851.354833ms ago: executing program 2 (id=2327):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
listen(r0, 0x8)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x4000050, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x2}, 0x8)
close_range(r2, 0xffffffffffffffff, 0x0)

848.908483ms ago: executing program 2 (id=2328):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000101"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0)
r4 = epoll_create1(0x80000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000040)={0xa0000004})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r5, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r4, &(0x7f0000000140)={0xa0000001})
epoll_wait(r6, &(0x7f0000000280)=[{}], 0x1, 0x4000005)
close_range(r0, 0xffffffffffffffff, 0x8000000)

528.095657ms ago: executing program 1 (id=2330):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x492492492492846, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
ppoll(&(0x7f0000000200)=[{r2, 0x8000}], 0x1, 0x0, 0x0, 0x0)
connect$unix(r1, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000880)={@in={{0x2, 0x4c23, @multicast2}}, 0x0, 0x0, 0x2, 0x0, "bd131a850810fcd18c0448734d20d5ac652dafacd33061762ee6ff7de1231ab45358cb73940a8ee9605f4291416850b05b3ffe4b328614a6a02e70351ef496146a4cf56e441481cf96f801d8c68fe3d9"}, 0xd8)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000080)='veth0_macvtap\x00', 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
r4 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000011c0), 0x2401, 0x0)
write$P9_RWALK(r4, 0x0, 0x30)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="d800000026000186"], 0xd8}, 0x1, 0x0, 0x0, 0x4004041}, 0x20004440)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xf8}, 0x18)
r7 = gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0530b7bb856236412ff999e2e2f5801fb89933f0d60e1a4f27688e7c7e32d389409447cc9ffa14918448", @ANYRESDEC=r5], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'pimreg0\x00'})

449.43984ms ago: executing program 0 (id=2331):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = gettid()
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x8080)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x2000000}, {}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x100000a, 0x4082172, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x0, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, @sk_reuseport}, 0x94)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
close(0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24010}, 0x8004)
timer_settime(0x0, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100)={0x77359400}, 0x1)

334.204365ms ago: executing program 4 (id=2333):
socket(0xa, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000380)={[{@jqfmt_vfsv1}, {@nodioread_nolock}, {@noblock_validity}, {@journal_dev={'journal_dev', 0x3d, 0x8001}}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1d3142, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000780)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x51, &(0x7f0000000800)={[{@orlov}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x40}}, {@norecovery}, {@commit={'commit', 0x3d, 0x5}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x3}}]}, 0x8, 0x5fe, &(0x7f0000000ac0)="$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")
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r2}, 0x10)
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x8, 0x80, 0x0, 0x4, 0x0, 0x6, 0x2, 0x7, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x101, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fc0000001900010000000000fcdbdf2500000000000000000000000000000000fe8000000002000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000004000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000001000000000000004400050000000000000000000000000000000000000000022b0000000a000000fe8000000000000000000000000000aa0000000004"], 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
bind$inet(r3, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)

301.606997ms ago: executing program 4 (id=2334):
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000004000480080002000100000008000100000000000400088018000c8014000b80080009000000000008000a00feff"], 0x44}}, 0x0)

275.517708ms ago: executing program 4 (id=2335):
setreuid(0x0, 0xee00)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x28, 0x0, 0x0, 0xffffefff}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000002840)={0x0, 0x0, &(0x7f0000002800)={&(0x7f0000000880)=ANY=[@ANYBLOB="34000000000b010300000000000000000200000a080002401038a91908000340000000000d000300727066696c7465b8e58d95f7660f2f0be946b0a48172000000001f6fb319ee2d9ee758ed6ca41b22c1537e97644f1faf788d5ba425ffec"], 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x4040010)

253.944928ms ago: executing program 4 (id=2336):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_fw={{0x7}, {0xe58, 0x2, [@TCA_FW_ACT={0xe54, 0x4, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x4, 0x1ff, 0x20000000, 0xc, 0x6}, 0x7f, 0x5}, [{0x2a9, 0x6, 0x810, 0x4, 0x5}, {0x4a7, 0x1ff, 0x4, 0x1, 0x7, 0xdd}, {0x9, 0x7, 0x3ff, 0x97, 0xfffffffd, 0x4}, {0x8, 0x0, 0x6, 0x2, 0x7fff, 0x3}, {0x4f9a, 0x5, 0x1, 0x1, 0x2, 0x8}, {0x0, 0x5, 0x1437, 0x1, 0xee57, 0xd}, {0x77d, 0x6, 0x9, 0x6, 0x8, 0x1}, {0x5, 0x6, 0x0, 0x2, 0x1, 0x7fff}, {0x0, 0x3, 0x4235da1, 0x9, 0x7ec9, 0x8}, {0x10000, 0x2, 0x0, 0x1, 0x6, 0x9}, {0xd, 0xffff0001, 0x0, 0x6, 0x81, 0x4}, {0xfffffffc, 0x4, 0xffff, 0x2, 0xffffffff, 0xfffffffa}, {0x5, 0xd29, 0x101, 0x3, 0x7, 0xc}, {0x0, 0xfffffff7, 0x1, 0x72b2, 0xc874, 0x3}, {0x3, 0xf, 0x5, 0x1, 0x1ff, 0x6}, {0x9b9b, 0xffff, 0x6, 0xb, 0xb3d, 0x812}, {0x5, 0x7, 0x2, 0x5, 0x5, 0x4}, {0x6, 0x0, 0x9, 0x2, 0x82, 0x2}, {0xfffffff7, 0x6, 0x2, 0x9, 0xff}, {0x4, 0x1, 0x371, 0x8, 0x0, 0xeac}, {0x9, 0x2, 0xd77, 0x8, 0x113, 0x8d3f}, {0x7, 0xffffffff, 0x4, 0x92a4, 0x9, 0x10}, {0x1a4a13f0, 0x4, 0xe, 0x3, 0xad47, 0xf83b}, {0x1ff, 0x5, 0x7, 0xfff, 0x9}, {0x100, 0x4, 0x200, 0x9, 0x1, 0x9df}, {0x9, 0x1, 0x65, 0x9, 0x7}, {0x401, 0x10001, 0x9, 0x200, 0x9, 0x1}, {0x6, 0x10, 0xf, 0x2, 0x6, 0x3}, {0xf23, 0x3ff, 0x0, 0x9, 0xfffffffc}, {0x80000000, 0x6, 0x0, 0x6, 0x6, 0xd}, {0x0, 0x9, 0xd, 0x8000, 0x3, 0x2}, {0x800, 0x9, 0x6, 0x3, 0x7, 0x8}, {0x7, 0x8, 0x7358, 0x7, 0x8, 0xffffffff}, {0x4d9, 0x45db8bad, 0xb3dd, 0x1, 0xbc, 0x7ff}, {0x7, 0x1, 0x3, 0x3, 0x3, 0x7a}, {0x5a1b, 0x1, 0x1, 0x7ff, 0x3, 0x4}, {0x3, 0x7, 0x4, 0x4, 0x1c716ddc, 0x8}, {0xffffffa5, 0x7, 0x0, 0x10, 0x3, 0x5}, {0x8219, 0x0, 0x1000002, 0x6, 0x3, 0x2}, {0x62, 0xf4, 0x5, 0x4, 0x4, 0x67}, {0x5, 0x4, 0x53, 0x8, 0xc0000000, 0x7}, {0x2, 0x5, 0x2, 0xffff, 0x2, 0x2}, {0x80000001, 0x94c, 0x6, 0xfffffe00, 0x5, 0x7b27}, {0x2, 0x6, 0x1000, 0x9, 0x9}, {0xa, 0x0, 0x9, 0x4, 0xe, 0x9}, {0xdf, 0x7fff, 0x8000, 0x81, 0xff, 0xfffffff8}, {0x2, 0x10000, 0x9, 0x2, 0x2}, {0x2, 0x6, 0x9, 0x1, 0x2, 0x40}, {0xfffffe00, 0x3, 0x74d2, 0x3, 0x80000001, 0x6}, {0x2, 0x8, 0xfffffff7, 0x1, 0x6, 0xa}, {0x8, 0x9, 0x8e, 0x33, 0x10001, 0x22cb}, {0x2, 0x31f5, 0x7, 0x5, 0x7fffffff, 0x1}, {0x9, 0x10001, 0x4, 0x8, 0x7, 0x9}, {0xb, 0x1ff, 0xb, 0x3, 0x5, 0x80000001}, {0x7, 0x80, 0x69b, 0x3, 0x8, 0x339}, {0xee, 0x80000000, 0xfba6, 0x101, 0x5, 0xb}, {0x3, 0x458, 0x6, 0xf, 0x7, 0x8000}, {0x9, 0xfffffffa, 0x1000, 0x8, 0xb, 0xce5a}, {0x400, 0xffff, 0x3, 0xbcbb, 0x7, 0xb}, {0x0, 0x7fffffff, 0x8, 0x8, 0x2, 0x1}, {0x1, 0x0, 0x3, 0x9, 0x0, 0x401}, {0xd, 0x1, 0x2, 0xf, 0x81, 0x5}, {0x6, 0xfff, 0x5, 0x5, 0x4, 0x3649}, {0x7, 0x2, 0x80000000, 0x9, 0x1630, 0x9e73}, {0xb, 0x1b6, 0xc4, 0x7, 0x4, 0xca}, {0x4, 0x5, 0x401, 0x4, 0xfffffff8, 0x40}, {0x8, 0x4594, 0x8, 0x4, 0x0, 0xffff}, {0x100, 0xfffffffb, 0x6, 0x0, 0x9, 0x6}, {0x3, 0xf7b, 0x3, 0x8, 0x6, 0x3}, {0x1, 0x5, 0x3, 0xab9, 0x7, 0x9}, {0xffffffff, 0x0, 0xfc, 0x7, 0x6, 0xc}, {0xf, 0x1, 0xa000000, 0x1, 0x101, 0x1f3}, {0x7ff, 0x9, 0xfffff001, 0x8001, 0x2, 0x2}, {0x4, 0xd9, 0x6, 0x1, 0x9, 0xfffffff8}, {0x3, 0x3, 0x7, 0x9, 0x10, 0x1}, {0x8f000000, 0x100, 0xffffffff, 0x963, 0x2, 0xc}, {0x6, 0x50, 0x6, 0xa, 0x0, 0x3}, {0x649, 0x2, 0x80000001, 0x8, 0x0, 0x1}, {0x8, 0xfff, 0x6, 0x80000001, 0x7fffffff, 0x4}, {0xa3, 0x81, 0x9fcb, 0x1, 0x8, 0x7fff}, {0x0, 0x2, 0x750c, 0x0, 0x1, 0xfffffffc}, {0x7ff, 0x7, 0x10000, 0x9, 0x0, 0x88}, {0x5, 0x10001, 0x7fff, 0x81, 0xfffffff4, 0x7}, {0xfce, 0x80000001, 0x5, 0x4, 0x1ff}, {0x3, 0x3, 0x3ff, 0x7fffffff, 0x9, 0x7}, {0xdac, 0x0, 0x4, 0x80000001, 0x3, 0x8}, {0x7, 0xffffffff, 0x6, 0x8, 0x80000001, 0xa}, {0x2, 0x4, 0x4, 0x401, 0xe32}, {0x5, 0x7, 0x6, 0x8, 0x2, 0x2}, {0x10001, 0x100, 0x3, 0x4, 0x9, 0xfffffffa}, {0x2, 0x0, 0x3, 0x6, 0x800, 0x3}, {0x0, 0x0, 0x3, 0x8, 0x1, 0x3}, {0x3, 0x3, 0xffffffff, 0x3, 0x800, 0xde}, {0x5, 0x66, 0x41d0, 0x8001, 0x1, 0x3}, {0x5, 0x7, 0xfffffffc, 0x4, 0x3, 0x92c}, {0x4, 0xffff, 0x0, 0x101, 0x4, 0x1}, {0x9, 0xf667, 0x5, 0x3, 0x5, 0x4}, {0x1731, 0xa, 0x9960, 0x9, 0x1, 0x7}, {0xd, 0xfffffffa, 0x1, 0x800003, 0x40, 0x2}, {0x1, 0x4, 0x80000000, 0x80000001, 0x2, 0x6}, {0x7, 0x2, 0xffffff3a, 0x4cf, 0x800, 0x6}, {0x8000, 0x6, 0x1, 0x0, 0x100, 0x80000000}, {0x3b, 0x5562334a, 0x2, 0x2, 0x6, 0x81}, {0x4, 0x96, 0x81, 0x0, 0x101, 0xa}, {0x4, 0xff, 0x9, 0x0, 0x81, 0x29}, {0xa, 0x5, 0x0, 0x9, 0xffffffff, 0xfb4}, {0x80000000, 0x2, 0xffff, 0x39b4, 0x1, 0x6}, {0x61, 0x2d, 0x6, 0x1fe4c5d2, 0x1, 0x3}, {0x1, 0xe2, 0x7ff, 0x7ff, 0x7f, 0x29d0}, {0x0, 0x4, 0xc, 0xd594, 0x9, 0x7}, {0x6, 0x0, 0x7, 0x9, 0x7, 0x9}, {0x80e9, 0x7, 0x9, 0x1, 0x1, 0x18000}, {0x400, 0x9, 0x0, 0x6f}, {0x2, 0x1, 0x6, 0x3, 0xfffff71b, 0xce}, {0x1, 0xff, 0xb, 0x4, 0x800, 0x1}, {0x6, 0x2, 0x8, 0xfff, 0x4, 0x7fff}, {0x0, 0x0, 0x7f, 0x401, 0x7, 0x7fff}, {0x7, 0xb, 0x10000, 0x1, 0x8000, 0xfffff830}, {0x2, 0x4, 0x2, 0x1, 0x6, 0x2b4}, {0x3cd2dbce, 0x929a, 0x9dc, 0x0, 0x8, 0xfffffffc}, {0x6, 0x0, 0xe71, 0xc5c3, 0x3, 0x1}, {0x7, 0x2, 0x197a, 0x7, 0x1, 0x8}, {0xff, 0x2c, 0xfffffc01, 0x1, 0x3, 0x100}, {0x0, 0x6, 0x10001, 0xce7, 0xec, 0x1000}, {0xffffffff, 0x6, 0xffffffff, 0x9, 0x2, 0x6}, {0xfa, 0x9, 0xbf1d, 0x9, 0x80, 0x5}, {0x1c91, 0x5f27, 0x1, 0x0, 0x6, 0x6}, {0x37, 0x622, 0x2, 0x1, 0x7, 0x2}], [{0x5}, {0xccffbfc290ab3baa}, {}, {0x2}, {0x2}, {0x0, 0x1}, {0x3}, {0x4, 0x1}, {}, {0x1, 0x1}, {0x1}, {0x2}, {0x3}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x3, 0x1}, {0x1}, {0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {}, {0x2, 0x1}, {0x2}, {0x2}, {0x2, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x5, 0x1}, {0x3}, {0x2}, {0x4}, {0x5}, {0x5, 0x1}, {0x2}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x4, 0x1}, {0x2}, {0x1, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {}, {0x3, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0xed3229170eca159, 0x1}, {0x2, 0x1}, {0x1}, {0x3}, {0x3, 0x1}, {}, {0x2, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x3}, {0x4}, {0x3, 0x1}, {0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x5, 0x1}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x4}, {0x7, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5}, {0x5}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x5}, {0x54e1b160e6ec45e8, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {}, {0x4, 0x1}, {0x4}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {0x0, 0x1}, {0x2}, {}, {0x2}, {0x5, 0x1}, {0x4}, {0x2}, {0x9baeccaf277094c4, 0x1}, {}, {0x2, 0x1}, {}, {}, {0x8f9fc2e2ef57f2f0}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x3}, {0x3}, {0x2, 0x1}, {0x3, 0x1}, {}, {0x1, 0x1}], 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0x2, 0xb}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x81}, 0x800)

192.075721ms ago: executing program 4 (id=2337):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r1=>0x0}) (async, rerun: 32)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x94) (async, rerun: 32)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000088500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
syz_emit_ethernet(0x76, &(0x7f0000000880)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f4a300", 0x40, 0x3a, 0x1, @remote, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0x6, {0xc, 0x6, "f6cd53", 0x200, 0x2c, 0xff, @dev={0xfe, 0x80, '\x00', 0x35}, @local, [@routing={0x2f, 0x0, 0x0, 0x5}], "13d86558da0a7f6b"}}}}}}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000001d00070f000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00005200060005000100000008000800", @ANYRES32=r1], 0x2c}}, 0x20008000) (async)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4) (async, rerun: 32)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r5, 0x0, 0x4}, 0x18) (async)
syz_read_part_table(0x1052, &(0x7f0000001080)="$eJzsz8GJwkAYBeCXbDYbWBBL0LM3O4g9pAUPVqGdeNGDTY4YEi+eBYXvY3jMMI8f/vAJDmOWUkrqPM7ptfM/X37G/GuT42p9Hvo66arpb5nLbpNmu0g31/s2+/o55fdaZXo1GW5v2wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvsg9AAD//wx9Ctc=") (async)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r6, 0x0, 0xffff}, 0x18) (async, rerun: 64)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) (async, rerun: 64)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0) (async)
dup(r0) (async)
munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r7}, 0x10) (async, rerun: 64)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0) (async, rerun: 64)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x74, 0x2, 0x1, 0x101, 0x0, 0x0, {0x7, 0x0, 0x4}, [@CTA_SEQ_ADJ_ORIG={0x2c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xffffffff}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x81ac}]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_SYNPROXY={0x2c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x1}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_ISN={0x8}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x2404c002}, 0x8091)

119.132104ms ago: executing program 4 (id=2338):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x67, 0x52b, &(0x7f0000000a00)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x80003, 0xff)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0xfd, 0x9, 0x7fff0000}]})
migrate_pages(0x0, 0xfc, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x8)
r4 = socket$netlink(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448cb, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r6, 0x6, 0xe, &(0x7f0000000400)={@in6={{0xa, 0x4e24, 0x8, @loopback}}, 0x0, 0x0, 0x41, 0x0, "b208405cce4456e4fc8f2dabd194ff3763f799f91cf7e5e8260998f956ec57c24451db07550335ebf4a3d0168ccaa268e928f39cd7494c2b19ebef230a3373685fbacfcf3b6e9633bd997a9bfcf08f67"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r6, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x4e20, 0x0, @remote, 0x7}}, 0x0, 0x0, 0x36, 0x0, "aad117faa273384fa70c03011fc6d926734894435bcd5896461c4708d8aad99585194c3516ad70fee8f2f8c1972ca1f09466dfea627314957240dc0ee24ee217cec8cdf38a487957e1046afa9464e33b"}, 0xffffffffffffff3a)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x0, 0x5, @loopback}, 0x1c)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000d40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0baa03c37f00000053297a339668332f7fd16dc8030000090486250005000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bind$netlink(0xffffffffffffffff, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1/file2\x00', 0x81c0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, 0x0, 0x0)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000200)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100ffa10000fbdbdf25f23f250000000e0001001465746465766e696d00ee7800000f0002046e650200000000000000"], 0x34}}, 0x6048800)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
setsockopt$inet6_int(r1, 0x29, 0x16, &(0x7f0000000000)=0xfffffffe, 0x4)

0s ago: executing program 2 (id=2339):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x492492492492846, 0x0)
fcntl$setstatus(r2, 0x4, 0x42000)
ppoll(&(0x7f0000000200)=[{r2, 0x8000}], 0x1, 0x0, 0x0, 0x0)
connect$unix(r1, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f0000000880)={@in={{0x2, 0x4c23, @multicast2}}, 0x0, 0x0, 0x2, 0x0, "bd131a850810fcd18c0448734d20d5ac652dafacd33061762ee6ff7de1231ab45358cb73940a8ee9605f4291416850b05b3ffe4b328614a6a02e70351ef496146a4cf56e441481cf96f801d8c68fe3d9"}, 0xd8)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000080)='veth0_macvtap\x00', 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
r4 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000011c0), 0x2401, 0x0)
write$P9_RWALK(r4, 0x0, 0x30)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="d800000026000186"], 0xd8}, 0x1, 0x0, 0x0, 0x4004041}, 0x20004440)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xf8}, 0x18)
r7 = gettid()
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0530b7bb856236412ff999e2e2f5801fb89933f0d60e1a4f27688e7c7e32d38940", @ANYRESDEC=r5], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0)
mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'pimreg0\x00'})

kernel console output (not intermixed with test programs):

 forcing a failure.
