last executing test programs:

8.093276918s ago: executing program 3 (id=4857):
syz_socket_connect_nvme_tcp()
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000e50095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
msgget$private(0x0, 0x790)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r3}, 0x18)
r4 = socket$netlink(0x10, 0x3, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r7 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000240)={'team0\x00', <r8=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r7, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)
prctl$PR_SET_NAME(0xf, 0x0)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="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", @ANYRES64], 0x1, 0x162, &(0x7f0000000200)="$eJzs20GrElEUB/DjPHu+avPW0WKgTSupVi2LeEE0UBQualXwaqMh5GZq5UfpCwbhyt2NHNMSRYLmjTi/38aDf5Rz0ZnDHbjvbn8aXo4nH8cvZ3HW6UT3UeQxjziPLE6iMg0A4JjMU4ofqbeY8te/RUqp6Y4AgLpV8z+l1DP/AaAt9s7/hw01BgDUxv4fANrn9Zu3zx8XxcWrPD+L+D4tB+Wgeq3yp8+Ki3v5wvn6U7OyHJys8vtVnv+dX4sby/zB1vw07t6p8l/ZkxfFRn4zLutfPgAAALRCP1/Zur/v93flVfXH84GN/Xs3bnWvbBkAwD+YfPk6fD8affisOPYi2/dz95b/ieZbXRfZYbTRwqLhGxNQu/VF33QnAAAAAAAAAAAAAADALv/nzNDp8tt+v9OJyJwsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HD9DAAA///le0TQ")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2200, 0x0)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r10 = fcntl$dupfd(r9, 0x406, r9)
ioctl$SG_IO(r10, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x44, &(0x7f0000000200)=""/68}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

5.862587647s ago: executing program 1 (id=4892):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000060000000500000000"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

5.575938591s ago: executing program 1 (id=4903):
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write(r2, &(0x7f0000000140)="435f290c82fb70650aa96ca93cafa149bf31d4867ed0e389d9c58be4a65f7ed22a4b474d77dc32c89821b4309d74583118fd20afa52f1a0e85def3ea148abe6e151a2ec228ff695a5e8cf3299074b5d66734da24d3c53c36a15bf81ba903c49cca1f482987e9021e01290f46", 0x6c)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])

5.524474705s ago: executing program 1 (id=4907):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001740), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000001840)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001800)={&(0x7f0000001780)={0x48, r1, 0xc97, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_STRSET_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4010}, 0x4044894)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(r0, &(0x7f0000001f80)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001f40)={&(0x7f0000001e80)={0x90, 0x0, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x3}, @MPTCP_PM_ATTR_ADDR={0x30, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x19}}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}]}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x20, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010100}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x8494}, 0x20000000)

5.508185246s ago: executing program 1 (id=4908):
syz_socket_connect_nvme_tcp()
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
msgget$private(0x0, 0x790)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r3}, 0x18)
r4 = socket$netlink(0x10, 0x3, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r7 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000240)={'team0\x00', <r8=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r7, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)
prctl$PR_SET_NAME(0xf, 0x0)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="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", @ANYRES64], 0x1, 0x162, &(0x7f0000000200)="$eJzs20GrElEUB/DjPHu+avPW0WKgTSupVi2LeEE0UBQualXwaqMh5GZq5UfpCwbhyt2NHNMSRYLmjTi/38aDf5Rz0ZnDHbjvbn8aXo4nH8cvZ3HW6UT3UeQxjziPLE6iMg0A4JjMU4ofqbeY8te/RUqp6Y4AgLpV8z+l1DP/AaAt9s7/hw01BgDUxv4fANrn9Zu3zx8XxcWrPD+L+D4tB+Wgeq3yp8+Ki3v5wvn6U7OyHJys8vtVnv+dX4sby/zB1vw07t6p8l/ZkxfFRn4zLutfPgAAALRCP1/Zur/v93flVfXH84GN/Xs3bnWvbBkAwD+YfPk6fD8affisOPYi2/dz95b/ieZbXRfZYbTRwqLhGxNQu/VF33QnAAAAAAAAAAAAAADALv/nzNDp8tt+v9OJyJwsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HD9DAAA///le0TQ")
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r10 = fcntl$dupfd(r9, 0x406, r9)
ioctl$SG_IO(r10, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x44, &(0x7f0000000200)=""/68}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

4.439633972s ago: executing program 3 (id=4917):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
sched_rr_get_interval(0x0, &(0x7f0000000080))

4.385717767s ago: executing program 3 (id=4919):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000060000000500000000"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

4.162508994s ago: executing program 4 (id=4927):
syz_socket_connect_nvme_tcp()
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000e50095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
msgget$private(0x0, 0x790)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r3}, 0x18)
r4 = socket$netlink(0x10, 0x3, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r7 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000240)={'team0\x00', <r8=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r7, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)
prctl$PR_SET_NAME(0xf, 0x0)
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="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", @ANYRES64], 0x1, 0x162, &(0x7f0000000200)="$eJzs20GrElEUB/DjPHu+avPW0WKgTSupVi2LeEE0UBQualXwaqMh5GZq5UfpCwbhyt2NHNMSRYLmjTi/38aDf5Rz0ZnDHbjvbn8aXo4nH8cvZ3HW6UT3UeQxjziPLE6iMg0A4JjMU4ofqbeY8te/RUqp6Y4AgLpV8z+l1DP/AaAt9s7/hw01BgDUxv4fANrn9Zu3zx8XxcWrPD+L+D4tB+Wgeq3yp8+Ki3v5wvn6U7OyHJys8vtVnv+dX4sby/zB1vw07t6p8l/ZkxfFRn4zLutfPgAAALRCP1/Zur/v93flVfXH84GN/Xs3bnWvbBkAwD+YfPk6fD8affisOPYi2/dz95b/ieZbXRfZYbTRwqLhGxNQu/VF33QnAAAAAAAAAAAAAADALv/nzNDp8tt+v9OJyJwsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HD9DAAA///le0TQ")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x2200, 0x0)
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r10 = fcntl$dupfd(r9, 0x406, r9)
ioctl$SG_IO(r10, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x44, &(0x7f0000000200)=""/68}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})

4.030654795s ago: executing program 3 (id=4928):
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, 0x0, &(0x7f0000000a00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='mm_page_free\x00', r0}, 0x18)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="080008000700001200031400000045f0006100000000002f9078ac1e0001ac1414aa220022eb", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="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"], 0xfdef)

3.830306051s ago: executing program 4 (id=4929):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
sched_rr_get_interval(0x0, &(0x7f0000000080))

3.782256115s ago: executing program 4 (id=4930):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r0, &(0x7f00000009c0), 0x0, 0x4000000)

3.781769135s ago: executing program 4 (id=4931):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x11)
sendmmsg$inet(r0, &(0x7f0000000a40)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)}], 0x1}}], 0x1, 0x4004040)

3.781511805s ago: executing program 4 (id=4932):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000840)={0x58, r2, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [{{0x8, 0x1, r3}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffbfff9}}}]}}]}, 0x58}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840)

3.117857759s ago: executing program 0 (id=4945):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

2.626776308s ago: executing program 1 (id=4946):
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000000)={0x0, 0x0, 0x11}, 0x18)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000580)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xe273}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4004}}, {@errors_remount}, {@jqfmt_vfsv0}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}, {@journal_path={'journal_path', 0x3d, './file1'}}, {@nogrpid}], [{@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@uid_gt}, {@smackfsdef={'smackfsdef', 0x3d, 'journal_path'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@smackfsfloor}, {@smackfsdef={'smackfsdef', 0x3d, '`\xb9\xe1\x17+\x1c\xb8\xb9\x89=\x892\v\t\xa4\v\xba\xfb\xa65\r\xe4fEZ\x8b,\x9f\xf2stripez\xc4`uV\xb3\x84\xc3K\xd8\xdf\xbe\xe4n\x01\x80p@=AA\x99\x90:\xa0\"\xbf\xec\x14\xf3\xf5^e\x91\xe3\xe7\x94(\x885Y\xc5\x1eW\xfb\xb0\xc3D\xd8 @\x06\xb8\x12\x9bI\x84T\xab\xb8\x97\xca\x00\xeamZv\f\x03\xb9\xbd}g\xd6\x90\xa8|\xc6Pzu(!x\x96\v!.\xa7F\xf2@\xa6\x1f\xf9\x12\xddFd\xafw\x06t\x17Y\xbaP\xb9\v\xdc\xeb\x8d\xbe\xc0j\f\xfb\xfd\x94\x18\xad'}}, {@hash}, {@smackfstransmute={'smackfstransmute', 0x3d, '*+'}}]}, 0x3, 0x43d, &(0x7f0000000880)="$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")
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@mpls_delroute={0x1c, 0x18, 0x200, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x40, 0xfe, 0x0, 0x75465d5d34dd81da, 0x1}}, 0x1c}}, 0x4000)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x4, [@var={0x2, 0x0, 0x0, 0x11, 0x4}, @const={0x0, 0x0, 0x0, 0x2}, @func_proto={0x2, 0x0, 0x0, 0x13, 0x2}, @var={0x2, 0x0, 0x0, 0xe, 0x3}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x54}, 0x20)
ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x1, 0x7, 0x9e, 0xffffffff}]})
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r3, &(0x7f0000000040)=ANY=[], 0x6)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x5, @none, 0x0, 0x2}, 0xe)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r4}, &(0x7f00000008c0), &(0x7f0000000880)=r5}, 0x20)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, &(0x7f0000000140)=ANY=[@ANYBLOB="3b0002"], 0x8)
listen(r0, 0xa1)
r7 = perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x20100000, 0x0, 0x0, 0x0, 0x0, 0x0)
read(r7, &(0x7f0000000740)=""/21, 0x15)
ioctl$int_in(r0, 0x5421, &(0x7f00000000c0)=0x4)
accept4$bt_l2cap(r0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000040)={0x0, 0x100}, 0x0)
socket(0x1e, 0x4, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x14, 0x0, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000180))
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)

2.506213868s ago: executing program 1 (id=4947):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410884, &(0x7f00000001c0)={[{@nouid32}, {@acl}]}, 0x1, 0x775, &(0x7f0000001180)="$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")
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'macsec0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="2c00000010000100"/20, @ANYRES32=r1, @ANYBLOB="84110000044000000a00010042"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
link(0x0, &(0x7f0000000300)='./bus\x00')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000400)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x6}, 0x18)
r3 = open(0x0, 0x14923e, 0x18)
pwritev2(r3, &(0x7f0000000240), 0x0, 0x33000, 0x7, 0x3)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
futex(0x0, 0xc, 0x1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4600, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2000000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r4, 0x0, 0x7}, 0x18)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, 0x0, 0x4000)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x4db1, 0x2}, 0x0, 0x0)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x818018, &(0x7f0000000200)={[{@grpid}]}, 0x1, 0x72d, &(0x7f00000014c0)="$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")
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r9=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0x3, 0xa}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x48080}, 0x0)

2.330083382s ago: executing program 2 (id=4948):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f0000000600)=@newqdisc={0xd4, 0x24, 0x200, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0xffe0}, {0x1, 0x7}, {0x4, 0xa}}, [@TCA_STAB={0x74, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x80, 0x5, 0x62, 0x7, 0x0, 0xffff0001, 0xb1c, 0x3}}, {0xa, 0x2, [0x7ff, 0x1, 0x7]}}, {{0x1c, 0x1, {0x5, 0x3, 0x4, 0x3, 0x2, 0x0, 0x9, 0x1}}, {0x6, 0x2, [0x9]}}, {{0x1c, 0x1, {0x5, 0x9, 0x0, 0x2, 0x0, 0x4, 0x80000000, 0x1}}, {0x6, 0x2, [0x10]}}]}, @qdisc_kind_options=@q_hhf={{0x8}, {0x14, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x3}, @TCA_HHF_BACKLOG_LIMIT={0x8, 0x1, 0x8}]}}, @qdisc_kind_options=@q_rr={{0x7}, {0x18, 0x2, {0x3, "fbf7e28cf21733196ada902f36475b69"}}}]}, 0xd4}, 0x1, 0x0, 0x0, 0x800}, 0x4000000)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
open(0x0, 0x1c3bc2, 0x1c0)
open(&(0x7f0000000280)='./file0\x00', 0x60842, 0x45)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
open(&(0x7f0000000300)='./file0\x00', 0x1e5442, 0x182)

2.312481213s ago: executing program 2 (id=4949):
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$BLKDISCARD(r0, 0x1277, &(0x7f0000000040)=0xb59)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f00000000c0)=ANY=[])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
listen(0xffffffffffffffff, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
pipe(&(0x7f00000002c0)={<r6=>0xffffffffffffffff})
vmsplice(r6, &(0x7f0000000080)=[{&(0x7f0000000500)="7c15b6", 0x3}], 0x1, 0x0)

2.292157385s ago: executing program 0 (id=4950):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800"/16, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f0000000600)=@newqdisc={0xd4, 0x24, 0x200, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xfff1, 0xffe0}, {0x1, 0x7}, {0x4, 0xa}}, [@TCA_STAB={0x74, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x80, 0x5, 0x62, 0x7, 0x0, 0xffff0001, 0xb1c, 0x3}}, {0xa, 0x2, [0x7ff, 0x1, 0x7]}}, {{0x1c, 0x1, {0x5, 0x3, 0x4, 0x3, 0x2, 0x0, 0x9, 0x1}}, {0x6, 0x2, [0x9]}}, {{0x1c, 0x1, {0x5, 0x9, 0x0, 0x2, 0x0, 0x4, 0x80000000, 0x1}}, {0x6, 0x2, [0x10]}}]}, @qdisc_kind_options=@q_hhf={{0x8}, {0x14, 0x2, [@TCA_HHF_ADMIT_BYTES={0x8, 0x5, 0x3}, @TCA_HHF_BACKLOG_LIMIT={0x8, 0x1, 0x8}]}}, @qdisc_kind_options=@q_rr={{0x7}, {0x18, 0x2, {0x3, "fbf7e28cf21733196ada902f36475b69"}}}]}, 0xd4}, 0x1, 0x0, 0x0, 0x800}, 0x4000000)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
open(0x0, 0x1c3bc2, 0x1c0)
open(&(0x7f0000000280)='./file0\x00', 0x60842, 0x45)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x101, 0x0, 0x0, 0x41100, 0x59, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
r3 = open(&(0x7f0000000300)='./file0\x00', 0x1e5442, 0x182)
write$bt_hci(r3, &(0x7f00000001c0)={0x1, @pin_code_neg_reply={{0x40e, 0x6}, {@none}}}, 0x600)

