last executing test programs:

1m15.429443871s ago: executing program 2 (id=4314):
set_tid_address(0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')
syz_open_procfs(0x0, &(0x7f0000000180)='net/mcfilter\x00')

1m15.374421416s ago: executing program 2 (id=4316):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="5c00000002060108000100000000000000004000050005000a000000050001000700000005000400000000000900020073797a310000000016000300686173683a6e65742c706f72742c6e65740000000c00078008001240"], 0x5c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
syz_emit_ethernet(0xbe, &(0x7f00000008c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c20000000800450000b00000000000119078000000000000000000004e20009c907801000000000000007b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af584cbf2649a50f2dbc108834326c8443efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424dbcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b9649a3bfbc1f39cb307b3472eb9cdb042d2643fcbb2c5a57df67d544a9cbffaf6e8dafe09"], 0x0)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x8)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r3, &(0x7f00000057c0)=[{{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, &(0x7f0000002cc0)=[{0x0}, {&(0x7f00000017c0)=""/130, 0x94}], 0x2}, 0xa1}], 0x2, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0xffff}, 0x18)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x300000a, 0x12, r5, 0x852ac000)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
r7 = socket$igmp(0x2, 0x3, 0x2)
socket(0x10, 0x3, 0x0)
setsockopt$MRT_INIT(r7, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
r8 = dup(0xffffffffffffffff)
bind$inet6(r8, &(0x7f0000000080)={0x27, 0x4e21, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000}, 0x1c)

1m14.491149467s ago: executing program 2 (id=4328):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r4, 0x0, 0xffff}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
fremovexattr(r2, &(0x7f0000000040)=@known='system.posix_acl_default\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1, 0x0, 0x1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f0000000a40)='GPL\x00', 0x4, 0x0, 0x0, 0x41000}, 0x94)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x1600)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = dup(r5)
fsetxattr$security_selinux(r6, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)
getsockopt$packet_int(r6, 0x107, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0x4)

1m14.471963339s ago: executing program 2 (id=4331):
r0 = getpid()
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
fremovexattr(r1, &(0x7f0000002040)=@known='system.sockprotoname\x00')
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r2 = syz_pidfd_open(r0, 0x0)
setns(r2, 0x24020000)
syz_clone(0x7002b180, 0x0, 0x0, 0x0, 0x0, 0x0)

1m14.361240319s ago: executing program 2 (id=4332):
set_tid_address(0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f00000001c0)='cpu&00\t&&')
syz_open_procfs(0x0, &(0x7f0000000180)='net/mcfilter\x00')

1m14.315101344s ago: executing program 2 (id=4333):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r1 = socket(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000004c0)='consume_skb\x00', r0, 0x0, 0x3f4d}, 0x18)
sendmsg$nl_route(r1, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f0000001900)=ANY=[], 0x1c}}, 0x0) (fail_nth: 3)

1m14.307064585s ago: executing program 32 (id=4333):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r1 = socket(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000004c0)='consume_skb\x00', r0, 0x0, 0x3f4d}, 0x18)
sendmsg$nl_route(r1, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f0000001900)=ANY=[], 0x1c}}, 0x0) (fail_nth: 3)

3.819379806s ago: executing program 5 (id=5652):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r2 = socket$inet(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x238, 0x238, 0x238, 0x98, 0x98, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@dev={0xfe, 0x80, '\x00', 0x18}, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000080)={{0x2b, @local, 0x4e24, 0x2, 'ovf\x00', 0x11, 0x80000000, 0x4}, {@remote, 0x4e20, 0x1, 0x5, 0x2, 0x1}}, 0x44)
r3 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
time(&(0x7f0000002080))
r4 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)=@generic={&(0x7f0000000100)='./file0\x00', 0x0, 0x8}, 0x18)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000bc0)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000e40)={{r1, <r6=>0xffffffffffffffff}, &(0x7f0000000dc0), &(0x7f0000000e00)='%pB    \x00'}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ec0)={0x11, 0x6, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x76}, [@map_fd={0x18, 0x1, 0x1, 0x0, r4}, @alu={0x4, 0x0, 0x7, 0x0, 0xb, 0xffffffffffffffe6}]}, &(0x7f0000000b80)='syzkaller\x00', 0x6, 0x85, &(0x7f0000000cc0)=""/133, 0x41000, 0x1, '\x00', 0x0, 0x0, r5, 0x8, &(0x7f0000000d80)={0x0, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e80)=[r6], 0x0, 0x10, 0xff}, 0x94)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x9, &(0x7f0000000000)=0xfff, 0x4)
getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x9, 0x0, &(0x7f000000a040))
recvmsg(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000002c0)=""/59, 0xfdef}], 0x1}, 0x80)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000180)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
msgrcv(0x0, 0x0, 0x41, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r7, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3f0, 0x220, 0x308, 0x220, 0x308, 0x308, 0x308, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0xffffff00, 0x1, 0x0, {@empty, {[0x0, 0x0, 0xff]}}, {@mac=@local}, 0x0, 0x7, 0x2, 0x0, 0x800, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00', {}, {}, 0x0, 0x180}, 0xc0, 0xe0}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @loopback, @broadcast, 0x6, 0xfffffffe}}}, {{@arp={@initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010101, 0x0, 0x0, 0x0, 0xfd, {}, {@empty, {[0x0, 0x0, 0x0, 0x0, 0x0, 0xff]}}, 0x9, 0x4, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00', {}, {}, 0x0, 0xc}, 0xc0, 0x220}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x3b}, @broadcast, @dev={0xac, 0x14, 0x14, 0x12}, 0x1}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x9}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x531, &(0x7f0000000640)="$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")
r10 = accept$inet(r2, &(0x7f0000000f80), &(0x7f0000000fc0)=0x10)
recvfrom$inet(r10, &(0x7f0000001000)=""/4096, 0x1000, 0x1, &(0x7f0000002000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10)

3.766551841s ago: executing program 3 (id=5654):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48054}, 0x44000002)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r0, 0x0, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDSETMODE(r6, 0x4b3a, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
r7 = socket(0x80000000000000a, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
msgget$private(0x0, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x4e24, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @mcast1, 0x1000}}}, 0x108)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@gettclass={0x24, 0x2a, 0x1, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x8, 0xe}, {0x8, 0x5}, {0x0, 0x2}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

3.659745511s ago: executing program 3 (id=5661):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb702000008000000182300", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r3, 0x0, 0xffff}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1, 0x0, 0x1}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = dup(r4)
fsetxattr$security_selinux(r5, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

3.638382903s ago: executing program 3 (id=5663):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008040000b703000007000000850000001100000095"], &(0x7f00000009c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x6f, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) (fail_nth: 1)

3.327799572s ago: executing program 3 (id=5664):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32, @ANYBLOB="01000000000000001c"], 0x3c}}, 0x0)

3.327097362s ago: executing program 3 (id=5665):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008040000b703000007000000850000001100000095"], &(0x7f00000009c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x6f, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8ff20c2c10f0093d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000003c0)='mm_page_alloc\x00', r2, 0x0, 0xffffffffffffffff}, 0x18)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000740)=ANY=[@ANYBLOB="280000001800150000000000ffffffff0add"], 0x28}], 0x1}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000002c0)='rxrpc_peer\x00', r4}, 0x18)
r5 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x24008800)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

3.155731498s ago: executing program 3 (id=5670):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7020000080000001823", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xffff}, 0x18)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x1600)

2.969384685s ago: executing program 1 (id=5675):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32, @ANYBLOB="01000000000000001c"], 0x3c}}, 0x0)

2.951548336s ago: executing program 5 (id=5676):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x328}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)

2.944361677s ago: executing program 1 (id=5677):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b0000000700000008000000a6ad6a1a05"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x9, 0x7, 0x0, 0x0, 0x0, 0x40008, 0x590, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}, 0x51dc5a3f736a47ba, 0x4, 0x0, 0x0, 0x7, 0x4ac, 0xb, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xbb)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDGKBDIACR(r3, 0x4bfb, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="09030000000000fdff072000adce04000280"], 0x18}, 0x1, 0xf000000}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='memory.swap.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r7=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r7], 0x20}}, 0x0)

2.860011735s ago: executing program 1 (id=5678):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {0x7, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x328}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)

1.968208457s ago: executing program 1 (id=5686):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000800), &(0x7f0000000840)=r0}, 0x20)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r3 = syz_open_procfs(0x0, &(0x7f0000000740)='net/wireless\x00')
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000880), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f0000000980)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000900)={&(0x7f0000000b40)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0002b97f5d2d0b00000008000200000004000000192068ca4b19c7960000a67ab9e2d79d9e613cdfefb7a8bb71d1b97860c72a94e0da8748e9a83083cef6f73de7a7b85e2f4d4d617711851fb68e08dda77cc1ca4e9f806c571347e828e68730077517b91a09bea08a7628c351f5043afb0bf6f5fc3b61a5705899bf8b897b443ee93e34f1140264038ae507ae0f4c6f2379b3562111e3cba537dc1bf8bd6ac71be3886946e3702faaedc9b59cd617d687590ea3c18b1c820bb826697b04ec632cdbf208b3b0d9ed4c2ba5"], 0x24}}, 0x20000000)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r1, &(0x7f0000000b00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000c40)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="000226bd7000fddbdf2506000000050005008000000014000680060005004e2100000600010000000000080002000600000008000200020000000800040081ffffff14000680060001000200000005000200050000000800020000000000"], 0x64}, 0x1, 0x0, 0x0, 0x4000000}, 0x44094)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000009c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
shutdown(r5, 0x2)
creat(&(0x7f00000003c0)='./file1\x00', 0x24)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r6, 0x400, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
removexattr(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)=@known='trusted.overlay.upper\x00')
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendto(0xffffffffffffffff, 0xfffffffffffffffc, 0x0, 0x4000, 0x0, 0x0)
r7 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r0}, 0x8)
r8 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x4, [@enum64={0x5, 0x3, 0x0, 0x13, 0x1, 0x0, [{0xa, 0x1a, 0x80000001}, {0x2, 0x8001}, {0xa, 0x100, 0xf075}]}]}, {0x0, [0x30, 0x5f]}}, &(0x7f0000000380)=""/178, 0x4c, 0xb2, 0x1, 0x7, 0x10000, @value=r7}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xf, 0xcd4, 0x0, 0x30, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r8, 0x0, 0x0, 0xffffffff}, 0x50)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000240)={[{@discard}, {@noload}]}, 0x64, 0x53f, &(0x7f0000000440)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)

1.924826562s ago: executing program 5 (id=5687):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r2 = socket$inet(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x238, 0x238, 0x238, 0x98, 0x98, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@dev={0xfe, 0x80, '\x00', 0x18}, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000080)={{0x2b, @local, 0x4e24, 0x2, 'ovf\x00', 0x11, 0x80000000, 0x4}, {@remote, 0x4e20, 0x1, 0x5, 0x2, 0x1}}, 0x44)
r3 = socket$kcm(0x1e, 0x2, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
time(&(0x7f0000002080))
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)=@generic={&(0x7f0000000100)='./file0\x00', 0x0, 0x8}, 0x18)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000bc0)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000e40)={{r1}, &(0x7f0000000dc0), &(0x7f0000000e00)='%pB    \x00'}, 0x20)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x9, &(0x7f0000000000)=0xfff, 0x4)
getsockopt$inet6_tcp_int(r4, 0x6, 0x9, 0x0, &(0x7f000000a040))
recvmsg(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000002c0)=""/59, 0xfdef}], 0x1}, 0x80)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000180)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
msgrcv(0x0, 0x0, 0x41, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r5, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3f0, 0x220, 0x308, 0x220, 0x308, 0x308, 0x308, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0xffffff00, 0x1, 0x0, {@empty, {[0x0, 0x0, 0xff]}}, {@mac=@local}, 0x0, 0x7, 0x2, 0x0, 0x800, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00', {}, {}, 0x0, 0x180}, 0xc0, 0xe0}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @loopback, @broadcast, 0x6, 0xfffffffe}}}, {{@arp={@initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010101, 0x0, 0x0, 0x0, 0xfd, {}, {@empty, {[0x0, 0x0, 0x0, 0x0, 0x0, 0xff]}}, 0x9, 0x4, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00', {}, {}, 0x0, 0xc}, 0xc0, 0x220}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x3b}, @broadcast, @dev={0xac, 0x14, 0x14, 0x12}, 0x1}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x9}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x531, &(0x7f0000000640)="$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")
r8 = accept$inet(r2, &(0x7f0000000f80), &(0x7f0000000fc0)=0x10)
recvfrom$inet(r8, &(0x7f0000001000)=""/4096, 0x1000, 0x1, &(0x7f0000002000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10)

1.751439798s ago: executing program 0 (id=5690):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xffff}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f0000000a40)='GPL\x00', 0x4, 0x0, 0x0, 0x41000}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)
getsockopt$packet_int(r3, 0x107, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0x4)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)

1.715248761s ago: executing program 0 (id=5691):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000280)={@remote}, 0x14)
close(r0)
unshare(0x22020400)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a030000000000000000000002"], 0x0, 0x56, 0x0, 0x0, 0xd}, 0x28)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x1a, 0x4, 0x0, 0x1, 0x8000, 0x1, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4, 0x0, @value=r3}, 0x50)
r4 = socket(0x10, 0x3, 0x6)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000040))
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r6 = perf_event_open(&(0x7f0000000fc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400, 0xf6103, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24000000, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r8)
syz_clone(0x9900000, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r10}, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c000000020603000000000000000000000000001400078008001240000000000500150002000000050001000600000005000500020000000500040000000000090002"], 0x4c}}, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000080900010073797a30000000005c000000030a03000000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000032800048008000240000000120800014000000000140004"], 0xa4}}, 0x0)
writev(r5, &(0x7f0000000080)=[{&(0x7f0000000580)="2e9b5b0007e03dd65193dfb6c575963f86dd6067", 0x14}, {&(0x7f0000000280)="c06a9c0a049a01b8dc994875572edb297601a2c4317d1781b797eb6227f58a339a7082b6e6891f", 0x27}], 0x2)

1.549855106s ago: executing program 0 (id=5692):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/keys\x00', 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
preadv(r0, &(0x7f00000015c0)=[{&(0x7f0000001600)=""/4078, 0xe0}], 0x1, 0xf3, 0x3)

1.514659289s ago: executing program 0 (id=5693):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r3, 0x0, 0xffff}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1, 0x0, 0x1}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = dup(r4)
fsetxattr$security_selinux(r5, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

1.441073326s ago: executing program 0 (id=5694):
r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xa01, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2, 0x0, 0x1}, 0x18)
nanosleep(0x0, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000940)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000081000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70400000800000085000000950000009500000000000000cf977232d5127aa4c0aa3317efd73e75e84145048dfd0405ff828dc36a885473fbb3dfd07af970255fa5dd8bf3d548007b493ee9e6949eb417490f762d22d224a228b42039281a591dde784d4185f62931d071327b8fb5f31a00bd35578209d3d657e03b77"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x402, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x3b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000001ec0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x30, r6, 0x1, 0x70bd25, 0x0, {{}, {}, {0x14, 0x19, {0x80000000, 0x7, 0x1, 0x5}}}}, 0x30}, 0x1, 0x0, 0x0, 0x20040803}, 0x20000000)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4f, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r7, 0x0, 0x4}, 0x18)
syz_usbip_server_init(0x2)
r8 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r8, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r10, &(0x7f0000000380)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYRESHEX, @ANYRES32=r11, @ANYBLOB="01000000010000001c0012"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newqdisc={0x4c, 0x24, 0xe0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r11, {0x0, 0xfff1}, {0xc, 0xffff}, {0xfff3, 0xa}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x1c, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0xac}, @TCA_CAKE_AUTORATE={0x8, 0x9, 0x4}, @TCA_CAKE_AUTORATE={0x8, 0x9, 0x3}]}}]}, 0x4c}}, 0x40440c0)
bind$packet(r8, &(0x7f0000000040)={0x11, 0x0, r11, 0x1, 0x0, 0x6, @random="d6a365dd00ca"}, 0x14)
sendto$inet6(r8, &(0x7f0000000800)="4103082c1116480401020200c52cf7c25975e005b02f000006892f000300897c6b118777faffffff3066090cb600c5471d130a66321a54e7df305fbe258161b6fd8f2428652265d94c6fdbaefc57376a57c2feffff188be9427c323ef024a37016d2a7f9ab6e7941a6fc4f95aa73c1dfff4941f6503b5bd8c91db22cd33795481c94085fa12cdc679ac2a5d7b5d99b93fb07acb0da680e78b74c74aae8d7690d5986a9af81622a0ac210bc7b5ca5fed11cb54d046642670041e846bb184ff5d39fe8516d2d2a8d84e6e7dfcb2b8a8023444db513a3d7a124b59f0a5cd36489dbbb75cce3145d0ea3c3aa21af7cbcbc7a7575db782e757ca543109f5ddcec4930aa91f4119ea3d1f56140cb86cfe0724b23904ef5d05c725ee23918a502b1afe09fb0757d", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000200))
syz_clone(0x20800000, 0x0, 0x4b, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)

1.064930401s ago: executing program 5 (id=5695):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRESDEC=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
fspick(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300fc07000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = mq_open(&(0x7f0000000000)='bat\x03<\x02eslave_K\x00', 0x8c2, 0x30, &(0x7f0000000080)={0x8000000000000000, 0x8, 0x1, 0xc05})
mq_getsetattr(r3, &(0x7f0000000040)={0x0, 0x40, 0x4, 0x7ff}, 0x0)
r4 = signalfd4(0xffffffffffffffff, &(0x7f00000004c0)={[0x7]}, 0x8, 0x0)
set_mempolicy(0x1, &(0x7f00000006c0)=0x1ff, 0x100000001)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1b, 0x1, &(0x7f0000000380)=ANY=[@ANYBLOB="1549500021000000"], &(0x7f00000003c0)='syzkaller\x00', 0x5, 0x40, &(0x7f0000000400)=""/64, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, r4, 0x8, &(0x7f0000000500)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000540)={0x5, 0x6, 0x2, 0x8}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000680)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x9}, 0x94)
mq_timedreceive(r3, &(0x7f0000000100)=""/90, 0x5a, 0x0, &(0x7f00000001c0)={0x77359400})
socket$nl_xfrm(0x10, 0x3, 0x6)
set_mempolicy(0x0, &(0x7f0000000000)=0x8, 0x8)

963.90092ms ago: executing program 4 (id=5696):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000200850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48054}, 0x44000002)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r0, 0x0, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDSETMODE(r6, 0x4b3a, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))
socket(0x80000000000000a, 0x2, 0x0)
r7 = socket(0x80000000000000a, 0x2, 0x0)
r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r8}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
msgget$private(0x0, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x4e24, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @mcast1, 0x1000}}}, 0x108)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@gettclass={0x24, 0x2a, 0x1, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x8, 0xe}, {0x8, 0x5}, {0x0, 0x2}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