[   91.682125][ T6607] name failslab, interval 1, probability 0, space 0, times 0
[   91.694948][ T6607] CPU: 0 UID: 0 PID: 6607 Comm: syz.0.1171 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   91.694980][ T6607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   91.694994][ T6607] Call Trace:
[   91.695002][ T6607]  <TASK>
[   91.695011][ T6607]  __dump_stack+0x1d/0x30
[   91.695037][ T6607]  dump_stack_lvl+0xe8/0x140
[   91.695060][ T6607]  dump_stack+0x15/0x1b
[   91.695091][ T6607]  should_fail_ex+0x265/0x280
[   91.695113][ T6607]  should_failslab+0x8c/0xb0
[   91.695144][ T6607]  kmem_cache_alloc_noprof+0x50/0x480
[   91.695185][ T6607]  ? audit_log_start+0x342/0x720
[   91.695243][ T6607]  audit_log_start+0x342/0x720
[   91.695265][ T6607]  ? kstrtouint+0x76/0xc0
[   91.695300][ T6607]  audit_seccomp+0x48/0x100
[   91.695333][ T6607]  ? __seccomp_filter+0x82d/0x1250
[   91.695416][ T6607]  __seccomp_filter+0x83e/0x1250
[   91.695467][ T6607]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   91.695501][ T6607]  ? vfs_write+0x7e8/0x960
[   91.695535][ T6607]  __secure_computing+0x82/0x150
[   91.695656][ T6607]  syscall_trace_enter+0xcf/0x1e0
[   91.695695][ T6607]  do_syscall_64+0xac/0x200
[   91.695719][ T6607]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   91.695824][ T6607]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   91.695860][ T6607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.695884][ T6607] RIP: 0033:0x7fcd602cf749
[   91.695906][ T6607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.695954][ T6607] RSP: 002b:00007fcd5ed37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[   91.695976][ T6607] RAX: ffffffffffffffda RBX: 00007fcd60525fa0 RCX: 00007fcd602cf749
[   91.695989][ T6607] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000006
[   91.696002][ T6607] RBP: 00007fcd5ed37090 R08: 0000000000000000 R09: 0000000000000000
[   91.696015][ T6607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   91.696028][ T6607] R13: 00007fcd60526038 R14: 00007fcd60525fa0 R15: 00007fffa499e6d8
[   91.696049][ T6607]  </TASK>
[   92.019718][ T6614] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1172'.
[   92.079674][ T6613] netlink: 'syz.1.1173': attribute type 1 has an invalid length.
[   92.418564][ T6624] netlink: 'syz.2.1177': attribute type 39 has an invalid length.
[   92.428590][ T6624] netlink: 176 bytes leftover after parsing attributes in process `syz.2.1177'.
[   92.429476][ T6626] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[   93.482805][ T6679] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.492168][ T6679] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.611196][ T6688] 9pnet_fd: Insufficient options for proto=fd
[   94.023906][ T6704] netlink: 'syz.3.1207': attribute type 3 has an invalid length.
[   94.032487][ T6704] netlink: 'syz.3.1207': attribute type 3 has an invalid length.
[   94.052467][ T6706] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.063071][ T6708] netlink: 'syz.2.1209': attribute type 39 has an invalid length.
[   94.109182][ T6706] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.169460][ T6706] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.217922][ T6716] 9pnet_fd: Insufficient options for proto=fd
[   94.225843][ T6706] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.383130][   T29] kauditd_printk_skb: 507 callbacks suppressed
[   94.383234][   T29] audit: type=1326 audit(1764310441.429:19343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.413481][   T29] audit: type=1326 audit(1764310441.439:19344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.437201][   T29] audit: type=1326 audit(1764310441.439:19345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.461286][   T29] audit: type=1326 audit(1764310441.439:19346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.485114][   T29] audit: type=1326 audit(1764310441.439:19347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.508769][   T29] audit: type=1326 audit(1764310441.439:19348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.532424][   T29] audit: type=1326 audit(1764310441.439:19349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.555962][   T29] audit: type=1326 audit(1764310441.439:19350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.579687][   T29] audit: type=1326 audit(1764310441.439:19351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.603613][   T29] audit: type=1326 audit(1764310441.439:19352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6733 comm="syz.3.1221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[   94.701958][ T6748] netlink: 'syz.0.1227': attribute type 6 has an invalid length.
[   94.812919][ T6759] netlink: 'syz.0.1229': attribute type 10 has an invalid length.
[   94.820852][ T6759] __nla_validate_parse: 6 callbacks suppressed
[   94.820869][ T6759] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1229'.
[   94.897148][ T6765] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   95.116445][ T6781] block device autoloading is deprecated and will be removed.
[   95.126957][ T6776] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1237'.
[   95.140505][ T6784] FAULT_INJECTION: forcing a failure.
[   95.140505][ T6784] name failslab, interval 1, probability 0, space 0, times 0
[   95.153220][ T6784] CPU: 1 UID: 0 PID: 6784 Comm: syz.0.1240 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   95.153252][ T6784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   95.153267][ T6784] Call Trace:
[   95.153273][ T6784]  <TASK>
[   95.153280][ T6784]  __dump_stack+0x1d/0x30
[   95.153307][ T6784]  dump_stack_lvl+0xe8/0x140
[   95.153330][ T6784]  dump_stack+0x15/0x1b
[   95.153350][ T6784]  should_fail_ex+0x265/0x280
[   95.153372][ T6784]  should_failslab+0x8c/0xb0
[   95.153409][ T6784]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   95.153503][ T6784]  ? __alloc_skb+0x101/0x320
[   95.153556][ T6784]  __alloc_skb+0x101/0x320
[   95.153654][ T6784]  ? audit_log_start+0x342/0x720
[   95.153677][ T6784]  audit_log_start+0x3a0/0x720
[   95.153702][ T6784]  ? kstrtouint+0x76/0xc0
[   95.153783][ T6784]  audit_seccomp+0x48/0x100
[   95.153828][ T6784]  ? __seccomp_filter+0x82d/0x1250
[   95.153921][ T6784]  __seccomp_filter+0x83e/0x1250
[   95.153950][ T6784]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   95.153983][ T6784]  ? vfs_write+0x7e8/0x960
[   95.154012][ T6784]  ? __rcu_read_unlock+0x4f/0x70
[   95.154112][ T6784]  ? __fget_files+0x184/0x1c0
[   95.154144][ T6784]  __secure_computing+0x82/0x150
[   95.154397][ T6784]  syscall_trace_enter+0xcf/0x1e0
[   95.154427][ T6784]  do_syscall_64+0xac/0x200
[   95.154450][ T6784]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   95.154549][ T6784]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   95.154585][ T6784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.154735][ T6784] RIP: 0033:0x7fcd602cf749
[   95.154750][ T6784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.154770][ T6784] RSP: 002b:00007fcd5ed37038 EFLAGS: 00000246 ORIG_RAX: 00000000000001bf
[   95.154789][ T6784] RAX: ffffffffffffffda RBX: 00007fcd60525fa0 RCX: 00007fcd602cf749
[   95.154811][ T6784] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000080000
[   95.154871][ T6784] RBP: 00007fcd5ed37090 R08: 0000000000000000 R09: 0000000000000000
[   95.154883][ T6784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   95.154895][ T6784] R13: 00007fcd60526038 R14: 00007fcd60525fa0 R15: 00007fffa499e6d8
[   95.154915][ T6784]  </TASK>
[   95.506272][ T6792] syzkaller1: entered promiscuous mode
[   95.512523][ T6792] syzkaller1: entered allmulticast mode
[   95.551214][ T6801] FAULT_INJECTION: forcing a failure.
[   95.551214][ T6801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   95.551253][ T6801] CPU: 1 UID: 0 PID: 6801 Comm: syz.3.1247 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   95.551283][ T6801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   95.551298][ T6801] Call Trace:
[   95.551304][ T6801]  <TASK>
[   95.551311][ T6801]  __dump_stack+0x1d/0x30
[   95.551410][ T6801]  dump_stack_lvl+0xe8/0x140
[   95.551436][ T6801]  dump_stack+0x15/0x1b
[   95.551458][ T6801]  should_fail_ex+0x265/0x280
[   95.551482][ T6801]  should_fail+0xb/0x20
[   95.551502][ T6801]  should_fail_usercopy+0x1a/0x20
[   95.551527][ T6801]  _copy_from_user+0x1c/0xb0
[   95.551584][ T6801]  restore_altstack+0x4b/0x2d0
[   95.551618][ T6801]  ? __set_task_blocked+0x23a/0x2a0
[   95.551652][ T6801]  __ia32_sys_rt_sigreturn+0xdc/0x350
[   95.551737][ T6801]  ? _raw_spin_unlock_irq+0x26/0x50
[   95.551793][ T6801]  ? signal_setup_done+0x266/0x290
[   95.551838][ T6801]  ? xfd_validate_state+0x45/0xf0
[   95.551862][ T6801]  ? fpu__clear_user_states+0x63/0x270
[   95.551896][ T6801]  ? fpregs_mark_activate+0x66/0x140
[   95.551924][ T6801]  ? fpu__clear_user_states+0x63/0x270
[   95.552012][ T6801]  ? arch_do_signal_or_restart+0x2b5/0x440
[   95.552124][ T6801]  ? __rcu_read_unlock+0x4f/0x70
[   95.552160][ T6801]  x64_sys_call+0x2d4b/0x3000
[   95.552189][ T6801]  do_syscall_64+0xd2/0x200
[   95.552278][ T6801]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   95.552313][ T6801]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   95.552368][ T6801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.552395][ T6801] RIP: 0033:0x7f1d1857b829
[   95.552413][ T6801] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[   95.552434][ T6801] RSP: 002b:00007f1d17046a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[   95.552456][ T6801] RAX: ffffffffffffffda RBX: 00007f1d18835fa0 RCX: 00007f1d1857b829
[   95.552473][ T6801] RDX: 00007f1d17046a80 RSI: 00007f1d17046bb0 RDI: 0000000000000021
[   95.552488][ T6801] RBP: 00007f1d17047090 R08: 0000000000000000 R09: 0000000000000000
[   95.552544][ T6801] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[   95.552556][ T6801] R13: 00007f1d18836038 R14: 00007f1d18835fa0 R15: 00007ffd491d5ee8
[   95.552578][ T6801]  </TASK>
[   95.682520][ T6811] infiniband !yz!: set down
[   95.806854][ T6823] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1250'.
[   95.811436][ T6811] infiniband !yz!: added team_slave_0
[   95.872363][ T6811] RDS/IB: !yz!: added
[   95.878536][ T6811] smc: adding ib device !yz! with port count 1
[   95.884757][ T6811] smc:    ib device !yz! port 1 has no pnetid
[   95.955046][ T6834] 9pnet_fd: Insufficient options for proto=fd
[   96.106874][ T6845] netlink: 'syz.4.1262': attribute type 39 has an invalid length.
[   96.164805][ T6852] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1262'.
[   96.321044][ T6856] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   96.334212][ T6856] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   96.344441][ T6856] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1265'.
[   96.375489][ T6860] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.431223][ T6860] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.489923][ T6860] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.570875][ T6860] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.648426][ T1823] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.664730][ T1823] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.692053][ T1823] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.715346][ T6875] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1272'.
[   96.725104][ T1823] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.778537][ T6890] netlink: 'syz.4.1278': attribute type 39 has an invalid length.
[   96.805228][ T6890] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1278'.
[   96.836087][ T6879] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1274'.