2.226568911s ago: executing program 0 (id=4951):
socket$netlink(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
io_cancel(0x0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x5, 0x58a, 0xffffffffffffffff, &(0x7f0000000500)="31c29075ddfa959ff93fa313cb9496aea4ca95b431f71d371214ed8a7cff9547787e5fec4e064beef6894fc30a56aa3292e8da7d6477048b1911011ca767decb4b276f4a812a17bc789796ae74f235e6bc0a90e741acd5cde9834d5d2d5c4dfb969b30590433e4a229252dd23201951cfc14a1a758ca1bd57b09683535c68521", 0xb1, 0x3a, 0x0, 0x3}, &(0x7f0000000740))

2.170695475s ago: executing program 0 (id=4952):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) (fail_nth: 1)

1.423351465s ago: executing program 2 (id=4953):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

1.407016606s ago: executing program 2 (id=4954):
eventfd(0x4)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001240)={0x11, 0x4, &(0x7f0000000880)=ANY=[@ANYRES8=r1], &(0x7f00000008c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000300)={'tunl0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x8000, 0x7800, 0x7, 0x7, {{0x5, 0x4, 0x0, 0x1, 0x14, 0x68, 0x0, 0xe, 0x29, 0x0, @empty, @empty}}}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001340)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x6}, 0x18)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x6, 0x9, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000059c30d3fe8fa7100000000000000000000000000c6000100250000008510000001000000950000000000000018400000020000000000000000000000950000000000000095"], &(0x7f0000000100)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x807}, 0x94)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r4, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'veth0_virt_wifi\x00', 0x2000000}, 0x18)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xb, &(0x7f00000001c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
r8 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r7, &(0x7f0000000180)={0x2000101c})
epoll_pwait(r8, &(0x7f0000000100)=[{}], 0x1, 0xeb, 0x0, 0x0)
epoll_pwait(r8, &(0x7f00000000c0)=[{}], 0x1, 0x80000000, 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
syz_usb_connect$printer(0x4, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000ff2505a8a44000010203017341090224000101068004090400020107010306090501020800038604090582024000060610"], &(0x7f0000001200)={0xa, &(0x7f0000001180)={0xa, 0x6, 0x200, 0x7, 0x0, 0x2, 0x40, 0x6}, 0x12, &(0x7f0000000d00)=ANY=[@ANYBLOB="050f1200020a1003000200c009001003100b5e59c021e08a9838773a2139f87e8c48ae5e64eaa8ffe5f3bd70f339d185807ff4e526540eae54aa6d2068f46934a1d51444bbf2a013ad8c2a2c244391421e37ecacf766cbe1c3f9b91965bd67c4c49f109b2239458ca9d32819c898c0"]})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'macvtap0\x00', 0x112})
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="e80000006c00010029bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="001000008000000008000f002000000014003500726f7365300000000000000000000000a40034801400350070696d367265673000000020000000001400350076657468305f6d614176746170000000140035006d61637674617030020000000000000014003500677265300000000000000000000000001400350076657468305f746f5f626174616476001400350001657468315f6d6163767461700000001400350067726530000000000000000000000000140035006261746164765f736c6176655f31000008000f"], 0xe8}}, 0x800)
close(r9)
socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(r4, &(0x7f0000001040)=[{{&(0x7f0000000380)=@isdn, 0x80, &(0x7f0000000ac0)=[{&(0x7f00000004c0)=""/61, 0x3d}, {&(0x7f0000000140)=""/49, 0x31}, {&(0x7f0000000540)=""/75, 0x4b}, {&(0x7f00000005c0)=""/31, 0x1f}, {&(0x7f0000000600)=""/17, 0x11}, {&(0x7f0000000a00)=""/105, 0x69}], 0x6, &(0x7f0000000c00)=""/146, 0x92}, 0x7fff}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000b40)=""/98, 0x62}, {&(0x7f0000000640)=""/57, 0x39}], 0x2, &(0x7f0000000dc0)=""/125, 0x7d}, 0x5}, {{&(0x7f0000000e40)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000cc0)=""/45, 0x2d}, {&(0x7f0000000ec0)=""/120, 0x78}], 0x2, &(0x7f0000000f80)=""/162, 0xa2}, 0x7521a74}], 0x3, 0x0, &(0x7f0000001100)={0x77359400})
sendmsg$SEG6_CMD_DUMPHMAC(0xffffffffffffffff, 0x0, 0x20050)

1.274502687s ago: executing program 0 (id=4955):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000060000000500"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

715.877682ms ago: executing program 2 (id=4956):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x52, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000080000000500000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="0004"], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$PIO_UNISCRNMAP(r2, 0x4b6a, &(0x7f0000000100))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="5c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000040000200010000001ffe02000000000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r5}, 0x10)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r6)
r7 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x200000, @empty, 0x1}, 0x1c)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)
r9 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r10=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000240)={'lo\x00', <r11=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002fc0)=@newqdisc={0x44, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r11, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_TARGET={0x8, 0x8, 0x8}, @TCA_CAKE_RTT={0x8, 0x7, 0x80000000}]}}]}, 0x44}}, 0x0)
listen(r7, 0x0)
r12 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r12, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r13 = accept(r7, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{0xffffffffffffffff, <r14=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r14], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

470.426172ms ago: executing program 0 (id=4957):
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$BLKDISCARD(r0, 0x1277, &(0x7f0000000040)=0xb59)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01)
ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f00000000c0)=ANY=[])
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
unshare(0x2040400)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
pipe(&(0x7f00000002c0)={<r6=>0xffffffffffffffff})
vmsplice(r6, &(0x7f0000000080)=[{&(0x7f0000000500)="7c15b6", 0x3}], 0x1, 0x0)

160.573757ms ago: executing program 4 (id=4958):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7fffffff, 0x400, 0x1, 0xd, 0x1, 0x6, 0x6}, 0x1c)
recvmmsg$unix(r2, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x9200000000000000)

145.500038ms ago: executing program 3 (id=4959):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
syz_read_part_table(0x1062, &(0x7f00000004c0)="$eJzsz7FtwkAYBeB3sp3YVbJBMkbKdClSMwGDeB9WoEC0jEDHHkiHbMuMABTfV9x/unvvpAtPNZQkTftTkjpOB5/vy0WbYZ7NvHbZn9rjJfnKmFrnTL8ED/9dn/rR9EnJ+W+YCr/39691u25L3qbxXdZql83uYR8FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgBd2CwAA//8J0Q77")

78.096503ms ago: executing program 2 (id=4960):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$tipc(r0, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

0s ago: executing program 3 (id=4961):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500))
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

kernel console output (not intermixed with test programs):