616.924782ms ago: executing program 0 (id=5697):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000800), &(0x7f0000000840)=r0}, 0x20)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800)
r3 = syz_open_procfs(0x0, &(0x7f0000000740)='net/wireless\x00')
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000880), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(r3, &(0x7f0000000980)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40000000}, 0xc, 0x0}, 0x20000000)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(r1, &(0x7f0000000b00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000c40)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="000226bd7000fddbdf2506000000050005008000000014000680060005004e2100000600010000000000080002000600000008000200020000000800040081ffffff14000680060001000200000005000200050000000800020000000000"], 0x64}, 0x1, 0x0, 0x0, 0x4000000}, 0x44094)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000009c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
shutdown(r5, 0x2)
creat(&(0x7f00000003c0)='./file1\x00', 0x24)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r6, 0x400, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
removexattr(0x0, &(0x7f0000000200)=@known='trusted.overlay.upper\x00')
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendto(0xffffffffffffffff, 0xfffffffffffffffc, 0x0, 0x4000, 0x0, 0x0)
r7 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r0}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x55, 0x55, 0x4, [@datasec={0x1, 0x2, 0x0, 0xf, 0x1, [{0x80005, 0x7ff, 0x4}, {0x2, 0x4, 0x9}], "b6"}, @enum64={0x5, 0x3, 0x0, 0x13, 0x1, 0x0, [{0xa, 0x1a, 0x80000001}, {0x2, 0x8001}, {0xa, 0x100, 0xf075}]}]}, {0x0, [0x30, 0x5f]}}, &(0x7f0000000380)=""/178, 0x74, 0xb2, 0x1, 0x7, 0x10000, @value=r7}, 0x28)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000240)={[{@discard}, {@noload}]}, 0x64, 0x53f, &(0x7f0000000440)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)

616.214162ms ago: executing program 5 (id=5698):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00'}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000180)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000008000000180001801400020073797a"], 0x50}, 0x1, 0x0, 0x0, 0x4}, 0x0)

472.372356ms ago: executing program 4 (id=5699):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000007c0)={{r0}, &(0x7f0000000740), &(0x7f0000000780)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, 0x0, 0x1, 0x0)
writev(r2, 0x0, 0x0)

427.04505ms ago: executing program 5 (id=5700):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xaf, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r0}, 0x18)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x20000, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)

372.902345ms ago: executing program 4 (id=5701):
r0 = socket$inet6(0x10, 0x3, 0x0)
openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000340), 0x10000, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1a, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', r2, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x23}]}, 0x0, 0xfffffffe, 0x0, 0x0, 0x727c45cd4283345, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001"], 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000002000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000980)='mm_page_free\x00', r6, 0x0, 0x1000000000000}, 0x18)
ioctl$BTRFS_IOC_SUBVOL_CREATE(0xffffffffffffffff, 0x5000940e, &(0x7f00000009c0)={{r4}, "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"})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, 0x0, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
sendmsg$netlink(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000004e40)={0x110, 0x29, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x100, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @remote}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640d", @typed={0xc, 0x145, 0x0, 0x0, @u64=0xffffffff}]}]}, 0x110}], 0x1, 0x0, 0x0, 0x24000885}, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r9 = open(&(0x7f0000000040)='./file2\x00', 0x0, 0xf3)
ioctl$BTRFS_IOC_DEFRAG(r9, 0x4c06, 0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r8, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r10}, 0x10)
sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

342.037407ms ago: executing program 4 (id=5702):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r2=>0x0})
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x54}}, 0x24000840)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/pm_wakeup_irq', 0x0, 0x1a0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone(0x4000, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
socket$kcm(0x10, 0x2, 0x4)
r5 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x40, 0x0, 0x0, 0x100, 0x34120, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}, 0x140e9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r6}, 0x0, &(0x7f00000001c0)=r5}, 0x20)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex_waitv(0x0, 0x0, 0x0, 0x0, 0x1)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r7}, 0x18)
syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
bind$can_raw(r1, &(0x7f0000000000)={0x1d, r2}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0x1, 0x6}, {0xffff}, {0x1}}}, 0x24}}, 0x4008800)

327.236899ms ago: executing program 1 (id=5703):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a0000000000000000181200", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000700), 0xffffffffffffffff)
recvmmsg(r2, &(0x7f0000001a00)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000540)=""/138, 0x8a}, {&(0x7f00000007c0)=""/190, 0xbe}, {&(0x7f0000000200)=""/112, 0x70}, {&(0x7f0000000600)=""/200, 0xc8}, {&(0x7f0000002f00)=""/4094, 0xffe}], 0x5}, 0x4000000b}], 0x1, 0x40010080, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r3, @ANYBLOB="030704707900000000000100040004000180"], 0x18}}, 0x0)

100.11668ms ago: executing program 1 (id=5704):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
readv(r0, &(0x7f0000000140)=[{&(0x7f0000000800)=""/4096, 0x1000}], 0x1)
mremap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ee0000/0x3000)=nil)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r2)
sendmsg$NL80211_CMD_GET_WIPHY(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="59bb22bd70000000200011"], 0x28}}, 0x0)

54.796844ms ago: executing program 4 (id=5705):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xffff}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f0000000a40)='GPL\x00', 0x4, 0x0, 0x0, 0x41000}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)
getsockopt$packet_int(r3, 0x107, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0x4)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)

0s ago: executing program 4 (id=5706):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000c00000000000000008500000007000000040000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
unshare(0x22020400)
r4 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff)
r5 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'veth1_to_bond\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_DEV(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01001f774d20611e032f1b00000010002e800600040000000000000000000c00060001"], 0x30}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}, {0x2, 0xd}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x10, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1], 0x0, [0x8, 0x6, 0x3c, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x0, 0x8, 0x0, 0x0, 0x0, 0x3, 0x401]}}]}}]}, 0x8c}}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
r11 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r10, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000240)=[0x4], 0x0, 0x0, 0x1, 0x1}}, 0x40)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000340)={r11, 0x0, 0x0}, 0x10)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r12, 0x0, 0xfffffffffffffffd}, 0x18)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0)
r13 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000300)="1b00000018008103e00212ba0d81050423031000030f0600067c55", 0x1b}], 0x1}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newsa={0x168, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in=@rand_addr=0x64010101, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4, 0x0, 0x4e21, 0x48e, 0x2, 0x0, 0x0, 0x1d}, {@in6=@private1, 0xfe, 0x32}, @in6=@loopback, {0x0, 0x0, 0xfffffffffffffffd, 0x8000000008, 0x1, 0x9, 0x7fffffff, 0x543}, {0x4, 0x7fffffffffffffff, 0x0, 0x4}, {0x2}, 0x70bd2c, 0x3500, 0x2, 0x4, 0x0, 0x20}, [@encap={0x1c, 0x4, {0x0, 0x4e24, 0x4e20, @in6=@dev={0xfe, 0x80, '\x00', 0x2d}}}, @algo_aead={0x5b, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x78, 0x60, "210466d5854797120dbba200000000"}}]}, 0x168}, 0x1, 0x0, 0x0, 0x4000094}, 0x0)

kernel console output (not intermixed with test programs):