[   96.907289][ T6901] netlink: 'syz.3.1281': attribute type 6 has an invalid length.
[   96.922599][ T6892] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1279'.
[   96.984996][ T6914] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.060027][ T6914] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.099328][ T6919] FAULT_INJECTION: forcing a failure.
[   97.099328][ T6919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.112720][ T6919] CPU: 0 UID: 0 PID: 6919 Comm: syz.2.1290 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   97.112830][ T6919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   97.112852][ T6919] Call Trace:
[   97.112861][ T6919]  <TASK>
[   97.112872][ T6919]  __dump_stack+0x1d/0x30
[   97.112925][ T6919]  dump_stack_lvl+0xe8/0x140
[   97.112951][ T6919]  dump_stack+0x15/0x1b
[   97.113011][ T6919]  should_fail_ex+0x265/0x280
[   97.113037][ T6919]  should_fail+0xb/0x20
[   97.113057][ T6919]  should_fail_usercopy+0x1a/0x20
[   97.113083][ T6919]  _copy_from_user+0x1c/0xb0
[   97.113114][ T6919]  __sys_bpf+0x183/0x7c0
[   97.113146][ T6919]  __x64_sys_bpf+0x41/0x50
[   97.113206][ T6919]  x64_sys_call+0x2aee/0x3000
[   97.113235][ T6919]  do_syscall_64+0xd2/0x200
[   97.113260][ T6919]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   97.113326][ T6919]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   97.113365][ T6919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.113387][ T6919] RIP: 0033:0x7fd56563f749
[   97.113402][ T6919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.113454][ T6919] RSP: 002b:00007fd5640a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   97.113473][ T6919] RAX: ffffffffffffffda RBX: 00007fd565895fa0 RCX: 00007fd56563f749
[   97.113486][ T6919] RDX: 00000000000000af RSI: 00002000000000c0 RDI: 0000000000000005
[   97.113579][ T6919] RBP: 00007fd5640a7090 R08: 0000000000000000 R09: 0000000000000000
[   97.113591][ T6919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.113605][ T6919] R13: 00007fd565896038 R14: 00007fd565895fa0 R15: 00007ffcb0150358
[   97.113625][ T6919]  </TASK>
[   97.299540][ T6914] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.311545][ T6921] FAULT_INJECTION: forcing a failure.
[   97.311545][ T6921] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   97.325288][ T6921] CPU: 1 UID: 0 PID: 6921 Comm: syz.0.1292 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   97.325321][ T6921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   97.325334][ T6921] Call Trace:
[   97.325342][ T6921]  <TASK>
[   97.325351][ T6921]  __dump_stack+0x1d/0x30
[   97.325413][ T6921]  dump_stack_lvl+0xe8/0x140
[   97.325433][ T6921]  dump_stack+0x15/0x1b
[   97.325455][ T6921]  should_fail_ex+0x265/0x280
[   97.325481][ T6921]  should_fail+0xb/0x20
[   97.325501][ T6921]  should_fail_usercopy+0x1a/0x20
[   97.325588][ T6921]  _copy_from_user+0x1c/0xb0
[   97.325627][ T6921]  io_submit_one+0x52/0x11d0
[   97.325693][ T6921]  __se_sys_io_submit+0xfb/0x280
[   97.325795][ T6921]  __x64_sys_io_submit+0x43/0x50
[   97.325914][ T6921]  x64_sys_call+0x2d6c/0x3000
[   97.325993][ T6921]  do_syscall_64+0xd2/0x200
[   97.326026][ T6921]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   97.326061][ T6921]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   97.326094][ T6921]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.326196][ T6921] RIP: 0033:0x7fcd602cf749
[   97.326253][ T6921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.326277][ T6921] RSP: 002b:00007fcd5ed37038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   97.326311][ T6921] RAX: ffffffffffffffda RBX: 00007fcd60525fa0 RCX: 00007fcd602cf749
[   97.326327][ T6921] RDX: 0000200000000080 RSI: 0000000000000002 RDI: 00007fcd61061000
[   97.326343][ T6921] RBP: 00007fcd5ed37090 R08: 0000000000000000 R09: 0000000000000000
[   97.326389][ T6921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.326404][ T6921] R13: 00007fcd60526038 R14: 00007fcd60525fa0 R15: 00007fffa499e6d8
[   97.326428][ T6921]  </TASK>
[   97.529726][ T6914] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.548302][ T6929] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.557049][ T6929] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.567479][ T6929] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1294'.
[   97.599615][   T31] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.620144][   T31] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.628265][ T6933] netlink: 'syz.0.1296': attribute type 27 has an invalid length.
[   97.648414][ T6933] gre1: left promiscuous mode
[   97.653402][ T6933] ip6gre1: left allmulticast mode
[   97.660152][   T31] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.687107][ T6935] 8021q: adding VLAN 0 to HW filter on device bond0
[   97.697663][ T6935] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   97.713998][   T31] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.754289][ T6944] netlink: 'syz.4.1301': attribute type 3 has an invalid length.
[   97.764154][ T6944] netlink: 'syz.4.1301': attribute type 3 has an invalid length.
[   97.806982][ T6951] unsupported nlmsg_type 40
[   97.818375][ T6953] netlink: 'syz.4.1304': attribute type 39 has an invalid length.
[   97.853172][ T6956] block device autoloading is deprecated and will be removed.
[   97.923560][ T6964] loop3: detected capacity change from 0 to 128
[   97.936696][ T6964] FAULT_INJECTION: forcing a failure.
[   97.936696][ T6964] name failslab, interval 1, probability 0, space 0, times 0
[   97.949449][ T6964] CPU: 1 UID: 0 PID: 6964 Comm: syz.3.1308 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   97.949481][ T6964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   97.949496][ T6964] Call Trace:
[   97.949505][ T6964]  <TASK>
[   97.949514][ T6964]  __dump_stack+0x1d/0x30
[   97.949543][ T6964]  dump_stack_lvl+0xe8/0x140
[   97.949569][ T6964]  dump_stack+0x15/0x1b
[   97.949588][ T6964]  should_fail_ex+0x265/0x280
[   97.949608][ T6964]  should_failslab+0x8c/0xb0
[   97.949636][ T6964]  kmem_cache_alloc_noprof+0x50/0x480
[   97.949668][ T6964]  ? vm_area_dup+0x33/0x2c0
[   97.949709][ T6964]  vm_area_dup+0x33/0x2c0
[   97.949744][ T6964]  __split_vma+0xe9/0x650
[   97.949779][ T6964]  ? mas_find+0x5d5/0x700
[   97.949800][ T6964]  vms_gather_munmap_vmas+0x2b2/0x7b0
[   97.949843][ T6964]  mmap_region+0x52b/0x1620
[   97.949875][ T6964]  ? __rcu_read_unlock+0x4f/0x70
[   97.949906][ T6964]  ? mntput_no_expire+0x6f/0x440
[   97.949957][ T6964]  do_mmap+0x9b3/0xbe0
[   97.949982][ T6964]  vm_mmap_pgoff+0x17a/0x2e0
[   97.950027][ T6964]  ksys_mmap_pgoff+0x268/0x310
[   97.950050][ T6964]  x64_sys_call+0x14a3/0x3000
[   97.950077][ T6964]  do_syscall_64+0xd2/0x200
[   97.950099][ T6964]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   97.950127][ T6964]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   97.950168][ T6964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.950193][ T6964] RIP: 0033:0x7f1d185df749
[   97.950212][ T6964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.950230][ T6964] RSP: 002b:00007f1d17047038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   97.950247][ T6964] RAX: ffffffffffffffda RBX: 00007f1d18835fa0 RCX: 00007f1d185df749
[   97.950259][ T6964] RDX: 000000000100000b RSI: 0000000000004000 RDI: 0000200000000000
[   97.950270][ T6964] RBP: 00007f1d17047090 R08: 0000000000000004 R09: 0000000000000000
[   97.950282][ T6964] R10: 0000000000002013 R11: 0000000000000246 R12: 0000000000000001
[   97.950296][ T6964] R13: 00007f1d18836038 R14: 00007f1d18835fa0 R15: 00007ffd491d5ee8
[   97.950320][ T6964]  </TASK>
[   97.952537][ T6964] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   98.057619][ T6967] netlink: 'syz.4.1309': attribute type 3 has an invalid length.
[   98.058003][ T6964] FAT-fs (loop3): Filesystem has been set read-only
[   98.066579][ T6964] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[   98.067539][ T6967] netlink: 'syz.4.1309': attribute type 3 has an invalid length.
[   98.073707][ T6964] syz.3.1308: attempt to access beyond end of device
[   98.073707][ T6964] loop3: rw=2049, sector=2065, nr_sectors = 8 limit=128
[   98.226285][ T6970] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   98.236209][ T6970] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.290099][ T6970] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   98.300827][ T6970] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.321092][  T384] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.333648][  T384] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.351129][  T384] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.357097][ T6990] netlink: 'syz.2.1317': attribute type 6 has an invalid length.
[   98.370337][ T6970] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   98.381483][ T6970] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.396118][  T384] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.434905][ T6997] FAULT_INJECTION: forcing a failure.
[   98.434905][ T6997] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.448251][ T6997] CPU: 0 UID: 0 PID: 6997 Comm: syz.1.1320 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   98.448279][ T6997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   98.448337][ T6997] Call Trace:
[   98.448346][ T6997]  <TASK>
[   98.448356][ T6997]  __dump_stack+0x1d/0x30
[   98.448382][ T6997]  dump_stack_lvl+0xe8/0x140
[   98.448400][ T6997]  dump_stack+0x15/0x1b
[   98.448456][ T6997]  should_fail_ex+0x265/0x280
[   98.448474][ T6997]  should_fail+0xb/0x20
[   98.448488][ T6997]  should_fail_usercopy+0x1a/0x20
[   98.448509][ T6997]  _copy_from_iter+0xd2/0xe80
[   98.448543][ T6997]  packet_sendmsg+0x2003/0x31f0
[   98.448618][ T6997]  ? __rcu_read_unlock+0x4f/0x70
[   98.448642][ T6997]  ? avc_has_perm_noaudit+0x1b1/0x200
[   98.448662][ T6997]  ? avc_has_perm+0xf7/0x180
[   98.448681][ T6997]  ? selinux_socket_sendmsg+0x175/0x1b0
[   98.448760][ T6997]  ? __pfx_packet_sendmsg+0x10/0x10
[   98.448792][ T6997]  __sock_sendmsg+0x145/0x180
[   98.448817][ T6997]  ____sys_sendmsg+0x31e/0x4e0
[   98.448840][ T6997]  ___sys_sendmsg+0x17b/0x1d0
[   98.448873][ T6997]  __x64_sys_sendmsg+0xd4/0x160
[   98.448895][ T6997]  x64_sys_call+0x191e/0x3000
[   98.448964][ T6997]  do_syscall_64+0xd2/0x200
[   98.448983][ T6997]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   98.449008][ T6997]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   98.449036][ T6997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.449070][ T6997] RIP: 0033:0x7fd4f481f749
[   98.449082][ T6997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.449101][ T6997] RSP: 002b:00007fd4f327f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.449118][ T6997] RAX: ffffffffffffffda RBX: 00007fd4f4a75fa0 RCX: 00007fd4f481f749
[   98.449131][ T6997] RDX: 0000000020040051 RSI: 0000200000002ac0 RDI: 0000000000000004
[   98.449148][ T6997] RBP: 00007fd4f327f090 R08: 0000000000000000 R09: 0000000000000000
[   98.449237][ T6997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.449306][ T6997] R13: 00007fd4f4a76038 R14: 00007fd4f4a75fa0 R15: 00007ffc87877c58
[   98.449324][ T6997]  </TASK>
[   98.452422][ T6970] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   98.673948][ T6970] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.745843][  T384] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   98.754163][  T384] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.763564][ T7011] FAULT_INJECTION: forcing a failure.
[   98.763564][ T7011] name failslab, interval 1, probability 0, space 0, times 0
[   98.776297][ T7011] CPU: 1 UID: 0 PID: 7011 Comm: syz.2.1324 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   98.776327][ T7011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   98.776380][ T7011] Call Trace:
[   98.776387][ T7011]  <TASK>
[   98.776395][ T7011]  __dump_stack+0x1d/0x30
[   98.776418][ T7011]  dump_stack_lvl+0xe8/0x140
[   98.776439][ T7011]  dump_stack+0x15/0x1b
[   98.776458][ T7011]  should_fail_ex+0x265/0x280
[   98.776478][ T7011]  ? ip_fib_metrics_init+0x64/0x470
[   98.776566][ T7011]  should_failslab+0x8c/0xb0
[   98.776596][ T7011]  __kmalloc_cache_noprof+0x4c/0x4a0
[   98.776703][ T7011]  ? pcpu_block_refresh_hint+0x157/0x170
[   98.776738][ T7011]  ip_fib_metrics_init+0x64/0x470
[   98.776828][ T7011]  ? __slab_alloc+0x25/0x50
[   98.776847][ T7011]  ? __kmalloc_noprof+0x2a2/0x570
[   98.776875][ T7011]  ? fib_create_info+0xbb6/0x1980
[   98.776902][ T7011]  fib_create_info+0xbe8/0x1980
[   98.776933][ T7011]  fib_table_insert+0x60/0xeb0
[   98.777020][ T7011]  ? fib_trie_table+0xd0/0xf0
[   98.777092][ T7011]  ? fib_new_table+0x1ac/0x1c0
[   98.777111][ T7011]  inet_rtm_newroute+0xab/0x140
[   98.777139][ T7011]  ? __pfx_inet_rtm_newroute+0x10/0x10
[   98.777195][ T7011]  rtnetlink_rcv_msg+0x5fe/0x6d0
[   98.777225][ T7011]  netlink_rcv_skb+0x123/0x220
[   98.777259][ T7011]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   98.777295][ T7011]  rtnetlink_rcv+0x1c/0x30
[   98.777390][ T7011]  netlink_unicast+0x5c0/0x690
[   98.777425][ T7011]  netlink_sendmsg+0x58b/0x6b0
[   98.777493][ T7011]  ? __pfx_netlink_sendmsg+0x10/0x10
[   98.777514][ T7011]  __sock_sendmsg+0x145/0x180
[   98.777609][ T7011]  ____sys_sendmsg+0x31e/0x4e0
[   98.777632][ T7011]  ___sys_sendmsg+0x17b/0x1d0
[   98.777725][ T7011]  __x64_sys_sendmsg+0xd4/0x160
[   98.777750][ T7011]  x64_sys_call+0x191e/0x3000
[   98.777773][ T7011]  do_syscall_64+0xd2/0x200
[   98.777795][ T7011]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   98.777839][ T7011]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   98.777987][ T7011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.778009][ T7011] RIP: 0033:0x7fd56563f749
[   98.778024][ T7011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.778043][ T7011] RSP: 002b:00007fd5640a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   98.778111][ T7011] RAX: ffffffffffffffda RBX: 00007fd565895fa0 RCX: 00007fd56563f749
[   98.778124][ T7011] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000006
[   98.778136][ T7011] RBP: 00007fd5640a7090 R08: 0000000000000000 R09: 0000000000000000
[   98.778148][ T7011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.778199][ T7011] R13: 00007fd565896038 R14: 00007fd565895fa0 R15: 00007ffcb0150358
[   98.778219][ T7011]  </TASK>
[   99.064973][   T31] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   99.073475][   T31] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.083017][   T31] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   99.091263][   T31] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.099868][   T31] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   99.108130][   T31] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.213985][ T7025] netlink: 'syz.1.1330': attribute type 6 has an invalid length.