red allmulticast mode
[  312.071901][T15444] pimreg: left allmulticast mode
[  312.115978][T15450] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  312.115978][T15450]    program syz.3.4004 not setting count and/or reply_len properly
[  312.192022][T15457] siw: device registration error -23
[  312.205776][T15456] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15456 comm=syz.4.4005
[  312.255501][T15450] pimreg: entered allmulticast mode
[  312.343976][T15463] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  312.580619][T15480] SELinux: ebitmap: truncated map
[  312.586198][T15480] SELinux: failed to load policy
[  312.723482][T15497] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15497 comm=syz.1.4020
[  312.800142][T15499] loop4: detected capacity change from 0 to 2048
[  313.106156][T15499] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.236778][T15509] netlink: 'syz.1.4025': attribute type 13 has an invalid length.
[  313.260365][T15509] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  313.282775][T12890] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.321797][T15504] loop3: detected capacity change from 0 to 128
[  313.338912][T15504] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  313.368769][T15515] netlink: 'syz.4.4026': attribute type 10 has an invalid length.
[  313.393503][T15504] ext4 filesystem being mounted at /160/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  313.437957][T15515] team0: Device ipvlan0 failed to register rx_handler
[  313.520375][T15516] __nla_validate_parse: 13 callbacks suppressed
[  313.520391][T15516] netlink: 21 bytes leftover after parsing attributes in process `syz.1.4027'.
[  313.541282][T15520] SELinux: ebitmap: truncated map
[  313.547117][T15520] SELinux: failed to load policy
[  313.651024][T12509] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  313.683913][T15534] pimreg: left allmulticast mode
[  313.764519][T15539] SELinux: ebitmap: truncated map
[  313.775327][T15539] SELinux: failed to load policy
[  313.822584][T15546] rdma_op ffff888106cb7980 conn xmit_rdma 0000000000000000
[  314.088338][T15561] SELinux: ebitmap: truncated map
[  314.095222][T15561] SELinux: failed to load policy
[  314.137405][T15563] netlink: 'syz.3.4047': attribute type 10 has an invalid length.
[  314.183112][T15563] team0: Device ipvlan0 failed to register rx_handler
[  314.225251][T15567] pimreg: entered allmulticast mode
[  314.243591][T15567] pimreg: left allmulticast mode
[  314.253106][T15570] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  314.253106][T15570]    program syz.4.4051 not setting count and/or reply_len properly
[  314.262817][T15571] SELinux: ebitmap: truncated map
[  314.275774][T15571] SELinux: failed to load policy
[  314.284143][T15570] pimreg: entered allmulticast mode
[  314.293004][T15570] pimreg: left allmulticast mode
[  314.318364][T15575] rdma_op ffff888110da7d80 conn xmit_rdma 0000000000000000
[  314.352442][T15577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4054'.
[  314.364402][T15577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4054'.
[  314.377401][T15570] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4051'.
[  314.395555][T15577] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15577 comm=syz.1.4054
[  314.400124][T15582] loop3: detected capacity change from 0 to 128
[  314.422670][T15582] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  314.575954][    T9] hid-generic 0000:0003:0000.00A9: unknown main item tag 0x0
[  314.583634][    T9] hid-generic 0000:0003:0000.00A9: unknown main item tag 0x0
[  314.608609][T15593] Invalid option length (1265) for dns_resolver key
[  314.616444][    T9] hid-generic 0000:0003:0000.00A9: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  314.773412][T15602] pimreg: entered allmulticast mode
[  314.796628][T15602] pimreg: left allmulticast mode
[  314.806102][T15599] netlink: 21 bytes leftover after parsing attributes in process `syz.3.4060'.
[  314.806138][T15604] rdma_op ffff888110da6580 conn xmit_rdma 0000000000000000
[  314.845138][T15593] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  314.857412][T15599] loop3: detected capacity change from 0 to 128
[  314.884614][T15599] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  314.894064][T15593] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  314.899487][   T29] kauditd_printk_skb: 158 callbacks suppressed
[  314.899507][   T29] audit: type=1326 audit(1755639057.223:5003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  314.934683][   T29] audit: type=1326 audit(1755639057.243:5004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.041937][T15599] ext4 filesystem being mounted at /172/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  315.054722][T15612] pimreg: entered allmulticast mode
[  315.101293][T15614] netlink: 'syz.1.4068': attribute type 13 has an invalid length.
[  315.141764][T15614] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  315.150062][   T29] audit: type=1326 audit(1755639057.393:5005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.181105][   T29] audit: type=1326 audit(1755639057.393:5006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.189991][T15612] pimreg: left allmulticast mode
[  315.204825][   T29] audit: type=1326 audit(1755639057.393:5007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.204857][   T29] audit: type=1326 audit(1755639057.393:5008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.204961][   T29] audit: type=1326 audit(1755639057.393:5009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.280477][   T29] audit: type=1326 audit(1755639057.393:5010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.304168][   T29] audit: type=1326 audit(1755639057.393:5011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.327778][   T29] audit: type=1326 audit(1755639057.393:5012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15607 comm="syz.1.4066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  315.409981][T12509] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  315.711568][T15635] rdma_op ffff888110da5180 conn xmit_rdma 0000000000000000
[  315.735506][T15632] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4074'.
[  315.791256][ T3349] hid-generic 0000:0003:0000.00AA: unknown main item tag 0x0
[  315.798711][ T3349] hid-generic 0000:0003:0000.00AA: unknown main item tag 0x0
[  315.833246][ T3349] hid-generic 0000:0003:0000.00AA: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  315.894268][T15639] Invalid option length (1047286) for dns_resolver key
[  315.907425][T15645] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  315.929814][T15645] netlink: 'syz.4.4080': attribute type 10 has an invalid length.
[  315.958022][T15645] 8021q: adding VLAN 0 to HW filter on device batadv0
[  315.976876][T15645] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  315.990900][T15648] pimreg: entered allmulticast mode
[  316.014382][T15648] pimreg: left allmulticast mode
[  316.057253][T15650] 9pnet_fd: Insufficient options for proto=fd
[  316.153750][T15639] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  316.171063][T15639] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  316.191782][   T23] hid-generic 0000:0003:0000.00AB: unknown main item tag 0x0
[  316.199612][   T23] hid-generic 0000:0003:0000.00AB: unknown main item tag 0x0
[  316.219433][T15657] Invalid option length (1265) for dns_resolver key
[  316.240518][   T23] hid-generic 0000:0003:0000.00AB: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  316.379816][T15654] SELinux: failed to load policy
[  316.462384][T15657] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  316.475069][T15657] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  316.562672][T15664] netlink: 'syz.4.4087': attribute type 1 has an invalid length.
[  316.611156][T15664] 8021q: adding VLAN 0 to HW filter on device bond3
[  316.644900][T15664] vlan2: entered allmulticast mode
[  316.650111][T15664] bond3: entered allmulticast mode
[  317.023466][T15675] SELinux: ebitmap: truncated map
[  317.029130][T15675] SELinux: failed to load policy
[  317.131918][T15681] 9pnet_fd: Insufficient options for proto=fd
[  317.193923][T15685] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  317.193923][T15685]    program syz.1.4095 not setting count and/or reply_len properly
[  317.252143][T15685] pimreg: entered allmulticast mode
[  317.268824][T15692] pimreg: entered allmulticast mode
[  317.284111][T15685] pimreg: left allmulticast mode
[  317.302420][T15692] pimreg: left allmulticast mode
[  317.331068][T15699] netlink: 200 bytes leftover after parsing attributes in process `syz.2.4100'.
[  317.337326][T15696] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4095'.
[  317.406477][T15698] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15698 comm=syz.3.4101
[  317.445812][T15706] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4102'.
[  317.499194][T15706] SELinux: failed to load policy
[  317.502937][T15710] SELinux: ebitmap: truncated map
[  317.504737][T15710] SELinux: failed to load policy
[  317.566678][T15703] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15703 comm=syz.4.4103
[  317.567632][T15717] 9pnet_fd: Insufficient options for proto=fd
[  317.634368][T15724] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4110'.
[  317.660563][T15724] SELinux: failed to load policy
[  317.682376][T15729] rdma_op ffff88811b205d80 conn xmit_rdma 0000000000000000
[  317.748122][T15732] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15732 comm=syz.3.4114
[  317.784005][T15735] pimreg: entered allmulticast mode
[  317.792434][T15735] pimreg: left allmulticast mode
[  317.944513][T15741] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  317.977941][T15741] SELinux: failed to load policy
[  318.076958][T15757] rdma_op ffff88811b1c2580 conn xmit_rdma 0000000000000000
[  318.186730][T15771] pimreg: entered allmulticast mode
[  318.193658][T15771] pimreg: left allmulticast mode
[  318.207184][T15772] netlink: 'syz.3.4131': attribute type 13 has an invalid length.
[  318.225608][T15778] FAULT_INJECTION: forcing a failure.
[  318.225608][T15778] name failslab, interval 1, probability 0, space 0, times 0
[  318.238522][T15778] CPU: 1 UID: 0 PID: 15778 Comm: syz.0.4135 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  318.238556][T15778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  318.238574][T15778] Call Trace:
[  318.238584][T15778]  <TASK>
[  318.238594][T15778]  __dump_stack+0x1d/0x30
[  318.238624][T15778]  dump_stack_lvl+0xe8/0x140
[  318.238678][T15778]  dump_stack+0x15/0x1b
[  318.238696][T15778]  should_fail_ex+0x265/0x280
[  318.238735][T15778]  should_failslab+0x8c/0xb0
[  318.238763][T15778]  kmem_cache_alloc_noprof+0x50/0x310
[  318.238878][T15778]  ? skb_clone+0x151/0x1f0
[  318.238909][T15778]  skb_clone+0x151/0x1f0
[  318.238933][T15778]  __netlink_deliver_tap+0x2c9/0x500
[  318.238969][T15778]  netlink_unicast+0x66b/0x690
[  318.239048][T15778]  netlink_sendmsg+0x58b/0x6b0
[  318.239074][T15778]  ? __pfx_netlink_sendmsg+0x10/0x10
[  318.239102][T15778]  __sock_sendmsg+0x142/0x180
[  318.239137][T15778]  ____sys_sendmsg+0x31e/0x4e0
[  318.239167][T15778]  ___sys_sendmsg+0x17b/0x1d0
[  318.239218][T15778]  __x64_sys_sendmsg+0xd4/0x160
[  318.239347][T15778]  x64_sys_call+0x191e/0x2ff0
[  318.239372][T15778]  do_syscall_64+0xd2/0x200
[  318.239401][T15778]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  318.239436][T15778]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  318.239589][T15778]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.239616][T15778] RIP: 0033:0x7fb4c99aebe9
[  318.239631][T15778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.239653][T15778] RSP: 002b:00007fb4c840f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  318.239673][T15778] RAX: ffffffffffffffda RBX: 00007fb4c9bd5fa0 RCX: 00007fb4c99aebe9
[  318.239744][T15778] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000005
[  318.239757][T15778] RBP: 00007fb4c840f090 R08: 0000000000000000 R09: 0000000000000000
[  318.239771][T15778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.239786][T15778] R13: 00007fb4c9bd6038 R14: 00007fb4c9bd5fa0 R15: 00007ffeccff1388
[  318.239883][T15778]  </TASK>
[  318.486043][T15772] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  318.505872][T15778] vlan2: entered allmulticast mode
[  318.558588][T15785] netlink: 'syz.4.4138': attribute type 10 has an invalid length.
[  318.571263][T15785] team0: Device ipvlan0 failed to register rx_handler
[  318.688074][T15789] SELinux: failed to load policy
[  318.716296][T15794] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  318.772960][T15799] __nla_validate_parse: 2 callbacks suppressed
[  318.772975][T15799] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4144'.
[  318.776335][T15794] SELinux: failed to load policy
[  318.779702][T15799] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4144'.
[  318.846554][T15799] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15799 comm=syz.3.4144
[  318.954616][T15814] rdma_op ffff88810a66f180 conn xmit_rdma 0000000000000000
[  319.037450][T15821] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4154'.
[  319.050134][T15821] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4154'.
[  319.059883][T15821] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4154'.
[  319.122480][T15825] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4150'.
[  319.405188][T15831] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  319.405188][T15831]    program syz.4.4158 not setting count and/or reply_len properly
[  319.455598][T15831] pimreg: entered allmulticast mode
[  319.471667][T15831] pimreg: left allmulticast mode
[  319.527574][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4158'.
[  319.571343][T15834] netlink: 21 bytes leftover after parsing attributes in process `syz.3.4156'.
[  319.591344][T15834] loop3: detected capacity change from 0 to 128
[  319.607101][T15834] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  319.637563][T15834] ext4 filesystem being mounted at /191/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  319.751235][T15846] netlink: 200 bytes leftover after parsing attributes in process `syz.1.4163'.
[  319.817100][T15850] netlink: 'syz.2.4165': attribute type 10 has an invalid length.
[  319.835260][T15852] pimreg: entered allmulticast mode
[  319.850566][T15850] team0: Device ipvlan0 failed to register rx_handler
[  319.861331][T15852] pimreg: left allmulticast mode
[  320.096017][T12509] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  320.156219][ T3385] hid-generic 0000:0003:0000.00AC: unknown main item tag 0x0
[  320.161574][T15872] 9pnet_virtio: no channels available for device 
[  320.163830][ T3385] hid-generic 0000:0003:0000.00AC: unknown main item tag 0x0
[  320.181649][ T3385] hid-generic 0000:0003:0000.00AC: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  320.193665][T15872] Invalid option length (1265) for dns_resolver key
[  320.377150][T15879] loop3: detected capacity change from 0 to 2048
[  320.425181][T15879] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.471394][T15872] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  320.491849][T15872] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  320.540121][T15882] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  320.729017][T12509] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.843618][T15885] netlink: 'syz.0.4178': attribute type 10 has an invalid length.
[  320.881219][T15885] team0: Device ipvlan0 failed to register rx_handler
[  320.884098][T15889] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4179'.
[  320.927823][T15889] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15889 comm=syz.3.4179
[  321.028955][T15894] netlink: 'syz.3.4181': attribute type 13 has an invalid length.
[  321.051691][T15894] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  321.068739][T15892] SELinux: ebitmap: truncated map
[  321.074445][   T29] kauditd_printk_skb: 178 callbacks suppressed
[  321.074459][   T29] audit: type=1326 audit(1755639063.413:5191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.115889][ T3385] hid-generic 0000:0003:0000.00AD: unknown main item tag 0x0
[  321.119990][T15892] SELinux: failed to load policy
[  321.123496][ T3385] hid-generic 0000:0003:0000.00AD: unknown main item tag 0x0
[  321.130121][   T29] audit: type=1326 audit(1755639063.463:5192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.159671][   T29] audit: type=1326 audit(1755639063.463:5193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.183444][   T29] audit: type=1326 audit(1755639063.463:5194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.207488][   T29] audit: type=1326 audit(1755639063.463:5195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.230998][   T29] audit: type=1326 audit(1755639063.463:5196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.250919][ T3385] hid-generic 0000:0003:0000.00AD: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  321.254599][   T29] audit: type=1326 audit(1755639063.463:5197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.287747][   T29] audit: type=1326 audit(1755639063.463:5198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.311485][   T29] audit: type=1326 audit(1755639063.463:5199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15895 comm="syz.4.4182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c0b61ebe9 code=0x7ffc0000