re name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  330.266619][T17842] Call Trace:
[  330.266627][T17842]  <TASK>
[  330.266636][T17842]  __dump_stack+0x1d/0x30
[  330.266677][T17842]  dump_stack_lvl+0x95/0xd0
[  330.266699][T17842]  dump_stack+0x15/0x1b
[  330.266719][T17842]  dump_header+0x81/0x240
[  330.266740][T17842]  oom_kill_process+0x295/0x350
[  330.266827][T17842]  out_of_memory+0x97b/0xb80
[  330.266896][T17842]  try_charge_memcg+0x610/0xa10
[  330.266935][T17842]  charge_memcg+0x51/0xc0
[  330.266962][T17842]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  330.267071][T17842]  __read_swap_cache_async+0x17b/0x2d0
[  330.267098][T17842]  swap_cluster_readahead+0x262/0x3c0
[  330.267135][T17842]  swapin_readahead+0xde/0x820
[  330.267157][T17842]  ? mod_memcg_lruvec_state+0x1a1/0x280
[  330.267255][T17842]  ? __rcu_read_unlock+0x34/0x70
[  330.267271][T17842]  ? __rcu_read_unlock+0x4f/0x70
[  330.267287][T17842]  ? swap_cache_get_folio+0x277/0x280
[  330.267380][T17842]  do_swap_page+0x2b4/0x21e0
[  330.267405][T17842]  ? __pfx_default_wake_function+0x10/0x10
[  330.267432][T17842]  handle_mm_fault+0x9d8/0x2c60
[  330.267533][T17842]  do_user_addr_fault+0x630/0x1080
[  330.267558][T17842]  exc_page_fault+0x62/0xa0
[  330.267612][T17842]  asm_exc_page_fault+0x26/0x30
[  330.267629][T17842] RIP: 0033:0x7fa160b959d9
[  330.267657][T17842] Code: 38 00 00 0f 8e 09 fe ff ff e8 23 98 fe ff 49 39 c4 72 66 66 0f 1f 44 00 00 69 3d c6 fc ea 00 e8 03 00 00 48 8d 1d c7 05 38 00 <e8> c2 9c 12 00 eb 0c 48 81 c3 f0 00 00 00 48 39 eb 74 24 80 7b 20
[  330.267672][T17842] RSP: 002b:00007ffc9940c1e0 EFLAGS: 00010206
[  330.267686][T17842] RAX: 00000000000509d9 RBX: 00007fa160f15fa0 RCX: 0000000000050910
[  330.267697][T17842] RDX: 00000000000000c9 RSI: 00007ffc9940c1c0 RDI: 00000000000003e8
[  330.267708][T17842] RBP: 00007fa160f17da0 R08: 000000000bfb1eb5 R09: 7fffffffffffffff
[  330.267780][T17842] R10: 3fffffffffffffff R11: 0000000000000293 R12: 0000000000050bb1
[  330.267791][T17842] R13: 00007fa160f16090 R14: ffffffffffffffff R15: 00007ffc9940c2f0
[  330.267807][T17842]  </TASK>
[  330.267857][T17842] memory: usage 307200kB, limit 307200kB, failcnt 8042
[  330.413918][T17867] loop3: detected capacity change from 0 to 512
[  330.425962][T17842] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0
[  330.441585][T17867] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  330.448027][T17842] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[  330.448044][T17842] Memory cgroup stats for /syz1:
[  330.475598][T17867] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5190: Allocating blocks 41-42 which overlap fs metadata
[  330.482242][T17842] cache 0
[  330.488584][T17867] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5190: Allocating blocks 41-42 which overlap fs metadata
[  330.496041][T17842] rss 0
[  330.496050][T17842] shmem 0
[  330.505683][T17867] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5190: Failed to acquire dquot type 1
[  330.512437][T17842] mapped_file 0
[  330.512447][T17842] dirty 0
[  330.512454][T17842] writeback 0
[  330.518541][T17867] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, 
[  330.531068][T17842] workingset_refault_anon 1357
[  330.534072][T17867] inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  330.535157][T17867] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5190: corrupted inode contents
[  330.547749][T17842] workingset_refault_file 25430
[  330.550826][T17867] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.5190: mark_inode_dirty error
[  330.553437][T17842] swap 180224
[  330.564895][T17867] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5190: corrupted inode contents
[  330.568142][T17842] swapcached 28672
[  330.571591][T17867] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.5190: mark_inode_dirty error
[  330.574430][T17842] pgpgin 629462
[  330.574442][T17842] pgpgout 629455
[  330.574449][T17842] pgfault 341084
[  330.574456][T17842] pgmajfault 874
[  330.574464][T17842] inactive_anon 4096
[  330.582321][T17867] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5190: corrupted inode contents
[  330.586764][T17842] active_anon 24576
[  330.586774][T17842] inactive_file 0
[  330.586782][T17842] active_file 0
[  330.612684][T17867] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  330.623834][T17842] unevictable 0
[  330.623844][T17842] hierarchical_memory_limit 314572800
[  330.623894][T17842] hierarchical_memsw_limit 9223372036854771712
[  330.623904][T17842] total_cache 0
[  330.623911][T17842] total_rss 0
[  330.623918][T17842] total_shmem 0
[  330.623925][T17842] total_mapped_file 0
[  330.639260][T17867] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5190: corrupted inode contents
[  330.642744][T17842] total_dirty 0
[  330.642753][T17842] total_writeback 0
[  330.642761][T17842] total_workingset_refault_anon 1357
[  330.642770][T17842] total_workingset_refault_file 25430
[  330.664299][T17867] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.5190: mark_inode_dirty error
[  330.664468][T17842] total_swap 180224
[  330.664477][T17842] total_swapcached 28672
[  330.664484][T17842] total_pgpgin 629462
[  330.670077][T17867] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  330.671982][T17842] total_pgpgout 629455
[  330.692917][T17867] EXT4-fs (loop3): 1 truncate cleaned up
[  330.694741][T17842] total_pgfault 341084
[  330.694751][T17842] total_pgmajfault 874
[  330.703986][T17867] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  330.706755][T17842] total_inactive_anon 4096
[  330.706765][T17842] total_active_anon 24576
[  330.706773][T17842] total_inactive_file 0
[  330.726179][T17867] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  330.728528][T17842] total_active_file 0
[  330.732500][T17867] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  330.732745][T17867] vhci_hcd vhci_hcd.0: Device attached
[  330.744337][T17842] total_unevictable 0
[  330.744374][T17842] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null)
[  330.820646][T17880] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5190: Allocating blocks 41-42 which overlap fs metadata
[  330.824682][T17842] ,cpuset=
[  330.829531][T17880] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5190: Failed to acquire dquot type 1
[  330.833436][T17842] /
[  330.870726][T17881] netlink: 14 bytes leftover after parsing attributes in process `syz.3.5190'.
[  330.871641][T17842] ,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5180,pid=17842,uid=0
[  330.920195][T17842] Memory cgroup out of memory: Killed process 17842 (syz.1.5180) total-vm:93968kB, anon-rss:1264kB, file-rss:22568kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  330.950243][ T3403] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  331.020133][ T3403] usb 7-1: new full-speed USB device number 18 using vhci_hcd
[  331.031460][T17887] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  331.038003][T17887] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  331.045672][T17887] vhci_hcd vhci_hcd.0: Device attached
[  331.230860][ T3881] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  331.243143][T17876] vhci_hcd: connection reset by peer
[  331.248899][T15676] vhci_hcd vhci_hcd.3: stop threads
[  331.254405][T15676] vhci_hcd vhci_hcd.3: release socket
[  331.259784][T15676] vhci_hcd vhci_hcd.3: disconnect device
[  331.290870][ T3881] usb 3-1: new full-speed USB device number 17 using vhci_hcd
[  331.330445][T11725] Bluetooth: hci1: command 0x1003 tx timeout
[  331.336487][   T44] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  331.523268][   T29] kauditd_printk_skb: 468 callbacks suppressed
[  331.523283][   T29] audit: type=1326 audit(1767390073.416:45979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.578999][   T29] audit: type=1326 audit(1767390073.446:45980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.602656][   T29] audit: type=1326 audit(1767390073.446:45981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.626390][   T29] audit: type=1326 audit(1767390073.446:45982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.650072][   T29] audit: type=1326 audit(1767390073.446:45983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.673673][   T29] audit: type=1326 audit(1767390073.446:45984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.697246][   T29] audit: type=1326 audit(1767390073.446:45985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.720918][   T29] audit: type=1326 audit(1767390073.446:45986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.744580][   T29] audit: type=1326 audit(1767390073.446:45987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.768212][   T29] audit: type=1326 audit(1767390073.456:45988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17905 comm="syz.4.5201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  331.789529][T17910] bridge_slave_1: left allmulticast mode
[  331.797504][T17910] bridge_slave_1: left promiscuous mode
[  331.803305][T17910] bridge0: port 2(bridge_slave_1) entered disabled state
[  331.823698][T17888] vhci_hcd: connection reset by peer
[  331.831014][T17910] bridge_slave_0: left allmulticast mode
[  331.836684][T17910] bridge_slave_0: left promiscuous mode
[  331.842444][T17910] bridge0: port 1(bridge_slave_0) entered disabled state
[  331.845807][T11712] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.863023][ T6034] vhci_hcd vhci_hcd.1: stop threads
[  331.868261][ T6034] vhci_hcd vhci_hcd.1: release socket
[  331.873665][ T6034] vhci_hcd vhci_hcd.1: disconnect device
[  331.977997][T17921] loop3: detected capacity change from 0 to 512
[  332.003834][T17921] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  332.027714][T17928] binfmt_misc: register: failed to install interpreter file ./file2
[  332.042343][T17921] System zones: 0-2, 18-18, 34-34
[  332.066247][T17921] EXT4-fs (loop3): too many log groups per flexible block group
[  332.095904][T17921] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  332.127328][T17921] EXT4-fs (loop3): mount failed
[  332.143257][T17934] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5211'.
[  332.507100][T17946] netlink: 'syz.5.5215': attribute type 4 has an invalid length.
[  332.530315][T17944] binfmt_misc: register: failed to install interpreter file ./file2
[  332.563353][T17948] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  332.581080][T17948] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  332.852706][T17958] loop3: detected capacity change from 0 to 512
[  332.859193][T17958] EXT4-fs: Ignoring removed nobh option
[  332.882177][T17958] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  332.892443][T17958] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.5219: iget: bad i_size value: 38620345925642
[  332.940142][T17958] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.5219: couldn't read orphan inode 15 (err -117)
[  332.952739][T17958] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.996528][T17958] netem: change failed
[  333.038469][T11712] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.054252][T17975] xt_time: invalid argument - start or stop time greater than 23:59:59
[  333.065885][T17975] loop1: detected capacity change from 0 to 512
[  333.076504][T17979] team0: Device ip6gre0 is of different type
[  333.083390][T17975] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5227'.
[  333.156797][T17993] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5233'.
[  333.175642][T17995] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5230'.
[  333.210502][T18003] loop1: detected capacity change from 0 to 512
[  333.217348][T18003] EXT4-fs: Ignoring removed nobh option
[  333.223747][T18003] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  333.234011][T18003] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.5237: iget: bad i_size value: 38620345925642
[  333.247615][T18003] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.5237: couldn't read orphan inode 15 (err -117)
[  333.261100][T18003] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.275899][T18003] netem: change failed
[  333.288964][T11968] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.322667][T18008] loop3: detected capacity change from 0 to 512
[  333.353677][T18008] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  333.362319][T18008] System zones: 0-2, 18-18, 34-34
[  333.381325][T18008] EXT4-fs (loop3): too many log groups per flexible block group
[  333.406315][T18008] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  333.420844][T18008] EXT4-fs (loop3): mount failed
[  333.436464][T18020] xt_time: invalid argument - start or stop time greater than 23:59:59
[  333.455509][T18020] loop1: detected capacity change from 0 to 512
[  333.465734][T18020] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5243'.
[  333.691169][T18007] syz.3.5239 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  333.705341][T18007] CPU: 0 UID: 0 PID: 18007 Comm: syz.3.5239 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  333.705370][T18007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  333.705381][T18007] Call Trace:
[  333.705388][T18007]  <TASK>
[  333.705396][T18007]  __dump_stack+0x1d/0x30
[  333.705444][T18007]  dump_stack_lvl+0x95/0xd0
[  333.705458][T18007]  dump_stack+0x15/0x1b
[  333.705470][T18007]  dump_header+0x81/0x240
[  333.705482][T18007]  oom_kill_process+0x295/0x350
[  333.705575][T18007]  out_of_memory+0x97b/0xb80
[  333.705589][T18007]  try_charge_memcg+0x610/0xa10
[  333.705662][T18007]  obj_cgroup_charge_pages+0xa6/0x150
[  333.705688][T18007]  __memcg_kmem_charge_page+0x9f/0x170
[  333.705720][T18007]  __alloc_frozen_pages_noprof+0x18f/0x360
[  333.705848][T18007]  alloc_pages_mpol+0xb3/0x260
[  333.705881][T18007]  alloc_pages_noprof+0x90/0x130
[  333.705974][T18007]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  333.706005][T18007]  __kvmalloc_node_noprof+0x492/0x6b0
[  333.706020][T18007]  ? ip_set_alloc+0x24/0x30
[  333.706097][T18007]  ? ip_set_alloc+0x24/0x30
[  333.706194][T18007]  ip_set_alloc+0x24/0x30
[  333.706210][T18007]  hash_netiface_create+0x282/0x740
[  333.706291][T18007]  ? __pfx_hash_netiface_create+0x10/0x10
[  333.706309][T18007]  ip_set_create+0x3cc/0x970
[  333.706332][T18007]  ? __nla_parse+0x40/0x60
[  333.706348][T18007]  nfnetlink_rcv_msg+0x4c6/0x590
[  333.706434][T18007]  netlink_rcv_skb+0x123/0x220
[  333.706451][T18007]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  333.706518][T18007]  nfnetlink_rcv+0x167/0x16c0
[  333.706533][T18007]  ? free_frozen_page_commit+0x79/0x3b0
[  333.706548][T18007]  ? _raw_spin_unlock+0x26/0x50
[  333.706616][T18007]  ? __free_frozen_pages+0x288/0x510
[  333.706631][T18007]  ? bpf_check+0x9d67/0xc860
[  333.706650][T18007]  ? __alloc_frozen_pages_noprof+0x18f/0x360
[  333.706680][T18007]  ? alloc_pages_bulk_noprof+0x4b9/0x540
[  333.706694][T18007]  ? css_rstat_updated+0xbb/0x280
[  333.706705][T18007]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[  333.706719][T18007]  ? should_fail_ex+0x30/0x280
[  333.706807][T18007]  ? selinux_nlmsg_lookup+0x99/0x890
[  333.706822][T18007]  ? __rcu_read_unlock+0x34/0x70
[  333.706849][T18007]  ? __netlink_lookup+0x266/0x2a0
[  333.706869][T18007]  netlink_unicast+0x5c0/0x690
[  333.706895][T18007]  netlink_sendmsg+0x58b/0x6b0
[  333.707001][T18007]  ? __pfx_netlink_sendmsg+0x10/0x10
[  333.707032][T18007]  __sock_sendmsg+0x145/0x180
[  333.707051][T18007]  ____sys_sendmsg+0x31e/0x4a0
[  333.707100][T18007]  ___sys_sendmsg+0x17b/0x1d0
[  333.707125][T18007]  __x64_sys_sendmsg+0xd4/0x160
[  333.707154][T18007]  x64_sys_call+0x17ba/0x3000
[  333.707169][T18007]  do_syscall_64+0xca/0x2b0
[  333.707211][T18007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.707224][T18007] RIP: 0033:0x7fef0d71f749
[  333.707235][T18007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  333.707301][T18007] RSP: 002b:00007fef0c187038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  333.707314][T18007] RAX: ffffffffffffffda RBX: 00007fef0d975fa0 RCX: 00007fef0d71f749
[  333.707321][T18007] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  333.707329][T18007] RBP: 00007fef0d7a3f91 R08: 0000000000000000 R09: 0000000000000000
[  333.707337][T18007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  333.707344][T18007] R13: 00007fef0d976038 R14: 00007fef0d975fa0 R15: 00007fff2fa630c8
[  333.707366][T18007]  </TASK>
[  333.707448][T18007] memory: usage 307200kB, limit 307200kB, failcnt 8786
[  334.049621][T18007] memory+swap: usage 307828kB, limit 9007199254740988kB, failcnt 0
[  334.057559][T18007] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  334.064888][T18007] Memory cgroup stats for /syz3:
[  334.065230][T18007] cache 0
[  334.073199][T18007] rss 0
[  334.075990][T18007] shmem 0
[  334.078917][T18007] mapped_file 0
[  334.082393][T18007] dirty 0
[  334.085338][T18007] writeback 0
[  334.088614][T18007] workingset_refault_anon 1404
[  334.093439][T18007] workingset_refault_file 18562
[  334.098345][T18007] swap 643072
[  334.101649][T18007] swapcached 0
[  334.105011][T18007] pgpgin 559312
[  334.108481][T18007] pgpgout 559312
[  334.112045][T18007] pgfault 367872
[  334.115636][T18007] pgmajfault 956
[  334.119170][T18007] inactive_anon 0
[  334.122874][T18007] active_anon 0
[  334.126325][T18007] inactive_file 0
[  334.130146][T18007] active_file 0
[  334.133670][T18007] unevictable 0
[  334.137125][T18007] hierarchical_memory_limit 314572800
[  334.142530][T18007] hierarchical_memsw_limit 9223372036854771712
[  334.148675][T18007] total_cache 0
[  334.152232][T18007] total_rss 0
[  334.155509][T18007] total_shmem 0
[  334.158959][T18007] total_mapped_file 0
[  334.162944][T18007] total_dirty 0
[  334.166405][T18007] total_writeback 0
[  334.170234][T18007] total_workingset_refault_anon 1404
[  334.175506][T18007] total_workingset_refault_file 18562
[  334.180893][T18007] total_swap 643072
[  334.184750][T18007] total_swapcached 0
[  334.188640][T18007] total_pgpgin 559312
[  334.192513][T18046] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5249'.
[  334.192643][T18007] total_pgpgout 559312
[  334.205660][T18007] total_pgfault 367872
[  334.209700][T18007] total_pgmajfault 956
[  334.213780][T18007] total_inactive_anon 0
[  334.217935][T18007] total_active_anon 0
[  334.221959][T18007] total_inactive_file 0
[  334.226107][T18007] total_active_file 0
[  334.230122][T18007] total_unevictable 0
[  334.234094][T18007] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.5239,pid=18006,uid=0
[  334.248817][T18007] Memory cgroup out of memory: Killed process 18006 (syz.3.5239) total-vm:96016kB, anon-rss:1136kB, file-rss:22460kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  334.396437][T18057] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  334.403036][T18057] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  334.410472][T18057] vhci_hcd vhci_hcd.0: Device attached
[  334.540558][T18057] netlink: 14 bytes leftover after parsing attributes in process `syz.5.5257'.
[  334.550687][T18073] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  334.557202][T18073] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  334.564891][T18073] vhci_hcd vhci_hcd.0: Device attached
[  334.582428][T18078] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  334.589030][T18078] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  334.596737][T18078] vhci_hcd vhci_hcd.0: Device attached
[  334.616205][ T3624] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  334.623936][T18066] syz.4.5261 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  334.635008][T18066] CPU: 0 UID: 0 PID: 18066 Comm: syz.4.5261 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  334.635092][T18066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  334.635109][T18066] Call Trace:
[  334.635116][T18066]  <TASK>
[  334.635126][T18066]  __dump_stack+0x1d/0x30
[  334.635151][T18066]  dump_stack_lvl+0x95/0xd0
[  334.635174][T18066]  dump_stack+0x15/0x1b
[  334.635243][T18066]  dump_header+0x81/0x240
[  334.635295][T18066]  oom_kill_process+0x295/0x350
[  334.635319][T18066]  out_of_memory+0x97b/0xb80
[  334.635358][T18066]  try_charge_memcg+0x610/0xa10
[  334.635535][T18066]  charge_memcg+0x51/0xc0
[  334.635563][T18066]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  334.635646][T18066]  __read_swap_cache_async+0x17b/0x2d0
[  334.635676][T18066]  swap_cluster_readahead+0x262/0x3c0
[  334.635703][T18066]  swapin_readahead+0xde/0x820
[  334.635797][T18066]  ? next_uptodate_folio+0x815/0x890
[  334.635824][T18066]  ? percpu_counter_add_batch+0xb6/0x130
[  334.635853][T18066]  ? __rcu_read_unlock+0x4f/0x70
[  334.635941][T18066]  ? swap_cache_get_folio+0x277/0x280
[  334.636028][T18066]  do_swap_page+0x2b4/0x21e0
[  334.636055][T18066]  ? __pfx_default_wake_function+0x10/0x10
[  334.636084][T18066]  handle_mm_fault+0x9d8/0x2c60
[  334.636199][T18066]  do_user_addr_fault+0x630/0x1080
[  334.636228][T18066]  exc_page_fault+0x62/0xa0
[  334.636249][T18066]  asm_exc_page_fault+0x26/0x30
[  334.636276][T18066] RIP: 0033:0x7f4ed31ff010
[  334.636291][T18066] Code: ce ff ff ff 3f 48 3b 34 c1 0f 84 3b 01 00 00 48 83 c0 01 48 83 f8 04 75 ec 31 f6 80 7c 24 1e 00 0f 85 8e 01 00 00 41 83 c7 01 <45> 3b 78 04 0f 82 6c ff ff ff 80 7b 4e 00 0f 84 17 03 00 00 48 83
[  334.636310][T18066] RSP: 002b:00007ffee7b852e0 EFLAGS: 00010202
[  334.636382][T18066] RAX: 000000110c25c000 RBX: 00007f4ed40a5720 RCX: 0000000000000001
[  334.636393][T18066] RDX: 0000000000001bcc RSI: 000000000000156f RDI: 0000000000000002
[  334.636407][T18066] RBP: ffffffff81355bcc R08: 00007f4ed3576128 R09: 00007f4ed3562000
[  334.636421][T18066] R10: 00007f4ed2985008 R11: 0000000000000004 R12: 0000000000000004
[  334.636435][T18066] R13: 0000000000000000 R14: ffffffff813552a6 R15: 0000000000000001
[  334.636449][T18066]  ? trace_page_fault_user+0x16/0xd0
[  334.636475][T18066]  ? __bad_area_nosemaphore+0x18c/0x330
[  334.636559][T18066]  </TASK>
[  334.636567][T18066] memory: usage 307200kB, limit 307200kB, failcnt 5619
[  334.680256][ T3624] usb 11-1: new full-speed USB device number 5 using vhci_hcd
[  334.684894][T18066] memory+swap: usage 307392kB, limit 9007199254740988kB, failcnt 0
[  334.684910][T18066] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  334.884913][T18066] Memory cgroup stats for /syz4:
[  334.885126][T18066] cache 0
[  334.893010][T18066] rss 0
[  334.895763][T18066] shmem 0
[  334.898693][T18066] mapped_file 0
[  334.902173][T18066] dirty 0
[  334.905176][T18066] writeback 4096
[  334.908717][T18066] workingset_refault_anon 1227
[  334.913579][T18066] workingset_refault_file 17454
[  334.918417][T18066] swap 196608
[  334.921730][T18066] swapcached 4096
[  334.925286][T18090] xt_time: invalid argument - start or stop time greater than 23:59:59
[  334.925450][T18066] pgpgin 503461
[  334.925459][T18066] pgpgout 503460
[  334.940696][T18066] pgfault 315837
[  334.944309][T18066] pgmajfault 723
[  334.945414][T18090] loop1: detected capacity change from 0 to 512
[  334.947878][T18066] inactive_anon 4096
[  334.947887][T18066] active_anon 0
[  334.947894][T18066] inactive_file 0
[  334.947902][T18066] active_file 0
[  334.968600][T18066] unevictable 0
[  334.972079][T18066] hierarchical_memory_limit 314572800
[  334.977514][T18066] hierarchical_memsw_limit 9223372036854771712
[  334.982174][T18090] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5268'.
[  334.983685][T18066] total_cache 0
[  334.996005][T18066] total_rss 0
[  334.999316][T18066] total_shmem 0
[  335.002861][T18066] total_mapped_file 0
[  335.006903][T18066] total_dirty 0
[  335.010381][T18066] total_writeback 4096
[  335.014437][T18066] total_workingset_refault_anon 1227
[  335.019735][T18066] total_workingset_refault_file 17454
[  335.025143][T18066] total_swap 196608
[  335.028946][T18066] total_swapcached 4096
[  335.033124][T18066] total_pgpgin 503461
[  335.037097][T18066] total_pgpgout 503460
[  335.041234][T18066] total_pgfault 315837
[  335.045293][T18066] total_pgmajfault 723
[  335.049393][T18066] total_inactive_anon 4096
[  335.053874][T18066] total_active_anon 0
[  335.057848][T18066] total_inactive_file 0
[  335.062070][T18066] total_active_file 0
[  335.066053][T18066] total_unevictable 0
[  335.070072][T18066] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.5261,pid=18066,uid=0
[  335.084742][T18066] Memory cgroup out of memory: Killed process 18066 (syz.4.5261) total-vm:93968kB, anon-rss:1132kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  335.102173][T18079] vhci_hcd: connection closed
[  335.102431][T15488] vhci_hcd vhci_hcd.0: stop threads
[  335.112380][T15488] vhci_hcd vhci_hcd.0: release socket
[  335.117745][T15488] vhci_hcd vhci_hcd.0: disconnect device
[  335.170277][T18080] vhci_hcd: connection closed
[  335.210160][T15488] vhci_hcd vhci_hcd.3: stop threads
[  335.220192][T15488] vhci_hcd vhci_hcd.3: release socket
[  335.225590][T15488] vhci_hcd vhci_hcd.3: disconnect device
[  335.540655][T18061] vhci_hcd: connection reset by peer
[  335.546140][T15488] vhci_hcd vhci_hcd.5: stop threads
[  335.551448][T15488] vhci_hcd vhci_hcd.5: release socket
[  335.556880][T15488] vhci_hcd vhci_hcd.5: disconnect device
[  335.664309][T18124] xt_time: invalid argument - start or stop time greater than 23:59:59
[  335.688673][T18124] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5281'.
[  335.722306][T18132] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  335.733654][T18132] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  335.792795][T18137] netem: change failed
[  335.928064][T18144] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5290'.
[  336.055160][ T3403] usb 7-1: enqueue for inactive port 0
[  336.056626][T18116] syz.4.5279 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  336.063954][ T3403] usb 7-1: enqueue for inactive port 0
[  336.071653][T18116] CPU: 0 UID: 0 PID: 18116 Comm: syz.4.5279 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  336.071687][T18116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  336.071700][T18116] Call Trace:
[  336.071708][T18116]  <TASK>
[  336.071717][T18116]  __dump_stack+0x1d/0x30
[  336.071742][T18116]  dump_stack_lvl+0x95/0xd0
[  336.071839][T18116]  dump_stack+0x15/0x1b
[  336.071858][T18116]  dump_header+0x81/0x240
[  336.071906][T18116]  oom_kill_process+0x295/0x350
[  336.071928][T18116]  out_of_memory+0x97b/0xb80
[  336.071952][T18116]  try_charge_memcg+0x610/0xa10
[  336.071999][T18116]  charge_memcg+0x51/0xc0
[  336.072050][T18116]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  336.072082][T18116]  __read_swap_cache_async+0x17b/0x2d0
[  336.072183][T18116]  swap_cluster_readahead+0x262/0x3c0
[  336.072217][T18116]  swapin_readahead+0xde/0x820
[  336.072274][T18116]  ? mod_memcg_lruvec_state+0x1a1/0x280
[  336.072299][T18116]  ? lruvec_stat_mod_folio+0xd6/0x120
[  336.072335][T18116]  ? __rcu_read_unlock+0x4f/0x70
[  336.072355][T18116]  ? swap_cache_get_folio+0x277/0x280
[  336.072398][T18116]  do_swap_page+0x2b4/0x21e0
[  336.072455][T18116]  ? __pfx_default_wake_function+0x10/0x10
[  336.072526][T18116]  handle_mm_fault+0x9d8/0x2c60
[  336.072565][T18116]  do_user_addr_fault+0x630/0x1080
[  336.072596][T18116]  exc_page_fault+0x62/0xa0
[  336.072642][T18116]  asm_exc_page_fault+0x26/0x30
[  336.072727][T18116] RIP: 0033:0x7f4ed3351fb3
[  336.072744][T18116] Code: 0d 09 00 48 8d 3d 36 0d 09 00 e8 e8 47 f6 ff 0f 1f 84 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 9e 95 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[  336.072761][T18116] RSP: 002b:00007ffee7b853c8 EFLAGS: 00010293
[  336.072778][T18116] RAX: 00000000fffffffa RBX: 00007f4ed3575fa0 RCX: 0000000000000000
[  336.072791][T18116] RDX: 00007ffee7b853e0 RSI: 0000000000000000 RDI: 0000000000000000
[  336.072803][T18116] RBP: 00007f4ed3577da0 R08: 0000000000ddd2d4 R09: 7fffffffffffffff
[  336.072896][T18116] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000521f8
[  336.072910][T18116] R13: 00007ffee7b85500 R14: ffffffffffffffff R15: 00007ffee7b85520
[  336.072929][T18116]  </TASK>
[  336.072936][T18116] memory: usage 307200kB, limit 307200kB, failcnt 5844
[  336.160145][ T3403] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  336.160643][T18116] memory+swap: usage 307388kB, limit 9007199254740988kB, failcnt 0
[  336.305422][T18116] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  336.312697][T18116] Memory cgroup stats for /syz4:
[  336.312916][T18116] cache 0
[  336.320768][T18116] rss 0
[  336.323514][T18116] shmem 0
[  336.326427][T18116] mapped_file 0
[  336.329862][T18116] dirty 0
[  336.332841][T18116] writeback 0
[  336.336100][T18116] workingset_refault_anon 1277
[  336.340848][T18116] workingset_refault_file 17454
[  336.345671][T18116] swap 192512
[  336.348928][T18116] swapcached 12288
[  336.352649][T18116] pgpgin 504912
[  336.356093][T18116] pgpgout 504909
[  336.359622][T18116] pgfault 317529
[  336.363186][T18116] pgmajfault 770
[  336.366708][T18116] inactive_anon 0
[  336.370409][T18116] active_anon 12288
[  336.374190][T18116] inactive_file 0
[  336.377800][T18116] active_file 0
[  336.380114][ T3881] usb 3-1: enqueue for inactive port 0
[  336.381337][T18116] unevictable 0
[  336.386828][ T3881] usb 3-1: enqueue for inactive port 0
[  336.390204][T18116] hierarchical_memory_limit 314572800
[  336.400979][T18116] hierarchical_memsw_limit 9223372036854771712
[  336.407103][T18116] total_cache 0
[  336.410553][T18116] total_rss 0
[  336.413843][T18116] total_shmem 0
[  336.417277][T18116] total_mapped_file 0
[  336.421329][T18116] total_dirty 0
[  336.424769][T18116] total_writeback 0
[  336.428548][T18116] total_workingset_refault_anon 1277
[  336.433934][T18116] total_workingset_refault_file 17454
[  336.439284][T18116] total_swap 192512
[  336.443085][T18116] total_swapcached 12288
[  336.447350][T18116] total_pgpgin 504912
[  336.451314][T18116] total_pgpgout 504909
[  336.455353][T18116] total_pgfault 317529
[  336.459403][T18116] total_pgmajfault 770
[  336.463467][T18116] total_inactive_anon 0
[  336.467595][T18116] total_active_anon 12288
[  336.470078][ T3881] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  336.471926][T18116] total_inactive_file 0
[  336.482361][T18116] total_active_file 0
[  336.486313][T18116] total_unevictable 0
[  336.490286][T18116] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.5279,pid=18116,uid=0
[  336.505045][T18116] Memory cgroup out of memory: Killed process 18116 (syz.4.5279) total-vm:93968kB, anon-rss:1132kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  336.574875][T18153] team0: Device ip6gre0 is of different type
[  336.596286][   T29] kauditd_printk_skb: 541 callbacks suppressed
[  336.596301][   T29] audit: type=1326 audit(1767390078.486:46530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.660116][   T29] audit: type=1326 audit(1767390078.486:46531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.683857][   T29] audit: type=1326 audit(1767390078.516:46532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.707374][   T29] audit: type=1326 audit(1767390078.516:46533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.731225][   T29] audit: type=1326 audit(1767390078.516:46534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.754922][   T29] audit: type=1326 audit(1767390078.516:46535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fef0d71df90 code=0x7ffc0000
[  336.778909][   T29] audit: type=1326 audit(1767390078.516:46536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.802635][   T29] audit: type=1326 audit(1767390078.516:46537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.826710][   T29] audit: type=1326 audit(1767390078.516:46538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.836731][T18169] bridge_slave_1: left allmulticast mode
[  336.850324][   T29] audit: type=1326 audit(1767390078.516:46539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18155 comm="syz.3.5295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  336.879539][T18169] bridge_slave_1: left promiscuous mode
[  336.885331][T18169] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.910902][T18169] bridge_slave_0: left allmulticast mode
[  336.916609][T18169] bridge_slave_0: left promiscuous mode
[  336.922372][T18169] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.965617][T18176] xt_time: invalid argument - start or stop time greater than 23:59:59
[  337.036314][T18185] team0: Device ip6gre0 is of different type
[  337.077137][T18195] 0ªX¹¦À: renamed from caif0
[  337.091583][T18195] 0ªX¹¦À: entered allmulticast mode
[  337.096824][T18195] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  337.222651][T18213] netem: change failed
[  337.242684][T18215] xt_time: invalid argument - start or stop time greater than 23:59:59
[  337.254195][T18215] loop1: detected capacity change from 0 to 512
[  337.267660][T18215] __nla_validate_parse: 4 callbacks suppressed
[  337.267728][T18215] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5319'.
[  337.275512][T18219] team0: Device ip6gre0 is of different type
[  337.426740][T18242] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5332'.
[  337.492304][T18255] xt_time: invalid argument - start or stop time greater than 23:59:59
[  337.493280][T18254] team0: Device ip6gre0 is of different type
[  337.506703][T18255] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5335'.
[  337.733460][T18270] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  337.740130][T18270] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  337.747800][T18270] vhci_hcd vhci_hcd.0: Device attached
[  337.828138][T18281] block device autoloading is deprecated and will be removed.
[  337.892923][T18289] xt_time: invalid argument - start or stop time greater than 23:59:59
[  337.906952][T18289] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5350'.
[  337.918017][T18287] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  337.924545][T18287] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  337.932170][T18287] vhci_hcd vhci_hcd.0: Device attached
[  337.944777][ T3482] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  337.963968][T18290] vhci_hcd: connection closed
[  337.964110][ T4346] vhci_hcd vhci_hcd.4: stop threads
[  337.974046][ T4346] vhci_hcd vhci_hcd.4: release socket
[  337.979417][ T4346] vhci_hcd vhci_hcd.4: disconnect device
[  338.020176][ T3482] usb 7-1: new full-speed USB device number 19 using vhci_hcd
[  338.043392][T18301] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  338.063939][T18301] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  338.190700][T18320] netlink: 'syz.0.5363': attribute type 4 has an invalid length.
[  338.288507][T18325] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5365'.
[  338.398608][T18273] vhci_hcd: connection reset by peer
[  338.404417][  T850] vhci_hcd vhci_hcd.3: stop threads
[  338.409671][  T850] vhci_hcd vhci_hcd.3: release socket
[  338.415072][  T850] vhci_hcd vhci_hcd.3: disconnect device
[  338.556331][T18341] loop3: detected capacity change from 0 to 512
[  338.563888][T18341] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  338.597280][T18341] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5371: Allocating blocks 41-42 which overlap fs metadata
[  338.611369][T18341] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5371: Allocating blocks 41-42 which overlap fs metadata
[  338.625318][T18341] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5371: Failed to acquire dquot type 1
[  338.636847][T18341] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  338.647556][T18349] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5373'.
[  338.651518][T18341] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5371: corrupted inode contents
[  338.672373][T18341] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.5371: mark_inode_dirty error
[  338.684397][T18341] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5371: corrupted inode contents
[  338.696673][T18341] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.5371: mark_inode_dirty error
[  338.708208][T18341] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5371: corrupted inode contents
[  338.720218][T18341] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  338.729106][T18341] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5371: corrupted inode contents
[  338.741155][T18341] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.5371: mark_inode_dirty error
[  338.752375][T18341] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  338.761518][T18341] EXT4-fs (loop3): 1 truncate cleaned up
[  338.767402][T18341] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  338.788233][T18341] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  338.794793][T18341] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  338.802288][T18341] vhci_hcd vhci_hcd.0: Device attached
[  338.863717][T18353] netlink: 14 bytes leftover after parsing attributes in process `syz.3.5371'.
[  338.886725][T18355] FAULT_INJECTION: forcing a failure.
[  338.886725][T18355] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  338.899910][T18355] CPU: 1 UID: 0 PID: 18355 Comm: syz.1.5374 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  338.899934][T18355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  338.899961][T18355] Call Trace:
[  338.899968][T18355]  <TASK>
[  338.899978][T18355]  __dump_stack+0x1d/0x30
[  338.900056][T18355]  dump_stack_lvl+0x95/0xd0
[  338.900076][T18355]  dump_stack+0x15/0x1b
[  338.900092][T18355]  should_fail_ex+0x265/0x280
[  338.900173][T18355]  should_fail+0xb/0x20
[  338.900189][T18355]  should_fail_usercopy+0x1a/0x20
[  338.900210][T18355]  strncpy_from_user+0x27/0x260
[  338.900240][T18355]  __x64_sys_lgetxattr+0xa5/0x140
[  338.900283][T18355]  x64_sys_call+0x27a2/0x3000
[  338.900303][T18355]  do_syscall_64+0xca/0x2b0
[  338.900331][T18355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.900350][T18355] RIP: 0033:0x7fa160cbf749
[  338.900366][T18355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.900410][T18355] RSP: 002b:00007fa15f727038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c0
[  338.900435][T18355] RAX: ffffffffffffffda RBX: 00007fa160f15fa0 RCX: 00007fa160cbf749
[  338.900484][T18355] RDX: 00002000000002c0 RSI: 0000200000000280 RDI: 0000200000000000
[  338.900497][T18355] RBP: 00007fa15f727090 R08: 0000000000000000 R09: 0000000000000000
[  338.900551][T18355] R10: fffffffffffffe5f R11: 0000000000000246 R12: 0000000000000001
[  338.900562][T18355] R13: 00007fa160f16038 R14: 00007fa160f15fa0 R15: 00007ffc9940c078
[  338.900579][T18355]  </TASK>
[  339.083902][T18357] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  339.090447][T18357] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  339.098165][T18357] vhci_hcd vhci_hcd.0: Device attached
[  339.439175][T18384] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5385'.
[  339.495850][T18350] vhci_hcd: connection closed
[  339.501588][T15525] vhci_hcd vhci_hcd.3: stop threads
[  339.511644][T15525] vhci_hcd vhci_hcd.3: release socket
[  339.517127][T15525] vhci_hcd vhci_hcd.3: disconnect device
[  339.730172][ T3624] usb 11-1: enqueue for inactive port 0
[  339.742376][ T3624] usb 11-1: enqueue for inactive port 0
[  339.820137][ T3624] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  339.933761][T18360] vhci_hcd: connection closed
[  339.972929][T15525] vhci_hcd vhci_hcd.0: stop threads
[  339.982905][T15525] vhci_hcd vhci_hcd.0: release socket
[  339.988289][T15525] vhci_hcd vhci_hcd.0: disconnect device
[  340.024615][T11712] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.153513][T18423] loop3: detected capacity change from 0 to 512