[   99.388340][   T29] kauditd_printk_skb: 987 callbacks suppressed
[   99.388359][   T29] audit: type=1326 audit(1764310446.439:20338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7015 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f80f97f2005 code=0x7ffc0000
[   99.423778][   T29] audit: type=1326 audit(1764310446.469:20339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7015 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f80f97f2005 code=0x7ffc0000
[   99.448589][   T29] audit: type=1326 audit(1764310446.499:20340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7015 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f80f97f2005 code=0x7ffc0000
[   99.473094][   T29] audit: type=1326 audit(1764310446.519:20341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7015 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f80f97f2005 code=0x7ffc0000
[   99.549726][   T29] audit: type=1326 audit(1764310446.599:20342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7015 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f80f97f2005 code=0x7ffc0000
[   99.573828][   T29] audit: type=1326 audit(1764310446.619:20343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7015 comm="syz.4.1326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f80f97f2005 code=0x7ffc0000
[   99.653056][   T29] audit: type=1326 audit(1764310446.649:20344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7034 comm="syz.1.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[   99.676750][   T29] audit: type=1326 audit(1764310446.649:20345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7034 comm="syz.1.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[   99.700468][   T29] audit: type=1326 audit(1764310446.649:20346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7034 comm="syz.1.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[   99.724040][   T29] audit: type=1326 audit(1764310446.649:20347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7034 comm="syz.1.1332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  100.105111][ T7033] lo speed is unknown, defaulting to 1000
[  100.286471][ T7054] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.349427][ T7054] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.416247][ T7054] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.444187][ T7059] __nla_validate_parse: 5 callbacks suppressed
[  100.444206][ T7059] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1339'.
[  100.479212][ T7057] lo speed is unknown, defaulting to 1000
[  100.498699][ T7054] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.544899][ T7071] FAULT_INJECTION: forcing a failure.
[  100.544899][ T7071] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.558105][ T7071] CPU: 0 UID: 0 PID: 7071 Comm: syz.1.1340 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.558178][ T7071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  100.558219][ T7071] Call Trace:
[  100.558225][ T7071]  <TASK>
[  100.558232][ T7071]  __dump_stack+0x1d/0x30
[  100.558257][ T7071]  dump_stack_lvl+0xe8/0x140
[  100.558289][ T7071]  dump_stack+0x15/0x1b
[  100.558310][ T7071]  should_fail_ex+0x265/0x280
[  100.558349][ T7071]  should_fail+0xb/0x20
[  100.558364][ T7071]  should_fail_usercopy+0x1a/0x20
[  100.558384][ T7071]  _copy_from_user+0x1c/0xb0
[  100.558420][ T7071]  do_tcp_setsockopt+0x41c/0x1670
[  100.558447][ T7071]  ? selinux_socket_setsockopt+0x1ad/0x1e0
[  100.558480][ T7071]  tcp_setsockopt+0x51/0xb0
[  100.558504][ T7071]  sock_common_setsockopt+0x69/0x80
[  100.558565][ T7071]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  100.558591][ T7071]  __sys_setsockopt+0x184/0x200
[  100.558627][ T7071]  __x64_sys_setsockopt+0x64/0x80
[  100.558754][ T7071]  x64_sys_call+0x20ec/0x3000
[  100.558781][ T7071]  do_syscall_64+0xd2/0x200
[  100.558859][ T7071]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  100.558968][ T7071]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  100.559009][ T7071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.559034][ T7071] RIP: 0033:0x7fd4f481f749
[  100.559052][ T7071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.559079][ T7071] RSP: 002b:00007fd4f325e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  100.559102][ T7071] RAX: ffffffffffffffda RBX: 00007fd4f4a76090 RCX: 00007fd4f481f749
[  100.559118][ T7071] RDX: 0000000000000022 RSI: 0000000000000006 RDI: 0000000000000003
[  100.559133][ T7071] RBP: 00007fd4f325e090 R08: 0000000000000004 R09: 0000000000000000
[  100.559148][ T7071] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001
[  100.559225][ T7071] R13: 00007fd4f4a76128 R14: 00007fd4f4a76090 R15: 00007ffc87877c58
[  100.559250][ T7071]  </TASK>
[  100.854966][ T7073] netlink: 'syz.0.1342': attribute type 6 has an invalid length.
[  100.935119][ T7079] FAULT_INJECTION: forcing a failure.
[  100.935119][ T7079] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.948346][ T7079] CPU: 0 UID: 0 PID: 7079 Comm: syz.4.1345 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  100.948379][ T7079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  100.948393][ T7079] Call Trace:
[  100.948401][ T7079]  <TASK>
[  100.948409][ T7079]  __dump_stack+0x1d/0x30
[  100.948436][ T7079]  dump_stack_lvl+0xe8/0x140
[  100.948505][ T7079]  dump_stack+0x15/0x1b
[  100.948528][ T7079]  should_fail_ex+0x265/0x280
[  100.948553][ T7079]  ? __pfx_ppp_ioctl+0x10/0x10
[  100.948658][ T7079]  should_fail+0xb/0x20
[  100.948677][ T7079]  should_fail_usercopy+0x1a/0x20
[  100.948703][ T7079]  _copy_from_user+0x1c/0xb0
[  100.948735][ T7079]  memdup_user+0x5e/0xd0
[  100.948830][ T7079]  ppp_get_filter+0xdb/0x160
[  100.948922][ T7079]  ppp_ioctl+0xb93/0x11c0
[  100.948960][ T7079]  ? __fget_files+0x184/0x1c0
[  100.948997][ T7079]  ? __pfx_ppp_ioctl+0x10/0x10
[  100.949099][ T7079]  __se_sys_ioctl+0xce/0x140
[  100.949126][ T7079]  __x64_sys_ioctl+0x43/0x50
[  100.949237][ T7079]  x64_sys_call+0x1816/0x3000
[  100.949266][ T7079]  do_syscall_64+0xd2/0x200
[  100.949371][ T7079]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  100.949404][ T7079]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  100.949447][ T7079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.949483][ T7079] RIP: 0033:0x7f80f97bf749
[  100.949498][ T7079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  100.949518][ T7079] RSP: 002b:00007f80f8227038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  100.949540][ T7079] RAX: ffffffffffffffda RBX: 00007f80f9a15fa0 RCX: 00007f80f97bf749
[  100.949598][ T7079] RDX: 0000200000000080 RSI: 0000000040107447 RDI: 0000000000000006
[  100.949611][ T7079] RBP: 00007f80f8227090 R08: 0000000000000000 R09: 0000000000000000
[  100.949622][ T7079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.949635][ T7079] R13: 00007f80f9a16038 R14: 00007f80f9a15fa0 R15: 00007ffe1f2611d8
[  100.949660][ T7079]  </TASK>
[  101.210706][ T7087] sch_tbf: peakrate 7 is lower than or equals to rate 7 !
[  101.221483][ T7084] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1347'.
[  101.352284][ T7100] block device autoloading is deprecated and will be removed.
[  101.363036][ T7102] loop3: detected capacity change from 0 to 512
[  101.407285][ T7102] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.414648][ T7104] netlink: 'syz.1.1354': attribute type 6 has an invalid length.
[  101.427451][ T7102] ext4 filesystem being mounted at /266/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.439664][ T7102] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.505511][ T7111] xt_CT: You must specify a L4 protocol and not use inversions on it
[  101.531878][ T7111] wireguard0: entered promiscuous mode
[  101.537483][ T7111] wireguard0: entered allmulticast mode
[  101.577909][ T7118] loop9: detected capacity change from 0 to 7
[  101.584948][ T7118] Buffer I/O error on dev loop9, logical block 0, async page read
[  101.593803][ T7118] Buffer I/O error on dev loop9, logical block 0, async page read
[  101.601908][ T7118]  loop9: unable to read partition table
[  101.608755][ T7118] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ�����
[  101.608755][ T7118] 
) failed (rc=-5)
[  101.623158][ T3553] Buffer I/O error on dev loop9, logical block 0, async page read
[  101.631290][ T3553] Buffer I/O error on dev loop9, logical block 0, async page read
[  101.639288][ T3553] Buffer I/O error on dev loop9, logical block 0, async page read
[  101.647332][ T3553] Buffer I/O error on dev loop9, logical block 0, async page read
[  101.655408][ T3553] Buffer I/O error on dev loop9, logical block 0, async page read
[  101.792212][ T7124] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1360'.
[  101.916347][ T7134] netlink: 176 bytes leftover after parsing attributes in process `syz.0.1364'.
[  102.113357][ T1755] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.125274][ T1755] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.138369][   T31] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.149747][   T31] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.179675][ T7137] block device autoloading is deprecated and will be removed.
[  102.489674][ T7147] loop3: detected capacity change from 0 to 1024
[  102.500603][ T7147] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  102.513177][ T7147] ext4 filesystem being mounted at /269/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.645517][ T7160] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  102.655507][ T7160] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.670766][ T7161] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1371'.
[  102.702223][ T7160] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  102.712204][ T7160] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.725915][ T3320] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  102.747118][ T7166] 9pnet_fd: Insufficient options for proto=fd
[  102.759582][ T7160] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  102.769669][ T7160] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.801201][ T7169] dummy0: entered allmulticast mode
[  102.806847][ T7167] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1376'.
[  102.847168][ T7160] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  102.857213][ T7160] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.106042][ T7179] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1382'.
[  103.151954][ T7185] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1384'.
[  103.266865][ T7193] IPv6: Can't replace route, no match found
[  103.296284][ T7195] 9pnet_fd: Insufficient options for proto=fd
[  103.317739][ T7189] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1386'.
[  103.355430][ T7200] FAULT_INJECTION: forcing a failure.
[  103.355430][ T7200] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.368725][ T7200] CPU: 1 UID: 0 PID: 7200 Comm: syz.2.1390 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  103.368757][ T7200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  103.368773][ T7200] Call Trace:
[  103.368780][ T7200]  <TASK>
[  103.368789][ T7200]  __dump_stack+0x1d/0x30
[  103.368817][ T7200]  dump_stack_lvl+0xe8/0x140
[  103.368906][ T7200]  dump_stack+0x15/0x1b
[  103.368929][ T7200]  should_fail_ex+0x265/0x280
[  103.368954][ T7200]  should_fail+0xb/0x20
[  103.368990][ T7200]  should_fail_usercopy+0x1a/0x20
[  103.369017][ T7200]  _copy_from_iter+0xd2/0xe80
[  103.369046][ T7200]  ? __build_skb_around+0x1ab/0x200
[  103.369081][ T7200]  ? __alloc_skb+0x223/0x320
[  103.369200][ T7200]  netlink_sendmsg+0x471/0x6b0
[  103.369307][ T7200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  103.369335][ T7200]  __sock_sendmsg+0x145/0x180
[  103.369368][ T7200]  ____sys_sendmsg+0x31e/0x4e0
[  103.369398][ T7200]  ___sys_sendmsg+0x17b/0x1d0
[  103.369501][ T7200]  __x64_sys_sendmsg+0xd4/0x160
[  103.369532][ T7200]  x64_sys_call+0x191e/0x3000
[  103.369563][ T7200]  do_syscall_64+0xd2/0x200
[  103.369583][ T7200]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  103.369672][ T7200]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  103.369712][ T7200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.369735][ T7200] RIP: 0033:0x7fd56563f749
[  103.369826][ T7200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.369846][ T7200] RSP: 002b:00007fd5640a7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  103.369864][ T7200] RAX: ffffffffffffffda RBX: 00007fd565895fa0 RCX: 00007fd56563f749
[  103.369876][ T7200] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  103.369888][ T7200] RBP: 00007fd5640a7090 R08: 0000000000000000 R09: 0000000000000000
[  103.369899][ T7200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.369910][ T7200] R13: 00007fd565896038 R14: 00007fd565895fa0 R15: 00007ffcb0150358
[  103.369955][ T7200]  </TASK>
[  103.611520][ T7206] validate_nla: 2 callbacks suppressed
[  103.611539][ T7206] netlink: 'syz.1.1393': attribute type 39 has an invalid length.
[  103.665133][ T7213] netlink: 176 bytes leftover after parsing attributes in process `syz.1.1393'.
[  103.872418][ T7226] 9pnet_fd: Insufficient options for proto=fd
[  103.900163][ T7228] FAULT_INJECTION: forcing a failure.
[  103.900163][ T7228] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.913481][ T7228] CPU: 1 UID: 0 PID: 7228 Comm: syz.2.1400 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  103.913512][ T7228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  103.913601][ T7228] Call Trace:
[  103.913607][ T7228]  <TASK>
[  103.913613][ T7228]  __dump_stack+0x1d/0x30
[  103.913652][ T7228]  dump_stack_lvl+0xe8/0x140
[  103.913695][ T7228]  dump_stack+0x15/0x1b
[  103.913740][ T7228]  should_fail_ex+0x265/0x280
[  103.913757][ T7228]  should_fail+0xb/0x20
[  103.913771][ T7228]  should_fail_usercopy+0x1a/0x20
[  103.913789][ T7228]  strncpy_from_user+0x25/0x230
[  103.913813][ T7228]  ? __kmalloc_cache_noprof+0x249/0x4a0
[  103.913987][ T7228]  __se_sys_memfd_create+0x1ff/0x590
[  103.914011][ T7228]  __x64_sys_memfd_create+0x31/0x40
[  103.914033][ T7228]  x64_sys_call+0x2ac2/0x3000
[  103.914053][ T7228]  do_syscall_64+0xd2/0x200
[  103.914073][ T7228]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  103.914098][ T7228]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  103.914198][ T7228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.914217][ T7228] RIP: 0033:0x7fd56563f749
[  103.914229][ T7228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.914245][ T7228] RSP: 002b:00007fd5640a6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  103.914262][ T7228] RAX: ffffffffffffffda RBX: 0000000000000588 RCX: 00007fd56563f749
[  103.914292][ T7228] RDX: 00007fd5640a6ef0 RSI: 0000000000000000 RDI: 00007fd5656c4960
[  103.914302][ T7228] RBP: 0000200000000680 R08: 00007fd5640a6bb7 R09: 00007fd5640a6e40
[  103.914318][ T7228] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  103.914377][ T7228] R13: 00007fd5640a6ef0 R14: 00007fd5640a6eb0 R15: 0000200000000e80
[  103.914458][ T7228]  </TASK>
[  104.154226][ T7237] block device autoloading is deprecated and will be removed.
[  104.198918][ T7245] netlink: 'syz.2.1408': attribute type 3 has an invalid length.
[  104.206846][ T7245] netlink: 'syz.2.1408': attribute type 3 has an invalid length.
[  104.405937][   T29] kauditd_printk_skb: 1561 callbacks suppressed
[  104.405952][   T29] audit: type=1326 audit(1764310451.449:21907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  104.435746][   T29] audit: type=1326 audit(1764310451.449:21908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  104.459254][   T29] audit: type=1326 audit(1764310451.449:21909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  104.486780][   T29] audit: type=1326 audit(1764310451.509:21910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  104.510293][   T29] audit: type=1326 audit(1764310451.509:21911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  104.533752][   T29] audit: type=1326 audit(1764310451.509:21912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  104.557311][   T29] audit: type=1326 audit(1764310451.509:21913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  104.580867][   T29] audit: type=1326 audit(1764310451.509:21914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  104.604389][   T29] audit: type=1326 audit(1764310451.509:21915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  104.627992][   T29] audit: type=1326 audit(1764310451.529:21916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7252 comm="syz.2.1411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  104.874880][ T1755] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  104.883209][ T1755] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.904077][ T1755] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  104.912377][ T1755] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.924468][ T1755] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  104.932754][ T1755] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.944418][ T1755] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  104.952773][ T1755] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.028926][ T7278] veth0: entered promiscuous mode
[  105.036192][ T7273] veth0: left promiscuous mode
[  105.442876][ T7293] FAULT_INJECTION: forcing a failure.