[  321.383330][T15898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  321.422531][T15898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  321.510470][   T29] audit: type=1326 audit(1755639063.813:5200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15907 comm="syz.1.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  321.676392][T15914] lo speed is unknown, defaulting to 1000
[  322.351321][T15922] rdma_op ffff8881196ea580 conn xmit_rdma 0000000000000000
[  322.360338][T15920] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  322.399968][T15920] SELinux: failed to load policy
[  322.461949][T15928] netlink: 'syz.1.4193': attribute type 1 has an invalid length.
[  322.516867][T15928] 8021q: adding VLAN 0 to HW filter on device bond8
[  322.530628][T15938] vlan2: entered allmulticast mode
[  322.535819][T15938] bond8: entered allmulticast mode
[  322.587733][T15942] wireguard0: entered promiscuous mode
[  322.593281][T15942] wireguard0: entered allmulticast mode
[  322.770005][T15954] rdma_op ffff88811b33ed80 conn xmit_rdma 0000000000000000
[  322.887100][T15957] lo speed is unknown, defaulting to 1000
[  323.558683][T15960] SELinux: failed to load policy
[  323.613182][T15964] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15964 comm=syz.2.4208
[  323.739852][T15984] pimreg: entered allmulticast mode
[  323.783592][T15984] pimreg: left allmulticast mode
[  323.917693][T15981] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=15981 comm=syz.1.4215
[  324.002736][T15997] rdma_op ffff88811b176180 conn xmit_rdma 0000000000000000
[  324.094004][T16008] pimreg: entered allmulticast mode
[  324.101381][T16008] pimreg: left allmulticast mode
[  324.155784][T16008] __nla_validate_parse: 8 callbacks suppressed
[  324.155800][T16008] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4227'.
[  324.434848][T16021] pimreg: entered allmulticast mode
[  324.457817][T16021] pimreg: left allmulticast mode
[  324.473163][T16023] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  324.491318][T16023] SELinux: failed to load policy
[  324.535643][T16027] netlink: 'syz.1.4236': attribute type 13 has an invalid length.
[  324.562113][T16027] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  324.690594][T16037] pimreg: entered allmulticast mode
[  324.706974][T16037] pimreg: left allmulticast mode
[  324.771066][T16037] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4240'.
[  325.023661][T16052] pimreg: entered allmulticast mode
[  325.039642][T16052] pimreg: left allmulticast mode
[  325.121569][T16053] lo speed is unknown, defaulting to 1000
[  325.219806][T16056] netlink: 'syz.2.4248': attribute type 10 has an invalid length.
[  325.228788][T16056] team0: Device ipvlan0 failed to register rx_handler
[  325.631346][T16073] pimreg: entered allmulticast mode
[  325.638067][T16073] pimreg: left allmulticast mode
[  325.684486][T16079] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4258'.
[  325.694464][T16079] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4258'.
[  325.707923][ T3385] hid-generic 0000:0003:0000.00AE: unknown main item tag 0x0
[  325.710804][T16068] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4254'.
[  325.715767][ T3385] hid-generic 0000:0003:0000.00AE: unknown main item tag 0x0
[  325.759991][T16081] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  325.781953][T16081] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  325.798326][ T3385] hid-generic 0000:0003:0000.00AE: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  325.811169][T16079] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16079 comm=syz.1.4258
[  325.896434][T16093] netlink: 'syz.2.4262': attribute type 10 has an invalid length.
[  325.910544][T16093] team0: Device ipvlan0 failed to register rx_handler
[  326.058535][T16107] netlink: 'syz.4.4269': attribute type 1 has an invalid length.
[  326.075452][T16107] 8021q: adding VLAN 0 to HW filter on device bond4
[  326.128121][T16110] pimreg: entered allmulticast mode
[  326.136814][T16112] 9pnet_fd: Insufficient options for proto=fd
[  326.177165][T16107] vlan2: entered allmulticast mode
[  326.182484][T16107] bond4: entered allmulticast mode
[  326.203300][T16117] netlink: 'syz.1.4273': attribute type 1 has an invalid length.
[  326.214086][T16110] pimreg: left allmulticast mode
[  326.233003][T16117] 8021q: adding VLAN 0 to HW filter on device bond9
[  326.246852][T16117] vlan2: entered allmulticast mode
[  326.252201][T16117] bond9: entered allmulticast mode
[  326.259379][T16115] netlink: 21 bytes leftover after parsing attributes in process `syz.2.4266'.
[  326.421004][T16128] netlink: 'syz.0.4277': attribute type 10 has an invalid length.
[  326.447039][T16128] team0: Device ipvlan0 failed to register rx_handler
[  326.758347][T16143] 9pnet_fd: Insufficient options for proto=fd
[  327.107228][T16151] pimreg: entered allmulticast mode
[  327.131921][T16151] pimreg: left allmulticast mode
[  327.256909][T16154] netlink: 'syz.1.4286': attribute type 10 has an invalid length.
[  327.293498][T16154] team0: Device ipvlan0 failed to register rx_handler
[  327.321690][T16157] rdma_op ffff8881196e9d80 conn xmit_rdma 0000000000000000
[  327.363501][T16159] netlink: 'syz.3.4288': attribute type 10 has an invalid length.
[  327.382696][T16159] team0: Device ipvlan0 failed to register rx_handler
[  327.390322][T16152] netlink: 21 bytes leftover after parsing attributes in process `syz.4.4285'.
[  327.413379][T16152] loop4: detected capacity change from 0 to 128
[  327.441508][T16152] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  327.447634][    T9] hid-generic 0000:0003:0000.00AF: unknown main item tag 0x0
[  327.461632][    T9] hid-generic 0000:0003:0000.00AF: unknown main item tag 0x0
[  327.474315][    T9] hid-generic 0000:0003:0000.00AF: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  327.484692][T16152] ext4 filesystem being mounted at /223/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  327.888076][T16177] netlink: 32 bytes leftover after parsing attributes in process `GPL'.
[  327.960994][T16168] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  327.981702][T12890] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  328.001871][T16168] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  328.150531][T16189] netlink: 'syz.4.4298': attribute type 1 has an invalid length.
[  328.184049][T16189] 8021q: adding VLAN 0 to HW filter on device bond5
[  328.348175][T16194] lo speed is unknown, defaulting to 1000
[  328.436622][   T29] kauditd_printk_skb: 346 callbacks suppressed
[  328.436640][   T29] audit: type=1400 audit(1755639070.783:5547): avc:  denied  { create } for  pid=16198 comm="syz.3.4300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  328.548587][T16199] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  328.580786][   T29] audit: type=1400 audit(1755639070.893:5548): avc:  denied  { sys_admin } for  pid=16198 comm="syz.3.4300" capability=21  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1
[  328.685984][   T29] audit: type=1326 audit(1755639071.033:5549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16204 comm="syz.0.4302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  328.691897][T16201] lo speed is unknown, defaulting to 1000
[  328.716472][   T29] audit: type=1326 audit(1755639071.063:5550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16204 comm="syz.0.4302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  328.740376][   T29] audit: type=1326 audit(1755639071.063:5551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16204 comm="syz.0.4302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  328.764270][   T29] audit: type=1326 audit(1755639071.063:5552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16204 comm="syz.0.4302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  328.788253][   T29] audit: type=1326 audit(1755639071.063:5553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16204 comm="syz.0.4302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  328.812105][   T29] audit: type=1326 audit(1755639071.063:5554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16204 comm="syz.0.4302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  328.832532][T16209] netlink: 'syz.2.4303': attribute type 1 has an invalid length.
[  328.835925][   T29] audit: type=1326 audit(1755639071.063:5555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16204 comm="syz.0.4302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  328.867534][   T29] audit: type=1326 audit(1755639071.063:5556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16204 comm="syz.0.4302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  328.894639][T16209] 8021q: adding VLAN 0 to HW filter on device bond3
[  328.915240][T16209] vlan2: entered allmulticast mode
[  328.920448][T16209] bond3: entered allmulticast mode
[  329.014024][T16214] pimreg: entered allmulticast mode
[  329.029010][T16214] pimreg: left allmulticast mode
[  329.037389][ T3349] hid-generic 0000:0003:0000.00B0: unknown main item tag 0x0
[  329.044899][ T3349] hid-generic 0000:0003:0000.00B0: unknown main item tag 0x0
[  329.062896][ T3349] hid-generic 0000:0003:0000.00B0: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  329.114469][T16216] Invalid option length (1046020) for dns_resolver key
[  329.183624][T16225] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  329.233918][T16220] netlink: 32 bytes leftover after parsing attributes in process `GPL'.
[  329.314223][T16225] lo speed is unknown, defaulting to 1000
[  329.361813][T16216] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  329.371781][T16216] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  329.425730][T16239] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  329.510183][T16239] SELinux: failed to load policy
[  329.534995][T16241] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  329.534995][T16241]    program syz.4.4314 not setting count and/or reply_len properly
[  329.646090][T16241] pimreg: entered allmulticast mode
[  329.660667][T16241] pimreg: left allmulticast mode
[  329.717598][T16243] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4314'.
[  329.840475][T16249] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  329.986708][T16251] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  330.045419][T16249] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.265020][T16249] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.316922][T16238] Set syz1 is full, maxelem 65536 reached
[  330.372223][T16251] lo speed is unknown, defaulting to 1000
[  330.400795][T16249] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.443811][T16265] vhci_hcd: default hub control req: 010b v0000 i0000 l0
[  330.565131][T16249] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  330.724536][T16275] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4329'.
[  331.026598][ T5643] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  331.134988][ T5643] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  331.169446][ T5643] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  331.199877][ T5643] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  331.380714][T16283] SELinux: failed to load policy
[  331.440840][T16297] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4337'.
[  331.490182][T16297] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4337'.
[  331.505246][T16303] netlink: 'syz.2.4341': attribute type 13 has an invalid length.
[  331.542624][T16303] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  331.571870][T16307] netlink: 'syz.0.4343': attribute type 1 has an invalid length.
[  331.607315][T16312] netlink: 'syz.3.4345': attribute type 10 has an invalid length.
[  331.614545][T16307] 8021q: adding VLAN 0 to HW filter on device bond2
[  331.645528][T16297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16297 comm=syz.4.4337
[  331.660956][T16312] team0: Device ipvlan0 failed to register rx_handler
[  331.693051][T16317] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4347'.
[  331.702329][T16317] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4347'.
[  331.712996][T16314] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  331.732883][T16307] vlan2: entered allmulticast mode
[  331.738036][T16307] bond2: entered allmulticast mode
[  331.775957][T16317] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16317 comm=syz.3.4347
[  331.797095][T16318] lo speed is unknown, defaulting to 1000
[  331.858527][T16324] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  331.900262][T16324] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  331.930449][T16328] SELinux: failed to load policy
[  331.991340][ T5928] hid-generic 0000:0003:0000.00B1: unknown main item tag 0x0
[  331.998900][ T5928] hid-generic 0000:0003:0000.00B1: unknown main item tag 0x0
[  332.018508][T16335] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  332.038423][T16335] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  332.058151][ T5928] hid-generic 0000:0003:0000.00B1: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  332.299003][ T2992] udevd[2992]: worker [4369] terminated by signal 33 (Unknown signal 33)
[  332.350623][ T2992] udevd[2992]: worker [4369] failed while handling '/devices/virtual/misc/uhid/0000:0003:0000.00B1/hidraw/hidraw0'
[  332.537234][T16344] netlink: 'syz.1.4357': attribute type 10 has an invalid length.
[  332.558132][T16344] team0: Device ipvlan0 failed to register rx_handler
[  332.718396][T16351] netlink: 'syz.0.4359': attribute type 1 has an invalid length.
[  332.776640][T16351] 8021q: adding VLAN 0 to HW filter on device bond3
[  332.795577][T16356] vlan2: entered allmulticast mode
[  332.800823][T16356] bond3: entered allmulticast mode
[  333.120541][T16379] netlink: 'syz.0.4371': attribute type 10 has an invalid length.
[  333.142877][T16379] team0: Device ipvlan0 failed to register rx_handler
[  333.279058][T16386] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  333.279058][T16386]    program syz.0.4374 not setting count and/or reply_len properly
[  333.362901][T16386] pimreg: entered allmulticast mode
[  333.401880][T16386] pimreg: left allmulticast mode
[  333.472204][    T9] hid-generic 0000:0003:0000.00B2: unknown main item tag 0x0
[  333.479776][    T9] hid-generic 0000:0003:0000.00B2: unknown main item tag 0x0
[  333.501979][T16386] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4374'.
[  333.543392][T16389] Invalid option length (1265) for dns_resolver key
[  333.564869][    T9] hid-generic 0000:0003:0000.00B2: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  333.597334][T16389] loop4: detected capacity change from 0 to 512
[  333.617252][T16399] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  333.643283][T16399] SELinux: failed to load policy
[  333.650392][T16389] EXT4-fs (loop4): too many log groups per flexible block group
[  333.658245][T16389] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  333.687960][T16389] EXT4-fs (loop4): mount failed
[  333.778723][T16405] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  333.800532][T16410] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4382'.
[  333.823745][T16410] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4382'.
[  333.830506][T16406] lo speed is unknown, defaulting to 1000
[  333.853998][T16410] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16410 comm=syz.0.4382
[  333.940153][T16389] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  334.030951][T16389] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  334.050600][   T29] kauditd_printk_skb: 116 callbacks suppressed
[  334.050619][   T29] audit: type=1326 audit(1755639076.403:5673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.103731][   T29] audit: type=1326 audit(1755639076.433:5674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.127298][   T29] audit: type=1326 audit(1755639076.433:5675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.150846][   T29] audit: type=1326 audit(1755639076.433:5676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.174552][   T29] audit: type=1326 audit(1755639076.433:5677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.198321][   T29] audit: type=1326 audit(1755639076.433:5678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.222213][   T29] audit: type=1326 audit(1755639076.433:5679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.245735][   T29] audit: type=1326 audit(1755639076.433:5680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.269560][   T29] audit: type=1326 audit(1755639076.433:5681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.289931][T16427] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  334.289931][T16427]    program syz.2.4387 not setting count and/or reply_len properly
[  334.293328][   T29] audit: type=1326 audit(1755639076.433:5682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16420 comm="syz.2.4386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  334.382654][T16424] pimreg: entered allmulticast mode
[  334.403700][T16424] pimreg: left allmulticast mode
[  334.430558][    T9] hid-generic 0000:0003:0000.00B3: unknown main item tag 0x0
[  334.438238][    T9] hid-generic 0000:0003:0000.00B3: unknown main item tag 0x0
[  334.462382][    T9] hid-generic 0000:0003:0000.00B3: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  334.490698][T16424] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4387'.
[  334.557242][T16433] netlink: 21 bytes leftover after parsing attributes in process `syz.3.4384'.
[  334.612096][T16433] loop3: detected capacity change from 0 to 128