[  340.181491][T18423] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  340.194420][T18423] System zones: 0-2, 18-18, 34-34
[  340.199548][T18423] EXT4-fs (loop3): too many log groups per flexible block group
[  340.209226][T18423] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  340.216349][T18423] EXT4-fs (loop3): mount failed
[  340.316414][T18437] netem: change failed
[  340.360295][T18441] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5404'.
[  340.417756][T18443] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  340.424309][T18443] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  340.431836][T18443] vhci_hcd vhci_hcd.0: Device attached
[  340.477246][T18451] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5408'.
[  340.631682][T18411] syz.0.5394 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  340.645839][T18411] CPU: 0 UID: 0 PID: 18411 Comm: syz.0.5394 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  340.645919][T18411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  340.645930][T18411] Call Trace:
[  340.645937][T18411]  <TASK>
[  340.645946][T18411]  __dump_stack+0x1d/0x30
[  340.645972][T18411]  dump_stack_lvl+0x95/0xd0
[  340.645996][T18411]  dump_stack+0x15/0x1b
[  340.646018][T18411]  dump_header+0x81/0x240
[  340.646104][T18411]  oom_kill_process+0x295/0x350
[  340.646185][T18411]  out_of_memory+0x97b/0xb80
[  340.646211][T18411]  try_charge_memcg+0x610/0xa10
[  340.646325][T18411]  obj_cgroup_charge_pages+0xa6/0x150
[  340.646351][T18411]  __memcg_kmem_charge_page+0x9f/0x170
[  340.646382][T18411]  __alloc_frozen_pages_noprof+0x18f/0x360
[  340.646443][T18411]  alloc_pages_mpol+0xb3/0x260
[  340.646476][T18411]  alloc_pages_noprof+0x90/0x130
[  340.646501][T18411]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  340.646594][T18411]  __kvmalloc_node_noprof+0x492/0x6b0
[  340.646666][T18411]  ? ip_set_alloc+0x24/0x30
[  340.646691][T18411]  ? ip_set_alloc+0x24/0x30
[  340.646716][T18411]  ip_set_alloc+0x24/0x30
[  340.646796][T18411]  hash_netiface_create+0x282/0x740
[  340.646878][T18411]  ? __pfx_hash_netiface_create+0x10/0x10
[  340.646985][T18411]  ip_set_create+0x3cc/0x970
[  340.647019][T18411]  ? _raw_spin_unlock+0x26/0x50
[  340.647053][T18411]  nfnetlink_rcv_msg+0x4c6/0x590
[  340.647222][T18411]  netlink_rcv_skb+0x123/0x220
[  340.647249][T18411]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  340.647283][T18411]  nfnetlink_rcv+0x167/0x16c0
[  340.647363][T18411]  ? __list_del_entry_valid_or_report+0x65/0x130
[  340.647390][T18411]  ? __rmqueue_pcplist+0x9c2/0xb90
[  340.647413][T18411]  ? should_fail_ex+0x30/0x280
[  340.647435][T18411]  ? selinux_nlmsg_lookup+0x99/0x890
[  340.647505][T18411]  ? __rcu_read_unlock+0x34/0x70
[  340.647527][T18411]  ? __netlink_lookup+0x266/0x2a0
[  340.647580][T18411]  netlink_unicast+0x5c0/0x690
[  340.647643][T18411]  netlink_sendmsg+0x58b/0x6b0
[  340.647741][T18411]  ? __pfx_netlink_sendmsg+0x10/0x10
[  340.647773][T18411]  __sock_sendmsg+0x145/0x180
[  340.647876][T18411]  ____sys_sendmsg+0x31e/0x4a0
[  340.647904][T18411]  ___sys_sendmsg+0x17b/0x1d0
[  340.647938][T18411]  __x64_sys_sendmsg+0xd4/0x160
[  340.648033][T18411]  x64_sys_call+0x17ba/0x3000
[  340.648057][T18411]  do_syscall_64+0xca/0x2b0
[  340.648120][T18411]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.648219][T18411] RIP: 0033:0x7f0ef367f749
[  340.648238][T18411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.648256][T18411] RSP: 002b:00007f0ef20df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  340.648317][T18411] RAX: ffffffffffffffda RBX: 00007f0ef38d5fa0 RCX: 00007f0ef367f749
[  340.648329][T18411] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  340.648342][T18411] RBP: 00007f0ef3703f91 R08: 0000000000000000 R09: 0000000000000000
[  340.648410][T18411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  340.648422][T18411] R13: 00007f0ef38d6038 R14: 00007f0ef38d5fa0 R15: 00007ffcfc4dbe48
[  340.648439][T18411]  </TASK>
[  340.648445][T18411] memory: usage 307200kB, limit 307200kB, failcnt 3175
[  340.750087][ T3624] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  340.752725][T18411] memory+swap: usage 307408kB, limit 9007199254740988kB, failcnt 0
[  340.973719][T18411] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  340.981009][T18411] Memory cgroup stats for /syz0:
[  340.981365][T18411] cache 0
[  340.989187][T18411] rss 0
[  340.991948][T18411] shmem 0
[  340.994931][T18411] mapped_file 0
[  340.998453][T18411] dirty 0
[  341.001385][T18411] writeback 0
[  341.005085][T18411] workingset_refault_anon 572
[  341.009739][T18411] workingset_refault_file 17376
[  341.014584][T18411] swap 212992
[  341.017846][T18411] swapcached 0
[  341.021206][T18411] pgpgin 672643
[  341.024650][T18411] pgpgout 672643
[  341.028177][T18411] pgfault 369615
[  341.031751][T18411] pgmajfault 432
[  341.035270][T18411] inactive_anon 0
[  341.038874][T18411] active_anon 0
[  341.042339][T18411] inactive_file 0
[  341.045949][T18411] active_file 0
[  341.049380][T18411] unevictable 0
[  341.052853][T18411] hierarchical_memory_limit 314572800
[  341.058197][T18411] hierarchical_memsw_limit 9223372036854771712
[  341.064332][T18411] total_cache 0
[  341.067765][T18411] total_rss 0
[  341.071090][T18411] total_shmem 0
[  341.074523][T18411] total_mapped_file 0
[  341.078485][T18411] total_dirty 0
[  341.081962][T18411] total_writeback 0
[  341.085760][T18411] total_workingset_refault_anon 572
[  341.091013][T18411] total_workingset_refault_file 17376
[  341.096380][T18411] total_swap 212992
[  341.100207][T18411] total_swapcached 0
[  341.104102][T18411] total_pgpgin 672643
[  341.108057][T18411] total_pgpgout 672643
[  341.112109][T18411] total_pgfault 369615
[  341.116179][T18411] total_pgmajfault 432
[  341.120237][T18411] total_inactive_anon 0
[  341.124420][T18411] total_active_anon 0
[  341.128444][T18411] total_inactive_file 0
[  341.132616][T18411] total_active_file 0
[  341.136596][T18411] total_unevictable 0
[  341.140591][T18411] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.5394,pid=18410,uid=0
[  341.155292][T18411] Memory cgroup out of memory: Killed process 18410 (syz.0.5394) total-vm:93968kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  341.218843][T18478] netem: change failed
[  341.240728][T18480] FAULT_INJECTION: forcing a failure.
[  341.240728][T18480] name failslab, interval 1, probability 0, space 0, times 0
[  341.253652][T18480] CPU: 1 UID: 0 PID: 18480 Comm: syz.1.5416 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  341.253674][T18480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  341.253685][T18480] Call Trace:
[  341.253690][T18480]  <TASK>
[  341.253718][T18480]  __dump_stack+0x1d/0x30
[  341.253741][T18480]  dump_stack_lvl+0x95/0xd0
[  341.253777][T18480]  dump_stack+0x15/0x1b
[  341.253792][T18480]  should_fail_ex+0x265/0x280
[  341.253813][T18480]  should_failslab+0x8c/0xb0
[  341.253833][T18480]  kmem_cache_alloc_noprof+0x69/0x4b0
[  341.253885][T18480]  ? getname_flags+0x80/0x3b0
[  341.253906][T18480]  getname_flags+0x80/0x3b0
[  341.253956][T18480]  do_sys_openat2+0x60/0x150
[  341.253979][T18480]  __x64_sys_openat+0xf2/0x120
[  341.254046][T18480]  x64_sys_call+0x2b07/0x3000
[  341.254066][T18480]  do_syscall_64+0xca/0x2b0
[  341.254093][T18480]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.254259][T18480] RIP: 0033:0x7fa160cbf749
[  341.254275][T18480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.254360][T18480] RSP: 002b:00007fa15f727038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  341.254376][T18480] RAX: ffffffffffffffda RBX: 00007fa160f15fa0 RCX: 00007fa160cbf749
[  341.254386][T18480] RDX: 0000000000105a80 RSI: 0000200000000000 RDI: ffffffffffffff9c
[  341.254396][T18480] RBP: 00007fa15f727090 R08: 0000000000000000 R09: 0000000000000000
[  341.254405][T18480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.254415][T18480] R13: 00007fa160f16038 R14: 00007fa160f15fa0 R15: 00007ffc9940c078
[  341.254466][T18480]  </TASK>
[  341.280080][T18446] vhci_hcd: connection reset by peer
[  341.570165][ T4572] vhci_hcd vhci_hcd.5: stop threads
[  341.575578][ T4572] vhci_hcd vhci_hcd.5: release socket
[  341.581177][ T4572] vhci_hcd vhci_hcd.5: disconnect device
[  341.617081][   T29] kauditd_printk_skb: 1083 callbacks suppressed
[  341.617095][   T29] audit: type=1326 audit(1767390083.506:47619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.677297][   T29] audit: type=1326 audit(1767390083.546:47620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.701009][   T29] audit: type=1326 audit(1767390083.546:47621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.724673][   T29] audit: type=1326 audit(1767390083.546:47622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.748297][   T29] audit: type=1326 audit(1767390083.546:47623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.771938][   T29] audit: type=1326 audit(1767390083.546:47624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.795668][   T29] audit: type=1326 audit(1767390083.546:47625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.819319][   T29] audit: type=1326 audit(1767390083.546:47626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.842880][   T29] audit: type=1326 audit(1767390083.546:47627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  341.866471][   T29] audit: type=1326 audit(1767390083.546:47628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18512 comm="syz.1.5427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  342.015517][T18530] loop1: detected capacity change from 0 to 512
[  342.049723][T18530] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  342.081371][T18530] System zones: 0-2, 18-18, 34-34
[  342.115141][T18530] EXT4-fs (loop1): too many log groups per flexible block group
[  342.123997][T18530] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  342.131723][T18530] EXT4-fs (loop1): mount failed
[  342.205360][T18555] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18555 comm=syz.4.5438
[  342.238523][T18557] netem: change failed
[  342.286141][T18561] __nla_validate_parse: 5 callbacks suppressed
[  342.286158][T18561] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5441'.
[  342.504858][T18577] lo speed is unknown, defaulting to 1000
[  342.573818][T18528] syz.1.5431 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  342.584939][T18528] CPU: 1 UID: 0 PID: 18528 Comm: syz.1.5431 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  342.585011][T18528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  342.585022][T18528] Call Trace:
[  342.585027][T18528]  <TASK>
[  342.585034][T18528]  __dump_stack+0x1d/0x30
[  342.585058][T18528]  dump_stack_lvl+0x95/0xd0
[  342.585092][T18528]  dump_stack+0x15/0x1b
[  342.585108][T18528]  dump_header+0x81/0x240
[  342.585125][T18528]  oom_kill_process+0x295/0x350
[  342.585148][T18528]  out_of_memory+0x97b/0xb80
[  342.585214][T18528]  try_charge_memcg+0x610/0xa10
[  342.585265][T18528]  charge_memcg+0x51/0xc0
[  342.585363][T18528]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  342.585414][T18528]  __read_swap_cache_async+0x17b/0x2d0
[  342.585444][T18528]  swap_cluster_readahead+0x262/0x3c0
[  342.585477][T18528]  swapin_readahead+0xde/0x820
[  342.585615][T18528]  ? mod_memcg_lruvec_state+0x1a1/0x280
[  342.585702][T18528]  ? lruvec_stat_mod_folio+0xd6/0x120
[  342.585723][T18528]  ? __rcu_read_unlock+0x4f/0x70
[  342.585818][T18528]  ? swap_cache_get_folio+0x277/0x280
[  342.585918][T18528]  do_swap_page+0x2b4/0x21e0
[  342.585946][T18528]  ? __pfx_default_wake_function+0x10/0x10
[  342.586090][T18528]  handle_mm_fault+0x9d8/0x2c60
[  342.586150][T18528]  do_user_addr_fault+0x630/0x1080
[  342.586200][T18528]  exc_page_fault+0x62/0xa0
[  342.586225][T18528]  asm_exc_page_fault+0x26/0x30
[  342.586243][T18528] RIP: 0033:0x7fa160cf1fb3
[  342.586328][T18528] Code: 0d 09 00 48 8d 3d 36 0d 09 00 e8 e8 47 f6 ff 0f 1f 84 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 9e 95 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[  342.586346][T18528] RSP: 002b:00007ffc9940c198 EFLAGS: 00010293
[  342.586381][T18528] RAX: 00000000fffffffa RBX: 00007fa160f15fa0 RCX: 0000000000000000
[  342.586394][T18528] RDX: 00007ffc9940c1b0 RSI: 0000000000000000 RDI: 0000000000000000
[  342.586408][T18528] RBP: 00007fa160f17da0 R08: 000000001fc2b870 R09: 7fffffffffffffff
[  342.586421][T18528] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000053ac5
[  342.586435][T18528] R13: 00007ffc9940c2d0 R14: ffffffffffffffff R15: 00007ffc9940c2f0
[  342.586456][T18528]  </TASK>
[  342.586481][T18528] memory: usage 307200kB, limit 307200kB, failcnt 8380
[  342.802085][T18528] memory+swap: usage 307392kB, limit 9007199254740988kB, failcnt 0
[  342.809972][T18528] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0
[  342.817269][T18528] Memory cgroup stats for /syz1:
[  342.820915][T18528] cache 0
[  342.828937][T18528] rss 0
[  342.831798][T18528] shmem 0
[  342.834723][T18528] mapped_file 0
[  342.838306][T18528] dirty 0
[  342.841292][T18528] writeback 4096
[  342.844831][T18528] workingset_refault_anon 1423
[  342.849596][T18528] workingset_refault_file 25750
[  342.854623][T18528] swap 196608
[  342.857905][T18528] swapcached 8192
[  342.861553][T18528] pgpgin 653071
[  342.865065][T18528] pgpgout 653069
[  342.868600][T18528] pgfault 349292
[  342.872157][T18528] pgmajfault 930
[  342.875733][T18528] inactive_anon 8192
[  342.879618][T18528] active_anon 0
[  342.883097][T18528] inactive_file 0
[  342.886785][T18528] active_file 0
[  342.890268][T18528] unevictable 0
[  342.893716][T18528] hierarchical_memory_limit 314572800
[  342.899203][T18528] hierarchical_memsw_limit 9223372036854771712
[  342.905383][T18528] total_cache 0
[  342.908833][T18528] total_rss 0
[  342.912136][T18528] total_shmem 0
[  342.915613][T18528] total_mapped_file 0
[  342.919673][T18528] total_dirty 0
[  342.923164][T18528] total_writeback 4096
[  342.927263][T18528] total_workingset_refault_anon 1423
[  342.932705][T18528] total_workingset_refault_file 25750
[  342.938194][T18528] total_swap 196608
[  342.942122][T18528] total_swapcached 8192
[  342.946293][T18528] total_pgpgin 653071
[  342.950316][T18528] total_pgpgout 653069
[  342.954385][T18528] total_pgfault 349292
[  342.958574][T18528] total_pgmajfault 930
[  342.962708][T18528] total_inactive_anon 8192
[  342.967118][T18528] total_active_anon 0
[  342.971265][T18528] total_inactive_file 0
[  342.975414][T18528] total_active_file 0
[  342.979394][T18528] total_unevictable 0
[  342.983469][T18528] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5431,pid=18528,uid=0
[  342.998258][T18528] Memory cgroup out of memory: Killed process 18528 (syz.1.5431) total-vm:93968kB, anon-rss:1264kB, file-rss:22568kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  343.028149][T18624] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  343.052993][T18624] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  343.096678][ T3482] usb 7-1: enqueue for inactive port 0
[  343.127404][T18634] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5458'.
[  343.130105][ T3482] usb 7-1: enqueue for inactive port 0
[  343.240355][ T3482] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  343.665578][T18705] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5483'.
[  343.793680][T18720] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18720 comm=syz.5.5486
[  343.843731][T18668] syz.0.5470 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  343.857972][T18668] CPU: 0 UID: 0 PID: 18668 Comm: syz.0.5470 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  343.858006][T18668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  343.858019][T18668] Call Trace:
[  343.858026][T18668]  <TASK>
[  343.858036][T18668]  __dump_stack+0x1d/0x30
[  343.858061][T18668]  dump_stack_lvl+0x95/0xd0
[  343.858084][T18668]  dump_stack+0x15/0x1b
[  343.858149][T18668]  dump_header+0x81/0x240
[  343.858172][T18668]  oom_kill_process+0x295/0x350
[  343.858235][T18668]  out_of_memory+0x97b/0xb80
[  343.858334][T18668]  try_charge_memcg+0x610/0xa10
[  343.858368][T18668]  obj_cgroup_charge_pages+0xa6/0x150
[  343.858429][T18668]  __memcg_kmem_charge_page+0x9f/0x170
[  343.858459][T18668]  __alloc_frozen_pages_noprof+0x18f/0x360
[  343.858490][T18668]  alloc_pages_mpol+0xb3/0x260
[  343.858592][T18668]  alloc_pages_noprof+0x90/0x130
[  343.858664][T18668]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  343.858704][T18668]  __kvmalloc_node_noprof+0x492/0x6b0
[  343.858730][T18668]  ? ip_set_alloc+0x24/0x30
[  343.858834][T18668]  ? ip_set_alloc+0x24/0x30
[  343.858999][T18668]  ip_set_alloc+0x24/0x30
[  343.859025][T18668]  hash_netiface_create+0x282/0x740
[  343.859080][T18668]  ? __pfx_hash_netiface_create+0x10/0x10
[  343.859142][T18668]  ip_set_create+0x3cc/0x970
[  343.859176][T18668]  ? __nla_parse+0x40/0x60
[  343.859224][T18668]  nfnetlink_rcv_msg+0x4c6/0x590
[  343.859264][T18668]  netlink_rcv_skb+0x123/0x220
[  343.859289][T18668]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  343.859362][T18668]  nfnetlink_rcv+0x167/0x16c0
[  343.859386][T18668]  ? css_rstat_updated+0xbb/0x280
[  343.859406][T18668]  ? page_counter_charge+0x207/0x230
[  343.859434][T18668]  ? __rcu_read_unlock+0x4f/0x70
[  343.859453][T18668]  ? __rcu_read_unlock+0x4f/0x70
[  343.859533][T18668]  ? ___perf_sw_event+0x2d6/0x310
[  343.859563][T18668]  ? __memcg_kmem_charge_page+0xd1/0x170
[  343.859594][T18668]  ? mas_next_slot+0x69b/0x6f0
[  343.859660][T18668]  ? css_rstat_updated+0xbb/0x280
[  343.859733][T18668]  ? should_fail_ex+0x30/0x280
[  343.859753][T18668]  ? selinux_nlmsg_lookup+0x99/0x890
[  343.859836][T18668]  ? __rcu_read_unlock+0x34/0x70
[  343.859857][T18668]  ? __netlink_lookup+0x266/0x2a0
[  343.859887][T18668]  netlink_unicast+0x5c0/0x690
[  343.859923][T18668]  netlink_sendmsg+0x58b/0x6b0
[  343.859955][T18668]  ? __pfx_netlink_sendmsg+0x10/0x10
[  343.860057][T18668]  __sock_sendmsg+0x145/0x180
[  343.860077][T18668]  ____sys_sendmsg+0x31e/0x4a0
[  343.860107][T18668]  ___sys_sendmsg+0x17b/0x1d0
[  343.860223][T18668]  __x64_sys_sendmsg+0xd4/0x160
[  343.860249][T18668]  x64_sys_call+0x17ba/0x3000
[  343.860305][T18668]  do_syscall_64+0xca/0x2b0
[  343.860336][T18668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.860359][T18668] RIP: 0033:0x7f0ef367f749
[  343.860377][T18668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.860467][T18668] RSP: 002b:00007f0ef20df038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.860564][T18668] RAX: ffffffffffffffda RBX: 00007f0ef38d5fa0 RCX: 00007f0ef367f749
[  343.860576][T18668] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  343.860587][T18668] RBP: 00007f0ef3703f91 R08: 0000000000000000 R09: 0000000000000000
[  343.860599][T18668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  343.860613][T18668] R13: 00007f0ef38d6038 R14: 00007f0ef38d5fa0 R15: 00007ffcfc4dbe48
[  343.860633][T18668]  </TASK>
[  344.192727][T18668] memory: usage 307200kB, limit 307200kB, failcnt 3605
[  344.199621][T18668] memory+swap: usage 307364kB, limit 9007199254740988kB, failcnt 0
[  344.207519][T18668] kmem: usage 307148kB, limit 9007199254740988kB, failcnt 0
[  344.214902][T18668] Memory cgroup stats for /syz0:
[  344.221296][T18668] cache 0
[  344.229171][T18668] rss 0
[  344.231951][T18668] shmem 0
[  344.234883][T18668] mapped_file 0
[  344.238337][T18668] dirty 0
[  344.241277][T18668] writeback 24576
[  344.244897][T18668] workingset_refault_anon 638
[  344.249571][T18668] workingset_refault_file 17659
[  344.254457][T18668] swap 163840
[  344.257780][T18668] swapcached 53248
[  344.261575][T18668] pgpgin 676388
[  344.265100][T18668] pgpgout 676375
[  344.268635][T18668] pgfault 373603
[  344.272203][T18668] pgmajfault 483