[  105.442876][ T7293] name failslab, interval 1, probability 0, space 0, times 0
[  105.456226][ T7293] CPU: 0 UID: 0 PID: 7293 Comm: syz.2.1423 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  105.456259][ T7293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  105.456312][ T7293] Call Trace:
[  105.456322][ T7293]  <TASK>
[  105.456332][ T7293]  __dump_stack+0x1d/0x30
[  105.456354][ T7293]  dump_stack_lvl+0xe8/0x140
[  105.456375][ T7293]  dump_stack+0x15/0x1b
[  105.456440][ T7293]  should_fail_ex+0x265/0x280
[  105.456463][ T7293]  should_failslab+0x8c/0xb0
[  105.456546][ T7293]  kmem_cache_alloc_noprof+0x50/0x480
[  105.456582][ T7293]  ? getname_flags+0x80/0x3b0
[  105.456639][ T7293]  getname_flags+0x80/0x3b0
[  105.456677][ T7293]  __x64_sys_rename+0x40/0x70
[  105.456709][ T7293]  x64_sys_call+0x1f9/0x3000
[  105.456730][ T7293]  do_syscall_64+0xd2/0x200
[  105.456767][ T7293]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  105.456803][ T7293]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  105.456890][ T7293]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.456917][ T7293] RIP: 0033:0x7fd56563f749
[  105.456978][ T7293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.457000][ T7293] RSP: 002b:00007fd5640a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  105.457023][ T7293] RAX: ffffffffffffffda RBX: 00007fd565895fa0 RCX: 00007fd56563f749
[  105.457035][ T7293] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000200000000000
[  105.457047][ T7293] RBP: 00007fd5640a7090 R08: 0000000000000000 R09: 0000000000000000
[  105.457058][ T7293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.457086][ T7293] R13: 00007fd565896038 R14: 00007fd565895fa0 R15: 00007ffcb0150358
[  105.457105][ T7293]  </TASK>
[  105.733256][ T7297] netlink: 'syz.2.1425': attribute type 3 has an invalid length.
[  105.742734][ T7297] netlink: 'syz.2.1425': attribute type 3 has an invalid length.
[  105.926802][ T7307] block device autoloading is deprecated and will be removed.
[  105.958337][ T7308] __nla_validate_parse: 2 callbacks suppressed
[  105.958354][ T7308] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1428'.
[  106.110545][ T7331] FAULT_INJECTION: forcing a failure.
[  106.110545][ T7331] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.123681][ T7331] CPU: 1 UID: 0 PID: 7331 Comm: syz.3.1435 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  106.123716][ T7331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  106.123732][ T7331] Call Trace:
[  106.123740][ T7331]  <TASK>
[  106.123825][ T7331]  __dump_stack+0x1d/0x30
[  106.123861][ T7331]  dump_stack_lvl+0xe8/0x140
[  106.123888][ T7331]  dump_stack+0x15/0x1b
[  106.123911][ T7331]  should_fail_ex+0x265/0x280
[  106.123937][ T7331]  should_fail+0xb/0x20
[  106.124033][ T7331]  should_fail_usercopy+0x1a/0x20
[  106.124056][ T7331]  _copy_from_user+0x1c/0xb0
[  106.124082][ T7331]  restore_altstack+0x4b/0x2d0
[  106.124172][ T7331]  ? __set_task_blocked+0x23a/0x2a0
[  106.124222][ T7331]  __ia32_sys_rt_sigreturn+0xdc/0x350
[  106.124242][ T7331]  ? _raw_spin_unlock_irq+0x26/0x50
[  106.124265][ T7331]  ? signal_setup_done+0x266/0x290
[  106.124283][ T7331]  ? xfd_validate_state+0x45/0xf0
[  106.124365][ T7331]  ? fpu__clear_user_states+0x63/0x270
[  106.124389][ T7331]  ? fpregs_mark_activate+0x66/0x140
[  106.124413][ T7331]  ? fpu__clear_user_states+0x63/0x270
[  106.124455][ T7331]  ? arch_do_signal_or_restart+0x2b5/0x440
[  106.124522][ T7331]  ? __rcu_read_unlock+0x4f/0x70
[  106.124622][ T7331]  x64_sys_call+0x2d4b/0x3000
[  106.124642][ T7331]  do_syscall_64+0xd2/0x200
[  106.124661][ T7331]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  106.124719][ T7331]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  106.124750][ T7331]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.124824][ T7331] RIP: 0033:0x7f1d1857b829
[  106.124837][ T7331] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  106.124858][ T7331] RSP: 002b:00007f1d17046a80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  106.124875][ T7331] RAX: ffffffffffffffda RBX: 00007f1d18835fa0 RCX: 00007f1d1857b829
[  106.124886][ T7331] RDX: 00007f1d17046a80 RSI: 00007f1d17046bb0 RDI: 0000000000000021
[  106.124897][ T7331] RBP: 00007f1d17047090 R08: 0000000000000000 R09: 00000000fffffffc
[  106.124913][ T7331] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  106.124929][ T7331] R13: 00007f1d18836038 R14: 00007f1d18835fa0 R15: 00007ffd491d5ee8
[  106.124953][ T7331]  </TASK>
[  106.130188][ T7339] netlink: 'syz.4.1437': attribute type 3 has an invalid length.
[  106.354929][ T7339] netlink: 'syz.4.1437': attribute type 3 has an invalid length.
[  106.429476][ T7368] block device autoloading is deprecated and will be removed.
[  106.464066][ T7373] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1441'.
[  106.725391][ T7384] netlink: 'syz.3.1446': attribute type 39 has an invalid length.
[  106.777883][ T7391] netlink: 176 bytes leftover after parsing attributes in process `syz.3.1446'.
[  106.854566][ T7402] 9pnet_fd: Insufficient options for proto=fd
[  106.923331][ T7404] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1453'.
[  107.190980][ T7426] netlink: 'syz.0.1461': attribute type 39 has an invalid length.
[  107.201091][ T7426] netlink: 176 bytes leftover after parsing attributes in process `syz.0.1461'.
[  107.448664][ T7445] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1467'.
[  107.654307][ T7466] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.680259][ T7467] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1475'.
[  107.709716][ T7466] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.770210][ T7466] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.849678][ T7466] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.917601][   T37] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  107.929024][   T37] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  107.940774][   T37] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  107.953048][   T37] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.007436][ T7471] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1478'.
[  108.120537][ T7488] 9pnet_fd: Insufficient options for proto=fd
[  108.221073][ T7491] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1482'.
[  108.236646][ T7497] netlink: 'syz.1.1487': attribute type 39 has an invalid length.
[  108.245843][ T7497] netlink: 176 bytes leftover after parsing attributes in process `syz.1.1487'.
[  108.547893][ T7515] FAULT_INJECTION: forcing a failure.
[  108.547893][ T7515] name failslab, interval 1, probability 0, space 0, times 0
[  108.560659][ T7515] CPU: 1 UID: 0 PID: 7515 Comm: syz.4.1492 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  108.560699][ T7515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  108.560752][ T7515] Call Trace:
[  108.560760][ T7515]  <TASK>
[  108.560768][ T7515]  __dump_stack+0x1d/0x30
[  108.560864][ T7515]  dump_stack_lvl+0xe8/0x140
[  108.560887][ T7515]  dump_stack+0x15/0x1b
[  108.560904][ T7515]  should_fail_ex+0x265/0x280
[  108.560994][ T7515]  should_failslab+0x8c/0xb0
[  108.561031][ T7515]  __kmalloc_noprof+0xa5/0x570
[  108.561060][ T7515]  ? kernfs_fop_write_iter+0xe2/0x300
[  108.561079][ T7515]  ? selinux_file_permission+0x1e4/0x320
[  108.561181][ T7515]  kernfs_fop_write_iter+0xe2/0x300
[  108.561270][ T7515]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  108.561341][ T7515]  vfs_write+0x52a/0x960
[  108.561381][ T7515]  ksys_write+0xda/0x1a0
[  108.561425][ T7515]  __x64_sys_write+0x40/0x50
[  108.561479][ T7515]  x64_sys_call+0x2802/0x3000
[  108.561508][ T7515]  do_syscall_64+0xd2/0x200
[  108.561534][ T7515]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  108.561570][ T7515]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  108.561614][ T7515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.561692][ T7515] RIP: 0033:0x7f80f97bf749
[  108.561706][ T7515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.561763][ T7515] RSP: 002b:00007f80f8227038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  108.561787][ T7515] RAX: ffffffffffffffda RBX: 00007f80f9a15fa0 RCX: 00007f80f97bf749
[  108.561802][ T7515] RDX: 0000000000000009 RSI: 0000000000000000 RDI: 0000000000000007
[  108.561817][ T7515] RBP: 00007f80f8227090 R08: 0000000000000000 R09: 0000000000000000
[  108.561944][ T7515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  108.561959][ T7515] R13: 00007f80f9a16038 R14: 00007f80f9a15fa0 R15: 00007ffe1f2611d8
[  108.561984][ T7515]  </TASK>
[  108.934242][ T7532] netlink: 'syz.2.1497': attribute type 3 has an invalid length.
[  108.942864][ T7532] netlink: 'syz.2.1497': attribute type 3 has an invalid length.
[  109.013742][ T7541] 9pnet_fd: Insufficient options for proto=fd
[  109.042269][ T7544] netlink: 'syz.3.1503': attribute type 39 has an invalid length.
[  109.064087][ T7547] netlink: 'syz.2.1500': attribute type 10 has an invalid length.
[  109.231372][ T7558] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.269608][ T7558] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.310248][ T7558] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.350364][ T7558] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  109.407815][   T29] kauditd_printk_skb: 1856 callbacks suppressed
[  109.407832][   T29] audit: type=1326 audit(1764310456.449:23773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  109.437952][   T29] audit: type=1326 audit(1764310456.459:23774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  109.461460][   T29] audit: type=1326 audit(1764310456.459:23775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  109.485191][   T29] audit: type=1326 audit(1764310456.459:23776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  109.508804][   T29] audit: type=1326 audit(1764310456.459:23777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd4f48165e7 code=0x7ffc0000
[  109.532442][   T29] audit: type=1326 audit(1764310456.459:23778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd4f47bb829 code=0x7ffc0000
[  109.555936][   T29] audit: type=1326 audit(1764310456.459:23779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  109.579467][   T29] audit: type=1326 audit(1764310456.459:23780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd4f48165e7 code=0x7ffc0000
[  109.602952][   T29] audit: type=1326 audit(1764310456.459:23781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd4f47bb829 code=0x7ffc0000
[  109.626442][   T29] audit: type=1326 audit(1764310456.459:23782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7563 comm="syz.1.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  109.632226][ T7568] netlink: 'syz.4.1510': attribute type 3 has an invalid length.
[  109.658603][ T7568] netlink: 'syz.4.1510': attribute type 3 has an invalid length.
[  109.678005][   T31] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.695696][   T31] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.726755][   T31] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.735592][ T7574] 9pnet_fd: Insufficient options for proto=fd
[  109.753633][   T31] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.852796][ T7589] netlink: 'syz.4.1517': attribute type 10 has an invalid length.
[  109.974332][ T7593] block device autoloading is deprecated and will be removed.
[  110.030928][ T7599] netlink: 'syz.3.1524': attribute type 6 has an invalid length.
[  110.068143][ T7605] 9pnet_fd: Insufficient options for proto=fd
[  110.091281][ T7609] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.161736][ T7609] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.190821][ T7617] netlink: 'syz.1.1533': attribute type 39 has an invalid length.
[  110.250870][ T7609] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.299643][ T7609] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  110.344750][ T7630] netlink: 'syz.0.1539': attribute type 6 has an invalid length.
[  111.155168][ T7653] ALSA: seq fatal error: cannot create timer (-19)
[  111.380181][ T7667] lo speed is unknown, defaulting to 1000
[  111.402847][ T7671] __nla_validate_parse: 9 callbacks suppressed
[  111.402876][ T7671] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1557'.
[  111.466048][ T7680] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1560'.
[  111.526395][ T7686] ALSA: seq fatal error: cannot create timer (-19)
[  111.719873][ T7695] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1566'.
[  111.824848][ T7710] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1572'.
[  112.417646][ T7739] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1580'.
[  112.506566][ T7746] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1584'.
[  112.604904][ T7760] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.626931][ T7765] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1590'.
[  112.652775][ T7766] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1587'.
[  112.663918][ T7760] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.730938][ T7760] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.779496][ T7760] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.798972][   T37] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  112.815550][   T37] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  112.835632][   T37] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  112.859012][   T37] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  112.883833][   T37] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  112.886859][ T7780] block device autoloading is deprecated and will be removed.
[  112.905294][   T37] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  112.926819][ T7782] ALSA: seq fatal error: cannot create timer (-19)
[  112.937704][   T37] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  112.956124][   T37] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  113.118909][ T7811] block device autoloading is deprecated and will be removed.
[  113.212829][ T7809] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1608'.
[  113.225473][ T7819] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1611'.
[  113.261873][ T7821] ALSA: seq fatal error: cannot create timer (-19)
[  113.572167][ T7856] block device autoloading is deprecated and will be removed.
[  113.690733][ T7874] FAULT_INJECTION: forcing a failure.
[  113.690733][ T7874] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  113.704054][ T7874] CPU: 0 UID: 0 PID: 7874 Comm: syz.2.1635 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  113.704087][ T7874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  113.704103][ T7874] Call Trace:
[  113.704111][ T7874]  <TASK>
[  113.704124][ T7874]  __dump_stack+0x1d/0x30
[  113.704151][ T7874]  dump_stack_lvl+0xe8/0x140
[  113.704220][ T7874]  dump_stack+0x15/0x1b
[  113.704304][ T7874]  should_fail_ex+0x265/0x280
[  113.704324][ T7874]  should_fail+0xb/0x20
[  113.704345][ T7874]  should_fail_usercopy+0x1a/0x20
[  113.704371][ T7874]  _copy_from_user+0x1c/0xb0
[  113.704438][ T7874]  get_timespec64+0x4c/0x100
[  113.704463][ T7874]  __x64_sys_io_getevents+0x94/0x190
[  113.704563][ T7874]  x64_sys_call+0x1a5e/0x3000
[  113.704585][ T7874]  do_syscall_64+0xd2/0x200
[  113.704654][ T7874]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  113.704682][ T7874]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  113.704725][ T7874]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.704760][ T7874] RIP: 0033:0x7fd56563f749
[  113.704777][ T7874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.704799][ T7874] RSP: 002b:00007fd5640a7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d0
[  113.704823][ T7874] RAX: ffffffffffffffda RBX: 00007fd565895fa0 RCX: 00007fd56563f749
[  113.704866][ T7874] RDX: 0000000000000008 RSI: 0000000000000004 RDI: 00007fd56407f000
[  113.704891][ T7874] RBP: 00007fd5640a7090 R08: 00002000000007c0 R09: 0000000000000000
[  113.704903][ T7874] R10: 00002000000006c0 R11: 0000000000000246 R12: 0000000000000001
[  113.704914][ T7874] R13: 00007fd565896038 R14: 00007fd565895fa0 R15: 00007ffcb0150358
[  113.704937][ T7874]  </TASK>
[  113.940914][ T7885] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.989154][ T7885] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.041620][ T7885] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.093261][ T7898] ALSA: seq fatal error: cannot create timer (-19)
[  114.109906][ T7885] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.323199][ T7911] validate_nla: 11 callbacks suppressed
[  114.323217][ T7911] netlink: 'syz.0.1648': attribute type 3 has an invalid length.
[  114.337945][ T7911] netlink: 'syz.0.1648': attribute type 3 has an invalid length.
[  114.376196][ T7913] 9pnet_fd: Insufficient options for proto=fd
[  114.417366][   T29] kauditd_printk_skb: 2459 callbacks suppressed
[  114.417386][   T29] audit: type=1326 audit(1764310461.459:26242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7878 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd4f48165e7 code=0x7ffc0000
[  114.447200][   T29] audit: type=1326 audit(1764310461.459:26243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7878 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd4f47bb829 code=0x7ffc0000
[  114.470781][   T29] audit: type=1326 audit(1764310461.459:26244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7878 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  114.494697][   T29] audit: type=1326 audit(1764310461.469:26245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7886 comm="syz.2.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  114.518417][   T29] audit: type=1326 audit(1764310461.469:26246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7886 comm="syz.2.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  114.542185][   T29] audit: type=1326 audit(1764310461.469:26247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7886 comm="syz.2.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  114.565859][   T29] audit: type=1326 audit(1764310461.469:26248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f80f97b65e7 code=0x7ffc0000
[  114.589488][   T29] audit: type=1326 audit(1764310461.469:26249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f80f975b829 code=0x7ffc0000
[  114.613040][   T29] audit: type=1326 audit(1764310461.469:26250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f97bf749 code=0x7ffc0000
[  114.637038][   T29] audit: type=1326 audit(1764310461.499:26251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7879 comm="syz.4.1636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f80f97b65e7 code=0x7ffc0000
[  114.755806][ T7930] block device autoloading is deprecated and will be removed.