[  334.636976][T16433] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  334.670307][T16433] ext4 filesystem being mounted at /235/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  334.703675][T16431] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  334.714112][T16431] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  334.852447][T16448] netlink: 'syz.4.4393': attribute type 1 has an invalid length.
[  334.873023][T16450] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4395'.
[  334.898607][T16448] 8021q: adding VLAN 0 to HW filter on device bond6
[  334.911673][T16450] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4395'.
[  334.934781][T12509] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  334.952438][T16448] vlan2: entered allmulticast mode
[  334.957647][T16448] bond6: entered allmulticast mode
[  335.102749][T16450] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16450 comm=syz.1.4395
[  335.362174][T16470] netlink: 'syz.0.4402': attribute type 13 has an invalid length.
[  335.384152][T16469] netlink: 'syz.4.4403': attribute type 10 has an invalid length.
[  335.409998][T16470] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  335.471534][T16469] team0: Device ipvlan0 failed to register rx_handler
[  335.545112][T16484] rdma_op ffff88810a66f580 conn xmit_rdma 0000000000000000
[  335.568090][T16489] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4412'.
[  335.598017][T16487] SELinux: failed to load policy
[  335.627363][T16494] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4412'.
[  335.761774][T16489] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16489 comm=syz.4.4412
[  335.863936][T16502] lo speed is unknown, defaulting to 1000
[  336.054945][T16505] netlink: 'syz.2.4417': attribute type 13 has an invalid length.
[  336.271825][T16505] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  336.293514][T16509] team0: Device ipvlan0 failed to register rx_handler
[  336.720035][T16524] lo speed is unknown, defaulting to 1000
[  336.876253][T16522] rdma_op ffff88813e0ef580 conn xmit_rdma 0000000000000000
[  336.895697][T16523] validate_nla: 1 callbacks suppressed
[  336.895716][T16523] netlink: 'syz.0.4425': attribute type 1 has an invalid length.
[  337.027030][T16523] 8021q: adding VLAN 0 to HW filter on device bond4
[  337.105067][T16529] vlan2: entered allmulticast mode
[  337.110310][T16529] bond4: entered allmulticast mode
[  337.506813][T16538] netlink: 'syz.4.4430': attribute type 10 has an invalid length.
[  337.536660][T16546] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4434'.
[  337.547000][T16538] team0: Device ipvlan0 failed to register rx_handler
[  337.570310][T16542] netlink: 'syz.2.4431': attribute type 1 has an invalid length.
[  337.579527][T16546] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4434'.
[  337.628305][T16542] 8021q: adding VLAN 0 to HW filter on device bond4
[  337.655480][T16546] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16546 comm=syz.0.4434
[  337.684468][T16542] vlan2: entered allmulticast mode
[  337.689665][T16542] bond4: entered allmulticast mode
[  337.701413][T16555] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4438'.
[  337.740284][T16555] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4438'.
[  337.766806][T16558] pimreg: entered allmulticast mode
[  337.779631][T16558] pimreg: left allmulticast mode
[  337.805842][T16555] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16555 comm=syz.1.4438
[  337.868317][T16561] pimreg: entered allmulticast mode
[  337.931705][T16568] pimreg: left allmulticast mode
[  338.110702][T16578] netlink: 'syz.2.4447': attribute type 10 has an invalid length.
[  338.119036][T16578] team0: Device ipvlan0 failed to register rx_handler
[  338.225991][T16580] rdma_op ffff888106cb5d80 conn xmit_rdma 0000000000000000
[  338.528532][ T5928] hid-generic 0000:0003:0000.00B4: unknown main item tag 0x0
[  338.536068][ T5928] hid-generic 0000:0003:0000.00B4: unknown main item tag 0x0
[  338.632793][ T5928] hid-generic 0000:0003:0000.00B4: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  338.783236][T16586] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  338.844869][T16586] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  339.018244][T16604] netlink: 'syz.3.4458': attribute type 10 has an invalid length.
[  339.029301][T16604] team0: Device ipvlan0 failed to register rx_handler
[  339.053527][T16600] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  339.374663][T16617] lo speed is unknown, defaulting to 1000
[  339.870960][   T29] kauditd_printk_skb: 138 callbacks suppressed
[  339.870979][   T29] audit: type=1326 audit(1755639082.223:5821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  339.914903][T16627] vhci_hcd: invalid port number 96
[  339.920205][T16627] vhci_hcd: default hub control req: 0300 vfffa i0060 l0
[  339.950174][   T29] audit: type=1326 audit(1755639082.253:5822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  339.962659][T16633] rdma_op ffff88813fdc1580 conn xmit_rdma 0000000000000000
[  339.974068][   T29] audit: type=1326 audit(1755639082.253:5823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  340.004638][   T29] audit: type=1326 audit(1755639082.253:5824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  340.028334][   T29] audit: type=1326 audit(1755639082.253:5825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  340.052124][   T29] audit: type=1326 audit(1755639082.253:5826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  340.075721][   T29] audit: type=1326 audit(1755639082.263:5827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  340.099653][   T29] audit: type=1326 audit(1755639082.263:5828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  340.123308][   T29] audit: type=1326 audit(1755639082.263:5829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  340.147061][   T29] audit: type=1326 audit(1755639082.263:5830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16628 comm="syz.1.4467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  340.187591][T16636] lo speed is unknown, defaulting to 1000
[  340.562316][T16670] netlink: 'syz.3.4486': attribute type 13 has an invalid length.
[  340.605480][T16670] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  340.805499][T16682] __nla_validate_parse: 1 callbacks suppressed
[  340.805585][T16682] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4491'.
[  340.844754][T16682] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16682 comm=syz.3.4491
[  340.870182][T16684] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4492'.
[  340.879709][T16684] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4492'.
[  340.904459][T16684] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16684 comm=syz.2.4492
[  341.091852][T16688] SELinux: failed to load policy
[  341.255451][T16694] lo speed is unknown, defaulting to 1000
[  341.632940][T16700] netlink: 'syz.2.4498': attribute type 1 has an invalid length.
[  341.665571][T16704] netlink: 'syz.3.4500': attribute type 13 has an invalid length.
[  341.694054][T16709] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  341.694054][T16709]    program syz.4.4502 not setting count and/or reply_len properly
[  341.711836][T16700] 8021q: adding VLAN 0 to HW filter on device bond5
[  341.723629][T16710] netlink: 'syz.1.4503': attribute type 10 has an invalid length.
[  341.742978][T16704] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  341.762858][T16700] vlan2: entered allmulticast mode
[  341.768252][T16700] bond5: entered allmulticast mode
[  341.788713][T16710] team0: Device ipvlan0 failed to register rx_handler
[  341.814209][T16717] FAULT_INJECTION: forcing a failure.
[  341.814209][T16717] name failslab, interval 1, probability 0, space 0, times 0
[  341.827111][T16717] CPU: 1 UID: 0 PID: 16717 Comm: syz.3.4505 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  341.827199][T16717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  341.827215][T16717] Call Trace:
[  341.827222][T16717]  <TASK>
[  341.827232][T16717]  __dump_stack+0x1d/0x30
[  341.827258][T16717]  dump_stack_lvl+0xe8/0x140
[  341.827281][T16717]  dump_stack+0x15/0x1b
[  341.827301][T16717]  should_fail_ex+0x265/0x280
[  341.827378][T16717]  should_failslab+0x8c/0xb0
[  341.827407][T16717]  __kmalloc_noprof+0xa5/0x3e0
[  341.827441][T16717]  ? pfkey_sadb2xfrm_user_sec_ctx+0x2e/0x120
[  341.827625][T16717]  pfkey_sadb2xfrm_user_sec_ctx+0x2e/0x120
[  341.827679][T16717]  pfkey_compile_policy+0x392/0x410
[  341.827707][T16717]  ? __pfx_pfkey_compile_policy+0x10/0x10
[  341.827743][T16717]  xfrm_user_policy+0x297/0x540
[  341.827795][T16717]  do_ipv6_setsockopt+0x1266/0x2160
[  341.827886][T16717]  ? kstrtoull+0x111/0x140
[  341.827906][T16717]  ? __rcu_read_unlock+0x4f/0x70
[  341.827927][T16717]  ? avc_has_perm_noaudit+0x1b1/0x200
[  341.827958][T16717]  ? selinux_netlbl_socket_setsockopt+0x1f9/0x2d0
[  341.828011][T16717]  ipv6_setsockopt+0x59/0x130
[  341.828039][T16717]  rawv6_setsockopt+0x1d2/0x420
[  341.828061][T16717]  sock_common_setsockopt+0x69/0x80
[  341.828131][T16717]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  341.828185][T16717]  __sys_setsockopt+0x181/0x200
[  341.828237][T16717]  __x64_sys_setsockopt+0x64/0x80
[  341.828319][T16717]  x64_sys_call+0x20ec/0x2ff0
[  341.828345][T16717]  do_syscall_64+0xd2/0x200
[  341.828416][T16717]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  341.828499][T16717]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  341.828542][T16717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.828570][T16717] RIP: 0033:0x7f24ed98ebe9
[  341.828590][T16717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.828610][T16717] RSP: 002b:00007f24ec3ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  341.828633][T16717] RAX: ffffffffffffffda RBX: 00007f24edbb5fa0 RCX: 00007f24ed98ebe9
[  341.828645][T16717] RDX: 0000000000000022 RSI: 0000000000000029 RDI: 0000000000000003
[  341.828657][T16717] RBP: 00007f24ec3ef090 R08: 000000000000005c R09: 0000000000000000
[  341.828669][T16717] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.828682][T16717] R13: 00007f24edbb6038 R14: 00007f24edbb5fa0 R15: 00007ffcf5c742b8
[  341.828790][T16717]  </TASK>
[  342.076115][T16712] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  342.192286][T16714] pimreg: entered allmulticast mode
[  342.213320][T16708] pimreg: left allmulticast mode
[  342.232643][T16715] lo speed is unknown, defaulting to 1000
[  342.325993][T16733] lo speed is unknown, defaulting to 1000
[  342.672700][T16741] FAULT_INJECTION: forcing a failure.
[  342.672700][T16741] name failslab, interval 1, probability 0, space 0, times 0
[  342.685439][T16741] CPU: 1 UID: 0 PID: 16741 Comm: syz.2.4512 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  342.685479][T16741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  342.685499][T16741] Call Trace:
[  342.685508][T16741]  <TASK>
[  342.685517][T16741]  __dump_stack+0x1d/0x30
[  342.685569][T16741]  dump_stack_lvl+0xe8/0x140
[  342.685591][T16741]  dump_stack+0x15/0x1b
[  342.685611][T16741]  should_fail_ex+0x265/0x280
[  342.685636][T16741]  should_failslab+0x8c/0xb0
[  342.685665][T16741]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  342.685750][T16741]  ? sidtab_sid2str_get+0xa0/0x130
[  342.685773][T16741]  kmemdup_noprof+0x2b/0x70
[  342.685799][T16741]  sidtab_sid2str_get+0xa0/0x130
[  342.685823][T16741]  security_sid_to_context_core+0x1eb/0x2e0
[  342.685892][T16741]  security_sid_to_context+0x27/0x40
[  342.685970][T16741]  selinux_lsmprop_to_secctx+0x67/0xf0
[  342.685999][T16741]  security_lsmprop_to_secctx+0x43/0x80
[  342.686034][T16741]  audit_log_task_context+0x77/0x190
[  342.686078][T16741]  audit_log_task+0xf4/0x250
[  342.686123][T16741]  audit_seccomp+0x61/0x100
[  342.686155][T16741]  ? __seccomp_filter+0x68c/0x10d0
[  342.686184][T16741]  __seccomp_filter+0x69d/0x10d0
[  342.686261][T16741]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  342.686297][T16741]  ? vfs_write+0x7e8/0x960
[  342.686330][T16741]  ? __rcu_read_unlock+0x4f/0x70
[  342.686356][T16741]  ? __fget_files+0x184/0x1c0
[  342.686470][T16741]  __secure_computing+0x82/0x150
[  342.686498][T16741]  syscall_trace_enter+0xcf/0x1e0
[  342.686530][T16741]  do_syscall_64+0xac/0x200
[  342.686626][T16741]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  342.686653][T16741]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  342.686686][T16741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.686714][T16741] RIP: 0033:0x7fb48600ebe9
[  342.686805][T16741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.686828][T16741] RSP: 002b:00007fb484a6f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000117
[  342.686853][T16741] RAX: ffffffffffffffda RBX: 00007fb486235fa0 RCX: 00007fb48600ebe9
[  342.686869][T16741] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  342.686930][T16741] RBP: 00007fb484a6f090 R08: 0000000000000000 R09: 0000000000000000
[  342.686945][T16741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.686961][T16741] R13: 00007fb486236038 R14: 00007fb486235fa0 R15: 00007fffaf9376e8
[  342.686984][T16741]  </TASK>
[  342.991868][T16742] team0 (unregistering): Port device team_slave_0 removed
[  343.006142][T16749] netlink: 'syz.2.4515': attribute type 13 has an invalid length.
[  343.030917][T16742] team0 (unregistering): Port device team_slave_1 removed
[  343.084305][T16749] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  343.201937][T16732] netlink: 21 bytes leftover after parsing attributes in process `syz.1.4510'.
[  343.219600][T16759] netlink: 'syz.2.4518': attribute type 1 has an invalid length.
[  343.266684][T16759] 8021q: adding VLAN 0 to HW filter on device bond6
[  343.304694][T16766] vlan2: entered allmulticast mode
[  343.309879][T16766] bond6: entered allmulticast mode
[  343.408651][T16769] netlink: 'syz.0.4520': attribute type 10 has an invalid length.
[  343.446550][T16769] team0: Device ipvlan0 failed to register rx_handler
[  343.496268][    T9] hid-generic 0000:0003:0000.00B5: unknown main item tag 0x0
[  343.503917][    T9] hid-generic 0000:0003:0000.00B5: unknown main item tag 0x0
[  343.551731][    T9] hid-generic 0000:0003:0000.00B5: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  343.598911][T16774] Invalid option length (1265) for dns_resolver key
[  343.798810][    T9] hid-generic 0000:0003:0000.00B6: unknown main item tag 0x0
[  343.806300][    T9] hid-generic 0000:0003:0000.00B6: unknown main item tag 0x0
[  343.870446][    T9] hid-generic 0000:0003:0000.00B6: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  343.902065][T16774] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  343.912240][T16790] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  343.936736][T16790] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  343.980639][T16774] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  344.622666][T16801] netlink: 21 bytes leftover after parsing attributes in process `syz.3.4532'.
[  344.650504][T16801] loop3: detected capacity change from 0 to 128
[  344.674724][T16801] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  344.730172][T16801] ext4 filesystem being mounted at /272/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  345.258112][T12509] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  453.978189][   T29] kauditd_printk_skb: 108 callbacks suppressed
[  453.978216][   T29] audit: type=1326 audit(1755639196.323:5938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.013702][T16815] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4534'.
[  454.014944][   T29] audit: type=1326 audit(1755639196.363:5939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.031675][T16815] 8021q: adding VLAN 0 to HW filter on device bond10
[  454.046247][   T29] audit: type=1326 audit(1755639196.363:5940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.076594][   T29] audit: type=1326 audit(1755639196.363:5941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.100602][   T29] audit: type=1326 audit(1755639196.363:5942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.124300][   T29] audit: type=1326 audit(1755639196.363:5943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.147858][   T29] audit: type=1326 audit(1755639196.363:5944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.182519][   T29] audit: type=1400 audit(1755639196.503:5945): avc:  denied  { ioctl } for  pid=16811 comm="syz.0.4533" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=62350 ioctlcmd=0x9411 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  454.208638][   T29] audit: type=1326 audit(1755639196.503:5946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.232223][   T29] audit: type=1326 audit(1755639196.503:5947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16812 comm="syz.2.4535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  454.258385][T16817] netlink: 'syz.3.4536': attribute type 10 has an invalid length.
[  454.267929][T16817] team0: Device ipvlan0 failed to register rx_handler
[  454.639502][T16831] netlink: 21 bytes leftover after parsing attributes in process `syz.1.4543'.
[  454.753631][T16846] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  454.791797][T16846] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  454.813993][T16849] netlink: 'syz.2.4548': attribute type 1 has an invalid length.
[  454.840699][T16849] 8021q: adding VLAN 0 to HW filter on device bond7
[  454.854290][T16846] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  454.874445][T16852] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4549'.
[  454.882656][T16849] vlan2: entered allmulticast mode
[  454.888884][T16849] bond7: entered allmulticast mode