[  344.275741][T18668] inactive_anon 28672
[  344.279706][T18668] active_anon 24576
[  344.283514][T18668] inactive_file 0
[  344.287133][T18668] active_file 0
[  344.290653][T18668] unevictable 0
[  344.294130][T18668] hierarchical_memory_limit 314572800
[  344.299498][T18668] hierarchical_memsw_limit 9223372036854771712
[  344.305659][T18668] total_cache 0
[  344.309117][T18668] total_rss 0
[  344.312479][T18668] total_shmem 0
[  344.315926][T18668] total_mapped_file 0
[  344.319966][T18668] total_dirty 0
[  344.323444][T18668] total_writeback 24576
[  344.324266][T18727] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5490'.
[  344.327586][T18668] total_workingset_refault_anon 638
[  344.327597][T18668] total_workingset_refault_file 17659
[  344.327606][T18668] total_swap 163840
[  344.350978][T18668] total_swapcached 53248
[  344.355214][T18668] total_pgpgin 676388
[  344.359246][T18668] total_pgpgout 676375
[  344.363329][T18668] total_pgfault 373603
[  344.367404][T18668] total_pgmajfault 483
[  344.371499][T18668] total_inactive_anon 28672
[  344.376081][T18668] total_active_anon 24576
[  344.380417][T18668] total_inactive_file 0
[  344.384558][T18668] total_active_file 0
[  344.388531][T18668] total_unevictable 0
[  344.392517][T18668] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.5470,pid=18667,uid=0
[  344.407186][T18668] Memory cgroup out of memory: Killed process 18667 (syz.0.5470) total-vm:93968kB, anon-rss:1132kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  344.519222][T18738] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  344.525771][T18738] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  344.533414][T18738] vhci_hcd vhci_hcd.0: Device attached
[  344.550421][T18748] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  344.556959][T18748] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  344.564472][T18748] vhci_hcd vhci_hcd.0: Device attached
[  344.663227][T18756] netlink: 14 bytes leftover after parsing attributes in process `syz.5.5497'.
[  344.790163][ T3482] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  344.870114][ T3482] usb 7-1: new full-speed USB device number 20 using vhci_hcd
[  345.267515][T18786] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5509'.
[  345.294476][T18788] netem: change failed
[  345.323283][T18789] loop1: detected capacity change from 0 to 512
[  345.355981][T18796] loop3: detected capacity change from 0 to 512
[  345.363468][T18749] vhci_hcd: connection closed
[  345.363538][T17790] vhci_hcd vhci_hcd.5: stop threads
[  345.373454][T17790] vhci_hcd vhci_hcd.5: release socket
[  345.379029][T17790] vhci_hcd vhci_hcd.5: disconnect device
[  345.387352][T18796] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  345.398519][T18789] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  345.406634][T18789] System zones: 0-2, 18-18, 34-34
[  345.411790][T18789] EXT4-fs (loop1): too many log groups per flexible block group
[  345.419649][T18789] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  345.427112][T18796] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5513: Allocating blocks 41-42 which overlap fs metadata
[  345.440159][T18789] EXT4-fs (loop1): mount failed
[  345.460689][T18796] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5513: Allocating blocks 41-42 which overlap fs metadata
[  345.485902][T18744] vhci_hcd: connection reset by peer
[  345.504850][T15525] vhci_hcd vhci_hcd.3: stop threads
[  345.510130][T15525] vhci_hcd vhci_hcd.3: release socket
[  345.515602][T15525] vhci_hcd vhci_hcd.3: disconnect device
[  345.531739][T18796] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5513: Failed to acquire dquot type 1
[  345.564675][T18796] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  345.609701][T18796] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5513: corrupted inode contents
[  345.638631][T18796] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.5513: mark_inode_dirty error
[  345.662361][T18796] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5513: corrupted inode contents
[  345.687570][T18796] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.5513: mark_inode_dirty error
[  345.711823][T18796] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5513: corrupted inode contents
[  345.733450][T18796] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  345.742312][T18796] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.5513: corrupted inode contents
[  345.754479][T18796] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.5513: mark_inode_dirty error
[  345.766029][T18796] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  345.775294][T18796] EXT4-fs (loop3): 1 truncate cleaned up
[  345.781588][T18796] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.808785][T18796] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  345.815322][T18796] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  345.822852][T18796] vhci_hcd vhci_hcd.0: Device attached
[  345.851434][T18780] syz.1.5506 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  345.865685][T18780] CPU: 0 UID: 0 PID: 18780 Comm: syz.1.5506 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  345.865717][T18780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  345.865724][T18780] Call Trace:
[  345.865730][T18780]  <TASK>
[  345.865735][T18780]  __dump_stack+0x1d/0x30
[  345.865752][T18780]  dump_stack_lvl+0x95/0xd0
[  345.865764][T18780]  dump_stack+0x15/0x1b
[  345.865789][T18780]  dump_header+0x81/0x240
[  345.865868][T18780]  oom_kill_process+0x295/0x350
[  345.865939][T18780]  out_of_memory+0x97b/0xb80
[  345.866017][T18780]  try_charge_memcg+0x610/0xa10
[  345.866041][T18780]  obj_cgroup_charge_pages+0xa6/0x150
[  345.866202][T18780]  __memcg_kmem_charge_page+0x9f/0x170
[  345.866220][T18780]  __alloc_frozen_pages_noprof+0x18f/0x360
[  345.866238][T18780]  alloc_pages_mpol+0xb3/0x260
[  345.866262][T18780]  alloc_pages_noprof+0x90/0x130
[  345.866278][T18780]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  345.866329][T18780]  __kvmalloc_node_noprof+0x492/0x6b0
[  345.866363][T18780]  ? ip_set_alloc+0x24/0x30
[  345.866389][T18780]  ? ip_set_alloc+0x24/0x30
[  345.866485][T18780]  ip_set_alloc+0x24/0x30
[  345.866501][T18780]  hash_netiface_create+0x282/0x740
[  345.866581][T18780]  ? __pfx_hash_netiface_create+0x10/0x10
[  345.866599][T18780]  ip_set_create+0x3cc/0x970
[  345.866682][T18780]  ? __mutex_lock_slowpath+0xa/0x10
[  345.866747][T18780]  nfnetlink_rcv_msg+0x4c6/0x590
[  345.866773][T18780]  netlink_rcv_skb+0x123/0x220
[  345.866790][T18780]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  345.866815][T18780]  nfnetlink_rcv+0x167/0x16c0
[  345.866829][T18780]  ? css_rstat_updated+0xbb/0x280
[  345.866841][T18780]  ? page_counter_charge+0x207/0x230
[  345.866935][T18780]  ? __rcu_read_unlock+0x4f/0x70
[  345.866947][T18780]  ? obj_cgroup_charge_pages+0xf7/0x150
[  345.866983][T18780]  ? __rcu_read_unlock+0x4f/0x70
[  345.866994][T18780]  ? __memcg_kmem_charge_page+0xd1/0x170
[  345.867010][T18780]  ? __alloc_frozen_pages_noprof+0x18f/0x360
[  345.867084][T18780]  ? mas_next_slot+0x69b/0x6f0
[  345.867102][T18780]  ? css_rstat_updated+0xbb/0x280
[  345.867193][T18780]  ? should_fail_ex+0x30/0x280
[  345.867207][T18780]  ? selinux_nlmsg_lookup+0x99/0x890
[  345.867221][T18780]  ? __rcu_read_unlock+0x34/0x70
[  345.867232][T18780]  ? __netlink_lookup+0x266/0x2a0
[  345.867273][T18780]  netlink_unicast+0x5c0/0x690
[  345.867290][T18780]  netlink_sendmsg+0x58b/0x6b0
[  345.867308][T18780]  ? __pfx_netlink_sendmsg+0x10/0x10
[  345.867418][T18780]  __sock_sendmsg+0x145/0x180
[  345.867430][T18780]  ____sys_sendmsg+0x31e/0x4a0
[  345.867454][T18780]  ___sys_sendmsg+0x17b/0x1d0
[  345.867490][T18780]  __x64_sys_sendmsg+0xd4/0x160
[  345.867575][T18780]  x64_sys_call+0x17ba/0x3000
[  345.867589][T18780]  do_syscall_64+0xca/0x2b0
[  345.867608][T18780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.867678][T18780] RIP: 0033:0x7fa160cbf749
[  345.867752][T18780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.867763][T18780] RSP: 002b:00007fa15f727038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  345.867797][T18780] RAX: ffffffffffffffda RBX: 00007fa160f15fa0 RCX: 00007fa160cbf749
[  345.867804][T18780] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  345.867812][T18780] RBP: 00007fa160d43f91 R08: 0000000000000000 R09: 0000000000000000
[  345.867820][T18780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  345.867827][T18780] R13: 00007fa160f16038 R14: 00007fa160f15fa0 R15: 00007ffc9940c078
[  345.867838][T18780]  </TASK>
[  345.867842][T18780] memory: usage 307200kB, limit 307200kB, failcnt 8628
[  345.940300][T18810] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.5513: Allocating blocks 41-42 which overlap fs metadata
[  345.942534][T18780] memory+swap: usage 307400kB, limit 9007199254740988kB, failcnt 0
[  345.947620][T18810] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.5513: Failed to acquire dquot type 1
[  345.952302][T18780] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  345.952322][T18780] Memory cgroup stats for /syz1:
[  345.952936][T18780] cache 0
[  345.966895][T18811] netlink: 14 bytes leftover after parsing attributes in process `syz.3.5513'.
[  345.968103][T18780] rss 0
[  345.968112][T18780] shmem 0
[  345.972820][ T3624] usb 11-1: enqueue for inactive port 0
[  345.976926][T18780] mapped_file 0
[  345.982190][ T3624] usb 11-1: enqueue for inactive port 0
[  345.987897][T18780] dirty 0
[  346.031382][T18812] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  346.032715][T18780] writeback 0
[  346.038226][T18812] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  346.043168][T18780] workingset_refault_anon 1501
[  346.043178][T18780] workingset_refault_file 25750
[  346.043185][T18780] swap 204800
[  346.043192][T18780] swapcached 4096
[  346.043198][T18780] pgpgin 654899
[  346.043205][T18780] pgpgout 654898
[  346.048924][T18812] vhci_hcd vhci_hcd.0: Device attached
[  346.054805][T18780] pgfault 353046
[  346.054816][T18780] pgmajfault 980
[  346.054823][T18780] inactive_anon 4096
[  346.054830][T18780] active_anon 0
[  346.054837][T18780] inactive_file 0
[  346.054844][T18780] active_file 0
[  346.070101][ T3624] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  346.074787][T18780] unevictable 0
[  346.189494][T18805] vhci_hcd: connection closed
[  346.189890][T18780] hierarchical_memory_limit 314572800
[  346.189902][T18780] hierarchical_memsw_limit 9223372036854771712
[  346.230101][T15525] vhci_hcd vhci_hcd.3: stop threads
[  346.237296][T18780] total_cache 0
[  346.248544][T15525] vhci_hcd vhci_hcd.3: release socket
[  346.255810][T18780] total_rss 0
[  346.255861][T18780] total_shmem 0
[  346.260867][T15525] vhci_hcd vhci_hcd.3: disconnect device
[  346.263702][T18780] total_mapped_file 0
[  346.290984][ T3624] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  346.292846][T18780] total_dirty 0
[  346.429835][T18780] total_writeback 0
[  346.433663][T18780] total_workingset_refault_anon 1501
[  346.438939][T18780] total_workingset_refault_file 25750
[  346.444366][T18780] total_swap 204800
[  346.448156][T18780] total_swapcached 4096
[  346.452321][T18780] total_pgpgin 654899
[  346.456288][T18780] total_pgpgout 654898
[  346.460354][T18780] total_pgfault 353046
[  346.464409][T18780] total_pgmajfault 980
[  346.468458][T18780] total_inactive_anon 4096
[  346.472925][T18780] total_active_anon 0
[  346.476898][T18780] total_inactive_file 0
[  346.481118][T18780] total_active_file 0
[  346.485134][T18780] total_unevictable 0
[  346.489223][T18780] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5506,pid=18779,uid=0
[  346.504101][T18780] Memory cgroup out of memory: Killed process 18779 (syz.1.5506) total-vm:93968kB, anon-rss:1136kB, file-rss:22440kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  346.556982][ T3624] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  346.661006][   T29] kauditd_printk_skb: 541 callbacks suppressed
[  346.661024][   T29] audit: type=1326 audit(1767390088.496:48164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18817 comm="syz.1.5515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  346.781986][T11725] Bluetooth: hci0: command 0x1003 tx timeout
[  346.810157][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  346.950825][T18833] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5519'.
[  346.978953][   T29] audit: type=1326 audit(1767390088.866:48165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18834 comm="syz.4.5520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  346.996260][T18814] vhci_hcd: connection closed
[  347.002989][ T3624] usb 11-1: new full-speed USB device number 6 using vhci_hcd
[  347.015800][  T850] vhci_hcd vhci_hcd.5: stop threads
[  347.020205][   T29] audit: type=1326 audit(1767390088.866:48166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18817 comm="syz.1.5515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  347.021153][  T850] vhci_hcd vhci_hcd.5: release socket
[  347.044624][   T29] audit: type=1326 audit(1767390088.866:48167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18817 comm="syz.1.5515" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa160cbf749 code=0x7ffc0000
[  347.049997][  T850] vhci_hcd vhci_hcd.5: disconnect device
[  347.073505][   T29] audit: type=1326 audit(1767390088.906:48168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18834 comm="syz.4.5520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  347.105154][   T29] audit: type=1326 audit(1767390088.976:48169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18834 comm="syz.4.5520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  347.128891][   T29] audit: type=1326 audit(1767390088.976:48170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18834 comm="syz.4.5520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  347.152634][   T29] audit: type=1326 audit(1767390088.976:48171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18834 comm="syz.4.5520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  347.176279][   T29] audit: type=1326 audit(1767390088.976:48172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18834 comm="syz.4.5520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  347.176306][   T29] audit: type=1326 audit(1767390088.976:48173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18834 comm="syz.4.5520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed331f749 code=0x7ffc0000
[  347.224987][T11712] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  347.293823][T18854] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18854 comm=syz.4.5527
[  347.891292][T18886] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  347.897825][T18886] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  347.905483][T18886] vhci_hcd vhci_hcd.0: Device attached
[  347.931450][T18896] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18896 comm=syz.1.5540
[  348.058623][T18915] loop1: detected capacity change from 0 to 512
[  348.079851][T18915] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5547'.
[  348.347007][T18932] binfmt_misc: register: failed to install interpreter file ./file2
[  348.486993][T18938] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18938 comm=syz.0.5555
[  348.570606][T18943] netlink: 'syz.4.5558': attribute type 4 has an invalid length.
[  348.582311][T18946] block device autoloading is deprecated and will be removed.
[  348.641218][T18957] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5563'.
[  348.706101][T18967] netem: change failed
[  348.750948][T18973] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18973 comm=syz.4.5570
[  348.804993][T18975] loop3: detected capacity change from 0 to 512
[  348.814850][T18975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5571'.
[  348.851959][T18978] netlink: 'syz.4.5572': attribute type 4 has an invalid length.
[  348.925579][T18989] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  348.968441][T18989] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  349.005431][T18993] vhci_hcd vhci_hcd.0: port 0 already used
[  349.043097][T19002] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5580'.
[  349.101296][T19005] lo speed is unknown, defaulting to 1000
[  349.107639][T19009] netlink: 14 bytes leftover after parsing attributes in process `syz.5.5577'.
[  349.119867][T19010] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  349.126383][T19010] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  349.134009][T19010] vhci_hcd vhci_hcd.0: Device attached
[  349.192948][T19011] vhci_hcd: connection closed
[  349.193046][T17790] vhci_hcd vhci_hcd.0: stop threads
[  349.203063][T17790] vhci_hcd vhci_hcd.0: release socket
[  349.208437][T17790] vhci_hcd vhci_hcd.0: disconnect device
[  349.251087][T19030] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19030 comm=syz.1.5583
[  349.393105][T18891] vhci_hcd: connection reset by peer
[  349.398670][  T850] vhci_hcd vhci_hcd.5: stop threads
[  349.404092][  T850] vhci_hcd vhci_hcd.5: release socket
[  349.409484][  T850] vhci_hcd vhci_hcd.5: disconnect device
[  349.427320][T19044] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5585'.
[  349.782694][T19067] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  349.789290][T19067] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  349.796850][T19067] vhci_hcd vhci_hcd.0: Device attached
[  349.899154][ T3482] usb 7-1: enqueue for inactive port 0
[  349.905489][ T3482] usb 7-1: enqueue for inactive port 0
[  349.916166][T19075] loop3: detected capacity change from 0 to 512
[  349.935757][T19075] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  349.956719][T19075] System zones: 0-2, 18-18, 34-34
[  349.966031][T19075] EXT4-fs (loop3): too many log groups per flexible block group
[  349.990106][ T3482] vhci_hcd vhci_hcd.3: vhci_device speed not set
[  350.019673][T19075] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  350.030745][T19084] netlink: 14 bytes leftover after parsing attributes in process `syz.0.5595'.
[  350.034248][T19075] EXT4-fs (loop3): mount failed
[  350.092948][T19088] netlink: 'syz.4.5601': attribute type 4 has an invalid length.
[  350.558977][T19072] syz.3.5597 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  350.569993][T19072] CPU: 0 UID: 0 PID: 19072 Comm: syz.3.5597 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  350.570020][T19072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  350.570036][T19072] Call Trace:
[  350.570044][T19072]  <TASK>
[  350.570068][T19072]  __dump_stack+0x1d/0x30
[  350.570090][T19072]  dump_stack_lvl+0x95/0xd0
[  350.570262][T19072]  dump_stack+0x15/0x1b
[  350.570291][T19072]  dump_header+0x81/0x240
[  350.570313][T19072]  oom_kill_process+0x295/0x350
[  350.570338][T19072]  out_of_memory+0x97b/0xb80
[  350.570361][T19072]  try_charge_memcg+0x610/0xa10
[  350.570457][T19072]  charge_memcg+0x51/0xc0
[  350.570508][T19072]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  350.570605][T19072]  __read_swap_cache_async+0x17b/0x2d0
[  350.570633][T19072]  swap_cluster_readahead+0x262/0x3c0
[  350.570685][T19072]  swapin_readahead+0xde/0x820
[  350.570714][T19072]  ? __rcu_read_unlock+0x4f/0x70
[  350.570731][T19072]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  350.570750][T19072]  ? __list_add_valid_or_report+0x38/0xe0
[  350.570810][T19072]  ? __rcu_read_unlock+0x4f/0x70
[  350.570831][T19072]  ? swap_cache_get_folio+0x277/0x280
[  350.570856][T19072]  do_swap_page+0x2b4/0x21e0
[  350.570878][T19072]  ? _raw_spin_unlock+0x26/0x50
[  350.570920][T19072]  ? __schedule+0x85f/0xcd0
[  350.571004][T19072]  ? __pfx_default_wake_function+0x10/0x10
[  350.571092][T19072]  handle_mm_fault+0x9d8/0x2c60
[  350.571132][T19072]  do_user_addr_fault+0x630/0x1080
[  350.571165][T19072]  exc_page_fault+0x62/0xa0
[  350.571191][T19072]  asm_exc_page_fault+0x26/0x30
[  350.571267][T19072] RIP: 0033:0x7fef0d751fb3
[  350.571284][T19072] Code: 0d 09 00 48 8d 3d 36 0d 09 00 e8 e8 47 f6 ff 0f 1f 84 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 <80> 3d 9e 95 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 c3 66 2e 0f
[  350.571304][T19072] RSP: 002b:00007fff2fa631e8 EFLAGS: 00010293
[  350.571356][T19072] RAX: 00000000fffffffa RBX: 00007fef0d975fa0 RCX: 0000000000000000
[  350.571367][T19072] RDX: 00007fff2fa63200 RSI: 0000000000000000 RDI: 0000000000000000
[  350.571378][T19072] RBP: 00007fef0d977da0 R08: 000000001d182e14 R09: 7fffffffffffffff
[  350.571442][T19072] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000559a7
[  350.571536][T19072] R13: 00007fef0d976090 R14: ffffffffffffffff R15: 00007fff2fa63340
[  350.571556][T19072]  </TASK>
[  350.793482][T19072] memory: usage 307200kB, limit 307200kB, failcnt 9532
[  350.800343][T19072] memory+swap: usage 307716kB, limit 9007199254740988kB, failcnt 0
[  350.808236][T19072] kmem: usage 306848kB, limit 9007199254740988kB, failcnt 0
[  350.815607][T19072] Memory cgroup stats for /syz3:
[  350.827255][T19072] cache 4096
[  350.835501][T19072] rss 4096
[  350.838534][T19072] shmem 0
[  350.841552][T19072] mapped_file 4096
[  350.845330][T19072] dirty 0
[  350.848280][T19072] writeback 24576
[  350.851989][T19072] workingset_refault_anon 1469
[  350.856740][T19072] workingset_refault_file 21432
[  350.861621][T19072] swap 528384
[  350.864897][T19072] swapcached 122880
[  350.868708][T19072] pgpgin 604870
[  350.872317][T19072] pgpgout 604839
[  350.875859][T19072] pgfault 382221
[  350.879393][T19072] pgmajfault 1003
[  350.883049][T19072] inactive_anon 122880
[  350.887115][T19072] active_anon 0
[  350.890592][T19072] inactive_file 4096
[  350.894543][T19072] active_file 0
[  350.898118][T19072] unevictable 0
[  350.901615][T19072] hierarchical_memory_limit 314572800
[  350.906984][T19072] hierarchical_memsw_limit 9223372036854771712
[  350.913170][T19072] total_cache 4096
[  350.916886][T19072] total_rss 4096
[  350.920476][T19072] total_shmem 0
[  350.923938][T19072] total_mapped_file 4096
[  350.928178][T19072] total_dirty 0
[  350.931773][T19072] total_writeback 24576
[  350.935916][T19072] total_workingset_refault_anon 1469
[  350.941228][T19072] total_workingset_refault_file 21432
[  350.946591][T19072] total_swap 528384
[  350.950425][T19072] total_swapcached 122880
[  350.954744][T19072] total_pgpgin 604870
[  350.958705][T19072] total_pgpgout 604839
[  350.962855][T19072] total_pgfault 382221
[  350.966949][T19072] total_pgmajfault 1003
[  350.971112][T19072] total_inactive_anon 122880
[  350.975701][T19072] total_active_anon 0
[  350.979665][T19072] total_inactive_file 4096
[  350.984125][T19072] total_active_file 0
[  350.988104][T19072] total_unevictable 0
[  350.992156][T19072] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.5597,pid=19072,uid=0
[  351.006897][T19072] Memory cgroup out of memory: Killed process 19072 (syz.3.5597) total-vm:93968kB, anon-rss:1136kB, file-rss:22500kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  351.058891][T19115] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5610'.
[  351.147709][T19133] netem: change failed
[  351.218665][T16054] Bluetooth: hci0: Frame reassembly failed (-84)
[  351.264867][T19140] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5614'.
[  351.360726][T19069] vhci_hcd: connection closed
[  351.370742][ T1085] vhci_hcd vhci_hcd.0: stop threads
[  351.380711][ T1085] vhci_hcd vhci_hcd.0: release socket
[  351.386079][ T1085] vhci_hcd vhci_hcd.0: disconnect device
[  351.781113][T19160] netlink: 'syz.0.5621': attribute type 4 has an invalid length.
[  351.888476][   T29] kauditd_printk_skb: 824 callbacks suppressed
[  351.888493][   T29] audit: type=1326 audit(1767390093.776:48998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  351.920963][   T29] audit: type=1326 audit(1767390093.776:48999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  351.944592][   T29] audit: type=1326 audit(1767390093.776:49000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  351.968193][   T29] audit: type=1326 audit(1767390093.776:49001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  351.991745][   T29] audit: type=1326 audit(1767390093.776:49002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  352.015366][   T29] audit: type=1326 audit(1767390093.776:49003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  352.039028][   T29] audit: type=1326 audit(1767390093.776:49004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  352.062638][   T29] audit: type=1326 audit(1767390093.776:49005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  352.070597][ T3624] usb 11-1: enqueue for inactive port 0
[  352.086169][   T29] audit: type=1326 audit(1767390093.776:49006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  352.115227][   T29] audit: type=1326 audit(1767390093.776:49007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19165 comm="syz.3.5626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fef0d71f749 code=0x7ffc0000
[  352.133909][ T3624] usb 11-1: enqueue for inactive port 0
[  352.189807][T19177] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  352.201380][T19177] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  352.287158][T19158] syz.4.5624 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  352.301413][T19158] CPU: 0 UID: 0 PID: 19158 Comm: syz.4.5624 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  352.301444][T19158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  352.301459][T19158] Call Trace:
[  352.301466][T19158]  <TASK>
[  352.301475][T19158]  __dump_stack+0x1d/0x30
[  352.301535][T19158]  dump_stack_lvl+0x95/0xd0
[  352.301559][T19158]  dump_stack+0x15/0x1b
[  352.301579][T19158]  dump_header+0x81/0x240
[  352.301631][T19158]  oom_kill_process+0x295/0x350
[  352.301656][T19158]  out_of_memory+0x97b/0xb80
[  352.301697][T19158]  try_charge_memcg+0x610/0xa10
[  352.301739][T19158]  obj_cgroup_charge_pages+0xa6/0x150
[  352.301826][T19158]  __memcg_kmem_charge_page+0x9f/0x170
[  352.301857][T19158]  __alloc_frozen_pages_noprof+0x18f/0x360
[  352.301889][T19158]  alloc_pages_mpol+0xb3/0x260
[  352.301916][T19158]  alloc_pages_noprof+0x90/0x130
[  352.302001][T19158]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  352.302094][T19158]  __kvmalloc_node_noprof+0x492/0x6b0
[  352.302116][T19158]  ? ip_set_alloc+0x24/0x30
[  352.302181][T19158]  ? ip_set_alloc+0x24/0x30
[  352.302212][T19158]  ip_set_alloc+0x24/0x30
[  352.302242][T19158]  hash_netiface_create+0x282/0x740
[  352.302274][T19158]  ? __pfx_hash_netiface_create+0x10/0x10
[  352.302338][T19158]  ip_set_create+0x3cc/0x970
[  352.302381][T19158]  ? __nla_parse+0x40/0x60
[  352.302424][T19158]  nfnetlink_rcv_msg+0x4c6/0x590
[  352.302472][T19158]  netlink_rcv_skb+0x123/0x220
[  352.302502][T19158]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  352.302531][T19158]  nfnetlink_rcv+0x167/0x16c0
[  352.302586][T19158]  ? free_frozen_page_commit+0x79/0x3b0
[  352.302613][T19158]  ? _raw_spin_unlock+0x26/0x50
[  352.302740][T19158]  ? __free_frozen_pages+0x288/0x510
[  352.302768][T19158]  ? bpf_check+0x9d67/0xc860
[  352.302819][T19158]  ? __alloc_frozen_pages_noprof+0x18f/0x360
[  352.302917][T19158]  ? alloc_pages_bulk_noprof+0x4b9/0x540
[  352.302944][T19158]  ? css_rstat_updated+0xbb/0x280
[  352.302964][T19158]  ? __vmap_pages_range_noflush+0xbc4/0xcf0
[  352.302991][T19158]  ? should_fail_ex+0x30/0x280
[  352.303010][T19158]  ? selinux_nlmsg_lookup+0x99/0x890
[  352.303037][T19158]  ? __rcu_read_unlock+0x34/0x70
[  352.303060][T19158]  ? __netlink_lookup+0x266/0x2a0
[  352.303097][T19158]  netlink_unicast+0x5c0/0x690
[  352.303158][T19158]  netlink_sendmsg+0x58b/0x6b0
[  352.303192][T19158]  ? __pfx_netlink_sendmsg+0x10/0x10
[  352.303226][T19158]  __sock_sendmsg+0x145/0x180
[  352.303307][T19158]  ____sys_sendmsg+0x31e/0x4a0
[  352.303415][T19158]  ___sys_sendmsg+0x17b/0x1d0
[  352.303458][T19158]  __x64_sys_sendmsg+0xd4/0x160
[  352.303497][T19158]  x64_sys_call+0x17ba/0x3000
[  352.303520][T19158]  do_syscall_64+0xca/0x2b0
[  352.303553][T19158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.303597][T19158] RIP: 0033:0x7f4ed331f749
[  352.303612][T19158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  352.303628][T19158] RSP: 002b:00007f4ed1d7f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  352.303646][T19158] RAX: ffffffffffffffda RBX: 00007f4ed3575fa0 RCX: 00007f4ed331f749
[  352.303715][T19158] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003
[  352.303730][T19158] RBP: 00007f4ed33a3f91 R08: 0000000000000000 R09: 0000000000000000
[  352.303741][T19158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  352.303756][T19158] R13: 00007f4ed3576038 R14: 00007f4ed3575fa0 R15: 00007ffee7b852a8
[  352.303777][T19158]  </TASK>
[  352.303785][T19158] memory: usage 307200kB, limit 307200kB, failcnt 6063
[  352.646424][T19158] memory+swap: usage 307388kB, limit 9007199254740988kB, failcnt 0
[  352.654480][T19158] kmem: usage 306988kB, limit 9007199254740988kB, failcnt 0
[  352.661774][T19158] Memory cgroup stats for /syz4:
[  352.666053][T19158] cache 0
[  352.672273][ T3624] vhci_hcd vhci_hcd.5: vhci_device speed not set
[  352.674205][T19158] rss 0
[  352.683272][T19158] shmem 0
[  352.686222][T19158] mapped_file 0
[  352.689721][T19158] dirty 0
[  352.692751][T19158] writeback 0
[  352.696084][T19158] workingset_refault_anon 1336
[  352.700854][T19158] workingset_refault_file 17454
[  352.705697][T19158] swap 192512
[  352.709017][T19158] swapcached 16384
[  352.712779][T19158] pgpgin 517442
[  352.716243][T19158] pgpgout 517438
[  352.719780][T19158] pgfault 338910
[  352.723378][T19158] pgmajfault 808
[  352.726906][T19158] inactive_anon 16384
[  352.730968][T19158] active_anon 0
[  352.734420][T19158] inactive_file 0
[  352.738159][T19158] active_file 0
[  352.741664][T19158] unevictable 0
[  352.745102][T19158] hierarchical_memory_limit 314572800
[  352.750463][T19158] hierarchical_memsw_limit 9223372036854771712
[  352.756594][T19158] total_cache 0
[  352.760059][T19158] total_rss 0
[  352.763329][T19158] total_shmem 0
[  352.766766][T19158] total_mapped_file 0
[  352.770975][T19158] total_dirty 0
[  352.774440][T19158] total_writeback 0
[  352.778237][T19158] total_workingset_refault_anon 1336
[  352.783647][T19158] total_workingset_refault_file 17454
[  352.789009][T19158] total_swap 192512
[  352.792906][T19158] total_swapcached 16384
[  352.797124][T19158] total_pgpgin 517442
[  352.801156][T19158] total_pgpgout 517438
[  352.805297][T19158] total_pgfault 338910
[  352.809447][T19158] total_pgmajfault 808
[  352.813667][T19158] total_inactive_anon 16384
[  352.818163][T19158] total_active_anon 0
[  352.822154][T19158] total_inactive_file 0
[  352.826299][T19158] total_active_file 0
[  352.830314][T19158] total_unevictable 0
[  352.834275][T19158] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.5624,pid=19157,uid=0
[  352.849231][T19158] Memory cgroup out of memory: Killed process 19158 (syz.4.5624) total-vm:93968kB, anon-rss:1264kB, file-rss:22440kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  352.927006][T19188] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5635'.
[  352.977147][T19194] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  352.983743][T19194] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  352.991198][T19194] vhci_hcd vhci_hcd.0: Device attached
[  353.112083][T19216] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  353.125793][T19216] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  353.157689][T19213] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  353.164310][T19213] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  353.171971][T19213] vhci_hcd vhci_hcd.0: Device attached
[  353.187392][T19219] vhci_hcd: connection closed
[  353.187636][ T4346] vhci_hcd vhci_hcd.4: stop threads
[  353.197629][ T4346] vhci_hcd vhci_hcd.4: release socket
[  353.203026][ T4346] vhci_hcd vhci_hcd.4: disconnect device
[  353.250135][T11725] Bluetooth: hci0: command 0x1003 tx timeout
[  353.257009][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  353.374864][T19230] loop1: detected capacity change from 0 to 512
[  353.391801][T19230] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  353.399983][T19230] System zones: 0-2, 18-18, 34-34
[  353.405387][T19230] EXT4-fs (loop1): too many log groups per flexible block group
[  353.414857][T19230] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  353.429862][T19230] EXT4-fs (loop1): mount failed
[  353.497144][T19227] syz.1.5647 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  353.508217][T19227] CPU: 0 UID: 0 PID: 19227 Comm: syz.1.5647 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  353.508235][T19227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  353.508259][T19227] Call Trace:
[  353.508264][T19227]  <TASK>
[  353.508283][T19227]  __dump_stack+0x1d/0x30
[  353.508299][T19227]  dump_stack_lvl+0x95/0xd0
[  353.508312][T19227]  dump_stack+0x15/0x1b
[  353.508323][T19227]  dump_header+0x81/0x240
[  353.508381][T19227]  oom_kill_process+0x295/0x350
[  353.508395][T19227]  out_of_memory+0x97b/0xb80
[  353.508485][T19227]  try_charge_memcg+0x610/0xa10
[  353.508510][T19227]  charge_memcg+0x51/0xc0
[  353.508527][T19227]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  353.508555][T19227]  __read_swap_cache_async+0x17b/0x2d0
[  353.508605][T19227]  swap_cluster_readahead+0x362/0x3c0
[  353.508699][T19227]  swapin_readahead+0xde/0x820
[  353.508715][T19227]  ? __schedule+0x85f/0xcd0
[  353.508765][T19227]  ? __rcu_read_unlock+0x4f/0x70
[  353.508777][T19227]  ? swap_cache_get_folio+0x277/0x280
[  353.508828][T19227]  do_swap_page+0x2b4/0x21e0
[  353.508845][T19227]  ? remove_hrtimer+0x169/0x2d0
[  353.508856][T19227]  ? _raw_spin_lock_irqsave+0x57/0xb0
[  353.508869][T19227]  ? _raw_spin_unlock_irqrestore+0x2b/0x60
[  353.508916][T19227]  ? __pfx_default_wake_function+0x10/0x10
[  353.508999][T19227]  handle_mm_fault+0x9d8/0x2c60
[  353.509098][T19227]  do_user_addr_fault+0x630/0x1080
[  353.509159][T19227]  exc_page_fault+0x62/0xa0
[  353.509175][T19227]  asm_exc_page_fault+0x26/0x30
[  353.509186][T19227] RIP: 0033:0x7fa160cbf751
[  353.509236][T19227] Code: 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 <c3> 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f
[  353.509247][T19227] RSP: 002b:00007ffc9940c1d8 EFLAGS: 00010217
[  353.509257][T19227] RAX: 0000000000000000 RBX: 0000000000056447 RCX: 00007fa160cbf749
[  353.509264][T19227] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa160f1609c
[  353.509349][T19227] RBP: 0000000000000fd2 R08: 7fffffffffffffff R09: 0000001c9940c4cf
[  353.509356][T19227] R10: 00007ffc9940c2d0 R11: 0000000000000246 R12: 00007fa160f1609c
[  353.509368][T19227] R13: 00007ffc9940c2d0 R14: 0000000000057419 R15: 00007ffc9940c2f0
[  353.509380][T19227]  </TASK>
[  353.509384][T19227] memory: usage 307200kB, limit 307200kB, failcnt 8759
[  353.733728][T19227] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0
[  353.741681][T19227] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[  353.748993][T19227] Memory cgroup stats for /syz1:
[  353.749086][T19227] cache 0
[  353.756930][T19227] rss 0
[  353.759671][T19227] shmem 0
[  353.762602][T19227] mapped_file 0
[  353.766065][T19227] dirty 0
[  353.768988][T19227] writeback 0
[  353.772274][T19227] workingset_refault_anon 1535
[  353.777028][T19227] workingset_refault_file 25750
[  353.781933][T19227] swap 208896
[  353.785225][T19227] swapcached 0
[  353.788653][T19227] pgpgin 658990
[  353.792154][T19227] pgpgout 658990
[  353.795695][T19227] pgfault 360765
[  353.799219][T19227] pgmajfault 997
[  353.802320][T19195] vhci_hcd: connection closed
[  353.802775][T19227] inactive_anon 0
[  353.802981][ T4114] vhci_hcd vhci_hcd.0: stop threads
[  353.807491][T19227] active_anon 0
[  353.807502][T19227] inactive_file 0
[  353.807509][T19227] active_file 0
[  353.807516][T19227] unevictable 0
[  353.811306][ T4114] vhci_hcd vhci_hcd.0: release socket
[  353.816339][T19227] hierarchical_memory_limit 314572800
[  353.819786][ T4114] vhci_hcd vhci_hcd.0: disconnect device
[  353.823407][T19227] hierarchical_memsw_limit 9223372036854771712
[  353.823416][T19227] total_cache 0
[  353.823423][T19227] total_rss 0
[  353.823429][T19227] total_shmem 0
[  353.823435][T19227] total_mapped_file 0
[  353.823460][T19227] total_dirty 0
[  353.823466][T19227] total_writeback 0
[  353.823473][T19227] total_workingset_refault_anon 1535
[  353.823480][T19227] total_workingset_refault_file 25750
[  353.823553][T19227] total_swap 208896
[  353.888745][T19227] total_swapcached 0
[  353.892656][T19227] total_pgpgin 658990
[  353.896643][T19227] total_pgpgout 658990
[  353.900715][T19227] total_pgfault 360765
[  353.904789][T19227] total_pgmajfault 997
[  353.908935][T19227] total_inactive_anon 0
[  353.913134][T19227] total_active_anon 0
[  353.917135][T19227] total_inactive_file 0
[  353.921309][T19227] total_active_file 0
[  353.925299][T19227] total_unevictable 0
[  353.929339][T19227] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5647,pid=19227,uid=0
[  353.944028][T19227] Memory cgroup out of memory: Killed process 19227 (syz.1.5647) total-vm:93968kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  354.031842][T19247] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  354.072632][T19247] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  354.204955][T19272] FAULT_INJECTION: forcing a failure.
[  354.204955][T19272] name failslab, interval 1, probability 0, space 0, times 0
[  354.217771][T19272] CPU: 1 UID: 0 PID: 19272 Comm: syz.3.5663 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  354.217796][T19272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  354.217807][T19272] Call Trace:
[  354.217813][T19272]  <TASK>
[  354.217823][T19272]  __dump_stack+0x1d/0x30
[  354.217848][T19272]  dump_stack_lvl+0x95/0xd0
[  354.217934][T19272]  dump_stack+0x15/0x1b
[  354.217951][T19272]  should_fail_ex+0x265/0x280
[  354.217974][T19272]  should_failslab+0x8c/0xb0
[  354.218050][T19272]  kmem_cache_alloc_noprof+0x69/0x4b0
[  354.218069][T19272]  ? audit_log_start+0x342/0x720
[  354.218088][T19272]  audit_log_start+0x342/0x720
[  354.218110][T19272]  ? kstrtouint+0x76/0xc0
[  354.218141][T19272]  audit_seccomp+0x48/0x100
[  354.218173][T19272]  ? __seccomp_filter+0x832/0x1260
[  354.218196][T19272]  __seccomp_filter+0x843/0x1260
[  354.218232][T19272]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  354.218259][T19272]  ? vfs_write+0x7e8/0x960
[  354.218282][T19272]  __secure_computing+0x82/0x150
[  354.218354][T19272]  syscall_trace_enter+0xcf/0x1e0
[  354.218379][T19272]  do_syscall_64+0xa4/0x2b0
[  354.218412][T19272]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  354.218486][T19272] RIP: 0033:0x7fef0d71f749
[  354.218503][T19272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  354.218517][T19272] RSP: 002b:00007fef0c187038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  354.218610][T19272] RAX: ffffffffffffffda RBX: 00007fef0d975fa0 RCX: 00007fef0d71f749
[  354.218624][T19272] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[  354.218639][T19272] RBP: 00007fef0c187090 R08: 0000000000000000 R09: 0000000000000000
[  354.218699][T19272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  354.218713][T19272] R13: 00007fef0d976038 R14: 00007fef0d975fa0 R15: 00007fff2fa630c8
[  354.218734][T19272]  </TASK>
[  354.537293][T19278] netlink: 'syz.0.5666': attribute type 1 has an invalid length.
[  354.553677][T19279] __nla_validate_parse: 1 callbacks suppressed
[  354.553701][T19279] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5665'.
[  354.933897][T19299] lo speed is unknown, defaulting to 1000
[  355.007043][T19322] netlink: 14 bytes leftover after parsing attributes in process `syz.4.5680'.
[  355.034981][ T4346] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  355.046449][ T4346] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  355.055934][ T4346] bond0 (unregistering): Released all slaves
[  355.066170][ T4346] bond1 (unregistering): Released all slaves
[  355.083787][T19322] hsr_slave_0: left promiscuous mode
[  355.099691][T19322] hsr_slave_1: left promiscuous mode
[  355.167944][T19361] SELinux: failed to load policy
[  355.174753][ T4346] batman_adv: batadv0: Removing interface: batadv_slave_0
[  355.189607][ T4346] batman_adv: batadv0: Removing interface: batadv_slave_1
[  355.203091][ T4346] batman_adv: batadv0: Interface deactivated: veth1_vlan
[  355.210259][ T4346] batman_adv: batadv0: Removing interface: veth1_vlan
[  355.288712][ T4346] team0 (unregistering): Port device team_slave_0 removed
[  355.376602][T19285] syz.0.5669 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  355.387706][T19285] CPU: 0 UID: 0 PID: 19285 Comm: syz.0.5669 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  355.387727][T19285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  355.387735][T19285] Call Trace:
[  355.387740][T19285]  <TASK>
[  355.387745][T19285]  __dump_stack+0x1d/0x30
[  355.387761][T19285]  dump_stack_lvl+0x95/0xd0
[  355.387822][T19285]  dump_stack+0x15/0x1b
[  355.387833][T19285]  dump_header+0x81/0x240
[  355.387846][T19285]  oom_kill_process+0x295/0x350
[  355.387859][T19285]  out_of_memory+0x97b/0xb80
[  355.387918][T19285]  try_charge_memcg+0x610/0xa10
[  355.387942][T19285]  charge_memcg+0x51/0xc0
[  355.388036][T19285]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  355.388138][T19285]  __read_swap_cache_async+0x17b/0x2d0
[  355.388157][T19285]  swap_cluster_readahead+0x262/0x3c0
[  355.388183][T19285]  swapin_readahead+0xde/0x820
[  355.388235][T19285]  ? __rcu_read_unlock+0x4f/0x70
[  355.388246][T19285]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  355.388294][T19285]  ? __list_add_valid_or_report+0x38/0xe0
[  355.388311][T19285]  ? __rcu_read_unlock+0x4f/0x70
[  355.388386][T19285]  ? swap_cache_get_folio+0x277/0x280
[  355.388402][T19285]  do_swap_page+0x2b4/0x21e0
[  355.388419][T19285]  ? ___perf_sw_event+0x2d6/0x310
[  355.388450][T19285]  ? __schedule+0x85f/0xcd0
[  355.388464][T19285]  ? __pfx_default_wake_function+0x10/0x10
[  355.388534][T19285]  handle_mm_fault+0x9d8/0x2c60
[  355.388644][T19285]  do_user_addr_fault+0x630/0x1080
[  355.388672][T19285]  exc_page_fault+0x62/0xa0
[  355.388737][T19285]  asm_exc_page_fault+0x26/0x30
[  355.388757][T19285] RIP: 0033:0x7f0ef35559ec
[  355.388774][T19285] Code: 66 0f 1f 44 00 00 69 3d c6 fc ea 00 e8 03 00 00 48 8d 1d c7 05 38 00 e8 c2 9c 12 00 eb 0c 48 81 c3 f0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[  355.388813][T19285] RSP: 002b:00007ffcfc4dbfb0 EFLAGS: 00010202
[  355.388831][T19285] RAX: 0000000000000000 RBX: 00007f0ef38d5fa0 RCX: 0000000000000000
[  355.388897][T19285] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055556e2f1808
[  355.388910][T19285] RBP: 00007f0ef38d7da0 R08: 0000000000000000 R09: 7fffffffffffffff
[  355.388924][T19285] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000056c8d
[  355.388953][T19285] R13: 00007f0ef38d6090 R14: ffffffffffffffff R15: 00007ffcfc4dc0c0
[  355.388978][T19285]  </TASK>
[  355.388986][T19285] memory: usage 307200kB, limit 307200kB, failcnt 3947
[  355.434480][T19299] chnl_net:caif_netlink_parms(): no params data found
[  355.437303][T19285] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0
[  355.437318][T19285] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[  355.641174][T19285] Memory cgroup stats for /syz0:
[  355.642295][T19285] cache 0
[  355.650261][T19285] rss 0
[  355.653022][T19285] shmem 0
[  355.655955][T19285] mapped_file 0
[  355.659398][T19285] dirty 0
[  355.662341][T19285] writeback 8192
[  355.665875][T19285] workingset_refault_anon 691
[  355.670573][T19285] workingset_refault_file 20242
[  355.675511][T19285] swap 200704
[  355.678774][T19285] swapcached 16384
[  355.682518][T19285] pgpgin 698977
[  355.685965][T19285] pgpgout 698973
[  355.689486][T19285] pgfault 376973
[  355.693063][T19285] pgmajfault 540
[  355.696617][T19285] inactive_anon 8192
[  355.700509][T19285] active_anon 8192
[  355.704212][T19285] inactive_file 0
[  355.707859][T19285] active_file 0
[  355.711307][T19285] unevictable 0
[  355.714754][T19285] hierarchical_memory_limit 314572800
[  355.720160][T19285] hierarchical_memsw_limit 9223372036854771712
[  355.726310][T19285] total_cache 0
[  355.729748][T19285] total_rss 0
[  355.733043][T19285] total_shmem 0
[  355.736489][T19285] total_mapped_file 0
[  355.740456][T19285] total_dirty 0
[  355.743912][T19285] total_writeback 8192
[  355.747962][T19285] total_workingset_refault_anon 691
[  355.753154][T19285] total_workingset_refault_file 20242
[  355.758517][T19285] total_swap 200704
[  355.762418][T19285] total_swapcached 16384
[  355.766639][T19285] total_pgpgin 698977
[  355.770637][T19285] total_pgpgout 698973
[  355.774680][T19285] total_pgfault 376973
[  355.778726][T19285] total_pgmajfault 540
[  355.782810][T19285] total_inactive_anon 8192
[  355.787271][T19285] total_active_anon 8192
[  355.791523][T19285] total_inactive_file 0
[  355.795697][T19285] total_active_file 0
[  355.799657][T19285] total_unevictable 0
[  355.803689][T19285] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.5669,pid=19285,uid=0
[  355.818344][T19285] Memory cgroup out of memory: Killed process 19285 (syz.0.5669) total-vm:93968kB, anon-rss:1264kB, file-rss:22308kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  355.836699][T19463] netlink: 'syz.4.5685': attribute type 4 has an invalid length.
[  355.962503][T19484] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  355.988671][T19484] IPVS: set_ctl: invalid protocol: 43 172.20.20.170:20004
[  355.990156][T19496] loop1: detected capacity change from 0 to 512
[  356.013562][T19299] bridge0: port 1(bridge_slave_0) entered blocking state
[  356.020663][T19299] bridge0: port 1(bridge_slave_0) entered disabled state
[  356.029074][T19299] bridge_slave_0: entered allmulticast mode
[  356.036317][T19299] bridge_slave_0: entered promiscuous mode
[  356.043595][T19299] bridge0: port 2(bridge_slave_1) entered blocking state
[  356.050824][T19299] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.059685][T19299] bridge_slave_1: entered allmulticast mode
[  356.066552][T19299] bridge_slave_1: entered promiscuous mode
[  356.084059][T19496] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  356.097240][T19496] System zones: 0-2, 18-18, 34-34
[  356.104522][T19299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  356.115702][T19496] EXT4-fs (loop1): too many log groups per flexible block group
[  356.123416][T19496] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  356.131843][T19299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  356.144684][T19496] EXT4-fs (loop1): mount failed
[  356.168230][T19299] team0: Port device team_slave_0 added
[  356.174967][T19299] team0: Port device team_slave_1 added
[  356.225664][T19299] batman_adv: batadv0: Adding interface: batadv_slave_0
[  356.232699][T19299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  356.258763][T19299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  356.318915][T19299] batman_adv: batadv0: Adding interface: batadv_slave_1
[  356.325914][T19299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  356.351988][T19299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  356.430242][T19607] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  356.436786][T19607] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  356.444564][T19607] vhci_hcd vhci_hcd.0: Device attached
[  356.455767][T19299] hsr_slave_0: entered promiscuous mode
[  356.462395][T19299] hsr_slave_1: entered promiscuous mode
[  356.622348][T11968] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  356.633354][T11968] CPU: 0 UID: 0 PID: 11968 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  356.633383][T11968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  356.633396][T11968] Call Trace:
[  356.633404][T11968]  <TASK>
[  356.633412][T11968]  __dump_stack+0x1d/0x30
[  356.633455][T11968]  dump_stack_lvl+0x95/0xd0
[  356.633473][T11968]  dump_stack+0x15/0x1b
[  356.633492][T11968]  dump_header+0x81/0x240
[  356.633515][T11968]  oom_kill_process+0x295/0x350
[  356.633594][T11968]  out_of_memory+0x97b/0xb80
[  356.633615][T11968]  try_charge_memcg+0x610/0xa10
[  356.633729][T11968]  charge_memcg+0x51/0xc0
[  356.633835][T11968]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  356.633866][T11968]  __read_swap_cache_async+0x17b/0x2d0
[  356.633897][T11968]  swap_cluster_readahead+0x362/0x3c0
[  356.634006][T11968]  swapin_readahead+0xde/0x820
[  356.634033][T11968]  ? __rcu_read_unlock+0x4f/0x70
[  356.634050][T11968]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  356.634098][T11968]  ? __list_add_valid_or_report+0x38/0xe0
[  356.634124][T11968]  ? __rcu_read_unlock+0x4f/0x70
[  356.634236][T11968]  ? swap_cache_get_folio+0x277/0x280
[  356.634280][T11968]  do_swap_page+0x2b4/0x21e0
[  356.634308][T11968]  ? _raw_spin_unlock+0x26/0x50
[  356.634331][T11968]  ? __schedule+0x85f/0xcd0
[  356.634353][T11968]  ? __pfx_default_wake_function+0x10/0x10
[  356.634427][T11968]  handle_mm_fault+0x9d8/0x2c60
[  356.634465][T11968]  do_user_addr_fault+0x630/0x1080
[  356.634492][T11968]  exc_page_fault+0x62/0xa0
[  356.634564][T11968]  asm_exc_page_fault+0x26/0x30
[  356.634613][T11968] RIP: 0033:0x7fa160cf1fc5
[  356.634627][T11968] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 95 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  356.634645][T11968] RSP: 002b:00007ffc9940c3b8 EFLAGS: 00010246
[  356.634662][T11968] RAX: 0000000000000000 RBX: 0000000000000545 RCX: 00007fa160cf1fc3
[  356.634676][T11968] RDX: 00007ffc9940c3d0 RSI: 0000000000000000 RDI: 0000000000000000
[  356.634693][T11968] RBP: 00007ffc9940c43c R08: 00000000221ae49d R09: 0000000000000000
[  356.634705][T11968] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  356.634793][T11968] R13: 00000000000927c0 R14: 0000000000056f7d R15: 00007ffc9940c490
[  356.634809][T11968]  </TASK>
[  356.634816][T11968] memory: usage 307200kB, limit 307200kB, failcnt 8965
[  356.864619][T11968] memory+swap: usage 307388kB, limit 9007199254740988kB, failcnt 0
[  356.872611][T11968] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[  356.880053][T11968] Memory cgroup stats for /syz1:
[  356.880636][T11968] cache 0
[  356.888571][T11968] rss 0
[  356.891369][T11968] shmem 0
[  356.894300][T11968] mapped_file 0
[  356.897899][T11968] dirty 0
[  356.899664][   T29] kauditd_printk_skb: 747 callbacks suppressed
[  356.899676][   T29] audit: type=1326 audit(1767390098.786:49753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9c017565e7 code=0x7ffc0000
[  356.900864][T11968] writeback 0
[  356.900872][T11968] workingset_refault_anon 1619
[  356.900879][T11968] workingset_refault_file 25816
[  356.900886][T11968] swap 192512
[  356.900893][T11968] swapcached 16384
[  356.900899][T11968] pgpgin 659680
[  356.900906][T11968] pgpgout 659676
[  356.900913][T11968] pgfault 362178
[  356.917460][   T29] audit: type=1326 audit(1767390098.796:49754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9c016fb829 code=0x7ffc0000
[  356.930523][T11968] pgmajfault 1050
[  356.933834][   T29] audit: type=1326 audit(1767390098.796:49755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c0175f749 code=0x7ffc0000
[  356.938562][T11968] inactive_anon 16384
[  356.943411][   T29] audit: type=1326 audit(1767390098.796:49756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9c017565e7 code=0x7ffc0000
[  356.946676][T11968] active_anon 0
[  356.946683][T11968] inactive_file 0
[  356.950440][   T29] audit: type=1326 audit(1767390098.796:49757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9c016fb829 code=0x7ffc0000
[  356.950465][   T29] audit: type=1326 audit(1767390098.796:49758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c0175f749 code=0x7ffc0000
[  356.953895][T11968] active_file 0
[  356.953905][T11968] unevictable 0
[  357.039671][   T29] audit: type=1326 audit(1767390098.856:49759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9c017565e7 code=0x7ffc0000
[  357.042824][T11968] hierarchical_memory_limit 314572800
[  357.042835][T11968] hierarchical_memsw_limit 9223372036854771712
[  357.042843][T11968] total_cache 0
[  357.042850][T11968] total_rss 0
[  357.046470][   T29] audit: type=1326 audit(1767390098.856:49760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9c016fb829 code=0x7ffc0000
[  357.069910][T11968] total_shmem 0
[  357.069921][T11968] total_mapped_file 0
[  357.069928][T11968] total_dirty 0
[  357.069935][T11968] total_writeback 0
[  357.069942][T11968] total_workingset_refault_anon 1619
[  357.069951][T11968] total_workingset_refault_file 25816
[  357.093513][   T29] audit: type=1326 audit(1767390098.856:49761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c0175f749 code=0x7ffc0000
[  357.096944][T11968] total_swap 192512
[  357.100499][   T29] audit: type=1326 audit(1767390098.876:49762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19707 comm="syz.5.5695" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9c017565e7 code=0x7ffc0000
[  357.123830][T11968] total_swapcached 16384
[  357.123841][T11968] total_pgpgin 659680
[  357.123848][T11968] total_pgpgout 659676
[  357.123856][T11968] total_pgfault 362178
[  357.123867][T11968] total_pgmajfault 1050
[  357.262355][T11968] total_inactive_anon 16384
[  357.262365][T11968] total_active_anon 0
[  357.262372][T11968] total_inactive_file 0
[  357.262379][T11968] total_active_file 0
[  357.262385][T11968] total_unevictable 0
[  357.262393][T11968] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.5686,pid=19477,uid=0
[  357.297834][T11968] Memory cgroup out of memory: Killed process 19477 (syz.1.5686) total-vm:96016kB, anon-rss:1088kB, file-rss:22588kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  357.318478][T19718] netlink: 36 bytes leftover after parsing attributes in process `syz.5.5698'.
[  357.544901][T19299] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  357.569258][T19299] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  357.590909][T19299] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  357.620736][T19299] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  357.651392][T19740] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5702'.
[  357.762098][T19299] 8021q: adding VLAN 0 to HW filter on device bond0
[  357.796199][T19299] 8021q: adding VLAN 0 to HW filter on device team0
[  357.799535][T19767] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5704'.
[  357.815938][T15969] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.823032][T15969] bridge0: port 1(bridge_slave_0) entered forwarding state
[  357.844208][T15525] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.851344][T15525] bridge0: port 2(bridge_slave_1) entered forwarding state
[  357.863420][T19769] netlink: 'syz.4.5706': attribute type 4 has an invalid length.
[  357.925883][T19623] vhci_hcd: connection closed
[  357.925942][T15969] vhci_hcd vhci_hcd.0: stop threads
[  357.935896][T15969] vhci_hcd vhci_hcd.0: release socket
[  357.941410][T15969] vhci_hcd vhci_hcd.0: disconnect device
[  358.007382][T19299] 8021q: adding VLAN 0 to HW filter on device batadv0
[  358.032562][T19719] ==================================================================
[  358.040670][T19719] BUG: KCSAN: data-race in __filemap_remove_folio / folio_mapping
[  358.048486][T19719] 
[  358.050812][T19719] write to 0xffffea00060413d8 of 8 bytes by task 19640 on cpu 0:
[  358.058522][T19719]  __filemap_remove_folio+0x1a5/0x2a0
[  358.063908][T19719]  filemap_remove_folio+0x6d/0x1d0
[  358.069019][T19719]  truncate_inode_folio+0x42/0x50
[  358.074045][T19719]  shmem_undo_range+0x244/0xa80
[  358.078890][T19719]  shmem_evict_inode+0x12e/0x510
[  358.083835][T19719]  evict+0x2af/0x510
[  358.087727][T19719]  iput+0x4bd/0x650
[  358.091530][T19719]  dentry_unlink_inode+0x24f/0x260
[  358.096645][T19719]  __dentry_kill+0x18d/0x4b0
[  358.101233][T19719]  finish_dput+0x2b/0x200
[  358.105565][T19719]  dput+0x52/0x60
[  358.109198][T19719]  __fput+0x444/0x650
[  358.113262][T19719]  ____fput+0x1c/0x30
[  358.117244][T19719]  task_work_run+0x131/0x1a0
[  358.121830][T19719]  do_exit+0x467/0x1590
[  358.125976][T19719]  do_group_exit+0xff/0x140
[  358.130462][T19719]  get_signal+0xe58/0xf70
[  358.134784][T19719]  arch_do_signal_or_restart+0x96/0x450
[  358.140341][T19719]  irqentry_exit+0xfb/0x560
[  358.144865][T19719]  asm_exc_page_fault+0x26/0x30
[  358.149729][T19719] 
[  358.152053][T19719] read to 0xffffea00060413d8 of 8 bytes by task 19719 on cpu 1:
[  358.159680][T19719]  folio_mapping+0xa1/0xe0
[  358.164116][T19719]  evict_folios+0x2b54/0x35a0
[  358.168806][T19719]  try_to_shrink_lruvec+0x5b5/0x950
[  358.174011][T19719]  shrink_lruvec+0x22e/0x1b50
[  358.178709][T19719]  shrink_node+0x66c/0x2010
[  358.183221][T19719]  do_try_to_free_pages+0x3f6/0xcd0
[  358.187553][T19299] veth0_vlan: entered promiscuous mode
[  358.188423][T19719]  try_to_free_mem_cgroup_pages+0x1ab/0x410
[  358.198356][T19299] veth1_vlan: entered promiscuous mode
[  358.199739][T19719]  try_charge_memcg+0x383/0xa10
[  358.210019][T19719]  obj_cgroup_charge_pages+0xa6/0x150
[  358.215406][T19719]  __memcg_kmem_charge_page+0x9f/0x170
[  358.216563][T19299] veth0_macvtap: entered promiscuous mode
[  358.220874][T19719]  __alloc_frozen_pages_noprof+0x18f/0x360
[  358.228547][T19299] veth1_macvtap: entered promiscuous mode
[  358.232383][T19719]  alloc_pages_mpol+0xb3/0x260
[  358.232414][T19719]  alloc_pages_noprof+0x90/0x130
[  358.245361][T19299] batman_adv: batadv0: Interface activated: batadv_slave_0
[  358.247776][T19719]  __vmalloc_node_range_noprof+0xa7b/0x1310
[  358.258934][T19299] batman_adv: batadv0: Interface activated: batadv_slave_1
[  358.260833][T19719]  __kvmalloc_node_noprof+0x492/0x6b0
[  358.272091][T15525] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  358.273385][T19719]  ip_set_alloc+0x24/0x30
[  358.286363][T19719]  hash_netiface_create+0x282/0x740
[  358.291554][T19719]  ip_set_create+0x3cc/0x970
[  358.296148][T19719]  nfnetlink_rcv_msg+0x4c6/0x590
[  358.301071][T19719]  netlink_rcv_skb+0x123/0x220
[  358.305817][T19719]  nfnetlink_rcv+0x167/0x16c0
[  358.310480][T19719]  netlink_unicast+0x5c0/0x690
[  358.315228][T19719]  netlink_sendmsg+0x58b/0x6b0
[  358.319979][T19719]  __sock_sendmsg+0x145/0x180
[  358.324638][T19719]  ____sys_sendmsg+0x31e/0x4a0
[  358.329383][T19719]  ___sys_sendmsg+0x17b/0x1d0
[  358.334042][T19719]  __x64_sys_sendmsg+0xd4/0x160
[  358.338877][T19719]  x64_sys_call+0x17ba/0x3000
[  358.343539][T19719]  do_syscall_64+0xca/0x2b0
[  358.348051][T19719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.353926][T19719] 
[  358.356232][T19719] value changed: 0xffff88811b7744d8 -> 0x0000000000000000
[  358.363312][T19719] 
[  358.365614][T19719] Reported by Kernel Concurrency Sanitizer on:
[  358.371742][T19719] CPU: 1 UID: 0 PID: 19719 Comm: syz.0.5697 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  358.381525][T19719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  358.391561][T19719] ==================================================================
[  358.401359][T15525] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  358.425235][T15525] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  358.436022][T15525] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  359.490133][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110