[  114.814368][ T7936] FAULT_INJECTION: forcing a failure.
[  114.814368][ T7936] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.827750][ T7936] CPU: 1 UID: 0 PID: 7936 Comm: syz.0.1659 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  114.827777][ T7936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  114.827789][ T7936] Call Trace:
[  114.827795][ T7936]  <TASK>
[  114.827803][ T7936]  __dump_stack+0x1d/0x30
[  114.827832][ T7936]  dump_stack_lvl+0xe8/0x140
[  114.827876][ T7936]  dump_stack+0x15/0x1b
[  114.827897][ T7936]  should_fail_ex+0x265/0x280
[  114.827917][ T7936]  should_fail+0xb/0x20
[  114.827936][ T7936]  should_fail_usercopy+0x1a/0x20
[  114.827960][ T7936]  _copy_from_user+0x1c/0xb0
[  114.828000][ T7936]  ___sys_sendmsg+0xc1/0x1d0
[  114.828043][ T7936]  __x64_sys_sendmsg+0xd4/0x160
[  114.828075][ T7936]  x64_sys_call+0x191e/0x3000
[  114.828147][ T7936]  do_syscall_64+0xd2/0x200
[  114.828174][ T7936]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  114.828203][ T7936]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  114.828237][ T7936]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.828283][ T7936] RIP: 0033:0x7fcd602cf749
[  114.828303][ T7936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.828357][ T7936] RSP: 002b:00007fcd5ed37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.828419][ T7936] RAX: ffffffffffffffda RBX: 00007fcd60525fa0 RCX: 00007fcd602cf749
[  114.828433][ T7936] RDX: 00000000000000fc RSI: 0000200000000600 RDI: 0000000000000006
[  114.828448][ T7936] RBP: 00007fcd5ed37090 R08: 0000000000000000 R09: 0000000000000000
[  114.828494][ T7936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.828509][ T7936] R13: 00007fcd60526038 R14: 00007fcd60525fa0 R15: 00007fffa499e6d8
[  114.828557][ T7936]  </TASK>
[  114.839604][ T7938] netlink: 'syz.1.1660': attribute type 6 has an invalid length.
[  115.023815][ T7952] netlink: 'syz.2.1666': attribute type 39 has an invalid length.
[  115.059429][ T7960] FAULT_INJECTION: forcing a failure.
[  115.059429][ T7960] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.072562][ T7960] CPU: 0 UID: 0 PID: 7960 Comm: syz.1.1667 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  115.072679][ T7960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  115.072693][ T7960] Call Trace:
[  115.072699][ T7960]  <TASK>
[  115.072706][ T7960]  __dump_stack+0x1d/0x30
[  115.072792][ T7960]  dump_stack_lvl+0xe8/0x140
[  115.072812][ T7960]  dump_stack+0x15/0x1b
[  115.072830][ T7960]  should_fail_ex+0x265/0x280
[  115.072862][ T7960]  should_fail+0xb/0x20
[  115.072936][ T7960]  should_fail_usercopy+0x1a/0x20
[  115.072957][ T7960]  _copy_from_user+0x1c/0xb0
[  115.072983][ T7960]  __sys_connect+0xd0/0x2b0
[  115.073092][ T7960]  __x64_sys_connect+0x3f/0x50
[  115.073122][ T7960]  x64_sys_call+0x2c0c/0x3000
[  115.073145][ T7960]  do_syscall_64+0xd2/0x200
[  115.073221][ T7960]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  115.073286][ T7960]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  115.073321][ T7960]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.073378][ T7960] RIP: 0033:0x7fd4f481f749
[  115.073395][ T7960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.073413][ T7960] RSP: 002b:00007fd4f327f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  115.073433][ T7960] RAX: ffffffffffffffda RBX: 00007fd4f4a75fa0 RCX: 00007fd4f481f749
[  115.073445][ T7960] RDX: 000000000000001c RSI: 0000200000000080 RDI: 0000000000000003
[  115.073457][ T7960] RBP: 00007fd4f327f090 R08: 0000000000000000 R09: 0000000000000000
[  115.073470][ T7960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.073514][ T7960] R13: 00007fd4f4a76038 R14: 00007fd4f4a75fa0 R15: 00007ffc87877c58
[  115.073534][ T7960]  </TASK>
[  115.282297][ T7966] block device autoloading is deprecated and will be removed.
[  115.293751][ T7968] 9pnet_virtio: no channels available for device 127.0.0.1
[  115.525488][ T7988] 9pnet_fd: Insufficient options for proto=fd
[  115.575419][ T7992] netlink: 'syz.1.1678': attribute type 6 has an invalid length.
[  115.637874][ T7996] netlink: 'syz.1.1680': attribute type 39 has an invalid length.
[  116.188406][ T8019] netlink: 'syz.4.1690': attribute type 6 has an invalid length.
[  116.717097][ T8030] ALSA: seq fatal error: cannot create timer (-19)
[  116.866496][ T8042] __nla_validate_parse: 12 callbacks suppressed
[  116.866513][ T8042] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1696'.
[  117.088755][ T8046] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1700'.
[  117.114962][ T8052] netlink: 'syz.4.1702': attribute type 6 has an invalid length.
[  117.214382][ T8056] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1703'.
[  117.380366][ T8058] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1704'.
[  117.675122][ T8079] ALSA: seq fatal error: cannot create timer (-19)
[  117.705167][ T1755] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.718541][   T37] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.732706][   T37] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.746218][   T37] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.806116][ T8089] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1715'.
[  117.968332][ T8106] netlink: 'syz.3.1720': attribute type 6 has an invalid length.
[  118.028534][ T8110] ALSA: seq fatal error: cannot create timer (-19)
[  118.076428][ T8119] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.139758][ T8119] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.189318][ T8119] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.237770][ T8125] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1728'.
[  118.250791][ T8119] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.474304][ T8135] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1731'.
[  118.909348][ T8145] ALSA: seq fatal error: cannot create timer (-19)
[  118.975947][ T8152] 9pnet_fd: Insufficient options for proto=fd
[  119.270988][ T8164] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1743'.
[  119.427140][ T8172] ALSA: seq fatal error: cannot create timer (-19)
[  119.478871][ T8174] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1746'.
[  119.490170][   T29] kauditd_printk_skb: 2371 callbacks suppressed
[  119.490188][   T29] audit: type=1326 audit(1764310466.539:28623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8169 comm="syz.2.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  119.523816][   T29] audit: type=1326 audit(1764310466.539:28624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.547642][   T29] audit: type=1326 audit(1764310466.539:28625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.551503][ T8183] netlink: 120 bytes leftover after parsing attributes in process `syz.4.1751'.
[  119.571203][   T29] audit: type=1326 audit(1764310466.539:28626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.604114][   T29] audit: type=1326 audit(1764310466.539:28627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.627643][   T29] audit: type=1326 audit(1764310466.539:28628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.651295][   T29] audit: type=1326 audit(1764310466.539:28629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.674809][   T29] audit: type=1326 audit(1764310466.539:28630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.698365][   T29] audit: type=1326 audit(1764310466.539:28631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.722097][   T29] audit: type=1326 audit(1764310466.539:28632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8180 comm="syz.1.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4f481f749 code=0x7ffc0000
[  119.938575][   T31] Bluetooth: hci0: Frame reassembly failed (-84)
[  120.341922][ T8205] netlink: 'syz.2.1757': attribute type 39 has an invalid length.
[  120.632465][ T8210] ALSA: seq fatal error: cannot create timer (-19)
[  121.235635][ T8239] netlink: 'syz.2.1770': attribute type 6 has an invalid length.
[  121.333539][ T8241] ALSA: seq fatal error: cannot create timer (-19)
[  121.725871][ T8265] netlink: 'syz.1.1780': attribute type 39 has an invalid length.
[  121.769756][ T8269] netlink: 'syz.4.1782': attribute type 6 has an invalid length.
[  121.813110][ T8273] ALSA: seq fatal error: cannot create timer (-19)
[  121.966011][ T8283] __nla_validate_parse: 18 callbacks suppressed
[  121.966029][ T8283] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1787'.
[  121.981474][ T3536] Bluetooth: hci0: command 0x1003 tx timeout
[  121.981488][ T4732] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  122.154616][   T37] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  122.166136][   T37] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  122.177836][   T37] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  122.189018][ T1755] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  122.274064][ T8290] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1790'.
[  122.394397][ T8306] netlink: 'syz.4.1795': attribute type 6 has an invalid length.
[  122.512075][ T8312] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1798'.
[  122.637575][ T8322] ALSA: seq fatal error: cannot create timer (-19)
[  122.748138][ T8338] netlink: 'syz.2.1807': attribute type 6 has an invalid length.
[  122.823706][ T8346] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1811'.
[  122.961821][ T8363] ALSA: seq fatal error: cannot create timer (-19)
[  123.015740][ T8368] block device autoloading is deprecated and will be removed.
[  123.059656][ T8364] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1817'.
[  123.128443][ T8377] netlink: 'syz.2.1821': attribute type 6 has an invalid length.
[  123.243587][ T8383] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1824'.
[  123.395914][ T8399] ALSA: seq fatal error: cannot create timer (-19)
[  123.489492][ T8398] netlink: 180 bytes leftover after parsing attributes in process `syz.4.1828'.
[  123.591911][ T8412] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  123.603543][ T8411] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1833'.
[  123.612543][ T8411] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1833'.
[  123.615228][ T8413] netlink: 180 bytes leftover after parsing attributes in process `syz.3.1831'.
[  123.760546][ T8426] netlink: 'syz.1.1834': attribute type 6 has an invalid length.
[  124.339110][ T8455] netlink: 'syz.0.1845': attribute type 6 has an invalid length.
[  124.384378][ T8463] ALSA: seq fatal error: cannot create timer (-19)
[  124.424533][ T8470] ALSA: seq fatal error: cannot create timer (-19)
[  124.472210][ T8475] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  124.481385][ T8475] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  124.497525][   T29] kauditd_printk_skb: 2766 callbacks suppressed
[  124.497543][   T29] audit: type=1326 audit(1764310471.549:31399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f80f97b65e7 code=0x7ffc0000
[  124.527381][   T29] audit: type=1326 audit(1764310471.549:31400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f80f975b829 code=0x7ffc0000
[  124.551120][   T29] audit: type=1326 audit(1764310471.549:31401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f97bf749 code=0x7ffc0000
[  124.592469][ T8485] netlink: 'syz.2.1852': attribute type 13 has an invalid length.
[  124.596541][   T29] audit: type=1326 audit(1764310471.569:31402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f80f97b65e7 code=0x7ffc0000
[  124.623823][   T29] audit: type=1326 audit(1764310471.569:31403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f80f975b829 code=0x7ffc0000
[  124.647320][   T29] audit: type=1326 audit(1764310471.569:31404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f97bf749 code=0x7ffc0000
[  124.670843][   T29] audit: type=1326 audit(1764310471.579:31405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f80f97b65e7 code=0x7ffc0000
[  124.694305][   T29] audit: type=1326 audit(1764310471.579:31406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f80f975b829 code=0x7ffc0000
[  124.717782][   T29] audit: type=1326 audit(1764310471.579:31407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80f97bf749 code=0x7ffc0000
[  124.741282][   T29] audit: type=1326 audit(1764310471.579:31408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8449 comm="syz.4.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f80f97b65e7 code=0x7ffc0000
[  124.765554][ T8485] gretap0: refused to change device tx_queue_len
[  124.772814][ T8485] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  125.345129][ T8507] ALSA: seq fatal error: cannot create timer (-19)
[  125.535386][ T8525] validate_nla: 1 callbacks suppressed
[  125.535446][ T8525] netlink: 'syz.2.1870': attribute type 39 has an invalid length.
[  125.604846][ T8529] FAULT_INJECTION: forcing a failure.
[  125.604846][ T8529] name failslab, interval 1, probability 0, space 0, times 0
[  125.617638][ T8529] CPU: 0 UID: 0 PID: 8529 Comm: syz.1.1872 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  125.617665][ T8529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  125.617679][ T8529] Call Trace:
[  125.617686][ T8529]  <TASK>
[  125.617693][ T8529]  __dump_stack+0x1d/0x30
[  125.617716][ T8529]  dump_stack_lvl+0xe8/0x140
[  125.617807][ T8529]  dump_stack+0x15/0x1b
[  125.617825][ T8529]  should_fail_ex+0x265/0x280
[  125.617845][ T8529]  should_failslab+0x8c/0xb0
[  125.617874][ T8529]  kmem_cache_alloc_noprof+0x50/0x480
[  125.617956][ T8529]  ? getname_flags+0x80/0x3b0
[  125.617989][ T8529]  getname_flags+0x80/0x3b0
[  125.618142][ T8529]  do_sys_openat2+0x60/0x110
[  125.618164][ T8529]  __x64_sys_openat+0xf2/0x120
[  125.618240][ T8529]  x64_sys_call+0x2eab/0x3000
[  125.618263][ T8529]  do_syscall_64+0xd2/0x200
[  125.618285][ T8529]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  125.618315][ T8529]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  125.618350][ T8529]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.618399][ T8529] RIP: 0033:0x7fd4f481f749
[  125.618468][ T8529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.618486][ T8529] RSP: 002b:00007fd4f327f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  125.618514][ T8529] RAX: ffffffffffffffda RBX: 00007fd4f4a75fa0 RCX: 00007fd4f481f749
[  125.618527][ T8529] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  125.618579][ T8529] RBP: 00007fd4f327f090 R08: 0000000000000000 R09: 0000000000000000
[  125.618604][ T8529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.618616][ T8529] R13: 00007fd4f4a76038 R14: 00007fd4f4a75fa0 R15: 00007ffc87877c58
[  125.618687][ T8529]  </TASK>
[  125.917067][ T8541] ALSA: seq fatal error: cannot create timer (-19)
[  125.962906][ T4912] Process accounting resumed
[  126.004118][ T8553] netlink: 'syz.3.1881': attribute type 39 has an invalid length.
[  126.159730][ T8573] IPv6: Can't replace route, no match found
[  126.478407][ T8588] IPv6: Can't replace route, no match found
[  126.792977][ T8610] IPv6: Can't replace route, no match found
[  126.869351][ T8612] sch_tbf: burst 2 is lower than device macvtap0 mtu (1514) !
[  126.887651][ T8616] netlink: 'syz.2.1904': attribute type 39 has an invalid length.
[  126.985525][ T8614] __nla_validate_parse: 22 callbacks suppressed
[  126.985541][ T8614] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1903'.
[  127.022606][ T8624] ALSA: seq fatal error: cannot create timer (-19)
[  127.030620][ T8621] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1905'.
[  127.213055][ T8636] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1911'.
[  127.350357][ T8649] IPv6: Can't replace route, no match found
[  127.565508][ T8660] ALSA: seq fatal error: cannot create timer (-19)
[  127.653071][   T37] Bluetooth: hci0: Frame reassembly failed (-84)
[  127.726166][ T8663] netlink: 180 bytes leftover after parsing attributes in process `syz.4.1919'.
[  127.868930][ T8680] netlink: 'syz.1.1926': attribute type 39 has an invalid length.
[  128.115020][ T8690] ALSA: seq fatal error: cannot create timer (-19)
[  128.242317][ T8698] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1931'.
[  128.282284][ T8699] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1933'.
[  128.504986][ T8707] netlink: 'syz.4.1936': attribute type 39 has an invalid length.
[  128.514062][ T8707] netlink: 176 bytes leftover after parsing attributes in process `syz.4.1936'.
[  128.615519][ T8712] netlink: 'syz.0.1937': attribute type 39 has an invalid length.
[  128.895274][ T8725] netlink: 'syz.0.1943': attribute type 6 has an invalid length.
[  129.039197][ T8733] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1945'.
[  129.280152][ T8756] tipc: Started in network mode
[  129.285050][ T8756] tipc: Node identity 4, cluster identity 4711
[  129.291333][ T8756] tipc: Node number set to 4
[  129.304927][ T8754] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1955'.
[  129.439908][ T8762] netlink: 180 bytes leftover after parsing attributes in process `syz.2.1957'.
[  129.509438][   T29] kauditd_printk_skb: 2810 callbacks suppressed
[  129.509494][   T29] audit: type=1326 audit(1764310476.559:34219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8751 comm="syz.0.1955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd602c65e7 code=0x7ffc0000
[  129.539975][   T29] audit: type=1326 audit(1764310476.559:34220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.2.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  129.563457][   T29] audit: type=1326 audit(1764310476.559:34221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.2.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  129.587045][   T29] audit: type=1326 audit(1764310476.559:34222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.2.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  129.610781][   T29] audit: type=1326 audit(1764310476.589:34223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8751 comm="syz.0.1955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd6026b829 code=0x7ffc0000
[  129.634545][   T29] audit: type=1326 audit(1764310476.589:34224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.2.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  129.658063][ T4732] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  129.658076][   T29] audit: type=1326 audit(1764310476.589:34226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8751 comm="syz.0.1955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd602c65e7 code=0x7ffc0000
[  129.687869][   T29] audit: type=1326 audit(1764310476.589:34225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.2.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  129.711292][   T29] audit: type=1326 audit(1764310476.589:34228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8758 comm="syz.2.1957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  129.734932][   T29] audit: type=1326 audit(1764310476.589:34227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8751 comm="syz.0.1955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd6026b829 code=0x7ffc0000
[  129.945174][ T8793] netlink: 'syz.4.1969': attribute type 39 has an invalid length.
[  130.232072][ T8807] netlink: 'syz.2.1974': attribute type 6 has an invalid length.
[  130.437546][ T8821] ALSA: seq fatal error: cannot create timer (-19)
[  130.889351][ T8838] netlink: 'syz.4.1986': attribute type 6 has an invalid length.
[  131.015734][ T8858] hsr_slave_0: left promiscuous mode
[  131.023014][ T8858] hsr_slave_1: left promiscuous mode
[  131.030588][ T8860] hsr_slave_0: left promiscuous mode
[  131.036784][ T8860] hsr_slave_1: left promiscuous mode
[  131.096844][ T8867] netlink: 'syz.0.1997': attribute type 39 has an invalid length.
[  131.271140][ T8879] netlink: 'syz.1.2001': attribute type 6 has an invalid length.
[  131.379336][ T8887] 9pnet_fd: Insufficient options for proto=fd
[  131.856738][ T8908] netlink: 'syz.3.2012': attribute type 6 has an invalid length.
[  131.986345][ T8915] 9pnet_fd: Insufficient options for proto=fd
[  132.082899][ T8925] netlink: 'syz.0.2019': attribute type 39 has an invalid length.
[  132.117908][ T8922] __nla_validate_parse: 14 callbacks suppressed
[  132.117954][ T8922] netlink: 180 bytes leftover after parsing attributes in process `syz.4.2016'.
[  132.358069][ T8939] netlink: 'syz.2.2025': attribute type 39 has an invalid length.
[  132.369548][ T8935] netlink: 180 bytes leftover after parsing attributes in process `syz.0.2021'.
[  132.440642][ T8944] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2026'.
[  132.450410][ T8950] netlink: 'syz.1.2028': attribute type 39 has an invalid length.
[  132.883675][ T8981] ALSA: seq fatal error: cannot create timer (-19)
[  132.908196][ T8981] netlink: 32 bytes leftover after parsing attributes in process `'.
[  132.924396][ T8983] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2035'.
[  132.944148][ T8985] netlink: 'syz.4.2037': attribute type 39 has an invalid length.
[  133.134531][ T8992] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2039'.
[  133.227704][ T9008] syzkaller0: entered promiscuous mode
[  133.233323][ T9008] syzkaller0: entered allmulticast mode
[  133.321095][ T9017] 9pnet_fd: Insufficient options for proto=fd
[  133.396719][ T9022] netlink: 180 bytes leftover after parsing attributes in process `syz.0.2046'.
[  133.499250][ T9035] netlink: 'syz.1.2056': attribute type 6 has an invalid length.
[  133.522657][ T9033] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2055'.
[  133.629577][ T9050] 9pnet_fd: Insufficient options for proto=fd
[  133.775568][ T9068] netlink: 'syz.3.2069': attribute type 6 has an invalid length.
[  133.789354][ T9072] FAULT_INJECTION: forcing a failure.
[  133.789354][ T9072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.802606][ T9072] CPU: 0 UID: 0 PID: 9072 Comm: syz.2.2071 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  133.802714][ T9072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  133.802739][ T9072] Call Trace:
[  133.802746][ T9072]  <TASK>
[  133.802753][ T9072]  __dump_stack+0x1d/0x30
[  133.802776][ T9072]  dump_stack_lvl+0xe8/0x140
[  133.802824][ T9072]  dump_stack+0x15/0x1b
[  133.802842][ T9072]  should_fail_ex+0x265/0x280
[  133.802863][ T9072]  should_fail+0xb/0x20
[  133.802879][ T9072]  should_fail_usercopy+0x1a/0x20
[  133.802925][ T9072]  _copy_from_user+0x1c/0xb0
[  133.802951][ T9072]  __sys_bpf+0x183/0x7c0
[  133.802979][ T9072]  __x64_sys_bpf+0x41/0x50
[  133.803049][ T9072]  x64_sys_call+0x2aee/0x3000
[  133.803125][ T9072]  do_syscall_64+0xd2/0x200
[  133.803146][ T9072]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  133.803178][ T9072]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  133.803213][ T9072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.803235][ T9072] RIP: 0033:0x7fd56563f749
[  133.803250][ T9072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.803317][ T9072] RSP: 002b:00007fd5640a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  133.803336][ T9072] RAX: ffffffffffffffda RBX: 00007fd565895fa0 RCX: 00007fd56563f749
[  133.803349][ T9072] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  133.803376][ T9072] RBP: 00007fd5640a7090 R08: 0000000000000000 R09: 0000000000000000
[  133.803388][ T9072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.803401][ T9072] R13: 00007fd565896038 R14: 00007fd565895fa0 R15: 00007ffcb0150358
[  133.803421][ T9072]  </TASK>
[  133.834366][ T9074] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2072'.
[  133.860015][ T9078] 9pnet_fd: Insufficient options for proto=fd
[  133.994163][ T9083] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2074'.
[  134.256300][ T9120] 9pnet_fd: Insufficient options for proto=fd
[  134.300691][ T9121] ALSA: seq fatal error: cannot create timer (-19)
[  134.525016][   T29] kauditd_printk_skb: 3006 callbacks suppressed
[  134.525069][   T29] audit: type=1326 audit(1764310481.569:37235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd602c65e7 code=0x7ffc0000
[  134.578948][   T29] audit: type=1326 audit(1764310481.609:37236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd6026b829 code=0x7ffc0000
[  134.602444][   T29] audit: type=1326 audit(1764310481.609:37237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd602c65e7 code=0x7ffc0000
[  134.625896][   T29] audit: type=1326 audit(1764310481.609:37238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd6026b829 code=0x7ffc0000
[  134.649402][   T29] audit: type=1326 audit(1764310481.609:37239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd602c65e7 code=0x7ffc0000
[  134.672985][   T29] audit: type=1326 audit(1764310481.609:37240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd6026b829 code=0x7ffc0000
[  134.696782][   T29] audit: type=1326 audit(1764310481.609:37241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd602c65e7 code=0x7ffc0000
[  134.720396][   T29] audit: type=1326 audit(1764310481.609:37242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd6026b829 code=0x7ffc0000
[  134.743973][   T29] audit: type=1326 audit(1764310481.609:37243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcd602c65e7 code=0x7ffc0000
[  134.767505][   T29] audit: type=1326 audit(1764310481.609:37244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9138 comm="syz.0.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcd6026b829 code=0x7ffc0000
[  134.987177][ T9146] tmpfs: Unknown parameter 'huge�|o��@�Y'
[  135.065335][ T9153] 9pnet_fd: Insufficient options for proto=fd
[  135.174044][ T9157] ALSA: seq fatal error: cannot create timer (-19)
[  135.301606][ T9171] geneve2: entered promiscuous mode
[  135.307347][ T9171] geneve2: entered allmulticast mode
[  135.463383][ T9197] 9pnet_fd: Insufficient options for proto=fd
[  135.538701][ T9210] IPv6: Can't replace route, no match found
[  135.547272][ T9208] ALSA: seq fatal error: cannot create timer (-19)
[  135.594665][ T9215] FAULT_INJECTION: forcing a failure.
[  135.594665][ T9215] name failslab, interval 1, probability 0, space 0, times 0
[  135.607545][ T9215] CPU: 1 UID: 0 PID: 9215 Comm: syz.4.2122 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  135.607616][ T9215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  135.607632][ T9215] Call Trace:
[  135.607641][ T9215]  <TASK>
[  135.607650][ T9215]  __dump_stack+0x1d/0x30
[  135.607759][ T9215]  dump_stack_lvl+0xe8/0x140
[  135.607780][ T9215]  dump_stack+0x15/0x1b
[  135.607796][ T9215]  should_fail_ex+0x265/0x280
[  135.607886][ T9215]  should_failslab+0x8c/0xb0
[  135.607980][ T9215]  kmem_cache_alloc_noprof+0x50/0x480
[  135.608016][ T9215]  ? getname_flags+0x80/0x3b0
[  135.608052][ T9215]  getname_flags+0x80/0x3b0
[  135.608101][ T9215]  __x64_sys_symlink+0x40/0x60
[  135.608130][ T9215]  x64_sys_call+0x23d0/0x3000
[  135.608208][ T9215]  do_syscall_64+0xd2/0x200
[  135.608234][ T9215]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  135.608327][ T9215]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  135.608372][ T9215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.608401][ T9215] RIP: 0033:0x7f80f97bf749
[  135.608419][ T9215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.608441][ T9215] RSP: 002b:00007f80f8227038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  135.608508][ T9215] RAX: ffffffffffffffda RBX: 00007f80f9a15fa0 RCX: 00007f80f97bf749
[  135.608519][ T9215] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000000
[  135.608533][ T9215] RBP: 00007f80f8227090 R08: 0000000000000000 R09: 0000000000000000
[  135.608546][ T9215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.608561][ T9215] R13: 00007f80f9a16038 R14: 00007f80f9a15fa0 R15: 00007ffe1f2611d8
[  135.608586][ T9215]  </TASK>
[  135.834712][ T9226] 9pnet_fd: Insufficient options for proto=fd
[  135.938362][ T9236] FAULT_INJECTION: forcing a failure.
[  135.938362][ T9236] name failslab, interval 1, probability 0, space 0, times 0
[  135.951065][ T9236] CPU: 0 UID: 0 PID: 9236 Comm: syz.2.2130 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  135.951099][ T9236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  135.951113][ T9236] Call Trace:
[  135.951120][ T9236]  <TASK>
[  135.951127][ T9236]  __dump_stack+0x1d/0x30
[  135.951149][ T9236]  dump_stack_lvl+0xe8/0x140
[  135.951172][ T9236]  dump_stack+0x15/0x1b
[  135.951195][ T9236]  should_fail_ex+0x265/0x280
[  135.951220][ T9236]  should_failslab+0x8c/0xb0
[  135.951261][ T9236]  kmem_cache_alloc_noprof+0x50/0x480
[  135.951358][ T9236]  ? getname_flags+0x80/0x3b0
[  135.951392][ T9236]  getname_flags+0x80/0x3b0
[  135.951434][ T9236]  __x64_sys_symlink+0x40/0x60
[  135.951475][ T9236]  x64_sys_call+0x23d0/0x3000
[  135.951497][ T9236]  do_syscall_64+0xd2/0x200
[  135.951520][ T9236]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  135.951556][ T9236]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  135.951677][ T9236]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.951711][ T9236] RIP: 0033:0x7fd56563f749
[  135.951799][ T9236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.951879][ T9236] RSP: 002b:00007fd5640a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[  135.951902][ T9236] RAX: ffffffffffffffda RBX: 00007fd565895fa0 RCX: 00007fd56563f749
[  135.951917][ T9236] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  135.951994][ T9236] RBP: 00007fd5640a7090 R08: 0000000000000000 R09: 0000000000000000
[  135.952006][ T9236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.952021][ T9236] R13: 00007fd565896038 R14: 00007fd565895fa0 R15: 00007ffcb0150358
[  135.952045][ T9236]  </TASK>
[  135.955673][ T9229] lo speed is unknown, defaulting to 1000
[  136.145139][ T9242] IPv6: Can't replace route, no match found
[  136.249172][ T9251] FAULT_INJECTION: forcing a failure.
[  136.249172][ T9251] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.262379][ T9251] CPU: 0 UID: 0 PID: 9251 Comm: syz.0.2136 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  136.262413][ T9251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  136.262429][ T9251] Call Trace:
[  136.262437][ T9251]  <TASK>
[  136.262445][ T9251]  __dump_stack+0x1d/0x30
[  136.262468][ T9251]  dump_stack_lvl+0xe8/0x140
[  136.262554][ T9251]  dump_stack+0x15/0x1b
[  136.262583][ T9251]  should_fail_ex+0x265/0x280
[  136.262609][ T9251]  should_fail+0xb/0x20
[  136.262691][ T9251]  should_fail_usercopy+0x1a/0x20
[  136.262718][ T9251]  _copy_from_user+0x1c/0xb0
[  136.262750][ T9251]  __io_register_rsrc_update+0x268/0xac0
[  136.262789][ T9251]  ? get_pid_task+0x96/0xd0
[  136.262878][ T9251]  ? should_fail_ex+0xdb/0x280
[  136.262903][ T9251]  io_register_rsrc_update+0x10a/0x120
[  136.262940][ T9251]  __se_sys_io_uring_register+0x97b/0xf00
[  136.262992][ T9251]  ? fput+0x8f/0xc0
[  136.263009][ T9251]  ? ksys_write+0x192/0x1a0
[  136.263096][ T9251]  __x64_sys_io_uring_register+0x55/0x70
[  136.263181][ T9251]  x64_sys_call+0x18a3/0x3000
[  136.263260][ T9251]  do_syscall_64+0xd2/0x200
[  136.263281][ T9251]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  136.263309][ T9251]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  136.263414][ T9251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.263442][ T9251] RIP: 0033:0x7fcd602cf749
[  136.263460][ T9251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.263480][ T9251] RSP: 002b:00007fcd5ed37038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  136.263531][ T9251] RAX: ffffffffffffffda RBX: 00007fcd60525fa0 RCX: 00007fcd602cf749
[  136.263547][ T9251] RDX: 0000200000000600 RSI: 0000000000000010 RDI: 0000000000000003
[  136.263562][ T9251] RBP: 00007fcd5ed37090 R08: 0000000000000000 R09: 0000000000000000
[  136.263651][ T9251] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  136.263665][ T9251] R13: 00007fcd60526038 R14: 00007fcd60525fa0 R15: 00007fffa499e6d8
[  136.263690][ T9251]  </TASK>
[  136.549890][ T9260] 9pnet_fd: Insufficient options for proto=fd
[  136.670909][ T9268] ALSA: seq fatal error: cannot create timer (-19)
[  136.714524][ T9274] validate_nla: 1 callbacks suppressed
[  136.714540][ T9274] netlink: 'syz.3.2143': attribute type 3 has an invalid length.
[  136.863975][ T9294] 9pnet_fd: Insufficient options for proto=fd
[  136.935614][ T9303] ALSA: seq fatal error: cannot create timer (-19)
[  137.144242][ T9323] FAULT_INJECTION: forcing a failure.
[  137.144242][ T9323] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  137.158421][ T9323] CPU: 1 UID: 0 PID: 9323 Comm: syz.4.2159 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  137.158455][ T9323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  137.158483][ T9323] Call Trace:
[  137.158490][ T9323]  <TASK>
[  137.158500][ T9323]  __dump_stack+0x1d/0x30
[  137.158525][ T9323]  dump_stack_lvl+0xe8/0x140
[  137.158551][ T9323]  dump_stack+0x15/0x1b
[  137.158575][ T9323]  should_fail_ex+0x265/0x280
[  137.158600][ T9323]  should_fail+0xb/0x20
[  137.158621][ T9323]  should_fail_usercopy+0x1a/0x20
[  137.158643][ T9323]  _copy_to_user+0x20/0xa0
[  137.158678][ T9323]  simple_read_from_buffer+0xb5/0x130
[  137.158703][ T9323]  proc_fail_nth_read+0x10e/0x150
[  137.158736][ T9323]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  137.158789][ T9323]  vfs_read+0x1a8/0x770
[  137.158820][ T9323]  ? bpf_trace_run2+0x124/0x1c0
[  137.158856][ T9323]  ? __rcu_read_unlock+0x4f/0x70
[  137.158940][ T9323]  ? __fget_files+0x184/0x1c0
[  137.158974][ T9323]  ksys_read+0xda/0x1a0
[  137.159017][ T9323]  __x64_sys_read+0x40/0x50
[  137.159049][ T9323]  x64_sys_call+0x27c0/0x3000
[  137.159078][ T9323]  do_syscall_64+0xd2/0x200
[  137.159117][ T9323]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  137.159175][ T9323]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  137.159220][ T9323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.159252][ T9323] RIP: 0033:0x7f80f97be15c
[  137.159267][ T9323] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  137.159325][ T9323] RSP: 002b:00007f80f8227030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  137.159346][ T9323] RAX: ffffffffffffffda RBX: 00007f80f9a15fa0 RCX: 00007f80f97be15c
[  137.159400][ T9323] RDX: 000000000000000f RSI: 00007f80f82270a0 RDI: 0000000000000007
[  137.159416][ T9323] RBP: 00007f80f8227090 R08: 0000000000000000 R09: 0000000000000000
[  137.159431][ T9323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.159446][ T9323] R13: 00007f80f9a16038 R14: 00007f80f9a15fa0 R15: 00007ffe1f2611d8
[  137.159471][ T9323]  </TASK>
[  137.441344][ T9333] 9pnet_fd: Insufficient options for proto=fd
[  137.763293][ T9354] netlink: 'syz.1.2173': attribute type 39 has an invalid length.
[  137.820537][ T9361] 9pnet_fd: Insufficient options for proto=fd
[  137.940893][ T9371] __nla_validate_parse: 17 callbacks suppressed
[  137.940908][ T9371] netlink: 180 bytes leftover after parsing attributes in process `syz.2.2175'.
[  137.984319][ T9378] ALSA: seq fatal error: cannot create timer (-19)
[  138.318165][ T9392] FAULT_INJECTION: forcing a failure.
[  138.318165][ T9392] name failslab, interval 1, probability 0, space 0, times 0
[  138.330868][ T9392] CPU: 1 UID: 0 PID: 9392 Comm: syz.3.2186 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  138.330902][ T9392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  138.330918][ T9392] Call Trace:
[  138.330927][ T9392]  <TASK>
[  138.330969][ T9392]  __dump_stack+0x1d/0x30
[  138.331023][ T9392]  dump_stack_lvl+0xe8/0x140
[  138.331044][ T9392]  dump_stack+0x15/0x1b
[  138.331067][ T9392]  should_fail_ex+0x265/0x280
[  138.331153][ T9392]  ? __se_sys_mount+0xef/0x2e0
[  138.331184][ T9392]  should_failslab+0x8c/0xb0
[  138.331269][ T9392]  __kmalloc_cache_noprof+0x4c/0x4a0
[  138.331297][ T9392]  ? memdup_user+0x99/0xd0
[  138.331321][ T9392]  __se_sys_mount+0xef/0x2e0
[  138.331406][ T9392]  ? fput+0x8f/0xc0
[  138.331459][ T9392]  ? ksys_write+0x192/0x1a0
[  138.331483][ T9392]  __x64_sys_mount+0x67/0x80
[  138.331505][ T9392]  x64_sys_call+0x2b51/0x3000
[  138.331525][ T9392]  do_syscall_64+0xd2/0x200
[  138.331544][ T9392]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  138.331605][ T9392]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[  138.331685][ T9392]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.331704][ T9392] RIP: 0033:0x7f1d185df749
[  138.331717][ T9392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.331780][ T9392] RSP: 002b:00007f1d17047038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  138.331797][ T9392] RAX: ffffffffffffffda RBX: 00007f1d18835fa0 RCX: 00007f1d185df749
[  138.331808][ T9392] RDX: 0000200000000b80 RSI: 0000200000000040 RDI: 0000000000000000
[  138.331853][ T9392] RBP: 00007f1d17047090 R08: 0000200000000300 R09: 0000000000000000
[  138.331865][ T9392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.331878][ T9392] R13: 00007f1d18836038 R14: 00007f1d18835fa0 R15: 00007ffd491d5ee8
[  138.331902][ T9392]  </TASK>
[  138.336203][ T9393] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2185'.
[  138.364754][ T9395] 9pnet_fd: Insufficient options for proto=fd
[  138.512444][ T9398] 9pnet_fd: Insufficient options for proto=fd
[  138.620952][ T9410] IPv6: Can't replace route, no match found
[  138.627779][ T9406] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2192'.
[  139.004561][ T9444] netlink: 'syz.2.2207': attribute type 39 has an invalid length.
[  139.067580][ T9445] netlink: 180 bytes leftover after parsing attributes in process `syz.3.2206'.
[  139.189733][ T9449] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2208'.
[  139.248653][ T9457] IPv6: Can't replace route, no match found
[  139.529875][   T29] kauditd_printk_skb: 3455 callbacks suppressed
[  139.529890][   T29] audit: type=1326 audit(1764310486.579:40700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9441 comm="syz.3.2206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1d185d65e7 code=0x7ffc0000
[  139.560545][   T29] audit: type=1326 audit(1764310486.579:40701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9441 comm="syz.3.2206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1d1857b829 code=0x7ffc0000
[  139.584414][   T29] audit: type=1326 audit(1764310486.579:40702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9441 comm="syz.3.2206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[  139.608532][   T29] audit: type=1326 audit(1764310486.609:40703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9441 comm="syz.3.2206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1d185d65e7 code=0x7ffc0000
[  139.632086][   T29] audit: type=1326 audit(1764310486.609:40704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9441 comm="syz.3.2206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1d1857b829 code=0x7ffc0000
[  139.655724][   T29] audit: type=1326 audit(1764310486.609:40706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9441 comm="syz.3.2206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d185df749 code=0x7ffc0000
[  139.679586][   T29] audit: type=1326 audit(1764310486.609:40705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9425 comm="syz.4.2198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f80f97b65e7 code=0x7ffc0000
[  139.703196][   T29] audit: type=1326 audit(1764310486.609:40707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9425 comm="syz.4.2198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f80f975b829 code=0x7ffc0000
[  139.726884][   T29] audit: type=1326 audit(1764310486.609:40708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9425 comm="syz.4.2198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f80f97bf749 code=0x7ffc0000
[  139.754279][   T29] audit: type=1326 audit(1764310486.619:40709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9441 comm="syz.3.2206" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1d185d65e7 code=0x7ffc0000
[  139.911733][ T9484] netlink: 180 bytes leftover after parsing attributes in process `syz.0.2219'.
[  139.946572][ T9481] netlink: 180 bytes leftover after parsing attributes in process `syz.3.2221'.
[  140.020093][ T9495] IPv6: Can't replace route, no match found
[  140.173987][ T9505] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2230'.
[  140.191524][ T9497] netlink: 180 bytes leftover after parsing attributes in process `syz.4.2227'.
[  140.249038][ T9514] ALSA: seq fatal error: cannot create timer (-19)
[  140.686871][ T9521] netlink: 'syz.0.2234': attribute type 39 has an invalid length.
[  140.988721][ T9541] netlink: 'syz.4.2243': attribute type 6 has an invalid length.
[  141.109612][ T9543] netlink: 180 bytes leftover after parsing attributes in process `syz.3.2244'.
[  141.341468][ T9576] netlink: 'syz.4.2257': attribute type 6 has an invalid length.
[  141.793488][ T9609] netlink: 'syz.0.2268': attribute type 6 has an invalid length.
[  141.816063][ T9611] netlink: 'syz.1.2269': attribute type 39 has an invalid length.
[  141.970496][   T52] Bluetooth: hci0: Frame reassembly failed (-84)
[  142.018432][ T9626] vlan2: entered allmulticast mode
[  142.253257][ T9648] ALSA: seq fatal error: cannot create timer (-19)
[  143.261858][ T9690] netlink: 'syz.4.2298': attribute type 39 has an invalid length.
[  143.276857][ T9688] FAULT_INJECTION: forcing a failure.
[  143.276857][ T9688] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  143.290181][ T9688] CPU: 1 UID: 0 PID: 9688 Comm: syz.0.2297 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  143.290238][ T9688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  143.290253][ T9688] Call Trace:
[  143.290263][ T9688]  <TASK>
[  143.290272][ T9688]  __dump_stack+0x1d/0x30
[  143.290300][ T9688]  dump_stack_lvl+0xe8/0x140
[  143.290322][ T9688]  dump_stack+0x15/0x1b
[  143.290364][ T9688]  should_fail_ex+0x265/0x280
[  143.290382][ T9688]  should_fail_alloc_page+0xf2/0x100
[  143.290417][ T9688]  __alloc_frozen_pages_noprof+0xff/0x360
[  143.290458][ T9688]  alloc_pages_mpol+0xb3/0x260
[  143.290478][ T9688]  vma_alloc_folio_noprof+0x1aa/0x300
[  143.290554][ T9688]  handle_mm_fault+0xec2/0x2be0
[  143.290633][ T9688]  ? vma_start_read+0x141/0x1f0
[  143.290764][ T9688]  do_user_addr_fault+0x630/0x1080
[  143.290875][ T9688]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  143.290911][ T9688]  exc_page_fault+0x62/0xa0
[  143.290953][ T9688]  asm_exc_page_fault+0x26/0x30
[  143.290972][ T9688] RIP: 0033:0x7fcd6027cc5b
[  143.290985][ T9688] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  143.291046][ T9688] RSP: 002b:00007fcd5ed34e10 EFLAGS: 00010246
[  143.291059][ T9688] RAX: 00007fcd5ed36f30 RBX: 00007fcd604fa640 RCX: 0000000000000000
[  143.291070][ T9688] RDX: 00007fcd5ed36f78 RSI: 00007fcd60330df8 RDI: 00007fcd5ed34e30
[  143.291081][ T9688] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  143.291092][ T9688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.291102][ T9688] R13: 00007fcd60526038 R14: 00007fcd60525fa0 R15: 00007fffa499e6d8
[  143.291120][ T9688]  </TASK>
[  143.291172][ T9688] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  143.493954][ T9694] ALSA: seq fatal error: cannot create timer (-19)
[  143.662037][ T9703] __nla_validate_parse: 4 callbacks suppressed
[  143.662060][ T9703] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2301'.
[  143.977350][ T4732] Bluetooth: hci0: command 0x1003 tx timeout
[  143.983416][ T3536] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  144.546106][   T29] kauditd_printk_skb: 2439 callbacks suppressed
[  144.546124][   T29] audit: type=1326 audit(1764310491.589:43149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  144.576220][   T29] audit: type=1326 audit(1764310491.589:43150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  144.599682][   T29] audit: type=1326 audit(1764310491.589:43151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  144.631932][   T29] audit: type=1326 audit(1764310491.679:43152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  144.662004][   T29] audit: type=1326 audit(1764310491.679:43153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  144.685649][   T29] audit: type=1326 audit(1764310491.679:43154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  144.709304][   T29] audit: type=1326 audit(1764310491.679:43155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  144.733301][   T29] audit: type=1326 audit(1764310491.679:43156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd5655db829 code=0x7ffc0000
[  144.756857][   T29] audit: type=1326 audit(1764310491.679:43157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd56563f749 code=0x7ffc0000
[  144.780489][   T29] audit: type=1326 audit(1764310491.679:43158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9715 comm="syz.2.2308" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd5656365e7 code=0x7ffc0000
[  144.873005][ T9722] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2310'.
[  144.889010][ T9722] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2310'.
[  144.955997][ T9726] netlink: 180 bytes leftover after parsing attributes in process `syz.4.2313'.
[  145.046348][ T9735] netlink: 'syz.3.2316': attribute type 3 has an invalid length.
[  145.239805][ T9737] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2317'.
[  145.443811][ T1755] Bluetooth: hci0: Frame reassembly failed (-84)
[  145.834843][ T9774] netlink: 180 bytes leftover after parsing attributes in process `syz.1.2330'.
[  146.364281][ T9796] netlink: 180 bytes leftover after parsing attributes in process `syz.2.2339'.
[  146.561401][ T9770] ==================================================================
[  146.569511][ T9770] BUG: KCSAN: data-race in fasync_remove_entry / sock_wake_async
[  146.577249][ T9770] 
[  146.579592][ T9770] write to 0xffff88811a478a18 of 8 bytes by task 9771 on cpu 1:
[  146.587240][ T9770]  fasync_remove_entry+0xcc/0x120
[  146.592305][ T9770]  fasync_helper+0x97/0xc0
[  146.596750][ T9770]  sock_fasync+0x58/0xc0
[  146.601027][ T9770]  __fput+0x5e6/0x650
[  146.605028][ T9770]  ____fput+0x1c/0x30
[  146.609072][ T9770]  task_work_run+0x131/0x1a0
[  146.613691][ T9770]  exit_to_user_mode_loop+0xed/0x110
[  146.619004][ T9770]  do_syscall_64+0x1d6/0x200
[  146.623616][ T9770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.629523][ T9770] 
[  146.631915][ T9770] read to 0xffff88811a478a18 of 8 bytes by task 9770 on cpu 0:
[  146.639462][ T9770]  sock_wake_async+0x29/0x110
[  146.644160][ T9770]  unix_write_space+0x13b/0x140
[  146.649018][ T9770]  sock_wfree+0x14b/0x3c0
[  146.653372][ T9770]  unix_destruct_scm+0xc3/0xf0
[  146.658164][ T9770]  skb_release_head_state+0xba/0x1a0
[  146.663486][ T9770]  __kfree_skb+0x18/0x150
[  146.667856][ T9770]  sk_skb_reason_drop+0xbd/0x270
[  146.672831][ T9770]  unix_release_sock+0x661/0x7b0
[  146.677792][ T9770]  unix_release+0x58/0x80
[  146.682139][ T9770]  sock_close+0x6b/0x150
[  146.686426][ T9770]  __fput+0x29b/0x650
[  146.690509][ T9770]  ____fput+0x1c/0x30
[  146.694507][ T9770]  task_work_run+0x131/0x1a0
[  146.699119][ T9770]  exit_to_user_mode_loop+0xed/0x110
[  146.704652][ T9770]  do_syscall_64+0x1d6/0x200
[  146.709654][ T9770]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.715571][ T9770] 
[  146.717926][ T9770] value changed: 0xffff888104997d50 -> 0x0000000000000000
[  146.725127][ T9770] 
[  146.727470][ T9770] Reported by Kernel Concurrency Sanitizer on:
[  146.733907][ T9770] CPU: 0 UID: 0 PID: 9770 Comm: syz.1.2330 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  146.743653][ T9770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  146.753723][ T9770] ==================================================================
[  147.497345][ T3536] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  147.497461][ T4732] Bluetooth: hci0: command 0x1003 tx timeout