[  454.909028][T16852] 8021q: adding VLAN 0 to HW filter on device bond5
[  454.920361][T16846] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  454.964747][T16857] netlink: 'syz.2.4551': attribute type 10 has an invalid length.
[  454.973519][T16857] team0: Device ipvlan0 failed to register rx_handler
[  454.994446][ T5689] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  455.026117][T16859] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  455.026117][T16859]    program syz.2.4552 not setting count and/or reply_len properly
[  455.034707][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  455.055956][T16859] pimreg: entered allmulticast mode
[  455.068120][T16859] pimreg: left allmulticast mode
[  455.076182][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  455.098607][   T12] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  455.123887][T16859] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4552'.
[  455.162399][T16863] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4554'.
[  455.172654][T16863] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4554'.
[  455.238638][T16863] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16863 comm=syz.1.4554
[  455.255769][T16870] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4550'.
[  455.265452][T16870] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4550'.
[  455.484200][T16883] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4560'.
[  455.507166][T16883] 8021q: adding VLAN 0 to HW filter on device bond7
[  455.579219][T16888] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4562'.
[  455.649778][T16888] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16888 comm=syz.4.4562
[  455.726341][ T3349] hid-generic 0000:0003:0000.00B7: unknown main item tag 0x0
[  455.734034][ T3349] hid-generic 0000:0003:0000.00B7: unknown main item tag 0x0
[  455.772264][ T3349] hid-generic 0000:0003:0000.00B7: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  455.805729][T16910] 8021q: adding VLAN 0 to HW filter on device bond8
[  456.007395][T16907] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  456.045660][T16907] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  456.412695][T16927] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16927 comm=syz.4.4576
[  456.553671][T16932] lo speed is unknown, defaulting to 1000
[  456.681944][T16944] netlink: 'syz.4.4583': attribute type 1 has an invalid length.
[  456.716115][T16944] 8021q: adding VLAN 0 to HW filter on device bond9
[  456.734629][T16946] pim6reg1: entered promiscuous mode
[  456.740057][T16946] pim6reg1: entered allmulticast mode
[  456.768184][T16944] vlan2: entered allmulticast mode
[  456.773559][T16944] bond9: entered allmulticast mode
[  456.905772][T16956] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=16956 comm=syz.0.4587
[  457.325870][T14865] hid-generic 0000:0003:0000.00B8: unknown main item tag 0x0
[  457.333443][T14865] hid-generic 0000:0003:0000.00B8: unknown main item tag 0x0
[  457.369976][T14865] hid-generic 0000:0003:0000.00B8: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  457.429758][T16982] can0: slcan on ttyS3.
[  457.520047][T16978] can0 (unregistered): slcan off ttyS3.
[  457.539461][T16978] Falling back ldisc for ttyS3.
[  457.556041][T16976] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  457.602384][T16976] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  457.662992][T16995] lo speed is unknown, defaulting to 1000
[  457.823075][T17002] 8021q: adding VLAN 0 to HW filter on device bond10
[  457.840629][T17014] netlink: 'syz.1.4599': attribute type 1 has an invalid length.
[  457.908205][T17014] 8021q: adding VLAN 0 to HW filter on device bond11
[  457.975915][T17014] vlan2: entered allmulticast mode
[  457.981237][T17014] bond11: entered allmulticast mode
[  458.056429][T17022] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=17022 comm=syz.4.4601
[  458.102078][T17035] program syz.3.4604 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  458.243136][T17039] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=17039 comm=syz.4.4607
[  458.272205][T17045] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  458.401440][T17049] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  458.401440][T17049]    program syz.4.4610 not setting count and/or reply_len properly
[  458.407401][T17045] random: crng reseeded on system resumption
[  458.456926][T17049] pimreg: entered allmulticast mode
[  458.463203][T17049] pimreg: left allmulticast mode
[  458.605898][T17053] 8021q: adding VLAN 0 to HW filter on device bond12
[  458.821393][T17067] FAULT_INJECTION: forcing a failure.
[  458.821393][T17067] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  458.834922][T17067] CPU: 0 UID: 0 PID: 17067 Comm: syz.1.4616 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  458.834958][T17067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  458.834975][T17067] Call Trace:
[  458.835038][T17067]  <TASK>
[  458.835048][T17067]  __dump_stack+0x1d/0x30
[  458.835071][T17067]  dump_stack_lvl+0xe8/0x140
[  458.835111][T17067]  dump_stack+0x15/0x1b
[  458.835131][T17067]  should_fail_ex+0x265/0x280
[  458.835157][T17067]  should_fail+0xb/0x20
[  458.835254][T17067]  should_fail_usercopy+0x1a/0x20
[  458.835280][T17067]  _copy_to_user+0x20/0xa0
[  458.835346][T17067]  simple_read_from_buffer+0xb5/0x130
[  458.835374][T17067]  proc_fail_nth_read+0x10e/0x150
[  458.835402][T17067]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  458.835432][T17067]  vfs_read+0x1a8/0x770
[  458.835494][T17067]  ? __rcu_read_unlock+0x4f/0x70
[  458.835524][T17067]  ? __fget_files+0x184/0x1c0
[  458.835569][T17067]  ksys_read+0xda/0x1a0
[  458.835592][T17067]  __x64_sys_read+0x40/0x50
[  458.835615][T17067]  x64_sys_call+0x27bc/0x2ff0
[  458.835702][T17067]  do_syscall_64+0xd2/0x200
[  458.835734][T17067]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  458.835765][T17067]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  458.835800][T17067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  458.835833][T17067] RIP: 0033:0x7fde3df7d5fc
[  458.835849][T17067] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  458.835873][T17067] RSP: 002b:00007fde3c9e7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  458.835898][T17067] RAX: ffffffffffffffda RBX: 00007fde3e1a5fa0 RCX: 00007fde3df7d5fc
[  458.835914][T17067] RDX: 000000000000000f RSI: 00007fde3c9e70a0 RDI: 0000000000000003
[  458.835983][T17067] RBP: 00007fde3c9e7090 R08: 0000000000000000 R09: 0000000000000000
[  458.836000][T17067] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  458.836017][T17067] R13: 00007fde3e1a6038 R14: 00007fde3e1a5fa0 R15: 00007ffc2e0572e8
[  458.836041][T17067]  </TASK>
[  459.074758][ T3349] hid-generic 0000:0003:0000.00B9: unknown main item tag 0x0
[  459.082428][ T3349] hid-generic 0000:0003:0000.00B9: unknown main item tag 0x0
[  459.117751][ T3349] hid-generic 0000:0003:0000.00B9: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  459.123852][T17073] tap0: tun_chr_ioctl cmd 1074025675
[  459.128033][T17070] __nla_validate_parse: 11 callbacks suppressed
[  459.128056][T17070] netlink: 21 bytes leftover after parsing attributes in process `syz.0.4613'.
[  459.133032][T17073] tap0: persist enabled
[  459.206764][   T29] kauditd_printk_skb: 150 callbacks suppressed
[  459.206783][   T29] audit: type=1326 audit(1755639201.553:6098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.270652][   T29] audit: type=1326 audit(1755639201.553:6099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.280432][T17073] tap0: tun_chr_ioctl cmd 1074025675
[  459.294607][   T29] audit: type=1326 audit(1755639201.553:6100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.294747][   T29] audit: type=1326 audit(1755639201.553:6101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.300027][T17073] tap0: persist disabled
[  459.351881][   T29] audit: type=1326 audit(1755639201.553:6102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.375475][   T29] audit: type=1326 audit(1755639201.553:6103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.399187][   T29] audit: type=1326 audit(1755639201.553:6104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.422808][   T29] audit: type=1326 audit(1755639201.553:6105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.446338][   T29] audit: type=1326 audit(1755639201.553:6106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.469911][   T29] audit: type=1326 audit(1755639201.553:6107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17072 comm="syz.1.4619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  459.496798][T17073] tap0: tun_chr_ioctl cmd 62723
[  459.532676][T17069] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  459.562071][T17069] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  459.623329][T17090] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4625'.
[  459.634923][T14865] hid-generic 0000:0003:0000.00BA: unknown main item tag 0x0
[  459.642710][T14865] hid-generic 0000:0003:0000.00BA: unknown main item tag 0x0
[  459.653105][T14865] hid-generic 0000:0003:0000.00BA: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  459.667480][T17090] 8021q: adding VLAN 0 to HW filter on device bond13
[  459.694248][T17092] Invalid option length (1265) for dns_resolver key
[  459.710955][T17097] vlan2: entered allmulticast mode
[  459.716321][T17097] bond13: entered allmulticast mode
[  459.786381][T17092] loop3: detected capacity change from 0 to 512
[  459.871376][T17092] EXT4-fs (loop3): too many log groups per flexible block group
[  459.879254][T17092] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  459.894425][T17092] EXT4-fs (loop3): mount failed
[  459.962910][T17111] netlink: 'syz.2.4630': attribute type 1 has an invalid length.
[  459.977336][T17111] 8021q: adding VLAN 0 to HW filter on device bond8
[  460.001623][T17111] vlan2: entered allmulticast mode
[  460.006819][T17111] bond8: entered allmulticast mode
[  460.148230][T17092] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  460.173567][T17092] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  460.226773][T17121] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  460.226773][T17121]    program syz.4.4634 not setting count and/or reply_len properly
[  460.273491][T17123] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  460.273491][T17123]    program syz.1.4635 not setting count and/or reply_len properly
[  460.328247][T17121] pimreg: entered allmulticast mode
[  460.366437][T17123] pimreg: entered allmulticast mode
[  460.388495][T17121] pimreg: left allmulticast mode
[  460.422417][T17123] pimreg: left allmulticast mode
[  460.477574][T17121] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4634'.
[  460.494372][T17125] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4635'.
[  460.534175][T17128] netlink: 'syz.1.4636': attribute type 10 has an invalid length.
[  460.565762][T17126] netlink: 21 bytes leftover after parsing attributes in process `syz.2.4633'.
[  460.581207][T17128] team0: Device ipvlan0 failed to register rx_handler
[  460.657797][T17135] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4638'.
[  460.688188][T17135] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=17135 comm=syz.1.4638
[  460.892538][T17149] netlink: 'syz.0.4644': attribute type 1 has an invalid length.
[  460.910743][T17151] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  460.910743][T17151]    program syz.3.4645 not setting count and/or reply_len properly
[  460.934711][T17149] 8021q: adding VLAN 0 to HW filter on device bond6
[  460.964934][T17154] vlan2: entered allmulticast mode
[  460.970283][T17154] bond6: entered allmulticast mode
[  461.035213][T17151] pimreg: entered allmulticast mode
[  461.057187][T17151] pimreg: left allmulticast mode
[  461.126251][T17155] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4645'.
[  461.243880][T17164] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4643'.
[  461.284298][T17164] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4643'.
[  461.322474][    T9] hid-generic 0000:0003:0000.00BB: unknown main item tag 0x0
[  461.329983][    T9] hid-generic 0000:0003:0000.00BB: unknown main item tag 0x0
[  461.355152][T17173] loop4: detected capacity change from 0 to 512
[  461.360611][    T9] hid-generic 0000:0003:0000.00BB: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  461.378911][T17172] Invalid option length (1265) for dns_resolver key
[  461.415472][T17173] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  461.471893][T17173] EXT4-fs (loop4): orphan cleanup on readonly fs
[  461.495138][T17173] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  461.509804][T17173] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  461.516460][T17173] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.4643: bad orphan inode 768
[  461.533495][T17173] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  461.620704][T17172] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  461.661936][T17172] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  462.185768][T12890] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.293368][T17192] netlink: 'syz.4.4658': attribute type 1 has an invalid length.
[  462.354366][T17192] 8021q: adding VLAN 0 to HW filter on device bond11
[  462.380264][T17199] vlan2: entered allmulticast mode
[  462.385694][T17199] bond11: entered allmulticast mode
[  462.404270][T17195] netlink: 21 bytes leftover after parsing attributes in process `syz.2.4657'.
[  462.432863][T17203] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  462.432863][T17203]    program syz.1.4662 not setting count and/or reply_len properly
[  462.478873][T17203] pimreg: entered allmulticast mode
[  462.505956][T17203] pimreg: left allmulticast mode
[  462.636911][T17208] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.681682][T17208] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.729802][T17214] loop4: detected capacity change from 0 to 128
[  462.743657][T17208] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.765311][T17214] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  462.805090][T17220] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.839229][T17208] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.879292][T17221] loop3: detected capacity change from 0 to 128
[  462.895788][T17220] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.997809][ T5689] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  463.007929][T17220] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.019323][T17221] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  463.067994][ T5689] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  463.117737][T17220] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.129173][ T3349] hid-generic 0000:0003:0000.00BC: unknown main item tag 0x0
[  463.136685][ T3349] hid-generic 0000:0003:0000.00BC: unknown main item tag 0x0
[  463.182187][T17223] Invalid option length (1265) for dns_resolver key
[  463.288388][T17229] random: crng reseeded on system resumption
[  463.295733][ T3349] hid-generic 0000:0003:0000.00BC: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  463.350969][ T5689] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  463.377322][ T5689] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  463.391198][ T5689] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  463.431279][ T5689] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  463.441053][T17223] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  463.481953][T17236] 8021q: adding VLAN 0 to HW filter on device bond12
[  463.485938][T17223] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  463.492813][ T5689] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  463.505951][ T5689] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  463.518940][T17241] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  463.518940][T17241]    program syz.3.4675 not setting count and/or reply_len properly
[  463.624147][T17241] pimreg: entered allmulticast mode
[  463.656047][T17241] pimreg: left allmulticast mode
[  463.851942][T17257] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.911438][T17257] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.961983][T17257] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.996126][T17262] netlink: 'syz.4.4684': attribute type 10 has an invalid length.
[  464.006356][T17257] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.090616][ T5689] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  464.114750][ T5689] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  464.132632][ T5689] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  464.150660][ T5689] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  464.160242][T17272] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  464.160242][T17272]    program syz.1.4690 not setting count and/or reply_len properly
[  464.204890][T17272] pimreg: entered allmulticast mode
[  464.211170][T17272] pimreg: left allmulticast mode
[  464.232920][   T29] kauditd_printk_skb: 200 callbacks suppressed
[  464.232939][   T29] audit: type=1326 audit(1755639206.583:6308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17280 comm="syz.0.4693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.271888][T17284] __nla_validate_parse: 3 callbacks suppressed
[  464.271906][T17284] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4694'.
[  464.293032][T17284] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4694'.
[  464.360333][T17272] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4690'.
[  464.440929][T17295] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=17295 comm=syz.4.4694
[  464.508098][   T29] audit: type=1326 audit(1755639206.583:6309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17280 comm="syz.0.4693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.531734][   T29] audit: type=1326 audit(1755639206.583:6310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17280 comm="syz.0.4693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.538791][ T5928] hid-generic 0000:0003:0000.00BD: unknown main item tag 0x0
[  464.555598][   T29] audit: type=1326 audit(1755639206.583:6311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17280 comm="syz.0.4693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.555639][   T29] audit: type=1326 audit(1755639206.583:6312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17280 comm="syz.0.4693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.563764][ T5928] hid-generic 0000:0003:0000.00BD: unknown main item tag 0x0
[  464.586721][   T29] audit: type=1326 audit(1755639206.653:6313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17286 comm="syz.0.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.641877][   T29] audit: type=1326 audit(1755639206.653:6314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17286 comm="syz.0.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.653335][T17298] Invalid option length (1265) for dns_resolver key
[  464.665403][   T29] audit: type=1326 audit(1755639206.653:6315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17286 comm="syz.0.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.695792][   T29] audit: type=1326 audit(1755639206.653:6316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17286 comm="syz.0.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.719600][   T29] audit: type=1326 audit(1755639206.663:6317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17286 comm="syz.0.4695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb4c99aebe9 code=0x7ffc0000
[  464.822438][ T5928] hid-generic 0000:0003:0000.00BD: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  464.906056][T17306] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.917432][T17298] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  464.950147][T17298] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  464.982652][T17306] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.998121][T17315] netlink: 'syz.2.4706': attribute type 10 has an invalid length.
[  465.009311][T17315] team0: Device ipvlan0 failed to register rx_handler
[  465.037821][T17317] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4707'.
[  465.050913][T17306] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  465.070130][T17317] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4707'.
[  465.085381][T17317] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4707'.
[  465.122560][T17306] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  465.689607][ T3385] hid-generic 0000:0003:0000.00BE: unknown main item tag 0x0
[  465.697165][ T3385] hid-generic 0000:0003:0000.00BE: unknown main item tag 0x0
[  465.728926][T17357] FAULT_INJECTION: forcing a failure.
[  465.728926][T17357] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  465.742278][T17357] CPU: 0 UID: 0 PID: 17357 Comm: syz.4.4718 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  465.742309][T17357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  465.742322][T17357] Call Trace:
[  465.742386][T17357]  <TASK>
[  465.742394][T17357]  __dump_stack+0x1d/0x30
[  465.742420][T17357]  dump_stack_lvl+0xe8/0x140
[  465.742445][T17357]  dump_stack+0x15/0x1b
[  465.742466][T17357]  should_fail_ex+0x265/0x280
[  465.742493][T17357]  should_fail+0xb/0x20
[  465.742551][T17357]  should_fail_usercopy+0x1a/0x20
[  465.742577][T17357]  _copy_from_user+0x1c/0xb0
[  465.742687][T17357]  snd_seq_ioctl+0x127/0x2e0
[  465.742726][T17357]  ? __pfx_snd_seq_ioctl+0x10/0x10
[  465.742812][T17357]  __se_sys_ioctl+0xce/0x140
[  465.742846][T17357]  __x64_sys_ioctl+0x43/0x50
[  465.742877][T17357]  x64_sys_call+0x1816/0x2ff0
[  465.742950][T17357]  do_syscall_64+0xd2/0x200
[  465.743049][T17357]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  465.743076][T17357]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  465.743105][T17357]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  465.743126][T17357] RIP: 0033:0x7f1c0b61ebe9
[  465.743199][T17357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  465.743221][T17357] RSP: 002b:00007f1c0a045038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  465.743245][T17357] RAX: ffffffffffffffda RBX: 00007f1c0b846180 RCX: 00007f1c0b61ebe9
[  465.743261][T17357] RDX: 0000200000000c40 RSI: 00000000c0a85320 RDI: 0000000000000005
[  465.743337][T17357] RBP: 00007f1c0a045090 R08: 0000000000000000 R09: 0000000000000000
[  465.743350][T17357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  465.743361][T17357] R13: 00007f1c0b846218 R14: 00007f1c0b846180 R15: 00007ffcdea51068
[  465.743382][T17357]  </TASK>
[  465.745475][T17348] SELinux:  policydb version 529628154 does not match my version range 15-35
[  465.956071][T17354] Invalid option length (1265) for dns_resolver key
[  465.993637][ T3385] hid-generic 0000:0003:0000.00BE: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  466.079469][T17348] SELinux: failed to load policy
[  466.219800][T17354] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  466.229609][T17354] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  466.756039][   T36] hid-generic 0000:0003:0000.00BF: unknown main item tag 0x0
[  466.763623][   T36] hid-generic 0000:0003:0000.00BF: unknown main item tag 0x0
[  466.790330][T17373] Invalid option length (1265) for dns_resolver key
[  466.798736][   T36] hid-generic 0000:0003:0000.00BF: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  466.818949][T17373] loop4: detected capacity change from 0 to 512
[  466.841904][T17373] EXT4-fs (loop4): too many log groups per flexible block group
[  466.849781][T17373] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  466.866789][T17373] EXT4-fs (loop4): mount failed
[  466.911124][ T3385] hid-generic 0000:0003:0000.00C0: unknown main item tag 0x0
[  466.918638][ T3385] hid-generic 0000:0003:0000.00C0: unknown main item tag 0x0
[  466.937360][ T3385] hid-generic 0000:0003:0000.00C0: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  466.971870][T17384] Invalid option length (1265) for dns_resolver key
[  467.119320][T17373] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  467.149289][T17373] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  467.192769][T17384] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  467.203715][T17384] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  467.978886][T17402] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  468.009210][    T9] hid-generic 0000:0003:0000.00C1: unknown main item tag 0x0
[  468.017022][    T9] hid-generic 0000:0003:0000.00C1: unknown main item tag 0x0
[  468.033540][T17404] Invalid option length (1265) for dns_resolver key
[  468.035122][    T9] hid-generic 0000:0003:0000.00C1: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  468.266110][    T9] hid-generic 0000:0003:0000.00C2: unknown main item tag 0x0
[  468.268688][T17404] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  468.273680][    T9] hid-generic 0000:0003:0000.00C2: unknown main item tag 0x0
[  468.299041][T17404] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  468.314799][T17416] Invalid option length (1265) for dns_resolver key
[  468.344000][    T9] hid-generic 0000:0003:0000.00C2: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  468.364448][T17416] loop3: detected capacity change from 0 to 512
[  468.408776][T17416] EXT4-fs (loop3): too many log groups per flexible block group
[  468.416733][T17416] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  468.472333][T17416] EXT4-fs (loop3): mount failed
[  468.485209][T14865] hid-generic 0000:0003:0000.00C3: unknown main item tag 0x0
[  468.492995][T14865] hid-generic 0000:0003:0000.00C3: unknown main item tag 0x0
[  468.510511][T14865] hid-generic 0000:0003:0000.00C3: hidraw2: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  468.526278][T17426] Invalid option length (1265) for dns_resolver key
[  468.618400][ T5692] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  468.661609][ T5692] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  468.692390][ T5657] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  468.730175][ T5657] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  468.744357][T17426] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  468.763731][T17426] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  468.788513][T17416] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  468.814416][T17416] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  469.045901][T17440] program syz.0.4752 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  469.253481][   T29] kauditd_printk_skb: 196 callbacks suppressed
[  469.253496][   T29] audit: type=1326 audit(1755639211.603:6514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17443 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fde3df7ec77 code=0x7ffc0000
[  469.324190][   T29] audit: type=1326 audit(1755639211.633:6515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17443 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fde3df7d550 code=0x7ffc0000
[  469.348149][   T29] audit: type=1326 audit(1755639211.633:6516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17443 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fde3df7d84a code=0x7ffc0000
[  469.371562][   T29] audit: type=1326 audit(1755639211.643:6517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17443 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  469.395283][   T29] audit: type=1326 audit(1755639211.643:6518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17443 comm="syz.1.4754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde3df7ebe9 code=0x7ffc0000
[  469.560131][   T29] audit: type=1326 audit(1755639211.893:6519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17449 comm="syz.2.4758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  469.584314][   T29] audit: type=1326 audit(1755639211.893:6520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17449 comm="syz.2.4758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  469.608018][   T29] audit: type=1326 audit(1755639211.893:6521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17449 comm="syz.2.4758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  469.631857][   T29] audit: type=1326 audit(1755639211.893:6522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17449 comm="syz.2.4758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  469.655481][   T29] audit: type=1326 audit(1755639211.903:6523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17451 comm="syz.3.4755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24ed98ebe9 code=0x7ffc0000
[  469.731850][T17452] loop3: detected capacity change from 0 to 8192
[  469.775705][T17452]  loop3: p1 p3 p4
[  469.779631][T17452] loop3: p1 start 51379968 is beyond EOD, truncated
[  469.786319][T17452] loop3: p3 size 100663552 extends beyond EOD, truncated
[  469.830706][T17452] loop3: p4 size 327680 extends beyond EOD, truncated
[  470.081574][    T9] hid-generic 0000:0003:0000.00C4: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  470.112185][T17472] Invalid option length (1265) for dns_resolver key
[  470.149678][T16868] udevd[16868]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  470.149705][T16821] udevd[16821]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  470.374066][T17472] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  470.382713][T17472] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  470.565186][T17493] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  471.158663][T17498] lo speed is unknown, defaulting to 1000
[  471.331596][T17517] netlink: 21 bytes leftover after parsing attributes in process `syz.3.4773'.
[  471.361914][T17517] loop3: detected capacity change from 0 to 128
[  471.395832][T17517] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  471.444051][T17517] ext4 filesystem being mounted at /317/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  471.621377][T17527] syzkaller1: entered promiscuous mode
[  471.627010][T17527] syzkaller1: entered allmulticast mode
[  471.705508][T12509] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  471.815739][T17536] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  471.815739][T17536]    program syz.3.4792 not setting count and/or reply_len properly
[  471.846240][T17536] pimreg: entered allmulticast mode
[  471.848857][T17538] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4786'.
[  471.854558][T17536] pimreg: left allmulticast mode
[  471.892211][T17538] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4786'.
[  471.908517][    T9] hid_parser_main: 2 callbacks suppressed
[  471.908562][    T9] hid-generic 0000:0003:0000.00C5: unknown main item tag 0x0
[  471.918555][T17538] loop4: detected capacity change from 0 to 512
[  471.922025][    T9] hid-generic 0000:0003:0000.00C5: unknown main item tag 0x0
[  471.948878][T17540] Invalid option length (1265) for dns_resolver key
[  471.951957][T17538] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  471.967110][T17541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4792'.
[  471.986519][T17538] EXT4-fs (loop4): orphan cleanup on readonly fs
[  472.000036][    T9] hid-generic 0000:0003:0000.00C5: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  472.020329][T17538] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  472.035155][T17538] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  472.041907][T17538] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.4786: bad orphan inode 768
[  472.070713][T17538] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  472.191244][T17540] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  472.199804][T17540] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  472.507121][T17552] netlink: 21 bytes leftover after parsing attributes in process `syz.3.4796'.
[  472.528080][T17552] loop3: detected capacity change from 0 to 128
[  472.545597][T17552] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  472.558164][T17552] ext4 filesystem being mounted at /322/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  472.814145][T12890] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.933402][T17562] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4797'.
[  472.948860][T17562] 8021q: adding VLAN 0 to HW filter on device bond9
[  472.961326][T17562] vlan2: entered allmulticast mode
[  472.966597][T17562] bond9: entered allmulticast mode
[  473.063635][T12509] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  473.205195][ T5928] hid-generic 0000:0003:0000.00C6: unknown main item tag 0x0
[  473.212706][ T5928] hid-generic 0000:0003:0000.00C6: unknown main item tag 0x0
[  473.227517][T17583] Invalid option length (1265) for dns_resolver key
[  473.243719][ T5928] hid-generic 0000:0003:0000.00C6: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  473.298843][T17590] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  473.298843][T17590]    program syz.2.4810 not setting count and/or reply_len properly
[  473.355998][T17590] pimreg: entered allmulticast mode
[  473.376847][T17590] pimreg: left allmulticast mode
[  473.444150][T17583] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  473.449550][T17590] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4810'.
[  473.461129][T17583] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  473.490159][T17594] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4811'.
[  473.506136][T17594] 8021q: adding VLAN 0 to HW filter on device bond10
[  473.518965][T17594] vlan2: entered allmulticast mode
[  473.524207][T17594] bond10: entered allmulticast mode
[  473.620258][T17597] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu@
) failed with errno=-22
[  473.655530][T17600] netlink: 'syz.2.4813': attribute type 10 has an invalid length.
[  473.664187][T17600] team0: Device ipvlan0 failed to register rx_handler
[  473.674669][T17600] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4813'.
[  473.735675][T17604] loop4: detected capacity change from 0 to 512
[  473.745486][T17604] EXT4-fs warning (device loop4): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[  473.848648][T17612] syzkaller1: entered promiscuous mode
[  473.854451][T17612] syzkaller1: entered allmulticast mode
[  473.878455][T17616] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.916121][T17621] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4823'.
[  473.926513][T17621] siw: device registration error -23
[  473.961501][T17616] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.978516][T17625] netlink: 'syz.2.4825': attribute type 10 has an invalid length.
[  473.997164][T17625] team0: Device ipvlan0 failed to register rx_handler
[  474.040705][T14865] hid-generic 0000:0003:0000.00C7: unknown main item tag 0x0
[  474.048194][T14865] hid-generic 0000:0003:0000.00C7: unknown main item tag 0x0
[  474.056957][T17616] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  474.062243][T14865] hid-generic 0000:0003:0000.00C7: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  474.089815][T17630] Invalid option length (1265) for dns_resolver key
[  474.201756][T17616] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  474.286426][ T5657] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  474.310377][ T5692] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  474.349728][ T5657] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  474.358195][ T5657] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  474.362441][T17630] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  474.391137][T17635] loop4: detected capacity change from 0 to 128
[  474.430347][T17635] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  474.445925][T17651] siw: device registration error -23
[  474.486634][T17654] syzkaller1: entered promiscuous mode
[  474.492500][T17654] syzkaller1: entered allmulticast mode
[  474.508904][T17630] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  474.517794][T17635] ext4 filesystem being mounted at /331/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  474.840884][T17663] netlink: 'syz.2.4838': attribute type 10 has an invalid length.
[  474.849373][T17663] team0: Device ipvlan0 failed to register rx_handler
[  474.953245][T12890] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  475.000865][   T29] kauditd_printk_skb: 395 callbacks suppressed
[  475.000882][   T29] audit: type=1400 audit(1755639217.353:6919): avc:  denied  { associate } for  pid=17669 comm="syz.4.4841" name="pfkey" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  475.045361][   T29] audit: type=1400 audit(1755639217.353:6920): avc:  denied  { ioctl } for  pid=17669 comm="syz.4.4841" path="socket:[66492]" dev="sockfs" ino=66492 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  475.144266][T17670] loop4: detected capacity change from 0 to 512
[  475.171884][T17677] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  475.171884][T17677]    program syz.1.4843 not setting count and/or reply_len properly
[  475.174330][T17670] Quota error (device loop4): v2_read_file_info: Free block number 1 out of range (1, 6).
[  475.208493][T17677] pimreg: entered allmulticast mode
[  475.215508][T17677] pimreg: left allmulticast mode
[  475.244882][T17670] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  475.322314][T17670] EXT4-fs (loop4): mount failed
[  475.446971][T17670] loop4: detected capacity change from 0 to 4096
[  475.460939][T17670] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  475.531791][T17690] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.582807][T17693] loop3: detected capacity change from 0 to 128
[  475.593364][T17690] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.606707][T17693] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  475.655109][T17690] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.733182][T17690] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  475.800146][ T5689] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  475.817773][   T29] audit: type=1326 audit(1755639218.163:6921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17699 comm="syz.2.4853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  475.841634][   T29] audit: type=1326 audit(1755639218.163:6922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17699 comm="syz.2.4853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  475.867428][   T29] audit: type=1326 audit(1755639218.163:6923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17699 comm="syz.2.4853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  475.891102][   T29] audit: type=1326 audit(1755639218.163:6924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17699 comm="syz.2.4853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  475.914846][   T29] audit: type=1326 audit(1755639218.163:6925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17699 comm="syz.2.4853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  475.938416][   T29] audit: type=1326 audit(1755639218.163:6926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17699 comm="syz.2.4853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  475.962120][   T29] audit: type=1326 audit(1755639218.173:6927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17699 comm="syz.2.4853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb48600ebe9 code=0x7ffc0000
[  475.987984][ T5689] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  475.996968][ T5689] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  476.008515][ T5657] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  476.053594][ T3349] hid-generic 0000:0003:0000.00C8: unknown main item tag 0x0
[  476.061326][ T3349] hid-generic 0000:0003:0000.00C8: unknown main item tag 0x0
[  476.075880][ T3349] hid-generic 0000:0003:0000.00C8: hidraw0: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  476.097124][T17707] Invalid option length (1265) for dns_resolver key
[  476.139295][T17713] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.192020][T17714] loop3: detected capacity change from 0 to 128
[  476.205277][T17713] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.216400][T17714] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  476.261877][T17713] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.321743][T17713] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  476.333829][T17707] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  476.342459][T17707] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  476.629345][ T5927] hid-generic 0000:0003:0000.00C9: unknown main item tag 0x0
[  476.636912][ T5927] hid-generic 0000:0003:0000.00C9: unknown main item tag 0x0
[  476.659348][T17718] Invalid option length (1265) for dns_resolver key
[  476.673044][ T5927] hid-generic 0000:0003:0000.00C9: hidraw1: <UNKNOWN> HID v0.03 Device [syz0] on syz0
[  476.822943][T17724] loop4: detected capacity change from 0 to 1024
[  476.830702][T17724] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  476.841795][T17724] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  476.852957][T17724] JBD2: no valid journal superblock found
[  476.858733][T17724] EXT4-fs (loop4): Could not load journal inode
[  476.896059][T17718] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  476.916625][T17718] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  476.936260][T17727] __nla_validate_parse: 11 callbacks suppressed
[  476.936277][T17727] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4863'.
[  477.148165][T17735] 9pnet_fd: Insufficient options for proto=fd
[  477.258259][T17743] program syz.4.4869 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  477.542822][T17750] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.580083][T17752] SELinux:  policydb version 529628154 does not match my version range 15-35
[  477.589045][T17752] SELinux: failed to load policy
[  477.602606][T17750] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.673252][T17750] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.723441][T17750] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  477.788122][ T5689] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  477.800450][ T5643] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  477.813256][ T5643] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  477.825605][ T5643] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  477.917867][T17764] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4878'.
[  477.942433][T17766] 9pnet_fd: Insufficient options for proto=fd
[  478.045790][T17770] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  478.045790][T17770]    program syz.1.4881 not setting count and/or reply_len properly
[  478.068377][T17770] pimreg: entered allmulticast mode
[  478.074503][T17770] pimreg: left allmulticast mode
[  478.106287][T17772] program syz.4.4882 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  478.120630][T17770] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4881'.
[  478.235729][T17784] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  478.235729][T17784]    program syz.1.4888 not setting count and/or reply_len properly
[  478.263408][T17784] pimreg: entered allmulticast mode
[  478.271345][T17784] pimreg: left allmulticast mode
[  478.329150][T17787] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4888'.
[  478.399270][T17795] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  478.399270][T17795]    program syz.0.4893 not setting count and/or reply_len properly
[  478.424662][T17795] pimreg: entered allmulticast mode
[  478.431904][T17795] pimreg: left allmulticast mode
[  478.477285][T17795] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4893'.
[  478.586814][T17808] syzkaller1: entered promiscuous mode
[  478.592399][T17808] syzkaller1: entered allmulticast mode
[  478.723073][T17826] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.782216][T17826] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.841795][T17826] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.884488][T17826] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  479.616227][T17838] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4913'.
[  479.626129][T17838] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4913'.
[  479.636672][T17838] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4913'.
[  479.648119][T17838] siw: device registration error -23
[  479.684761][T17847] syzkaller1: entered promiscuous mode
[  479.690424][T17847] syzkaller1: entered allmulticast mode
[  479.698244][T17845] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4915'.
[  479.715393][ T5692] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  479.733123][ T5692] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  479.738091][ T5692] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  479.743579][ T5675] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  479.751547][T17845] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5131 sclass=netlink_route_socket pid=17845 comm=syz.0.4915
[  479.947418][T17870] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4925'.
[  480.044316][T17874] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.112994][T17874] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.140274][T17875] loop4: detected capacity change from 0 to 128
[  480.161318][T17875] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  480.172085][T17874] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.197783][T17879] syzkaller1: entered promiscuous mode
[  480.203458][T17879] syzkaller1: entered allmulticast mode
[  480.222100][T17874] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.328356][ T5643] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  480.340762][ T5643] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  480.353453][ T5692] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  480.365074][ T5692] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  480.443979][T17887] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.551426][T17887] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.602391][T17887] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.661854][T17887] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  480.724654][T17897] FAULT_INJECTION: forcing a failure.
[  480.724654][T17897] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  480.737929][T17897] CPU: 0 UID: 0 PID: 17897 Comm: syz.0.4935 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  480.737958][T17897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  480.737971][T17897] Call Trace:
[  480.737977][T17897]  <TASK>
[  480.737984][T17897]  __dump_stack+0x1d/0x30
[  480.738060][T17897]  dump_stack_lvl+0xe8/0x140
[  480.738085][T17897]  dump_stack+0x15/0x1b
[  480.738104][T17897]  should_fail_ex+0x265/0x280
[  480.738130][T17897]  should_fail+0xb/0x20
[  480.738159][T17897]  should_fail_usercopy+0x1a/0x20
[  480.738180][T17897]  _copy_from_user+0x1c/0xb0
[  480.738208][T17897]  ___bpf_copy_key+0xa5/0x110
[  480.738255][T17897]  map_update_elem+0x165/0x520
[  480.738294][T17897]  __sys_bpf+0x571/0x7b0
[  480.738339][T17897]  __x64_sys_bpf+0x41/0x50
[  480.738365][T17897]  x64_sys_call+0x2aea/0x2ff0
[  480.738385][T17897]  do_syscall_64+0xd2/0x200
[  480.738434][T17897]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  480.738466][T17897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  480.738493][T17897] RIP: 0033:0x7fb4c99aebe9
[  480.738536][T17897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  480.738556][T17897] RSP: 002b:00007fb4c840f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  480.738574][T17897] RAX: ffffffffffffffda RBX: 00007fb4c9bd5fa0 RCX: 00007fb4c99aebe9
[  480.738587][T17897] RDX: 0000000000000020 RSI: 00002000000000c0 RDI: 0000000000000002
[  480.738603][T17897] RBP: 00007fb4c840f090 R08: 0000000000000000 R09: 0000000000000000
[  480.738619][T17897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  480.738672][T17897] R13: 00007fb4c9bd6038 R14: 00007fb4c9bd5fa0 R15: 00007ffeccff1388
[  480.738707][T17897]  </TASK>
[  481.535256][ T5692] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  481.546917][ T5692] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  481.559278][ T5692] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  481.571337][ T5643] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  481.602488][   T29] kauditd_printk_skb: 296 callbacks suppressed
[  481.602507][   T29] audit: type=1400 audit(1755639223.953:7224): avc:  denied  { listen } for  pid=17921 comm="syz.1.4946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  481.635138][   T29] audit: type=1400 audit(1755639223.983:7225): avc:  denied  { read } for  pid=17921 comm="syz.1.4946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  481.654635][   T29] audit: type=1400 audit(1755639223.983:7226): avc:  denied  { accept } for  pid=17921 comm="syz.1.4946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  481.949264][T17933] program syz.2.4949 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  482.818941][T17942] IPVS: Error connecting to the multicast addr
[  482.986452][   T29] audit: type=1400 audit(1755639225.333:7227): avc:  denied  { read } for  pid=17941 comm="syz.2.4954" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  483.511796][T17949] __nla_validate_parse: 3 callbacks suppressed
[  483.511870][T17949] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4956'.
[  483.529798][T17949] bridge0: entered promiscuous mode
[  483.535619][T17949] bridge0: port 3(macvlan2) entered blocking state
[  483.542286][T17949] bridge0: port 3(macvlan2) entered disabled state
[  483.549018][T17949] macvlan2: entered allmulticast mode
[  483.554464][T17949] bridge0: entered allmulticast mode
[  483.560480][T17949] macvlan2: left allmulticast mode
[  483.565641][T17949] bridge0: left allmulticast mode
[  483.571497][T17949] bridge0: left promiscuous mode
[  483.754866][T17952] program syz.0.4957 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  484.005297][ T5675] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  484.016981][ T5675] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  484.028404][   T31] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  484.040302][ T5657] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  484.106922][T17956] loop3: detected capacity change from 0 to 8192
[  484.150136][T16821]  loop3: p1 p3 p4
[  484.154169][T16821] loop3: p1 start 51379968 is beyond EOD, truncated
[  484.160853][T16821] loop3: p3 size 100663552 extends beyond EOD, truncated
[  484.168662][T16821] loop3: p4 size 327680 extends beyond EOD, truncated
[  484.178142][T17956]  loop3: p1 p3 p4
[  484.182281][T17956] loop3: p1 start 51379968 is beyond EOD, truncated
[  484.188992][T17956] loop3: p3 size 100663552 extends beyond EOD, truncated
[  484.196720][T17956] loop3: p4 size 327680 extends beyond EOD, truncated
[  484.240302][T17033] udevd[17033]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  484.240956][T16821] udevd[16821]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  484.265098][T17033] ==================================================================
[  484.265725][T16821] udevd[16821]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  484.273227][T17033] BUG: KCSAN: data-race in touch_atime / touch_atime
[  484.273275][T17033] 
[  484.273282][T17033] write to 0xffff888106c67828 of 4 bytes by task 16821 on cpu 0:
[  484.273299][T17033]  touch_atime+0x1e8/0x340
[  484.273337][T17033]  shmem_file_read_iter+0x477/0x540
[  484.273360][T17033]  vfs_read+0x649/0x770
[  484.313868][T17033]  ksys_read+0xda/0x1a0
[  484.318134][T17033]  __x64_sys_read+0x40/0x50
[  484.322645][T17033]  x64_sys_call+0x27bc/0x2ff0
[  484.327417][T17033]  do_syscall_64+0xd2/0x200
[  484.331985][T17033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.337908][T17033] 
[  484.340235][T17033] read to 0xffff888106c67828 of 4 bytes by task 17033 on cpu 1:
[  484.347872][T17033]  touch_atime+0x194/0x340
[  484.352311][T17033]  shmem_file_read_iter+0x477/0x540
[  484.357531][T17033]  vfs_read+0x649/0x770
[  484.361753][T17033]  ksys_read+0xda/0x1a0
[  484.365922][T17033]  __x64_sys_read+0x40/0x50
[  484.370435][T17033]  x64_sys_call+0x27bc/0x2ff0
[  484.375124][T17033]  do_syscall_64+0xd2/0x200
[  484.379646][T17033]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.385552][T17033] 
[  484.387886][T17033] value changed: 0x2516dba3 -> 0x25346544
[  484.393617][T17033] 
[  484.395950][T17033] Reported by Kernel Concurrency Sanitizer on:
[  484.402104][T17033] CPU: 1 UID: 0 PID: 17033 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) 
[  484.411478][T17033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  484.421807][T17033] ==================================================================
[  484.431615][T17033] udevd[17033]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory