last executing test programs:

3.605643403s ago: executing program 1 (id=1328):
set_mempolicy(0x4005, &(0x7f0000000080)=0x7e, 0x9)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
symlink(&(0x7f0000000340)='./file0/../file0\x00', 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400"], 0x48)

3.569167416s ago: executing program 1 (id=1330):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_delete(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xc0100, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x3000009, 0x46031, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

3.506499602s ago: executing program 0 (id=1334):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000900)={0x0, "9704484b879df332018ba49ce47aab71"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000004d00000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000d40)=@filter={'filter\x00', 0x2, 0x4, 0x4a8, 0xffffffff, 0x0, 0xf0, 0xf0, 0xfeffffff, 0xffffffff, 0x3d8, 0x3d8, 0x3d8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, [0xff, 0xff, 0x0, 0xffffff00], [], 'pimreg0\x00', 'bond_slave_0\x00', {}, {}, 0x6, 0x0, 0x3}, 0x2f2, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@dev={0xac, 0x14, 0x14, 0x1d}, 'caif0\x00', {0x7}}}}, {{@ipv6={@mcast1, @loopback, [], [0x0, 0x0, 0xffffffff], 'netdevsim0\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f6531877000001e770b689f173dfa40b58c10327e3121114449fd20ba2be6eb0cde72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0x1d0}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x602, 'system_u:object_r:boot_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x508)

3.478561545s ago: executing program 0 (id=1336):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000000c0)='kmem_cache_free\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001580)={0x0, 0xffffffffffffff3c, &(0x7f0000000300)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911040000000000000003c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62458c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f00000025c0)="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", 0xcb3}, {&(0x7f00000006c0)="97b13f5cf9f584c87e0e637d2ff483a311bb412cb3b03c3d9e97e435f2fceb58ff0402ed7b96244b43386c222917662028d7a01206a1990722ccef1d8f39f7c8ae242e58359217b1c6161ea741445cf16b0c48eb18a6c72174dfb7cd1bd0f409dad5a432bed4afb470da3656dd30d70769e229dc91037321d618e1eff4a176ea46d5cd4d5da97f80356e46d9e8166bf2d97210b631654ece218a2a204a1786ab5a60a881a7a294cd2f92438350e6e3ec4439ebe06133ff65b1e32b809ba0482783b563ec8e5778285da5211e5821135433053a7921319c544d5e797f"}, {&(0x7f00000007c0)="75c37714a0bada8343bceb64ccb6d95a2a37b020e0bf1f6a1de4584223a2f285aaca30a9554cd5cdc1659cb9fec462cc5c2220a7cd891ec3bad99fe3c06e15a109ec0fdb6aeeee5ef8e4bfc28e17984a3860b907d549492d47a447782b7357ea72f4b2c26512a6a33c0247b730a6182ea5a99aee25fcee07f9cb0a80595cd5f744fa6898fdffda5b34b19474b8e853467329e4aea36cfd0e00735d37beb0f895c5688259a8935194eefd3a96d55707133a08f03e14da563160a545396b93341f41c161c93687e28a"}, {&(0x7f0000000b00)="1b080b7a30aec939ce8e26e0cbbe37fc064ceef965fd5e3b6739c966492dbdf71c04423d8a403e56dfd224e4e55918a5e31e683fec5cc9460882a0d1628d02d51a8da997073f856e2cd00586c6e8c89c71cf8be6121b0b3a85d597a1afb0cc311f30cc26183c8e594ce5ff62661c9e32cbc9dd9a72985e9857f3bddb52382b6c27ca85d5774cf17b92e2d2097f12a8687e70f90d46381a47706a9124a2cf61b84f26aae22fd4da84ae35b93f7be9fdfdfbf33c59f5c657e9f7e81b81b786082f88af4de07808ff3c954bae"}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r3, &(0x7f0000001140)={0x0, 0x2, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)

3.225763219s ago: executing program 0 (id=1338):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xd, &(0x7f00000003c0)=ANY=[@ANYRES64=r0, @ANYRES32=r0, @ANYRES64=0x0], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pipe(&(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
io_setup(0x2, &(0x7f0000002400)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000040)=[&(0x7f00000010c0)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x2}])
fcntl$setpipe(r1, 0x407, 0x401)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x1, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_bp={0x0, 0x1}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xc, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, 0x0, 0xa041, 0xd)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095", @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r4}, 0x18)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r6}, &(0x7f0000bbdffc)=<r7=>0x0)
timer_settime(r7, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc), 0x80, 0x0, 0x0, 0x0, 0x0)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
write$cgroup_int(r5, &(0x7f0000000040)=0xfe8e, 0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)
r8 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x42040, 0x0)
fcntl$setlease(r8, 0x400, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYRESHEX=r2], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000480)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r9}, 0x10)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)

3.060409695s ago: executing program 2 (id=1345):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
syncfs(0xffffffffffffffff)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
syz_clone(0x63081180, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000021000010000000000000000000500000a44000000090a010400000000000000000a0000040900010086e63cdad1a83c79fe73797a310000000008000540000000020900020073797a310000000008000a40fffffffc0800034000000014540000000c0a050000000000000000000a0000060900020073797a31000000000900010073797a310000000028000380240000800400018004000b800c000440000000000000000f0c0005400000000000000007140000001100010000000000000000000100000a"], 0xc0}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
socketpair(0x11, 0xa, 0x0, &(0x7f0000000580))

2.994364722s ago: executing program 4 (id=1347):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x5, &(0x7f0000000040), &(0x7f00000000c0)=0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{}, &(0x7f00000001c0), &(0x7f0000000080)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_9p2000}]}})
r5 = socket(0x10, 0x3, 0x9)
r6 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_tcp_TCP_REPAIR(r6, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r6, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x10, 0x2}, 0x94)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r9, 0x0)
setsockopt$EBT_SO_SET_COUNTERS(r6, 0x0, 0x81, &(0x7f00000005c0)={'filter\x00', 0x0, 0x0, 0x0, [0xffffffff, 0x3, 0x7fffffffffffffff, 0xfffffffffffffffa, 0xa43, 0x8000000000000001], 0x0, 0x0}, 0x78)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000013c0)={{0x14, 0x453, 0x1, 0x0, 0x0, {0x5}}, [], {0x14, 0x3ea}}, 0x28}, 0x1, 0x0, 0x0, 0x64841}, 0x40000)

2.517506628s ago: executing program 4 (id=1348):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
syncfs(0xffffffffffffffff)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
syz_clone(0x63081180, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000021000010000000000000000000500000a44000000090a010400000000000000000a0000040900010086e63cdad1a83c79fe73797a310000000008000540000000020900020073797a310000000008000a40fffffffc0800034000000014540000000c0a050000000000000000000a0000060900020073797a31000000000900010073797a310000000028000380240000800400018004000b800c000440000000000000000f0c0005400000000000000007140000001100010000000000000000000100000a"], 0xc0}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
socketpair(0x11, 0xa, 0x0, &(0x7f0000000580))

1.791439388s ago: executing program 2 (id=1349):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000000c0)='kmem_cache_free\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001580)={0x0, 0xffffffffffffff3c, &(0x7f0000000300)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911040000000000000003c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62458c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f00000025c0)="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", 0xcb3}, {&(0x7f00000006c0)="97b13f5cf9f584c87e0e637d2ff483a311bb412cb3b03c3d9e97e435f2fceb58ff0402ed7b96244b43386c222917662028d7a01206a1990722ccef1d8f39f7c8ae242e58359217b1c6161ea741445cf16b0c48eb18a6c72174dfb7cd1bd0f409dad5a432bed4afb470da3656dd30d70769e229dc91037321d618e1eff4a176ea46d5cd4d5da97f80356e46d9e8166bf2d97210b631654ece218a2a204a1786ab5a60a881a7a294cd2f92438350e6e3ec4439ebe06133ff65b1e32b809ba0482783b563ec8e5778285da5211e5821135433053a7921319c544d5e797f"}, {&(0x7f00000007c0)="75c37714a0bada8343bceb64ccb6d95a2a37b020e0bf1f6a1de4584223a2f285aaca30a9554cd5cdc1659cb9fec462cc5c2220a7cd891ec3bad99fe3c06e15a109ec0fdb6aeeee5ef8e4bfc28e17984a3860b907d549492d47a447782b7357ea72f4b2c26512a6a33c0247b730a6182ea5a99aee25fcee07f9cb0a80595cd5f744fa6898fdffda5b34b19474b8e853467329e4aea36cfd0e00735d37beb0f895c5688259a8935194eefd3a96d55707133a08f03e14da563160a545396b93341f41c161c93687e28a"}, {&(0x7f0000000b00)="1b080b7a30aec939ce8e26e0cbbe37fc064ceef965fd5e3b6739c966492dbdf71c04423d8a403e56dfd224e4e55918a5e31e683fec5cc9460882a0d1628d02d51a8da997073f856e2cd00586c6e8c89c71cf8be6121b0b3a85d597a1afb0cc311f30cc26183c8e594ce5ff62661c9e32cbc9dd9a72985e9857f3bddb52382b6c27ca85d5774cf17b92e2d2097f12a8687e70f90d46381a47706a9124a2cf61b84f26aae22fd4da84ae35b93f7be9fdfdfbf33c59f5c657e9f7e81b81b786082f88af4de07808ff3c954bae"}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r3, &(0x7f0000001140)={0x0, 0x2, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)

1.76611946s ago: executing program 0 (id=1350):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_usb_connect(0x1, 0x36, 0x0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x94, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

1.583261818s ago: executing program 4 (id=1351):
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xb)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
openat$sysfs(0xffffffffffffff9c, 0x0, 0x141a82, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x18)
r2 = epoll_create1(0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, r4, 0x7}}, 0x48)
close_range(r2, 0xffffffffffffffff, 0x0)

1.537123583s ago: executing program 2 (id=1352):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe2(&(0x7f0000000040), 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f00000001c0)=@gcm_256={{0x303}, "8ddca14668eeeedf", "112ca1397c3228892698b29a77fe3d9c5f90f0239eee436a73f8155b30f9d330", "9c791800", "8452b959755e9c89"}, 0x38)
accept$inet6(r0, 0x0, &(0x7f0000000080))
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xb, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x40)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000400), 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYRESOCT], &(0x7f00000004c0)='GPL\x00', 0x208, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r2, 0x0, 0x4804}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = timerfd_create(0x9, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timerfd_settime(r3, 0x0, &(0x7f0000007000)={{0x0, 0x4}, {0x0, 0x989680}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x8, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="698d46a56d933ef3217ac5c41cae1138ae4157bd85303f6b9b6a0e3c160265e64bf3aa3b531d0855dcdf66", @ANYRES8, @ANYRES16=r4], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000300), 0x800)
r5 = syz_open_dev$evdev(&(0x7f0000003040), 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$EVIOCGVERSION(r5, 0x80044501, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
fsopen(&(0x7f0000000180)='bpf\x00', 0x1)

1.527287083s ago: executing program 4 (id=1353):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xe, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @sk_skb=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000900)={0x0, "9704484b879df332018ba49ce47aab71"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000004d00000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000d40)=@filter={'filter\x00', 0x2, 0x4, 0x4a8, 0xffffffff, 0x0, 0xf0, 0xf0, 0xfeffffff, 0xffffffff, 0x3d8, 0x3d8, 0x3d8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, [0xff, 0xff, 0x0, 0xffffff00], [], 'pimreg0\x00', 'bond_slave_0\x00', {}, {}, 0x6, 0x0, 0x3}, 0x2f2, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@dev={0xac, 0x14, 0x14, 0x1d}, 'caif0\x00', {0x7}}}}, {{@ipv6={@mcast1, @loopback, [], [0x0, 0x0, 0xffffffff], 'netdevsim0\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f6531877000001e770b689f173dfa40b58c10327e3121114449fd20ba2be6eb0cde72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0x1d0}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x602, 'system_u:object_r:boot_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x508)

1.443952841s ago: executing program 1 (id=1355):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f0000000880), 0x0, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000300)='5', 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0)

1.436165732s ago: executing program 4 (id=1356):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xd, &(0x7f00000003c0)=ANY=[@ANYRES64=r0, @ANYRES32=r0, @ANYRES64=0x0], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000240)='kfree\x00', r1, 0x0, 0x20}, 0x18)
pipe(&(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
io_setup(0x2, &(0x7f0000002400)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000040)=[&(0x7f00000010c0)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x2}])
fcntl$setpipe(r2, 0x407, 0x401)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x1, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_bp={0x0, 0x1}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xc, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xa041, 0xd)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095", @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r5}, 0x18)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r7}, &(0x7f0000bbdffc)=<r8=>0x0)
timer_settime(r8, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc), 0x80, 0x0, 0x0, 0x0, 0x0)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
write$cgroup_int(r6, &(0x7f0000000040)=0xfe8e, 0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)
r9 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x42040, 0x0)
fcntl$setlease(r9, 0x400, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYRESHEX=r3], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000480)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r10 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlockall()
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)

1.320316353s ago: executing program 2 (id=1357):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)={'team0\x00', <r1=>0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TIOCL_BLANKSCREEN(r2, 0x4b67, &(0x7f0000000400))
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x2000a804)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = getegid()
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="b40000001800090000000000000000001c14"], 0xb4}}, 0x24040810)
r5 = geteuid()
r6 = semget$private(0x0, 0x1, 0x180)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r5, <r7=>r4}}, '\x00'})
semctl$IPC_SET(r6, 0x0, 0x1, &(0x7f0000000280)={{0x0, r5, r4, r5, r7, 0x80, 0x8010}, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=@newtaction={0x14, 0x30, 0x400, 0x70bd25}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/18, @ANYRES32=r1], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x0)

1.177088487s ago: executing program 2 (id=1358):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xd, &(0x7f00000003c0)=ANY=[@ANYRES64=r0, @ANYRES32=r0, @ANYRES64=0x0], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000240)='kfree\x00', r1, 0x0, 0x20}, 0x18)
pipe(&(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
io_setup(0x2, &(0x7f0000002400)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000040)=[&(0x7f00000010c0)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x2}])
fcntl$setpipe(r2, 0x407, 0x401)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x1, 0x0, 0x0, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_bp={0x0, 0x1}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xc, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xa041, 0xd)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095", @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r5}, 0x18)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r7}, &(0x7f0000bbdffc)=<r8=>0x0)
timer_settime(r8, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc), 0x80, 0x0, 0x0, 0x0, 0x0)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)
write$cgroup_int(r6, &(0x7f0000000040)=0xfe8e, 0x12)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000)
r9 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x42040, 0x0)
fcntl$setlease(r9, 0x400, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYRESHEX=r3], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r10}, 0x10)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
munlockall()
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)

1.141425301s ago: executing program 1 (id=1360):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f0000000880)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000300)='5', 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0)

1.122413232s ago: executing program 1 (id=1361):
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="85000000340000001600000012dfaeca61a37873000000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x20, 0xffffffffffffffff, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffed8, 0x0, 0xffffffffffffffff, 0xfe8e}, 0x3f)
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'vxcan0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x188001)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
sendfile(r2, r1, 0x0, 0x7ffff000)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$IEEE802154_SET_MACPARAMS(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x38, r3, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x9}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_TXPOWER={0x5, 0x21, 0x9}, @IEEE802154_ATTR_TXPOWER={0x5, 0x21, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x44025}, 0x40)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r6=>0x0}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r4, 0x84, 0x79, &(0x7f0000000000)={r6, 0xfff, 0x89a}, 0x8)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000000c0)={r6}, &(0x7f00000006c0)=0x8)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r8 = open_tree(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x180001)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r9)
syz_genetlink_get_family_id$devlink(0x0, r9)
sendmsg$NL80211_CMD_GET_WIPHY(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="59bb22bd7000000020001100000008002b01"], 0x28}}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r8, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000500)={&(0x7f0000000440)={0x94, r10, 0x200, 0x70bd26, 0x2, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1f}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3f}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1a}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x200}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xfffffff9}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1630}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x12}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x1000}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4624}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}]]}, 0x94}, 0x1, 0x0, 0x0, 0x40010}, 0x4811)
setsockopt$inet_mreq(r7, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
r11 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000340)={'syz_tun\x00'})
socket$nl_route(0x10, 0x3, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000700)={[0x8]}, 0x8)

970.666757ms ago: executing program 0 (id=1362):
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
getsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, &(0x7f0000000300), &(0x7f0000000340)=0x4)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r5, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r2)
sendmsg$NL80211_CMD_DEL_PMKSA(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x48, r6, 0x1, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1f, 0x1c}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_PMK={0x14, 0xfe, "353f91c6ea0c019b9842138b643a8456"}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000400)={0x0, 0x1802, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r8, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}, 0x1, 0xff07}, 0x2000000)

634.656519ms ago: executing program 3 (id=1363):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000000c0)='kmem_cache_free\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001580)={0x0, 0xffffffffffffff3c, &(0x7f0000000300)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911040000000000000003c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62458c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f00000025c0)="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", 0xcb3}, {&(0x7f00000006c0)="97b13f5cf9f584c87e0e637d2ff483a311bb412cb3b03c3d9e97e435f2fceb58ff0402ed7b96244b43386c222917662028d7a01206a1990722ccef1d8f39f7c8ae242e58359217b1c6161ea741445cf16b0c48eb18a6c72174dfb7cd1bd0f409dad5a432bed4afb470da3656dd30d70769e229dc91037321d618e1eff4a176ea46d5cd4d5da97f80356e46d9e8166bf2d97210b631654ece218a2a204a1786ab5a60a881a7a294cd2f92438350e6e3ec4439ebe06133ff65b1e32b809ba0482783b563ec8e5778285da5211e5821135433053a7921319c544d5e797f"}, {&(0x7f00000007c0)="75c37714a0bada8343bceb64ccb6d95a2a37b020e0bf1f6a1de4584223a2f285aaca30a9554cd5cdc1659cb9fec462cc5c2220a7cd891ec3bad99fe3c06e15a109ec0fdb6aeeee5ef8e4bfc28e17984a3860b907d549492d47a447782b7357ea72f4b2c26512a6a33c0247b730a6182ea5a99aee25fcee07f9cb0a80595cd5f744fa6898fdffda5b34b19474b8e853467329e4aea36cfd0e00735d37beb0f895c5688259a8935194eefd3a96d55707133a08f03e14da563160a545396b93341f41c161c93687e28a"}, {&(0x7f0000000b00)="1b080b7a30aec939ce8e26e0cbbe37fc064ceef965fd5e3b6739c966492dbdf71c04423d8a403e56dfd224e4e55918a5e31e683fec5cc9460882a0d1628d02d51a8da997073f856e2cd00586c6e8c89c71cf8be6121b0b3a85d597a1afb0cc311f30cc26183c8e594ce5ff62661c9e32cbc9dd9a72985e9857f3bddb52382b6c27ca85d5774cf17b92e2d2097f12a8687e70f90d46381a47706a9124a2cf61b84f26aae22fd4da84ae35b93f7be9fdfdfbf33c59f5c657e9f7e81b81b786082f88af4de07808ff3c954bae"}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r3, &(0x7f0000001140)={0x0, 0x2, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1}, 0x40000100)

312.03916ms ago: executing program 4 (id=1364):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb85000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xae, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
syz_usb_connect(0x1, 0x36, &(0x7f00000000c0)=ANY=[], 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x94, 0x7fff0000}]})
close_range(r0, 0xffffffffffffffff, 0x0)

234.789248ms ago: executing program 1 (id=1365):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_delete(0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xc0100, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x3000009, 0x46031, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

221.145859ms ago: executing program 3 (id=1366):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xe, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @sk_skb=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000900)={0x0, "9704484b879df332018ba49ce47aab71"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000004d00000600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000d40)=@filter={'filter\x00', 0x2, 0x4, 0x4a8, 0xffffffff, 0x0, 0xf0, 0xf0, 0xfeffffff, 0xffffffff, 0x3d8, 0x3d8, 0x3d8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, [0xff, 0xff, 0x0, 0xffffff00], [], 'pimreg0\x00', 'bond_slave_0\x00', {}, {}, 0x6, 0x0, 0x3}, 0x2f2, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@dev={0xac, 0x14, 0x14, 0x1d}, 'caif0\x00', {0x7}}}}, {{@ipv6={@mcast1, @loopback, [], [0x0, 0x0, 0xffffffff], 'netdevsim0\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x118}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "ddabf53d9b1435965491f6531877000001e770b689f173dfa40b58c10327e3121114449fd20ba2be6eb0cde72a972f25170163232ed996b4789b9d00"}}}, {{@uncond, 0x0, 0xa8, 0x1d0}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x602, 'system_u:object_r:boot_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x508)

189.415432ms ago: executing program 3 (id=1367):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfdfffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe2(&(0x7f0000000040), 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f00000001c0)=@gcm_256={{0x303}, "8ddca14668eeeedf", "112ca1397c3228892698b29a77fe3d9c5f90f0239eee436a73f8155b30f9d330", "9c791800", "8452b959755e9c89"}, 0x38)
accept$inet6(r0, 0x0, &(0x7f0000000080))
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xb, &(0x7f00000008c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x18)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x40)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000400), 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYRESOCT], &(0x7f00000004c0)='GPL\x00', 0x208, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='kfree\x00', r2, 0x0, 0x4804}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = timerfd_create(0x9, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
timerfd_settime(r3, 0x0, &(0x7f0000007000)={{0x0, 0x4}, {0x0, 0x989680}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x8, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="698d46a56d933ef3217ac5c41cae1138ae4157bd85303f6b9b6a0e3c160265e64bf3aa3b531d0855dcdf66", @ANYRES8, @ANYRES16=r4], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000300), 0x800)
r5 = syz_open_dev$evdev(&(0x7f0000003040), 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$EVIOCGVERSION(r5, 0x80044501, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
fsopen(&(0x7f0000000180)='bpf\x00', 0x1)

186.069413ms ago: executing program 2 (id=1368):
r0 = socket$unix(0x1, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e22, @private=0xa010101}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f0000000300)=0x8)
getsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000040)={r3, 0x6}, &(0x7f0000000140)=0x8)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r4 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0x0, 0x0, &(0x7f0000000000), 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2, 0x31}, 0x50)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000200)=@delchain={0x2c, 0x5f, 0x333, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r7, {}, {0x5, 0x2}, {0x1, 0xe}}, [@TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x2c}}, 0x0)
bind$unix(r5, 0x0, 0x0)
listen(r5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='\r'], 0x50)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x880)
r8 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000004"], 0x50)
prlimit64(0x0, 0x7, 0x0, 0x0)
io_uring_enter(r8, 0x2219, 0x7721, 0x16, 0x0, 0x20)
connect$unix(r0, 0x0, 0x0)

107.96233ms ago: executing program 3 (id=1369):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)={'team0\x00', <r1=>0x0})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$TIOCL_BLANKSCREEN(r2, 0x4b67, &(0x7f0000000400))
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x2000a804)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = getegid()
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="b40000001800090000000000000000001c14"], 0xb4}}, 0x24040810)
r5 = geteuid()
r6 = semget$private(0x0, 0x1, 0x180)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r5, <r7=>r4}}, '\x00'})
semctl$IPC_SET(r6, 0x0, 0x1, &(0x7f0000000280)={{0x0, r5, r4, r5, r7, 0x80, 0x8010}, 0x82, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5})
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=@newtaction={0x14, 0x30, 0x400, 0x70bd25}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4000)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/18, @ANYRES32=r1], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x0)

87.774342ms ago: executing program 0 (id=1370):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000980)={0x802}, 0x10)
r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x10c000)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0x80, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x7a, 0x0, 0x1, 0x101, 0x0})
move_pages(0x0, 0x20a0, &(0x7f0000000040), &(0x7f0000001180), &(0x7f0000000000), 0x0)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000240)='tunl0\x00', 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=<r5=>r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYRES32=r4, @ANYRES8=r4, @ANYRESOCT, @ANYRES64=r1, @ANYRES32=0x0, @ANYRES32=r0, @ANYRES64, @ANYRES16=r2, @ANYRES32=r5], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r6}, 0x10)
r7 = getpid()
r8 = syz_pidfd_open(r7, 0x0)
r9 = pidfd_getfd(r8, r8, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r10 = getpid()
sched_setscheduler(r10, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
connect$unix(r11, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r12, &(0x7f0000000000), 0x651, 0x0)
setns(r9, 0x66020000)
syz_clone(0x50a60080, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB="300000001a00010000000000000000001c00", @ANYRESHEX], 0x30}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYBLOB="1c000000520001000200b4ec68c400"/28], 0x1c}}, 0x0)

64.808104ms ago: executing program 3 (id=1371):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18)
r2 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f0000000880)=[{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000000300)='5', 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0)

0s ago: executing program 3 (id=1372):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
sendmsg$NL80211_CMD_GET_WOWLAN(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, 0x0, 0x200, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x6d}, @val={0x8, 0x3, r1}, @void}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x80000}, 0x24000040)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0xcf47, 0x4cc, 0xffff, 0x9dff, 0x1, "8003e3ffff072000"})
write$binfmt_aout(r2, &(0x7f00000006c0)=ANY=[], 0xff2e)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000480), r3)
sendmsg$NLBL_CIPSOV4_C_ADD(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002dc0)=ANY=[@ANYBLOB="7c010000", @ANYRES16=r4, @ANYBLOB="07020000000000000000010000002c01088044b3078008000600b300000008000500ff00000008000600e10000000800050040ef116808000600cd00000008000600af00000008000500f712f706080006009600000034000780080006003c00004f08000500e2f05c100800050012c61f100800060066000000080005007118862e08000600fd0000001c00078008000500a156eb25080005000b608179080006007f0000003c000780080006009100000008000500a06e96730800060094000000080005004baa1d3f0800050038560852080005009889fe5708000600180000004400078008000600570000000800060059000000080006005a0000000800060097000000080006008300000008000500b252a030080006005000000008000600410000001400078008000500d9a9bc2c0800050075190a492c000480050003000100000005000300000000000500030001000000050003000000"], 0x17c}, 0x1, 0x0, 0x0, 0x20008000}, 0x40480d4)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000280), 0xffffffffffffffff)
r6 = openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x248e00, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={<r7=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000340)={<r8=>0xffffffffffffffff})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={<r9=>0xffffffffffffffff})
r10 = signalfd4(r2, &(0x7f00000003c0)={[0x3]}, 0x8, 0x800)
r11 = open(&(0x7f00000003c0)='.\x00', 0x100, 0x97)
getdents(r11, &(0x7f0000001fc0)=""/184, 0xb8)
r12 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x20, 0x10012, r12, 0x0)
r13 = openat$zero(0xffffffffffffff9c, &(0x7f0000000400), 0xa0400, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000440)={<r14=>0xffffffffffffffff})
sendmsg$NBD_CMD_RECONFIGURE(r3, &(0x7f00000005c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000580)={&(0x7f0000000480)={0xd4, r5, 0x2, 0x70bd25, 0x25dfdbfe, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x9}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xc}, @NBD_ATTR_SOCKETS={0x70, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r6}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r7}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r8}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r9}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r10}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r11}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r12}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r13}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r14}}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x29}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x6}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_CLIENT_FLAGS={0xc}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20008080}, 0x4048814)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x2, 0x7fff, 0x0, "b0bf1900070608000000fb0f00"})
r15 = syz_open_pts(r2, 0x206842)
r16 = dup3(r15, r2, 0x0)
ioctl$TIOCSTI(r16, 0x5412, &(0x7f0000000140)=0x12)

kernel console output (not intermixed with test programs):

.625977][ T4712] RBP: 00007f579ebaf090 R08: 0000000000000000 R09: 0000000000000000
[   69.625994][ T4712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   69.626035][ T4712] R13: 00007f57a03a6038 R14: 00007f57a03a5fa0 R15: 00007ffd67aa89c8
[   69.626054][ T4712]  </TASK>
[   70.054776][ T4717] loop1: detected capacity change from 0 to 512
[   70.061384][ T4717] EXT4-fs: Ignoring removed orlov option
[   70.070729][ T4717] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   70.148546][ T4717] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   70.156584][ T4717] EXT4-fs (loop1): orphan cleanup on readonly fs
[   70.164485][ T4717] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm +}[@: corrupted inode contents
[   70.176032][ T4717] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #16: comm +}[@: mark_inode_dirty error
[   70.187339][ T4717] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm +}[@: corrupted inode contents
[   70.205336][ T4717] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm +}[@: mark_inode_dirty error
[   70.216784][ T4717] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm +}[@: corrupted inode contents
[   70.228431][ T4717] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[   70.237176][ T4717] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm +}[@: corrupted inode contents
[   70.249490][ T4717] EXT4-fs error (device loop1): ext4_truncate:4635: inode #16: comm +}[@: mark_inode_dirty error
[   70.260306][ T4717] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[   70.269903][ T4717] EXT4-fs (loop1): 1 truncate cleaned up
[   70.491068][   T12] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   70.500989][   T12] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:0: Failed to release dquot type 1
[   70.515183][ T4717] EXT4-fs mount: 9 callbacks suppressed
[   70.515194][ T4717] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.534041][ T4717] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.547578][   T12] Bluetooth: hci1: Frame reassembly failed (-84)
[   70.796348][ T4742] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=53731 sclass=netlink_route_socket pid=4742 comm=syz.3.426
[   70.841680][ T3320] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   70.852798][ T3320] CPU: 0 UID: 0 PID: 3320 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[   70.852832][ T3320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   70.852849][ T3320] Call Trace:
[   70.852857][ T3320]  <TASK>
[   70.852867][ T3320]  __dump_stack+0x1d/0x30
[   70.852892][ T3320]  dump_stack_lvl+0x95/0xd0
[   70.853032][ T3320]  dump_stack+0x15/0x1b
[   70.853059][ T3320]  dump_header+0x81/0x240
[   70.853083][ T3320]  oom_kill_process+0x295/0x350
[   70.853106][ T3320]  out_of_memory+0x97b/0xb80
[   70.853130][ T3320]  try_charge_memcg+0x610/0xa10
[   70.853224][ T3320]  charge_memcg+0x51/0xc0
[   70.853266][ T3320]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   70.853320][ T3320]  __read_swap_cache_async+0x17b/0x2d0
[   70.853355][ T3320]  swap_cluster_readahead+0x262/0x3c0
[   70.853453][ T3320]  swapin_readahead+0xde/0x820
[   70.853491][ T3320]  ? next_uptodate_folio+0x81c/0x890
[   70.853527][ T3320]  ? percpu_counter_add_batch+0xb6/0x130
[   70.853557][ T3320]  ? __rcu_read_unlock+0x4f/0x70
[   70.853654][ T3320]  ? swap_cache_get_folio+0x277/0x280
[   70.853728][ T3320]  do_swap_page+0x2b4/0x21e0
[   70.853774][ T3320]  ? __pfx_default_wake_function+0x10/0x10
[   70.853819][ T3320]  handle_mm_fault+0x9d8/0x2c60
[   70.853871][ T3320]  do_user_addr_fault+0x630/0x1080
[   70.853905][ T3320]  exc_page_fault+0x62/0xa0
[   70.853990][ T3320]  asm_exc_page_fault+0x26/0x30
[   70.854073][ T3320] RIP: 0033:0x7f145fee5fd7
[   70.854092][ T3320] Code: 00 00 48 b8 db 34 b6 d7 82 de 1b 43 48 f7 a4 24 98 00 00 00 48 8b 05 c8 f7 ea 00 48 69 8c 24 90 00 00 00 e8 03 00 00 8b 78 08 <48> 8b 44 24 18 48 c1 ea 12 4c 8b 0d d9 f6 ea 00 48 01 d1 39 7c 24
[   70.854115][ T3320] RSP: 002b:00007ffd8f8f0540 EFLAGS: 00010202
[   70.854136][ T3320] RAX: 0000001b33b24000 RBX: 00000000000000f0 RCX: 0000000000011170
[   70.854152][ T3320] RDX: 000000000a8e94e6 RSI: 00007ffd8f8f05d0 RDI: 000000000000000f
[   70.854168][ T3320] RBP: 00007ffd8f8f057c R08: 00000000284587e4 R09: 7fffffffffffffff
[   70.854185][ T3320] R10: 3fffffffffffffff R11: 0000000000000202 R12: 0000000000001388
[   70.854211][ T3320] R13: 00000000000927c0 R14: 00000000000113d4 R15: 00007ffd8f8f05d0
[   70.854231][ T3320]  </TASK>
[   70.854237][ T3320] memory: usage 307200kB, limit 307200kB, failcnt 704
[   70.897815][   T29] audit: type=1400 audit(1766426476.452:4470): avc:  denied  { setopt } for  pid=4744 comm="syz.1.427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   70.898325][ T3320] memory+swap: usage 306340kB, limit 9007199254740988kB, failcnt 0
[   71.098940][ T3320] kmem: usage 222124kB, limit 9007199254740988kB, failcnt 0
[   71.106265][ T3320] Memory cgroup stats for /syz2:
[   71.111085][ T3320] cache 0
[   71.119224][ T3320] rss 12288
[   71.122370][ T3320] shmem 0
[   71.125326][ T3320] mapped_file 0
[   71.128827][ T3320] dirty 0
[   71.131793][ T3320] writeback 0
[   71.135107][ T3320] workingset_refault_anon 8
[   71.139714][ T3320] workingset_refault_file 10
[   71.144318][ T3320] swap 172032
[   71.147693][ T3320] swapcached 8192
[   71.151355][ T3320] pgpgin 45300
[   71.154881][ T3320] pgpgout 45295
[   71.157671][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   71.158487][ T3320] pgfault 54823
[   71.167976][ T3320] pgmajfault 11
[   71.171453][ T3320] inactive_anon 8192
[   71.175366][ T3320] active_anon 12288
[   71.179234][ T3320] inactive_file 0
[   71.182885][ T3320] active_file 0
[   71.186364][ T3320] unevictable 0
[   71.189873][ T3320] hierarchical_memory_limit 314572800
[   71.195260][ T3320] hierarchical_memsw_limit 9223372036854771712
[   71.201464][ T3320] total_cache 0
[   71.204993][ T3320] total_rss 12288
[   71.208680][ T3320] total_shmem 0
[   71.212202][ T3320] total_mapped_file 0
[   71.216209][ T3320] total_dirty 0
[   71.219742][ T3320] total_writeback 0
[   71.223589][ T3320] total_workingset_refault_anon 8
[   71.228650][ T3320] total_workingset_refault_file 10
[   71.233778][ T3320] total_swap 172032
[   71.237967][ T3320] total_swapcached 8192
[   71.242146][ T3320] total_pgpgin 45300
[   71.246062][ T3320] total_pgpgout 45295
[   71.250127][ T3320] total_pgfault 54823
[   71.254130][ T3320] total_pgmajfault 11
[   71.258161][ T3320] total_inactive_anon 8192
[   71.262605][ T3320] total_active_anon 12288
[   71.266950][ T3320] total_inactive_file 0
[   71.271160][ T3320] total_active_file 0
[   71.275221][ T3320] total_unevictable 0
[   71.279238][ T3320] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.425,pid=4737,uid=0
[   71.294028][ T3320] Memory cgroup out of memory: Killed process 4737 (syz.2.425) total-vm:93836kB, anon-rss:1136kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   71.324331][ T4750] loop1: detected capacity change from 0 to 1024
[   71.352927][ T4750] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.430: bad orphan inode 134217728
[   71.366224][ T4750] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.427889][ T4758] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   71.465541][ T4760] netlink: 296 bytes leftover after parsing attributes in process `syz.2.433'.
[   71.587943][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.608851][ T4765] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   71.617876][ T4765] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   71.704720][   T29] audit: type=1326 audit(1766426477.272:4471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4754 comm="syz.3.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   71.729174][   T29] audit: type=1326 audit(1766426477.302:4472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4754 comm="syz.3.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   71.752574][   T29] audit: type=1326 audit(1766426477.302:4473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4754 comm="syz.3.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   71.776317][   T29] audit: type=1326 audit(1766426477.302:4474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4754 comm="syz.3.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   71.799739][   T29] audit: type=1326 audit(1766426477.302:4475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4754 comm="syz.3.432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   71.824005][    C0] hrtimer: interrupt took 58930 ns
[   71.826126][ T4774] netlink: 12 bytes leftover after parsing attributes in process `syz.0.437'.
[   71.900797][ T4777] netlink: 'syz.0.438': attribute type 1 has an invalid length.
[   71.914070][ T4777] 8021q: adding VLAN 0 to HW filter on device bond1
[   71.923587][ T4777] netlink: 4 bytes leftover after parsing attributes in process `syz.0.438'.
[   71.934917][ T4777] bond1 (unregistering): Released all slaves
[   72.023602][ T4782] SELinux: failed to load policy
[   72.211213][ T4792] capability: warning: `syz.0.444' uses deprecated v2 capabilities in a way that may be insecure
[   72.233902][ T4795] FAULT_INJECTION: forcing a failure.
[   72.233902][ T4795] name failslab, interval 1, probability 0, space 0, times 0
[   72.246590][ T4795] CPU: 0 UID: 0 PID: 4795 Comm: syz.1.445 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   72.246705][ T4795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   72.246782][ T4795] Call Trace:
[   72.246789][ T4795]  <TASK>
[   72.246795][ T4795]  __dump_stack+0x1d/0x30
[   72.246825][ T4795]  dump_stack_lvl+0x95/0xd0
[   72.246849][ T4795]  dump_stack+0x15/0x1b
[   72.246870][ T4795]  should_fail_ex+0x265/0x280
[   72.246943][ T4795]  should_failslab+0x8c/0xb0
[   72.247025][ T4795]  kmem_cache_alloc_node_noprof+0x6b/0x4c0
[   72.247049][ T4795]  ? __alloc_skb+0x2ff/0x4b0
[   72.247081][ T4795]  __alloc_skb+0x2ff/0x4b0
[   72.247180][ T4795]  tcp_stream_alloc_skb+0x2d/0x1d0
[   72.247217][ T4795]  tcp_sendmsg_locked+0xcbf/0x2c00
[   72.247328][ T4795]  ? __rcu_read_unlock+0x4f/0x70
[   72.247412][ T4795]  ? __pfx_tcp_sendmsg+0x10/0x10
[   72.247447][ T4795]  tcp_sendmsg+0x2f/0x50
[   72.247473][ T4795]  inet_sendmsg+0x76/0xd0
[   72.247517][ T4795]  __sock_sendmsg+0x102/0x180
[   72.247542][ T4795]  __sys_sendto+0x268/0x330
[   72.247605][ T4795]  __x64_sys_sendto+0x76/0x90
[   72.247715][ T4795]  x64_sys_call+0x29a7/0x3000
[   72.247748][ T4795]  do_syscall_64+0xca/0x2b0
[   72.247837][ T4795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.247862][ T4795] RIP: 0033:0x7f57a014f749
[   72.247876][ T4795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   72.247896][ T4795] RSP: 002b:00007f579ebaf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   72.247921][ T4795] RAX: ffffffffffffffda RBX: 00007f57a03a5fa0 RCX: 00007f57a014f749
[   72.247977][ T4795] RDX: ffffffffffffff94 RSI: 0000200000000000 RDI: 0000000000000003
[   72.247989][ T4795] RBP: 00007f579ebaf090 R08: 0000000000000000 R09: 0000000000000000
[   72.248001][ T4795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   72.248013][ T4795] R13: 00007f57a03a6038 R14: 00007f57a03a5fa0 R15: 00007ffd67aa89c8
[   72.248035][ T4795]  </TASK>
[   72.521338][ T4801] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   72.529900][ T4801] tipc: Disabling bearer <eth:syzkaller0>
[   72.597579][ T3553] Bluetooth: hci1: command 0x1003 tx timeout
[   72.597942][   T44] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   72.634089][ T4803] SELinux: failed to load policy
[   72.692162][ T4816] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   72.700777][ T4816] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   72.733286][ T4819] netlink: 'syz.2.451': attribute type 11 has an invalid length.
[   73.156954][ T4843] netlink: 'syz.1.463': attribute type 1 has an invalid length.
[   73.209899][ T4847] SELinux: failed to load policy
[   73.419915][ T4861] netlink: 12 bytes leftover after parsing attributes in process `syz.0.469'.
[   73.803962][ T4885] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   73.813210][ T4885] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   74.109531][   T29] kauditd_printk_skb: 369 callbacks suppressed
[   74.109550][   T29] audit: type=1326 audit(1766426479.682:4845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.158912][ T4893] SELinux: failed to load policy
[   74.160498][   T29] audit: type=1326 audit(1766426479.682:4846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.187579][   T29] audit: type=1326 audit(1766426479.682:4847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.211174][   T29] audit: type=1326 audit(1766426479.682:4848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.234546][   T29] audit: type=1326 audit(1766426479.722:4849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.257990][   T29] audit: type=1326 audit(1766426479.722:4850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.281405][   T29] audit: type=1326 audit(1766426479.722:4851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.304828][   T29] audit: type=1326 audit(1766426479.722:4852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.328254][   T29] audit: type=1326 audit(1766426479.722:4853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.351638][   T29] audit: type=1326 audit(1766426479.722:4854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4892 comm="syz.1.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57a014f749 code=0x7ffc0000
[   74.463715][ T4901] netlink: 'syz.1.480': attribute type 11 has an invalid length.
[   74.473164][ T4904] FAULT_INJECTION: forcing a failure.
[   74.473164][ T4904] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   74.486377][ T4904] CPU: 1 UID: 0 PID: 4904 Comm: syz.0.484 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   74.486460][ T4904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   74.486472][ T4904] Call Trace:
[   74.486480][ T4904]  <TASK>
[   74.486489][ T4904]  __dump_stack+0x1d/0x30
[   74.486532][ T4904]  dump_stack_lvl+0x95/0xd0
[   74.486561][ T4904]  dump_stack+0x15/0x1b
[   74.486587][ T4904]  should_fail_ex+0x265/0x280
[   74.486617][ T4904]  should_fail+0xb/0x20
[   74.486706][ T4904]  should_fail_usercopy+0x1a/0x20
[   74.486737][ T4904]  strncpy_from_user+0x27/0x260
[   74.486815][ T4904]  strncpy_from_user_nofault+0x68/0xf0
[   74.486849][ T4904]  bpf_probe_read_user_str+0x2a/0x70
[   74.486948][ T4904]  bpf_prog_7f11bb5dfa26a882+0x43/0x49
[   74.486972][ T4904]  bpf_trace_run2+0x107/0x1d0
[   74.487006][ T4904]  ? mISDN_close+0x149/0x200
[   74.487113][ T4904]  ? mISDN_close+0x149/0x200
[   74.487135][ T4904]  kfree+0x353/0x3c0
[   74.487155][ T4904]  mISDN_close+0x149/0x200
[   74.487187][ T4904]  ? __pfx_mISDN_close+0x10/0x10
[   74.487212][ T4904]  __fput+0x29b/0x650
[   74.487273][ T4904]  fput_close_sync+0xad/0x190
[   74.487301][ T4904]  __x64_sys_close+0x56/0xf0
[   74.487398][ T4904]  x64_sys_call+0x2c25/0x3000
[   74.487427][ T4904]  do_syscall_64+0xca/0x2b0
[   74.487480][ T4904]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.487506][ T4904] RIP: 0033:0x7f87cba8f749
[   74.487521][ T4904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.487538][ T4904] RSP: 002b:00007f87ca4ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[   74.487619][ T4904] RAX: ffffffffffffffda RBX: 00007f87cbce5fa0 RCX: 00007f87cba8f749
[   74.487635][ T4904] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   74.487650][ T4904] RBP: 00007f87ca4ef090 R08: 0000000000000000 R09: 0000000000000000
[   74.487665][ T4904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   74.487683][ T4904] R13: 00007f87cbce6038 R14: 00007f87cbce5fa0 R15: 00007fff30640158
[   74.487702][ T4904]  </TASK>
[   74.792591][ T4911] netlink: 44 bytes leftover after parsing attributes in process `syz.1.485'.
[   74.801543][ T4911] netlink: 43 bytes leftover after parsing attributes in process `syz.1.485'.
[   74.810582][ T4911] netlink: 'syz.1.485': attribute type 6 has an invalid length.
[   74.818303][ T4911] netlink: 'syz.1.485': attribute type 5 has an invalid length.
[   74.825955][ T4911] netlink: 43 bytes leftover after parsing attributes in process `syz.1.485'.
[   74.942420][ T4919] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   74.958771][ T4919] tipc: Disabling bearer <eth:syzkaller0>
[   74.973260][ T4927] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   74.983219][ T4927] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   75.068558][ T4938] netlink: 'syz.4.497': attribute type 11 has an invalid length.
[   75.308395][ T4954] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   75.316738][ T4954] tipc: Disabling bearer <eth:syzkaller0>
[   75.830478][ T4971] siw: device registration error -23
[   75.967979][ T4977] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   76.387750][ T4988] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   76.400617][ T4988] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   76.845198][ T4992] SELinux:  policydb magic number 0x1 does not match expected magic number 0xf97cff8c
[   76.855215][ T4992] SELinux: failed to load policy
[   77.109229][ T5011] loop3: detected capacity change from 0 to 1024
[   77.116357][ T5011] EXT4-fs: Mount option(s) incompatible with ext3
[   77.157479][ T3553] Bluetooth: hci0: command 0x1003 tx timeout
[   77.157503][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   77.191812][ T5020] FAULT_INJECTION: forcing a failure.
[   77.191812][ T5020] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   77.205137][ T5020] CPU: 1 UID: 0 PID: 5020 Comm: syz.1.527 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   77.205196][ T5020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   77.205213][ T5020] Call Trace:
[   77.205220][ T5020]  <TASK>
[   77.205230][ T5020]  __dump_stack+0x1d/0x30
[   77.205260][ T5020]  dump_stack_lvl+0x95/0xd0
[   77.205282][ T5020]  dump_stack+0x15/0x1b
[   77.205335][ T5020]  should_fail_ex+0x265/0x280
[   77.205360][ T5020]  should_fail_alloc_page+0xf2/0x100
[   77.205447][ T5020]  __alloc_frozen_pages_noprof+0x109/0x360
[   77.205486][ T5020]  alloc_pages_mpol+0xb3/0x260
[   77.205575][ T5020]  alloc_pages_noprof+0x90/0x130
[   77.205602][ T5020]  __pud_alloc+0x47/0x4b0
[   77.205632][ T5020]  handle_mm_fault+0x18b5/0x2c60
[   77.205729][ T5020]  ? __rcu_read_unlock+0x4f/0x70
[   77.205754][ T5020]  ? mt_find+0x21b/0x330
[   77.205823][ T5020]  do_user_addr_fault+0x3fe/0x1080
[   77.205880][ T5020]  exc_page_fault+0x62/0xa0
[   77.205911][ T5020]  asm_exc_page_fault+0x26/0x30
[   77.205928][ T5020] RIP: 0010:__get_user_4+0x14/0x20
[   77.206003][ T5020] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 48 ba 00 f0 ff ff ff 7f 00 00 48 39 d0 48 0f 47 c2 0f 01 cb <8b> 10 31 c0 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90
[   77.206018][ T5020] RSP: 0018:ffffc9000148fe48 EFLAGS: 00050287
[   77.206032][ T5020] RAX: 0000200000000000 RBX: 0000200000000000 RCX: ffffffff81d3d235
[   77.206043][ T5020] RDX: 00007ffffffff000 RSI: 0000000000000000 RDI: ffffc9000148fe6c
[   77.206053][ T5020] RBP: 0000000000000000 R08: 0001c9000148fe6f R09: 0000000000000000
[   77.206064][ T5020] R10: ffffc9000148fe70 R11: 0001c9000148fe70 R12: ffff88811b1f4200
[   77.206149][ T5020] R13: 0000000000000000 R14: 0000000000000064 R15: 0000200000000040
[   77.206163][ T5020]  ? security_getselfattr+0x75/0x500
[   77.206183][ T5020]  security_getselfattr+0x85/0x500
[   77.206208][ T5020]  ? fput+0x8f/0xc0
[   77.206325][ T5020]  __x64_sys_lsm_get_self_attr+0x51/0x60
[   77.206352][ T5020]  x64_sys_call+0x2f69/0x3000
[   77.206374][ T5020]  do_syscall_64+0xca/0x2b0
[   77.206455][ T5020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.206473][ T5020] RIP: 0033:0x7f57a014f749
[   77.206485][ T5020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.206502][ T5020] RSP: 002b:00007f579ebaf038 EFLAGS: 00000246 ORIG_RAX: 00000000000001cb
[   77.206550][ T5020] RAX: ffffffffffffffda RBX: 00007f57a03a5fa0 RCX: 00007f57a014f749
[   77.206560][ T5020] RDX: 0000200000000000 RSI: 0000200000000040 RDI: 0000000000000064
[   77.206571][ T5020] RBP: 00007f579ebaf090 R08: 0000000000000000 R09: 0000000000000000
[   77.206581][ T5020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   77.206654][ T5020] R13: 00007f57a03a6038 R14: 00007f57a03a5fa0 R15: 00007ffd67aa89c8
[   77.206671][ T5020]  </TASK>
[   77.519685][ T5026] 9p: Bad value for 'wfdno'
[   77.527911][ T5022] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   77.785913][ T5038] SELinux: failed to load policy
[   77.847843][ T5040] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   78.317914][ T5080] FAULT_INJECTION: forcing a failure.
[   78.317914][ T5080] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.331199][ T5080] CPU: 0 UID: 0 PID: 5080 Comm: syz.1.547 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.331225][ T5080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   78.331316][ T5080] Call Trace:
[   78.331323][ T5080]  <TASK>
[   78.331332][ T5080]  __dump_stack+0x1d/0x30
[   78.331362][ T5080]  dump_stack_lvl+0x95/0xd0
[   78.331387][ T5080]  dump_stack+0x15/0x1b
[   78.331407][ T5080]  should_fail_ex+0x265/0x280
[   78.331469][ T5080]  should_fail+0xb/0x20
[   78.331494][ T5080]  should_fail_usercopy+0x1a/0x20
[   78.331533][ T5080]  _copy_from_user+0x1c/0xb0
[   78.331570][ T5080]  do_sock_getsockopt+0xf1/0x210
[   78.331601][ T5080]  __x64_sys_getsockopt+0x11e/0x1a0
[   78.331636][ T5080]  x64_sys_call+0x2dc7/0x3000
[   78.331705][ T5080]  do_syscall_64+0xca/0x2b0
[   78.331817][ T5080]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.331846][ T5080] RIP: 0033:0x7f57a014f749
[   78.331866][ T5080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.331936][ T5080] RSP: 002b:00007f579ebaf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   78.331956][ T5080] RAX: ffffffffffffffda RBX: 00007f57a03a5fa0 RCX: 00007f57a014f749
[   78.331987][ T5080] RDX: 000000000000007b RSI: 0000000000000084 RDI: 0000000000000003
[   78.332000][ T5080] RBP: 00007f579ebaf090 R08: 0000200000000080 R09: 0000000000000000
[   78.332022][ T5080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   78.332042][ T5080] R13: 00007f57a03a6038 R14: 00007f57a03a5fa0 R15: 00007ffd67aa89c8
[   78.332093][ T5080]  </TASK>
[   78.362399][ T5049] syz.3.536 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[   78.483621][ T5083] SELinux: failed to load policy
[   78.485110][ T5049] CPU: 1 UID: 0 PID: 5049 Comm: syz.3.536 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   78.485207][ T5049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   78.485254][ T5049] Call Trace:
[   78.485276][ T5049]  <TASK>
[   78.485307][ T5049]  __dump_stack+0x1d/0x30
[   78.485384][ T5049]  dump_stack_lvl+0x95/0xd0
[   78.485453][ T5049]  dump_stack+0x15/0x1b
[   78.485516][ T5049]  dump_header+0x81/0x240
[   78.485602][ T5049]  oom_kill_process+0x295/0x350
[   78.485678][ T5049]  out_of_memory+0x97b/0xb80
[   78.485770][ T5049]  try_charge_memcg+0x610/0xa10
[   78.485864][ T5049]  charge_memcg+0x51/0xc0
[   78.485998][ T5049]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[   78.486115][ T5049]  __read_swap_cache_async+0x17b/0x2d0
[   78.486265][ T5049]  swap_cluster_readahead+0x262/0x3c0
[   78.486433][ T5049]  swapin_readahead+0xde/0x820
[   78.486526][ T5049]  ? mod_memcg_lruvec_state+0x1a1/0x280
[   78.486611][ T5049]  ? __rcu_read_unlock+0x34/0x70
[   78.486630][ T5049]  ? __rcu_read_unlock+0x4f/0x70
[   78.486771][ T5049]  ? swap_cache_get_folio+0x277/0x280
[   78.486859][ T5049]  do_swap_page+0x2b4/0x21e0
[   78.486962][ T5049]  ? __pfx_default_wake_function+0x10/0x10
[   78.487146][ T5049]  handle_mm_fault+0x9d8/0x2c60
[   78.487291][ T5049]  do_user_addr_fault+0x630/0x1080
[   78.487511][ T5049]  exc_page_fault+0x62/0xa0
[   78.487604][ T5049]  asm_exc_page_fault+0x26/0x30
[   78.487709][ T5049] RIP: 0033:0x7f50faca59ec
[   78.487763][ T5049] Code: 66 0f 1f 44 00 00 69 3d c6 fc ea 00 e8 03 00 00 48 8d 1d c7 05 38 00 e8 c2 9c 12 00 eb 0c 48 81 c3 f0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[   78.487820][ T5049] RSP: 002b:00007ffcf1014fe0 EFLAGS: 00010206
[   78.487873][ T5049] RAX: 0000000000000000 RBX: 00007f50fb025fa0 RCX: 0000000000000000
[   78.487946][ T5049] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055557cd13808
[   78.488067][ T5049] RBP: 00007f50fb027da0 R08: 0000000000000000 R09: 7fffffffffffffff
[   78.488120][ T5049] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000133cf
[   78.488162][ T5049] R13: 00007ffcf10150d0 R14: ffffffffffffffff R15: 00007ffcf10150f0
[   78.488289][ T5049]  </TASK>
[   78.488386][ T5049] memory: usage 307200kB, limit 307200kB, failcnt 10146
[   78.727731][ T5049] memory+swap: usage 222864kB, limit 9007199254740988kB, failcnt 0
[   78.735658][ T5049] kmem: usage 217176kB, limit 9007199254740988kB, failcnt 0
[   78.743148][ T5049] Memory cgroup stats for /syz3:
[   78.749066][ T5049] cache 4096
[   78.757266][ T5049] rss 20480
[   78.760422][ T5049] shmem 0
[   78.763429][ T5049] mapped_file 4096
[   78.767190][ T5049] dirty 0
[   78.770195][ T5049] writeback 4096
[   78.773757][ T5049] workingset_refault_anon 200
[   78.778517][ T5049] workingset_refault_file 867
[   78.783248][ T5049] swap 180224
[   78.786548][ T5049] swapcached 12288
[   78.790300][ T5049] pgpgin 72518
[   78.793762][ T5049] pgpgout 72512
[   78.797294][ T5049] pgfault 69087
[   78.800788][ T5049] pgmajfault 94
[   78.804292][ T5049] inactive_anon 4096
[   78.808368][ T5049] active_anon 16384
[   78.812183][ T5049] inactive_file 0
[   78.815841][ T5049] active_file 4096
[   78.819626][ T5049] unevictable 0
[   78.823197][ T5049] hierarchical_memory_limit 314572800
[   78.828602][ T5049] hierarchical_memsw_limit 9223372036854771712
[   78.834818][ T5049] total_cache 4096
[   78.838577][ T5049] total_rss 20480
[   78.842231][ T5049] total_shmem 0
[   78.845709][ T5049] total_mapped_file 4096
[   78.850062][ T5049] total_dirty 0
[   78.853546][ T5049] total_writeback 4096
[   78.857652][ T5049] total_workingset_refault_anon 200
[   78.862891][ T5049] total_workingset_refault_file 867
[   78.868126][ T5049] total_swap 180224
[   78.871956][ T5049] total_swapcached 12288
[   78.876219][ T5049] total_pgpgin 72518
[   78.880245][ T5049] total_pgpgout 72512
[   78.884240][ T5049] total_pgfault 69087
[   78.888267][ T5049] total_pgmajfault 94
[   78.892360][ T5049] total_inactive_anon 4096
[   78.896788][ T5049] total_active_anon 16384
[   78.901154][ T5049] total_inactive_file 0
[   78.905330][ T5049] total_active_file 4096
[   78.909616][ T5049] total_unevictable 0
[   78.913666][ T5049] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.536,pid=5049,uid=0
[   78.928367][ T5049] Memory cgroup out of memory: Killed process 5049 (syz.3.536) total-vm:93836kB, anon-rss:1264kB, file-rss:22312kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   79.090970][ T5092] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   79.110422][ T5092] tipc: Disabling bearer <eth:syzkaller0>
[   79.204752][ T5110] netlink: 'syz.3.559': attribute type 2 has an invalid length.
[   79.208799][ T5105] loop1: detected capacity change from 0 to 1024
[   79.212619][ T5110] netlink: 'syz.3.559': attribute type 1 has an invalid length.
[   79.226639][ T5110] netlink: 5 bytes leftover after parsing attributes in process `syz.3.559'.
[   79.256225][ T5105] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.558: bad orphan inode 134217728
[   79.268013][ T5105] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.285690][   T29] kauditd_printk_skb: 692 callbacks suppressed
[   79.285724][   T29] audit: type=1326 audit(1766426484.852:5547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5117 comm="syz.0.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[   79.362221][   T29] audit: type=1326 audit(1766426484.892:5548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5117 comm="syz.0.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[   79.385654][   T29] audit: type=1326 audit(1766426484.892:5549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5117 comm="syz.0.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[   79.409044][   T29] audit: type=1326 audit(1766426484.892:5550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5117 comm="syz.0.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[   79.432452][   T29] audit: type=1326 audit(1766426484.892:5551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5117 comm="syz.0.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[   79.455810][   T29] audit: type=1326 audit(1766426484.892:5552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5117 comm="syz.0.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[   79.455875][   T29] audit: type=1326 audit(1766426484.902:5553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5109 comm="syz.3.559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   79.455915][   T29] audit: type=1326 audit(1766426484.902:5554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5109 comm="syz.3.559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   79.456004][   T29] audit: type=1326 audit(1766426484.902:5555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5109 comm="syz.3.559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   79.456113][   T29] audit: type=1326 audit(1766426484.902:5556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5109 comm="syz.3.559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   79.540261][ T5131] netlink: 16 bytes leftover after parsing attributes in process `syz.3.563'.
[   79.551861][ T5126] netlink: 'syz.2.560': attribute type 11 has an invalid length.
[   79.709546][ T5140] SELinux: failed to load policy
[   79.849164][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.952605][ T5155] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   79.963253][ T5155] tipc: Disabling bearer <eth:syzkaller0>
[   80.031617][ T5163] netlink: 16 bytes leftover after parsing attributes in process `syz.3.576'.
[   80.042139][ T5159] loop0: detected capacity change from 0 to 1024
[   80.067616][ T5159] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.575: bad orphan inode 134217728
[   80.103219][ T5159] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.116903][ T5173] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   80.151406][ T5178] loop3: detected capacity change from 0 to 1024
[   80.161219][ T5178] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.582: bad orphan inode 134217728
[   80.172512][ T5178] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.261092][ T5188] SELinux: failed to load policy
[   80.451664][ T5196] FAULT_INJECTION: forcing a failure.
[   80.451664][ T5196] name failslab, interval 1, probability 0, space 0, times 0
[   80.464456][ T5196] CPU: 1 UID: 0 PID: 5196 Comm: syz.4.587 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   80.464602][ T5196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   80.464615][ T5196] Call Trace:
[   80.464622][ T5196]  <TASK>
[   80.464631][ T5196]  __dump_stack+0x1d/0x30
[   80.464663][ T5196]  dump_stack_lvl+0x95/0xd0
[   80.464745][ T5196]  dump_stack+0x15/0x1b
[   80.464769][ T5196]  should_fail_ex+0x265/0x280
[   80.464796][ T5196]  should_failslab+0x8c/0xb0
[   80.464844][ T5196]  kmem_cache_alloc_noprof+0x69/0x4b0
[   80.464872][ T5196]  ? getname_flags+0x80/0x3b0
[   80.464938][ T5196]  getname_flags+0x80/0x3b0
[   80.464971][ T5196]  user_path_at+0x28/0x130
[   80.465014][ T5196]  do_sys_truncate+0x5c/0x130
[   80.465053][ T5196]  __x64_sys_truncate+0x31/0x40
[   80.465080][ T5196]  x64_sys_call+0x1864/0x3000
[   80.465113][ T5196]  do_syscall_64+0xca/0x2b0
[   80.465159][ T5196]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.465213][ T5196] RIP: 0033:0x7fe5759ff749
[   80.465228][ T5196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.465250][ T5196] RSP: 002b:00007fe574467038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c
[   80.465275][ T5196] RAX: ffffffffffffffda RBX: 00007fe575c55fa0 RCX: 00007fe5759ff749
[   80.465348][ T5196] RDX: 0000000000000000 RSI: 0000000000002000 RDI: 0000200000000040
[   80.465371][ T5196] RBP: 00007fe574467090 R08: 0000000000000000 R09: 0000000000000000
[   80.465455][ T5196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.465467][ T5196] R13: 00007fe575c56038 R14: 00007fe575c55fa0 R15: 00007ffd2c79c8e8
[   80.465486][ T5196]  </TASK>
[   80.746790][ T5202] netlink: 8 bytes leftover after parsing attributes in process `syz.4.589'.
[   80.898668][ T3321] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.923880][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.934622][ T5213] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   81.006001][ T5217] netlink: 296 bytes leftover after parsing attributes in process `syz.3.594'.
[   81.115992][ T5230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.600'.
[   81.161914][   T31] Bluetooth: hci0: Frame reassembly failed (-84)
[   81.780211][ T5250] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   81.788874][ T5250] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   82.004676][ T5255] loop0: detected capacity change from 0 to 1024
[   82.019009][ T5255] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.607: bad orphan inode 134217728
[   82.038670][ T5255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.131525][ T5260] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.608' sets config #0
[   82.323044][ T3321] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.438462][ T5284] loop0: detected capacity change from 0 to 512
[   82.445262][ T5284] EXT4-fs: Ignoring removed i_version option
[   82.451505][ T5284] EXT4-fs: Ignoring removed bh option
[   82.469339][ T5284] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.484389][ T5284] ext4 filesystem being mounted at /111/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   82.508882][ T3321] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.906895][ T5303] netlink: 296 bytes leftover after parsing attributes in process `syz.2.625'.
[   83.115620][ T5306] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.124391][ T5306] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   83.237538][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   83.237809][ T5290] Bluetooth: hci0: command 0x1003 tx timeout
[   83.439198][ T5317] netlink: 296 bytes leftover after parsing attributes in process `syz.1.630'.
[   83.717813][ T5325] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   84.238568][ T5338] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[   84.437490][ T3553] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   84.444629][ T5348] netlink: 296 bytes leftover after parsing attributes in process `syz.1.642'.
[   84.580711][ T5356] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   84.594476][   T29] kauditd_printk_skb: 688 callbacks suppressed
[   84.594493][   T29] audit: type=1326 audit(1766426490.162:6245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   84.607515][ T3537] Bluetooth: hci2: Opcode 0x1003 failed: -110
[   84.628375][ T5358] netlink: 32 bytes leftover after parsing attributes in process `syz.4.646'.
[   84.656583][   T29] audit: type=1326 audit(1766426490.202:6246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   84.679929][   T29] audit: type=1326 audit(1766426490.202:6247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   84.688831][ T5360] FAULT_INJECTION: forcing a failure.
[   84.688831][ T5360] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.703325][   T29] audit: type=1326 audit(1766426490.202:6248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   84.716608][ T5360] CPU: 0 UID: 0 PID: 5360 Comm: syz.3.647 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   84.716742][ T5360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   84.716863][ T5360] Call Trace:
[   84.716892][ T5360]  <TASK>
[   84.716914][ T5360]  __dump_stack+0x1d/0x30
[   84.716999][ T5360]  dump_stack_lvl+0x95/0xd0
[   84.717071][ T5360]  dump_stack+0x15/0x1b
[   84.717130][ T5360]  should_fail_ex+0x265/0x280
[   84.717254][ T5360]  should_fail+0xb/0x20
[   84.717383][ T5360]  should_fail_usercopy+0x1a/0x20
[   84.717471][ T5360]  _copy_from_user+0x1c/0xb0
[   84.717612][ T5360]  ___sys_sendmsg+0xc1/0x1d0
[   84.717742][ T5360]  __x64_sys_sendmsg+0xd4/0x160
[   84.717884][ T5360]  x64_sys_call+0x17ba/0x3000
[   84.717971][ T5360]  do_syscall_64+0xca/0x2b0
[   84.718143][ T5360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.718237][ T5360] RIP: 0033:0x7f50fadcf749
[   84.718290][ T5360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.718378][ T5360] RSP: 002b:00007f50f982f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   84.718396][ T5360] RAX: ffffffffffffffda RBX: 00007f50fb025fa0 RCX: 00007f50fadcf749
[   84.718408][ T5360] RDX: 0000000000004040 RSI: 0000200000000080 RDI: 0000000000000004
[   84.718420][ T5360] RBP: 00007f50f982f090 R08: 0000000000000000 R09: 0000000000000000
[   84.718431][ T5360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   84.718443][ T5360] R13: 00007f50fb026038 R14: 00007f50fb025fa0 R15: 00007ffcf1014e78
[   84.718528][ T5360]  </TASK>
[   84.759235][ T5364] loop0: detected capacity change from 0 to 164
[   84.759987][   T29] audit: type=1326 audit(1766426490.202:6249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   84.925102][ T5368] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[   84.928229][   T29] audit: type=1326 audit(1766426490.202:6250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   84.957938][   T29] audit: type=1326 audit(1766426490.222:6251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   84.981449][   T29] audit: type=1326 audit(1766426490.222:6252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   85.004895][   T29] audit: type=1326 audit(1766426490.222:6253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5357 comm="syz.4.646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[   85.098806][   T37] Bluetooth: hci0: Frame reassembly failed (-84)
[   85.112209][   T29] audit: type=1326 audit(1766426490.682:6254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.2.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   85.240501][ T5387] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   85.257925][ T5383] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   85.274316][ T5389] netlink: 32 bytes leftover after parsing attributes in process `syz.2.659'.
[   85.309317][ T5391] SELinux: failed to load policy
[   85.323205][ T5393] SELinux:  policydb magic number 0x1 does not match expected magic number 0xf97cff8c
[   85.332939][ T5393] SELinux: failed to load policy
[   85.452371][ T5397] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[   85.559962][ T5404] loop2: detected capacity change from 0 to 1024
[   85.582965][ T5408] SELinux: failed to load policy
[   85.591087][ T5404] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.664: bad orphan inode 134217728
[   85.603251][ T5404] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.861434][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.876401][ T5418] netlink: 296 bytes leftover after parsing attributes in process `syz.1.669'.
[   86.069431][ T5431] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[   86.128664][ T5440] siw: device registration error -23
[   86.230801][ T5447] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   86.310595][ T5447] ieee802154 phy0 wpan0: encryption failed: -22
[   86.577817][ T5467] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   86.764349][ T5475] netlink: 105116 bytes leftover after parsing attributes in process `syz.1.690'.
[   87.045757][ T5491] SELinux: failed to load policy
[   87.157796][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   87.236663][ T5498] SELinux:  policydb magic number 0x1 does not match expected magic number 0xf97cff8c
[   87.246640][ T5498] SELinux: failed to load policy
[   87.356043][ T5501] netlink: 296 bytes leftover after parsing attributes in process `syz.3.699'.
[   87.407683][ T5504] siw: device registration error -23
[   87.432776][ T5508] netlink: 105116 bytes leftover after parsing attributes in process `syz.3.702'.
[   87.464182][ T5512] netlink: 28 bytes leftover after parsing attributes in process `syz.3.704'.
[   87.473246][ T5512] netlink: 28 bytes leftover after parsing attributes in process `syz.3.704'.
[   87.657989][ T5523] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   87.816601][ T5532] netlink: 296 bytes leftover after parsing attributes in process `syz.4.710'.
[   87.932492][ T5539] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[   87.957918][ T5543] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   88.020749][ T5545] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   88.038383][ T5545] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   88.593995][ T5554] SELinux: failed to load policy
[   88.615844][ T5555] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   88.828736][ T5579] loop1: detected capacity change from 0 to 1024
[   88.849413][ T5579] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.727: bad orphan inode 134217728
[   88.860646][ T5579] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.917797][ T5584] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   89.100772][ T5596] loop2: detected capacity change from 0 to 1024
[   89.111057][ T5596] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.731: bad orphan inode 134217728
[   89.122562][ T5596] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.413404][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.516955][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.600131][ T5607] SELinux: failed to load policy
[   89.605325][   T29] kauditd_printk_skb: 1143 callbacks suppressed
[   89.605341][   T29] audit: type=1326 audit(1766426495.172:7398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.648817][   T29] audit: type=1326 audit(1766426495.212:7399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.672247][   T29] audit: type=1326 audit(1766426495.212:7400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.695680][   T29] audit: type=1326 audit(1766426495.212:7401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.719188][   T29] audit: type=1326 audit(1766426495.212:7402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.742546][   T29] audit: type=1326 audit(1766426495.212:7403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.765826][   T29] audit: type=1326 audit(1766426495.212:7404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.789702][   T29] audit: type=1326 audit(1766426495.212:7405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.813489][ T5617] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   89.841327][   T29] audit: type=1326 audit(1766426495.242:7406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.864842][   T29] audit: type=1326 audit(1766426495.242:7407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5606 comm="syz.2.733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[   89.945072][ T5625] loop3: detected capacity change from 0 to 1024
[   89.971297][ T5625] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.738: bad orphan inode 134217728
[   90.012492][ T5625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.031935][ T5631] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   90.079189][ T5635] SELinux:  policydb magic number 0x1 does not match expected magic number 0xf97cff8c
[   90.159456][ T5635] SELinux: failed to load policy
[   90.409340][ T5651] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   90.418031][ T5651] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   90.497043][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.561140][ T5656] SELinux: failed to load policy
[   90.621426][ T2466] Bluetooth: hci0: Frame reassembly failed (-84)
[   90.647412][ T5670] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   90.657850][ T5671] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   90.756649][ T5680] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[   90.879039][ T5692] siw: device registration error -23
[   90.918004][ T5693] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   90.984016][ T5697] SELinux: failed to load policy
[   91.116506][ T5706] netlink: 'syz.0.769': attribute type 11 has an invalid length.
[   91.170767][ T5708] SELinux: failed to load policy
[   91.275883][ T5715] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   91.415022][ T5722] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.424930][ T5722] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.535699][ T5731] SELinux:  policydb magic number 0x1 does not match expected magic number 0xf97cff8c
[   91.545522][ T5731] SELinux: failed to load policy
[   91.716888][ T5744] loop4: detected capacity change from 0 to 1024
[   91.726266][ T5744] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.785: bad orphan inode 134217728
[   91.737990][ T5744] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.981455][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.214255][ T5771] __nla_validate_parse: 1 callbacks suppressed
[   92.214271][ T5771] netlink: 256 bytes leftover after parsing attributes in process `syz.4.795'.
[   92.222901][ T5770] SELinux:  policydb magic number 0x1 does not match expected magic number 0xf97cff8c
[   92.239519][ T5770] SELinux: failed to load policy
[   92.243016][ T5771] netlink: 8 bytes leftover after parsing attributes in process `syz.4.795'.
[   92.254893][ T5771] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   92.270650][ T5771] loop4: detected capacity change from 0 to 512
[   92.277856][ T5771] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   92.289443][ T5771] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.302206][ T5771] ext4 filesystem being mounted at /135/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   92.335240][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.410190][ T5781] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   92.480210][ T5785] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   92.492973][ T5787] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   92.501689][ T5787] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.510532][ T5785] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   92.677608][ T3537] Bluetooth: hci0: command 0x1003 tx timeout
[   92.679481][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   92.920443][ T5796] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4112 sclass=netlink_route_socket pid=5796 comm=syz.2.804
[   92.933918][   T37] Bluetooth: hci0: Frame reassembly failed (-84)
[   92.936676][ T5796] netlink: 50 bytes leftover after parsing attributes in process `syz.2.804'.
[   93.119968][ T5808] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   93.201130][  T176] Bluetooth: hci1: Frame reassembly failed (-84)
[   93.413695][ T5822] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   93.439021][ T5824] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   93.447594][ T5824] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   93.484289][ T5826] loop4: detected capacity change from 0 to 512
[   93.491291][ T5826] EXT4-fs: Ignoring removed oldalloc option
[   93.499350][ T5826] EXT4-fs (loop4): 1 truncate cleaned up
[   93.505787][ T5826] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.587582][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.663946][   T37] Bluetooth: hci2: Frame reassembly failed (-84)
[   94.057793][ T5837] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   94.911080][   T29] kauditd_printk_skb: 504 callbacks suppressed
[   94.911098][   T29] audit: type=1326 audit(1766426500.482:7912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   94.917594][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   94.945904][   T29] audit: type=1326 audit(1766426500.482:7913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   94.974206][   T29] audit: type=1326 audit(1766426500.522:7914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   94.978322][ T5847] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   94.998303][   T29] audit: type=1326 audit(1766426500.522:7915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   95.031146][   T29] audit: type=1326 audit(1766426500.522:7916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   95.054661][   T29] audit: type=1326 audit(1766426500.522:7917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   95.078123][   T29] audit: type=1326 audit(1766426500.522:7918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   95.101574][   T29] audit: type=1326 audit(1766426500.522:7919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   95.125071][   T29] audit: type=1326 audit(1766426500.522:7920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f50fadd1667 code=0x7ffc0000
[   95.148493][   T29] audit: type=1326 audit(1766426500.522:7922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5845 comm="syz.3.824" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[   95.224398][  T176] Bluetooth: hci0: Frame reassembly failed (-84)
[   95.237506][ T5290] Bluetooth: hci1: command 0x1003 tx timeout
[   95.237668][ T3537] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   95.287635][ T5862] netlink: 204 bytes leftover after parsing attributes in process `syz.2.827'.
[   95.455727][ T5867] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   95.464967][ T5867] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   95.717570][ T3553] Bluetooth: hci2: Opcode 0x1003 failed: -110
[   95.719293][ T3537] Bluetooth: hci2: command 0x1003 tx timeout
[   96.687118][ T5910] loop4: detected capacity change from 0 to 1024
[   96.698888][ T5910] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.846: bad orphan inode 134217728
[   96.710269][ T5910] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.039607][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.065361][ T5917] loop0: detected capacity change from 0 to 1024
[   97.077334][ T5917] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.848: bad orphan inode 134217728
[   97.089859][ T5917] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.239344][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   97.505777][ T3321] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.618301][ T5955] netlink: 'syz.0.859': attribute type 11 has an invalid length.
[   97.628461][ T5956] netlink: 'syz.1.861': attribute type 11 has an invalid length.
[   97.900866][ T5985] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   97.909543][ T5985] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   97.998700][ T5990] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   98.071724][  T156] Bluetooth: hci0: Frame reassembly failed (-84)
[   98.409792][ T6012] loop2: detected capacity change from 0 to 2048
[   98.431011][ T6012] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[   98.740235][ T6030] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[   98.827638][ T6034] netlink: 4 bytes leftover after parsing attributes in process `syz.0.889'.
[   98.978605][ T6012] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   98.994280][ T6012] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[   99.007347][ T6012] EXT4-fs (loop2): This should not happen!! Data will be lost
[   99.007347][ T6012] 
[   99.017372][ T6012] EXT4-fs (loop2): Total free blocks count 0
[   99.023531][ T6012] EXT4-fs (loop2): Free/Dirty block details
[   99.029485][ T6012] EXT4-fs (loop2): free_blocks=2415919104
[   99.035227][ T6012] EXT4-fs (loop2): dirty_blocks=8192
[   99.040570][ T6012] EXT4-fs (loop2): Block reservation details
[   99.046695][ T6012] EXT4-fs (loop2): i_reserved_data_blocks=512
[   99.155743][   T31] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28
[   99.284449][ T6047] loop2: detected capacity change from 0 to 1024
[   99.298165][ T6047] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.891: bad orphan inode 134217728
[   99.309596][ T6047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.509582][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.530494][ T6057] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   99.539112][ T6057] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   99.585961][ T6063] loop4: detected capacity change from 0 to 512
[   99.593065][ T6063] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   99.609444][ T6063] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.899: inode has both inline data and extents flags
[   99.623058][ T6063] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.899: couldn't read orphan inode 17 (err -117)
[   99.635590][ T6063] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.663448][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.751019][ T6073] loop4: detected capacity change from 0 to 512
[   99.769629][ T6073] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.782266][ T6073] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.850270][ T6077] loop3: detected capacity change from 0 to 1024
[   99.859115][ T6077] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.903: bad orphan inode 134217728
[   99.870256][ T6077] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.895972][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.927742][   T29] kauditd_printk_skb: 852 callbacks suppressed
[   99.927770][   T29] audit: type=1400 audit(1766426505.492:8774): avc:  denied  { create } for  pid=6080 comm="syz.4.904" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  100.117560][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  100.117736][ T3553] Bluetooth: hci0: command 0x1003 tx timeout
[  100.176834][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.514525][ T6109] team0 (unregistering): Port device C removed
[  100.523448][ T6109] team0 (unregistering): Port device team_slave_1 removed
[  100.860627][   T29] audit: type=1326 audit(1766426506.422:8775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz.0.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  100.884238][   T29] audit: type=1326 audit(1766426506.422:8776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz.0.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  100.907728][   T29] audit: type=1326 audit(1766426506.422:8777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz.0.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  100.931376][   T29] audit: type=1326 audit(1766426506.422:8778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz.0.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  100.953876][ T6122] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  100.955092][   T29] audit: type=1326 audit(1766426506.422:8779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz.0.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  100.972547][ T6122] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  100.986501][   T29] audit: type=1326 audit(1766426506.422:8780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz.0.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  101.017474][   T29] audit: type=1326 audit(1766426506.422:8781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6110 comm="syz.0.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  101.071180][   T29] audit: type=1326 audit(1766426506.642:8782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6123 comm="syz.3.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[  101.101761][   T29] audit: type=1326 audit(1766426506.642:8783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6123 comm="syz.3.917" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[  101.234562][ T6131] loop3: detected capacity change from 0 to 512
[  101.268849][ T6131] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.290897][ T6131] ext4 filesystem being mounted at /196/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.310868][ T6130] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #12: comm syz.3.920: corrupted xattr block 6: invalid header
[  101.324423][ T6130] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=12
[  101.333646][ T6130] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #12: comm syz.3.920: corrupted xattr block 6: invalid header
[  101.347149][ T6130] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=12
[  101.356948][ T6130] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #12: comm syz.3.920: corrupted xattr block 6: invalid header
[  101.370419][ T6130] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=12
[  101.380083][ T6130] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #12: comm syz.3.920: corrupted xattr block 6: invalid header
[  101.393376][  T176] Bluetooth: hci0: Frame reassembly failed (-90)
[  101.398405][ T6130] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=12
[  101.409223][ T6130] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #12: comm syz.3.920: corrupted xattr block 6: invalid header
[  101.422743][ T6130] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=12
[  101.432840][ T6130] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #12: comm syz.3.920: corrupted xattr block 6: invalid header
[  101.543841][ T6140] siw: device registration error -23
[  101.695885][ T6152] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  101.735446][ T6154] siw: device registration error -23
[  102.117615][ T3553] Bluetooth: hci1: command 0x1003 tx timeout
[  102.123703][   T44] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  102.150979][ T6167] tipc: Enabling of bearer <eth:syzk> rejected, failed to enable media
[  102.457459][ T6175] syz.1.937 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  102.468443][ T6175] CPU: 1 UID: 0 PID: 6175 Comm: syz.1.937 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  102.468478][ T6175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  102.468494][ T6175] Call Trace:
[  102.468502][ T6175]  <TASK>
[  102.468509][ T6175]  __dump_stack+0x1d/0x30
[  102.468664][ T6175]  dump_stack_lvl+0x95/0xd0
[  102.468685][ T6175]  dump_stack+0x15/0x1b
[  102.468705][ T6175]  dump_header+0x81/0x240
[  102.468753][ T6175]  oom_kill_process+0x295/0x350
[  102.468781][ T6175]  out_of_memory+0x97b/0xb80
[  102.468805][ T6175]  try_charge_memcg+0x610/0xa10
[  102.468838][ T6175]  charge_memcg+0x51/0xc0
[  102.468903][ T6175]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  102.468947][ T6175]  __read_swap_cache_async+0x17b/0x2d0
[  102.468980][ T6175]  swap_cluster_readahead+0x262/0x3c0
[  102.469024][ T6175]  swapin_readahead+0xde/0x820
[  102.469106][ T6175]  ? mod_memcg_lruvec_state+0x1a1/0x280
[  102.469136][ T6175]  ? lruvec_stat_mod_folio+0xd6/0x120
[  102.469165][ T6175]  ? __rcu_read_unlock+0x4f/0x70
[  102.469189][ T6175]  ? swap_cache_get_folio+0x277/0x280
[  102.469278][ T6175]  do_swap_page+0x2b4/0x21e0
[  102.469316][ T6175]  ? __pfx_default_wake_function+0x10/0x10
[  102.469394][ T6175]  handle_mm_fault+0x9d8/0x2c60
[  102.469472][ T6175]  do_user_addr_fault+0x630/0x1080
[  102.469551][ T6175]  exc_page_fault+0x62/0xa0
[  102.469584][ T6175]  asm_exc_page_fault+0x26/0x30
[  102.469607][ T6175] RIP: 0033:0x7f57a01774e0
[  102.469622][ T6175] Code: 6e c7 89 13 48 8b 50 08 0f 16 40 50 0f 11 00 48 89 50 50 48 8b 50 10 48 89 78 10 48 89 50 40 48 89 d7 eb b2 66 0f 1f 44 00 00 <64> 48 8b 0c 25 10 00 00 00 8b 91 08 03 00 00 48 8d b9 08 03 00 00
[  102.469639][ T6175] RSP: 002b:00007ffd67aa8ab8 EFLAGS: 00010206
[  102.469712][ T6175] RAX: 00000000fffffffa RBX: 00007f57a03a5fa0 RCX: 0000000000000000
[  102.469726][ T6175] RDX: 00007ffd67aa8b00 RSI: 0000000000000000 RDI: 0000000000000000
[  102.469738][ T6175] RBP: 00007f57a03a7da0 R08: 0000000017a499db R09: 7fffffffffffffff
[  102.469750][ T6175] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000192c3
[  102.469762][ T6175] R13: 00007ffd67aa8c20 R14: ffffffffffffffff R15: 00007ffd67aa8c40
[  102.469845][ T6175]  </TASK>
[  102.469852][ T6175] memory: usage 297320kB, limit 307200kB, failcnt 2315
[  102.686414][ T6175] memory+swap: usage 165132kB, limit 9007199254740988kB, failcnt 0
[  102.694389][ T6175] kmem: usage 161896kB, limit 9007199254740988kB, failcnt 0
[  102.701717][ T6175] Memory cgroup stats for /syz1:
[  102.705917][ T6175] cache 0
[  102.713924][ T6175] rss 24576
[  102.717062][ T6175] shmem 0
[  102.720049][ T6175] mapped_file 0
[  102.723586][ T6175] dirty 0
[  102.726538][ T6175] writeback 4096
[  102.730143][ T6175] workingset_refault_anon 166
[  102.734832][ T6175] workingset_refault_file 1180
[  102.739737][ T6175] swap 159744
[  102.743110][ T6175] swapcached 20480
[  102.746851][ T6175] pgpgin 52145
[  102.750312][ T6175] pgpgout 52137
[  102.753795][ T6175] pgfault 81679
[  102.757378][ T6175] pgmajfault 97
[  102.760906][ T6175] inactive_anon 4096
[  102.764903][ T6175] active_anon 28672
[  102.768855][ T6175] inactive_file 0
[  102.772586][ T6175] active_file 0
[  102.776090][ T6175] unevictable 0
[  102.779589][ T6175] hierarchical_memory_limit 314572800
[  102.784988][ T6175] hierarchical_memsw_limit 9223372036854771712
[  102.791190][ T6175] total_cache 0
[  102.794723][ T6175] total_rss 24576
[  102.798404][ T6175] total_shmem 0
[  102.801886][ T6175] total_mapped_file 0
[  102.805920][ T6175] total_dirty 0
[  102.809447][ T6175] total_writeback 4096
[  102.813545][ T6175] total_workingset_refault_anon 166
[  102.818786][ T6175] total_workingset_refault_file 1180
[  102.824092][ T6175] total_swap 159744
[  102.827949][ T6175] total_swapcached 20480
[  102.832287][ T6175] total_pgpgin 52145
[  102.836202][ T6175] total_pgpgout 52137
[  102.840898][ T6175] total_pgfault 81679
[  102.844987][ T6175] total_pgmajfault 97
[  102.849237][ T6175] total_inactive_anon 4096
[  102.853761][ T6175] total_active_anon 28672
[  102.858240][ T6175] total_inactive_file 0
[  102.862412][ T6175] total_active_file 0
[  102.866476][ T6175] total_unevictable 0
[  102.870516][ T6175] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.937,pid=6175,uid=0
[  102.885181][ T6175] Memory cgroup out of memory: Killed process 6175 (syz.1.937) total-vm:93836kB, anon-rss:1132kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  102.904664][ T6179] syz0: rxe_newlink: already configured on bond_slave_0
[  102.924465][ T6181] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.937144][ T6181] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  103.002585][ T6185] SELinux: failed to load policy
[  103.059402][ T6188] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  103.409361][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  103.433924][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.580069][ T6203] vhci_hcd vhci_hcd.2: invalid port number 96
[  103.586466][ T6203] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  103.888132][ T3320] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  103.899107][ T3320] CPU: 1 UID: 0 PID: 3320 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  103.899168][ T3320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  103.899260][ T3320] Call Trace:
[  103.899267][ T3320]  <TASK>
[  103.899276][ T3320]  __dump_stack+0x1d/0x30
[  103.899315][ T3320]  dump_stack_lvl+0x95/0xd0
[  103.899338][ T3320]  dump_stack+0x15/0x1b
[  103.899432][ T3320]  dump_header+0x81/0x240
[  103.899456][ T3320]  oom_kill_process+0x295/0x350
[  103.899479][ T3320]  out_of_memory+0x97b/0xb80
[  103.899513][ T3320]  try_charge_memcg+0x610/0xa10
[  103.899586][ T3320]  charge_memcg+0x51/0xc0
[  103.899693][ T3320]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  103.899790][ T3320]  __read_swap_cache_async+0x17b/0x2d0
[  103.899845][ T3320]  swap_cluster_readahead+0x262/0x3c0
[  103.899944][ T3320]  swapin_readahead+0xde/0x820
[  103.899981][ T3320]  ? __rcu_read_unlock+0x4f/0x70
[  103.900006][ T3320]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  103.900029][ T3320]  ? __list_add_valid_or_report+0x38/0xe0
[  103.900088][ T3320]  ? __rcu_read_unlock+0x4f/0x70
[  103.900114][ T3320]  ? swap_cache_get_folio+0x277/0x280
[  103.900155][ T3320]  do_swap_page+0x2b4/0x21e0
[  103.900184][ T3320]  ? _raw_spin_unlock+0x26/0x50
[  103.900232][ T3320]  ? __schedule+0x85f/0xcd0
[  103.900262][ T3320]  ? __pfx_default_wake_function+0x10/0x10
[  103.900343][ T3320]  handle_mm_fault+0x9d8/0x2c60
[  103.900393][ T3320]  do_user_addr_fault+0x630/0x1080
[  103.900424][ T3320]  exc_page_fault+0x62/0xa0
[  103.900460][ T3320]  asm_exc_page_fault+0x26/0x30
[  103.900486][ T3320] RIP: 0033:0x7f1460041fc5
[  103.900547][ T3320] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 95 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  103.900587][ T3320] RSP: 002b:00007ffd8f8f04f8 EFLAGS: 00010246
[  103.900606][ T3320] RAX: 0000000000000000 RBX: 00000000000001f8 RCX: 00007f1460041fc3
[  103.900618][ T3320] RDX: 00007ffd8f8f0510 RSI: 0000000000000000 RDI: 0000000000000000
[  103.900629][ T3320] RBP: 00007ffd8f8f057c R08: 0000000030bbbb95 R09: 0000000000000000
[  103.900641][ T3320] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  103.900652][ T3320] R13: 00000000000927c0 R14: 0000000000019564 R15: 00007ffd8f8f05d0
[  103.900670][ T3320]  </TASK>
[  103.900708][ T3320] memory: usage 307200kB, limit 307200kB, failcnt 1136
[  104.132420][ T3320] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0
[  104.140376][ T3320] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[  104.147716][ T3320] Memory cgroup stats for /syz2:
[  104.149315][ T3320] cache 0
[  104.157257][ T3320] rss 0
[  104.160100][ T3320] shmem 0
[  104.163074][ T3320] mapped_file 0
[  104.166550][ T3320] dirty 0
[  104.169536][ T3320] writeback 0
[  104.172843][ T3320] workingset_refault_anon 32
[  104.177592][ T3320] workingset_refault_file 333
[  104.182292][ T3320] swap 184320
[  104.185606][ T3320] swapcached 4096
[  104.189366][ T3320] pgpgin 94607
[  104.192815][ T3320] pgpgout 94606
[  104.196298][ T3320] pgfault 139018
[  104.200350][ T3320] pgmajfault 33
[  104.204049][ T3320] inactive_anon 4096
[  104.208136][ T3320] active_anon 0
[  104.211684][ T3320] inactive_file 0
[  104.215327][ T3320] active_file 0
[  104.219071][ T3320] unevictable 0
[  104.222632][ T3320] hierarchical_memory_limit 314572800
[  104.228049][ T3320] hierarchical_memsw_limit 9223372036854771712
[  104.234289][ T3320] total_cache 0
[  104.237815][ T3320] total_rss 0
[  104.241123][ T3320] total_shmem 0
[  104.244740][ T3320] total_mapped_file 0
[  104.248816][ T3320] total_dirty 0
[  104.252293][ T3320] total_writeback 0
[  104.256135][ T3320] total_workingset_refault_anon 32
[  104.261292][ T3320] total_workingset_refault_file 333
[  104.266529][ T3320] total_swap 184320
[  104.270445][ T3320] total_swapcached 4096
[  104.274631][ T3320] total_pgpgin 94607
[  104.278624][ T3320] total_pgpgout 94606
[  104.282656][ T3320] total_pgfault 139018
[  104.287014][ T3320] total_pgmajfault 33
[  104.291107][ T3320] total_inactive_anon 4096
[  104.295552][ T3320] total_active_anon 0
[  104.299962][ T3320] total_inactive_file 0
[  104.304171][ T3320] total_active_file 0
[  104.308269][ T3320] total_unevictable 0
[  104.312264][ T3320] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.950,pid=6211,uid=0
[  104.326872][ T3320] Memory cgroup out of memory: Killed process 6211 (syz.2.950) total-vm:95884kB, anon-rss:1136kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  104.395415][ T6219] SELinux: failed to load policy
[  104.410447][ T6221] siw: device registration error -23
[  104.600143][ T6230] siw: device registration error -23
[  105.097105][   T29] kauditd_printk_skb: 710 callbacks suppressed
[  105.097124][   T29] audit: type=1326 audit(1766426510.664:9494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6257 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[  105.126928][   T29] audit: type=1326 audit(1766426510.664:9495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6257 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[  105.150382][   T29] audit: type=1326 audit(1766426510.664:9496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6257 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f50fadcf749 code=0x7ffc0000
[  105.541198][ T6278] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  105.551178][ T6278] SELinux: failed to load policy
[  105.594316][   T29] audit: type=1326 audit(1766426511.164:9497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6279 comm="syz.0.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  105.630678][   T29] audit: type=1326 audit(1766426511.164:9498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6279 comm="syz.0.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  105.654171][   T29] audit: type=1326 audit(1766426511.164:9499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6279 comm="syz.0.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  105.677631][   T29] audit: type=1326 audit(1766426511.164:9500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6279 comm="syz.0.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  105.701147][   T29] audit: type=1326 audit(1766426511.164:9501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6279 comm="syz.0.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  105.724788][   T29] audit: type=1326 audit(1766426511.164:9502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6279 comm="syz.0.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  105.748235][   T29] audit: type=1326 audit(1766426511.164:9503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6279 comm="syz.0.972" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87cba8f749 code=0x7ffc0000
[  105.772237][ T6282] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  105.794812][ T6280] siw: device registration error -23
[  105.858943][ T6296] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.867881][ T6296] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.912022][ T6301] netlink: 20 bytes leftover after parsing attributes in process `syz.3.984'.
[  105.928343][ T6301] 9p: Bad value for 'rfdno'
[  105.947855][ T6302] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  106.404988][ T6316] loop1: detected capacity change from 0 to 1024
[  106.414820][ T6316] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.989: bad orphan inode 134217728
[  106.426568][ T6316] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.556591][ T6329] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  106.588889][ T6331] loop3: detected capacity change from 0 to 1024
[  106.599859][ T6331] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.994: bad orphan inode 134217728
[  106.611263][ T6331] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.757125][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.837261][ T6342] SELinux: failed to load policy
[  106.891742][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.237456][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  107.242181][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  107.643358][ T6377] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[  108.513323][ T6420] loop4: detected capacity change from 0 to 1024
[  108.556911][ T6420] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1024: bad orphan inode 134217728
[  108.588076][ T6420] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.640694][ T6423] lo speed is unknown, defaulting to 1000
[  108.663160][ T6423] lo speed is unknown, defaulting to 1000
[  108.669418][ T6423] lo speed is unknown, defaulting to 1000
[  108.676206][ T6423] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  108.694019][ T6423] lo speed is unknown, defaulting to 1000
[  108.717069][ T6423] lo speed is unknown, defaulting to 1000
[  108.739503][ T6423] lo speed is unknown, defaulting to 1000
[  108.761021][ T6423] lo speed is unknown, defaulting to 1000
[  108.767775][ T6423] lo speed is unknown, defaulting to 1000
[  108.863402][ T2466] Bluetooth: hci0: Frame reassembly failed (-84)
[  108.914589][ T6429] lo speed is unknown, defaulting to 1000
[  108.954412][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.044960][ T6439] SELinux: failed to load policy
[  109.243930][ T6448] syz.3.1034 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  109.255040][ T6448] CPU: 1 UID: 0 PID: 6448 Comm: syz.3.1034 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  109.255082][ T6448] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  109.255099][ T6448] Call Trace:
[  109.255107][ T6448]  <TASK>
[  109.255116][ T6448]  __dump_stack+0x1d/0x30
[  109.255149][ T6448]  dump_stack_lvl+0x95/0xd0
[  109.255236][ T6448]  dump_stack+0x15/0x1b
[  109.255279][ T6448]  dump_header+0x81/0x240
[  109.255306][ T6448]  oom_kill_process+0x295/0x350
[  109.255358][ T6448]  out_of_memory+0x97b/0xb80
[  109.255386][ T6448]  try_charge_memcg+0x610/0xa10
[  109.255527][ T6448]  charge_memcg+0x51/0xc0
[  109.255564][ T6448]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  109.255609][ T6448]  __read_swap_cache_async+0x17b/0x2d0
[  109.255651][ T6448]  swap_cluster_readahead+0x262/0x3c0
[  109.255691][ T6448]  swapin_readahead+0xde/0x820
[  109.255719][ T6448]  ? plist_check_list+0x199/0x1b0
[  109.255801][ T6448]  ? __rcu_read_unlock+0x4f/0x70
[  109.255826][ T6448]  ? swap_cache_get_folio+0x277/0x280
[  109.255865][ T6448]  do_swap_page+0x2b4/0x21e0
[  109.255912][ T6448]  ? __pfx_futex_wake_mark+0x10/0x10
[  109.255957][ T6448]  ? __pfx_default_wake_function+0x10/0x10
[  109.256006][ T6448]  handle_mm_fault+0x9d8/0x2c60
[  109.256062][ T6448]  do_user_addr_fault+0x630/0x1080
[  109.256094][ T6448]  exc_page_fault+0x62/0xa0
[  109.256259][ T6448]  asm_exc_page_fault+0x26/0x30
[  109.256280][ T6448] RIP: 0033:0x7f50fadcf75b
[  109.256296][ T6448] Code: 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 <64> 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41
[  109.256314][ T6448] RSP: 002b:00007ffcf1014fd8 EFLAGS: 00010213
[  109.256331][ T6448] RAX: 000000000000006e RBX: 000000000001aa4a RCX: ffffffffffffffa8
[  109.256346][ T6448] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f50fb025fac
[  109.256358][ T6448] RBP: 0000000000000032 R08: 7fffffffffffffff R09: 00000005f10152cf
[  109.256392][ T6448] R10: 00007ffcf10150d0 R11: 0000000000000246 R12: 00007f50fb025fac
[  109.256408][ T6448] R13: 00007ffcf10150d0 R14: 000000000001aa7c R15: 00007ffcf10150f0
[  109.256431][ T6448]  </TASK>
[  109.256439][ T6448] memory: usage 307200kB, limit 307200kB, failcnt 10475
[  109.303283][ T6439] lo speed is unknown, defaulting to 1000
[  109.304999][ T6448] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0
[  109.305018][ T6448] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  109.492944][ T6448] Memory cgroup stats for /syz3:
[  109.495223][ T6448] cache 0
[  109.503308][ T6448] rss 0
[  109.506130][ T6448] shmem 0
[  109.509208][ T6448] mapped_file 0
[  109.512690][ T6448] dirty 0
[  109.515721][ T6448] writeback 0
[  109.519084][ T6448] workingset_refault_anon 226
[  109.523823][ T6448] workingset_refault_file 931
[  109.528557][ T6448] swap 184320
[  109.531928][ T6448] swapcached 12288
[  109.535661][ T6448] pgpgin 144688
[  109.539166][ T6448] pgpgout 144685
[  109.542738][ T6448] pgfault 180404
[  109.546325][ T6448] pgmajfault 108
[  109.549912][ T6448] inactive_anon 12288
[  109.553979][ T6448] active_anon 0
[  109.557493][ T6448] inactive_file 0
[  109.561177][ T6448] active_file 0
[  109.564765][ T6448] unevictable 0
[  109.568257][ T6448] hierarchical_memory_limit 314572800
[  109.573729][ T6448] hierarchical_memsw_limit 9223372036854771712
[  109.579927][ T6448] total_cache 0
[  109.583450][ T6448] total_rss 0
[  109.586798][ T6448] total_shmem 0
[  109.590359][ T6448] total_mapped_file 0
[  109.594394][ T6448] total_dirty 0
[  109.597968][ T6448] total_writeback 0
[  109.601843][ T6448] total_workingset_refault_anon 226
[  109.607116][ T6448] total_workingset_refault_file 931
[  109.612481][ T6448] total_swap 184320
[  109.616301][ T6448] total_swapcached 12288
[  109.620593][ T6448] total_pgpgin 144688
[  109.624659][ T6448] total_pgpgout 144685
[  109.628905][ T6448] total_pgfault 180404
[  109.632994][ T6448] total_pgmajfault 108
[  109.637133][ T6448] total_inactive_anon 12288
[  109.641746][ T6448] total_active_anon 0
[  109.645803][ T6448] total_inactive_file 0
[  109.650004][ T6448] total_active_file 0
[  109.654008][ T6448] total_unevictable 0
[  109.658047][ T6448] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1034,pid=6448,uid=0
[  109.672747][ T6448] Memory cgroup out of memory: Killed process 6448 (syz.3.1034) total-vm:93836kB, anon-rss:1136kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  110.012119][ T6467] lo speed is unknown, defaulting to 1000
[  110.248371][   T29] kauditd_printk_skb: 296 callbacks suppressed
[  110.248389][   T29] audit: type=1326 audit(1766426515.824:9800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.307455][   T29] audit: type=1326 audit(1766426515.824:9801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.330956][   T29] audit: type=1326 audit(1766426515.824:9802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.354493][   T29] audit: type=1326 audit(1766426515.824:9803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.378065][   T29] audit: type=1326 audit(1766426515.824:9804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.401524][   T29] audit: type=1326 audit(1766426515.824:9805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.425038][   T29] audit: type=1326 audit(1766426515.824:9806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.448549][   T29] audit: type=1326 audit(1766426515.824:9807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.472154][   T29] audit: type=1326 audit(1766426515.824:9808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.495616][   T29] audit: type=1326 audit(1766426515.824:9809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6485 comm="syz.2.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  110.560285][ T6482] lo speed is unknown, defaulting to 1000
[  110.651288][ T6498] vhci_hcd vhci_hcd.2: invalid port number 96
[  110.657487][ T6498] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  110.669972][ T6494] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  111.041393][ T6512] lo speed is unknown, defaulting to 1000
[  111.099572][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  111.319166][ T6517] SELinux: failed to load policy
[  111.479749][ T6517] lo speed is unknown, defaulting to 1000
[  111.926132][ T3314] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  111.937131][ T3314] CPU: 1 UID: 0 PID: 3314 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  111.937165][ T3314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  111.937182][ T3314] Call Trace:
[  111.937189][ T3314]  <TASK>
[  111.937198][ T3314]  __dump_stack+0x1d/0x30
[  111.937227][ T3314]  dump_stack_lvl+0x95/0xd0
[  111.937270][ T3314]  dump_stack+0x15/0x1b
[  111.937296][ T3314]  dump_header+0x81/0x240
[  111.937391][ T3314]  oom_kill_process+0x295/0x350
[  111.937430][ T3314]  out_of_memory+0x97b/0xb80
[  111.937461][ T3314]  try_charge_memcg+0x610/0xa10
[  111.937495][ T3314]  charge_memcg+0x51/0xc0
[  111.937541][ T3314]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  111.937576][ T3314]  __read_swap_cache_async+0x17b/0x2d0
[  111.937660][ T3314]  swap_cluster_readahead+0x262/0x3c0
[  111.937775][ T3314]  swapin_readahead+0xde/0x820
[  111.937814][ T3314]  ? __rcu_read_unlock+0x4f/0x70
[  111.937855][ T3314]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  111.937878][ T3314]  ? __list_add_valid_or_report+0x38/0xe0
[  111.937917][ T3314]  ? __rcu_read_unlock+0x4f/0x70
[  111.938009][ T3314]  ? swap_cache_get_folio+0x277/0x280
[  111.938040][ T3314]  do_swap_page+0x2b4/0x21e0
[  111.938098][ T3314]  ? _raw_spin_unlock+0x26/0x50
[  111.938131][ T3314]  ? __schedule+0x85f/0xcd0
[  111.938224][ T3314]  ? __pfx_default_wake_function+0x10/0x10
[  111.938270][ T3314]  handle_mm_fault+0x9d8/0x2c60
[  111.938312][ T3314]  do_user_addr_fault+0x630/0x1080
[  111.938419][ T3314]  exc_page_fault+0x62/0xa0
[  111.938496][ T3314]  asm_exc_page_fault+0x26/0x30
[  111.938523][ T3314] RIP: 0033:0x7fe575a31fc5
[  111.938543][ T3314] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 95 1f 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  111.938563][ T3314] RSP: 002b:00007ffd2c79cc28 EFLAGS: 00010246
[  111.938583][ T3314] RAX: 0000000000000000 RBX: 000000000000020f RCX: 00007fe575a31fc3
[  111.938633][ T3314] RDX: 00007ffd2c79cc40 RSI: 0000000000000000 RDI: 0000000000000000
[  111.938649][ T3314] RBP: 00007ffd2c79ccac R08: 0000000032215506 R09: 0000000000000000
[  111.938666][ T3314] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[  111.938682][ T3314] R13: 00000000000927c0 R14: 000000000001b4a2 R15: 00007ffd2c79cd00
[  111.938700][ T3314]  </TASK>
[  112.162179][ T3314] memory: usage 288740kB, limit 307200kB, failcnt 2119
[  112.169104][ T3314] memory+swap: usage 288900kB, limit 9007199254740988kB, failcnt 0
[  112.177060][ T3314] kmem: usage 282828kB, limit 9007199254740988kB, failcnt 0
[  112.184644][ T3314] Memory cgroup stats for /syz4:
[  112.268840][ T3314] cache 0
[  112.276972][ T3314] rss 20480
[  112.280236][ T3314] shmem 0
[  112.283225][ T3314] mapped_file 0
[  112.286738][ T3314] dirty 0
[  112.289716][ T3314] writeback 4096
[  112.293291][ T3314] workingset_refault_anon 127
[  112.298001][ T3314] workingset_refault_file 778
[  112.302691][ T3314] swap 135168
[  112.305996][ T3314] swapcached 40960
[  112.309746][ T3314] pgpgin 83077
[  112.313137][ T3314] pgpgout 83065
[  112.316610][ T3314] pgfault 120074
[  112.320199][ T3314] pgmajfault 75
[  112.323675][ T3314] inactive_anon 36864
[  112.327738][ T3314] active_anon 8192
[  112.331545][ T3314] inactive_file 0
[  112.335199][ T3314] active_file 0
[  112.338766][ T3314] unevictable 0
[  112.342284][ T3314] hierarchical_memory_limit 314572800
[  112.347804][ T3314] hierarchical_memsw_limit 9223372036854771712
[  112.353973][ T3314] total_cache 0
[  112.357514][ T3314] total_rss 20480
[  112.361222][ T3314] total_shmem 0
[  112.364721][ T3314] total_mapped_file 0
[  112.368737][ T3314] total_dirty 0
[  112.372280][ T3314] total_writeback 4096
[  112.376409][ T3314] total_workingset_refault_anon 127
[  112.381749][ T3314] total_workingset_refault_file 778
[  112.386970][ T3314] total_swap 135168
[  112.390823][ T3314] total_swapcached 40960
[  112.395121][ T3314] total_pgpgin 83077
[  112.399062][ T3314] total_pgpgout 83065
[  112.403080][ T3314] total_pgfault 120074
[  112.407218][ T3314] total_pgmajfault 75
[  112.411246][ T3314] total_inactive_anon 36864
[  112.415777][ T3314] total_active_anon 8192
[  112.420162][ T3314] total_inactive_file 0
[  112.424336][ T3314] total_active_file 0
[  112.428436][ T3314] total_unevictable 0
[  112.432431][ T3314] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.1064,pid=6533,uid=0
[  112.447262][ T3314] Memory cgroup out of memory: Killed process 6533 (syz.4.1064) total-vm:93836kB, anon-rss:1264kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  112.572001][  T156] Bluetooth: hci0: Frame reassembly failed (-84)
[  112.750705][ T6563] lo speed is unknown, defaulting to 1000
[  112.763965][ T6565] infiniband syb2: RDMA CMA: cma_listen_on_dev, error -98
[  112.780922][ T6573] syz0: rxe_newlink: already configured on bond_slave_0
[  112.866155][ T6579] loop4: detected capacity change from 0 to 1024
[  112.892330][ T6579] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1079: bad orphan inode 134217728
[  112.944202][ T6587] loop3: detected capacity change from 0 to 1024
[  112.953420][ T6579] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.979597][ T6587] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.1082: bad orphan inode 134217728
[  113.009964][ T6587] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.336618][ T6595] loop1: detected capacity change from 0 to 1024
[  113.353753][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.368721][ T6595] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.1083: bad orphan inode 134217728
[  113.418629][ T6603] capability: warning: `syz.0.1086' uses 32-bit capabilities (legacy support in use)
[  113.485216][ T6595] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.522915][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.581572][ T6602] syz.3.1085 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  113.592669][ T6602] CPU: 0 UID: 0 PID: 6602 Comm: syz.3.1085 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  113.592704][ T6602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  113.592718][ T6602] Call Trace:
[  113.592725][ T6602]  <TASK>
[  113.592780][ T6602]  __dump_stack+0x1d/0x30
[  113.592817][ T6602]  dump_stack_lvl+0x95/0xd0
[  113.592845][ T6602]  dump_stack+0x15/0x1b
[  113.592875][ T6602]  dump_header+0x81/0x240
[  113.592904][ T6602]  oom_kill_process+0x295/0x350
[  113.592948][ T6602]  out_of_memory+0x97b/0xb80
[  113.592984][ T6602]  try_charge_memcg+0x610/0xa10
[  113.593018][ T6602]  charge_memcg+0x51/0xc0
[  113.593057][ T6602]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  113.593194][ T6602]  __read_swap_cache_async+0x17b/0x2d0
[  113.593226][ T6602]  swap_cluster_readahead+0x262/0x3c0
[  113.593270][ T6602]  swapin_readahead+0xde/0x820
[  113.593350][ T6602]  ? mod_memcg_lruvec_state+0x1a1/0x280
[  113.593374][ T6602]  ? __rcu_read_unlock+0x34/0x70
[  113.593430][ T6602]  ? __rcu_read_unlock+0x4f/0x70
[  113.593494][ T6602]  ? swap_cache_get_folio+0x277/0x280
[  113.593530][ T6602]  do_swap_page+0x2b4/0x21e0
[  113.593559][ T6602]  ? css_rstat_updated+0x7d/0x280
[  113.593581][ T6602]  ? __pfx_default_wake_function+0x10/0x10
[  113.593723][ T6602]  handle_mm_fault+0x9d8/0x2c60
[  113.593772][ T6602]  do_user_addr_fault+0x630/0x1080
[  113.593813][ T6602]  exc_page_fault+0x62/0xa0
[  113.593874][ T6602]  asm_exc_page_fault+0x26/0x30
[  113.593900][ T6602] RIP: 0033:0x7f50faca59ec
[  113.593982][ T6602] Code: 66 0f 1f 44 00 00 69 3d c6 fc ea 00 e8 03 00 00 48 8d 1d c7 05 38 00 e8 c2 9c 12 00 eb 0c 48 81 c3 f0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 f0 00 00
[  113.594006][ T6602] RSP: 002b:00007ffcf1014fe0 EFLAGS: 00010287
[  113.594026][ T6602] RAX: 0000000000000000 RBX: 00007f50fb026090 RCX: 0000000000000000
[  113.594040][ T6602] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055557cd13808
[  113.594052][ T6602] RBP: 00007f50fb027da0 R08: 0000000000000000 R09: 7fffffffffffffff
[  113.594064][ T6602] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000001be25
[  113.594148][ T6602] R13: 00007ffcf10150d0 R14: ffffffffffffffff R15: 00007ffcf10150f0
[  113.594168][ T6602]  </TASK>
[  113.594176][ T6602] memory: usage 307200kB, limit 307200kB, failcnt 10832
[  113.815736][ T6602] memory+swap: usage 274068kB, limit 9007199254740988kB, failcnt 0
[  113.823711][ T6602] kmem: usage 270024kB, limit 9007199254740988kB, failcnt 0
[  113.831308][ T6602] Memory cgroup stats for /syz3:
[  113.833754][ T6602] cache 4096
[  113.842018][ T6602] rss 28672
[  113.845147][ T6602] shmem 0
[  113.848144][ T6602] mapped_file 4096
[  113.851885][ T6602] dirty 0
[  113.854842][ T6602] writeback 8192
[  113.858490][ T6602] workingset_refault_anon 286
[  113.863183][ T6602] workingset_refault_file 1061
[  113.868039][ T6602] swap 151552
[  113.871341][ T6602] swapcached 32768
[  113.875075][ T6602] pgpgin 145797
[  113.878699][ T6602] pgpgout 145785
[  113.882267][ T6602] pgfault 182612
[  113.886026][ T6602] pgmajfault 145
[  113.889707][ T6602] inactive_anon 28672
[  113.893715][ T6602] active_anon 16384
[  113.897582][ T6602] inactive_file 0
[  113.901318][ T6602] active_file 4096
[  113.905055][ T6602] unevictable 0
[  113.908604][ T6602] hierarchical_memory_limit 314572800
[  113.913999][ T6602] hierarchical_memsw_limit 9223372036854771712
[  113.920310][ T6602] total_cache 4096
[  113.924089][ T6602] total_rss 28672
[  113.927771][ T6602] total_shmem 0
[  113.931342][ T6602] total_mapped_file 4096
[  113.935605][ T6602] total_dirty 0
[  113.939211][ T6602] total_writeback 8192
[  113.943300][ T6602] total_workingset_refault_anon 286
[  113.948620][ T6602] total_workingset_refault_file 1061
[  113.954061][ T6602] total_swap 151552
[  113.957917][ T6602] total_swapcached 32768
[  113.962193][ T6602] total_pgpgin 145797
[  113.966243][ T6602] total_pgpgout 145785
[  113.970376][ T6602] total_pgfault 182612
[  113.974468][ T6602] total_pgmajfault 145
[  113.978588][ T6602] total_inactive_anon 28672
[  113.983110][ T6602] total_active_anon 16384
[  113.987569][ T6602] total_inactive_file 0
[  113.991745][ T6602] total_active_file 4096
[  113.996004][ T6602] total_unevictable 0
[  114.000058][ T6602] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.1085,pid=6602,uid=0
[  114.014760][ T6602] Memory cgroup out of memory: Killed process 6602 (syz.3.1085) total-vm:93836kB, anon-rss:1136kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  114.044327][ T6614] siw: device registration error -23
[  114.229151][ T6626] siw: device registration error -23
[  114.290457][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.381811][   T31] Bluetooth: hci1: Frame reassembly failed (-84)
[  114.389065][   T31] Bluetooth: hci1: Frame reassembly failed (-84)
[  114.597680][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  114.603881][ T3553] Bluetooth: hci0: command 0x1003 tx timeout
[  114.724272][ T6640] lo speed is unknown, defaulting to 1000
[  114.834881][ T6643] usb usb8: usbfs: interface 0 claimed by hub while 'syz.2.1099' resets device
[  114.951446][ T6647] vhci_hcd vhci_hcd.2: invalid port number 96
[  114.957622][ T6647] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  115.408633][ T6656] lo speed is unknown, defaulting to 1000
[  115.533599][   T29] kauditd_printk_skb: 971 callbacks suppressed
[  115.533617][   T29] audit: type=1326 audit(1766426521.104:10781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.563929][   T29] audit: type=1326 audit(1766426521.104:10782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.587466][   T29] audit: type=1326 audit(1766426521.104:10783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.611190][   T29] audit: type=1326 audit(1766426521.104:10784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.634772][   T29] audit: type=1326 audit(1766426521.104:10785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.658315][   T29] audit: type=1326 audit(1766426521.104:10787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.825527][   T29] audit: type=1326 audit(1766426521.104:10786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.849114][   T29] audit: type=1326 audit(1766426521.274:10788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.872834][   T29] audit: type=1326 audit(1766426521.274:10789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe575a01667 code=0x7ffc0000
[  115.896457][   T29] audit: type=1326 audit(1766426521.274:10790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6653 comm="syz.4.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5759ff749 code=0x7ffc0000
[  115.963871][   T31] Bluetooth: hci0: Frame reassembly failed (-84)
[  116.075379][ T6672] netlink: 'syz.2.1110': attribute type 11 has an invalid length.
[  116.107635][ T6667] lo speed is unknown, defaulting to 1000
[  116.270314][ T6683] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  116.437502][ T3553] Bluetooth: hci1: command 0x1003 tx timeout
[  116.443588][   T44] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  116.766781][ T6717] lo speed is unknown, defaulting to 1000
[  116.989713][ T6733] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  117.240379][ T6761] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1143'.
[  117.320847][ T6755] lo speed is unknown, defaulting to 1000
[  117.988102][ T6779] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  118.037463][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  118.037558][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  118.199400][ T6794] siw: device registration error -23
[  118.542406][ T6805] lo speed is unknown, defaulting to 1000
[  118.822931][ T6809] SELinux: failed to load policy
[  119.253168][ T6824] lo speed is unknown, defaulting to 1000
[  119.356124][ T6823] siw: device registration error -23
[  119.602938][ T6834] syz0: rxe_newlink: already configured on bond_slave_0
[  119.850734][ T6855] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[  119.906020][ T6851] SELinux: failed to load policy
[  119.914822][ T6865] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  119.926651][  T176] Bluetooth: hci0: Frame reassembly failed (-84)
[  120.035225][ T6869] SELinux: failed to load policy
[  120.144603][ T6869] lo speed is unknown, defaulting to 1000
[  120.539294][ T6881] lo speed is unknown, defaulting to 1000
[  120.616055][   T29] kauditd_printk_skb: 942 callbacks suppressed
[  120.616124][   T29] audit: type=1400 audit(1766426526.184:11733): avc:  denied  { name_connect } for  pid=6877 comm="syz.3.1187" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1
[  120.817600][ T6887] loop2: detected capacity change from 0 to 1024
[  120.855859][   T29] audit: type=1400 audit(1766426526.404:11734): avc:  denied  { execute } for  pid=6877 comm="syz.3.1187" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=18319 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  120.883058][ T6887] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.1188: bad orphan inode 134217728
[  120.956183][ T6887] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.094479][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.173568][ T6903] SELinux: failed to load policy
[  121.301124][ T6903] lo speed is unknown, defaulting to 1000
[  121.649570][   T29] audit: type=1326 audit(1766426527.224:11735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.2.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  121.673204][   T29] audit: type=1326 audit(1766426527.224:11736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.2.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  121.696999][   T29] audit: type=1326 audit(1766426527.224:11737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.2.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  121.720589][   T29] audit: type=1326 audit(1766426527.224:11738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.2.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  121.744255][   T29] audit: type=1326 audit(1766426527.224:11739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.2.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  121.767874][   T29] audit: type=1326 audit(1766426527.224:11740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.2.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  121.824834][ T6933] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[  121.854063][   T29] audit: type=1326 audit(1766426527.274:11741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.2.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  121.877825][   T29] audit: type=1326 audit(1766426527.374:11742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.2.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  121.904554][ T6931] siw: device registration error -23
[  121.957493][   T44] Bluetooth: hci0: command 0x1003 tx timeout
[  121.961219][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  122.016000][ T6947] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  122.130073][ T6954] SELinux: failed to load policy
[  122.131018][ T6956] bond1: option ad_user_port_key: invalid value (1136)
[  122.142077][ T6956] bond1: option ad_user_port_key: allowed values 0 - 1023
[  122.157675][ T6956] bond1 (unregistering): Released all slaves
[  122.241722][   T31] Bluetooth: hci0: Frame reassembly failed (-84)
[  122.255474][ T6954] lo speed is unknown, defaulting to 1000
[  122.479796][ T6973] siw: device registration error -23
[  122.505180][ T6979] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  122.513879][ T6979] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  123.160355][ T6987] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  123.402824][ T7003] SELinux: failed to load policy
[  123.494775][ T7003] lo speed is unknown, defaulting to 1000
[  123.523763][  T156] Bluetooth: hci1: Frame reassembly failed (-84)
[  123.531255][ T7010] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1228'.
[  124.039677][ T7017] vhci_hcd vhci_hcd.2: invalid port number 96
[  124.045807][ T7017] vhci_hcd vhci_hcd.2: default hub control req: 0300 vfffa i0060 l0
[  124.391883][ T7019] lo speed is unknown, defaulting to 1000
[  124.452140][ T3553] Bluetooth: hci0: command 0x1003 tx timeout
[  124.487457][ T3537] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  124.605463][ T7025] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  124.779880][ T7033] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1236'.
[  125.374748][ T7057] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  125.383254][ T7057] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  125.558293][   T44] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  125.564485][ T3537] Bluetooth: hci1: command 0x1003 tx timeout
[  125.675132][   T29] kauditd_printk_skb: 384 callbacks suppressed
[  125.675171][   T29] audit: type=1326 audit(1766426531.244:12127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.712088][ T7070] loop2: detected capacity change from 0 to 512
[  125.720615][   T29] audit: type=1326 audit(1766426531.274:12128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.744371][   T29] audit: type=1326 audit(1766426531.274:12129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.768041][   T29] audit: type=1326 audit(1766426531.274:12130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.792035][   T29] audit: type=1326 audit(1766426531.274:12131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.815737][   T29] audit: type=1326 audit(1766426531.274:12132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.839202][ T7078] loop4: detected capacity change from 0 to 1024
[  125.839848][   T29] audit: type=1326 audit(1766426531.274:12133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.867887][ T7070] EXT4-fs warning (device loop2): ext4_xattr_inode_get:560: inode #11: comm syz.2.1249: EA inode hash validation failed
[  125.869485][   T29] audit: type=1326 audit(1766426531.274:12134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.882202][ T7070] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #15: comm syz.2.1249: corrupted inode contents
[  125.905629][   T29] audit: type=1326 audit(1766426531.274:12135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.905667][   T29] audit: type=1326 audit(1766426531.284:12136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7069 comm="syz.2.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  125.932060][ T7070] EXT4-fs error (device loop2): ext4_dirty_inode:6502: inode #15: comm syz.2.1249: mark_inode_dirty error
[  125.977828][ T7078] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1252: bad orphan inode 134217728
[  125.991026][ T7078] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.003906][ T7070] EXT4-fs error (device loop2): ext4_do_update_inode:5617: inode #15: comm syz.2.1249: corrupted inode contents
[  126.015947][ T7082] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  126.016201][ T7070] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3000: inode #15: comm syz.2.1249: mark_inode_dirty error
[  126.065533][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.075271][ T7070] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3003: inode #15: comm syz.2.1249: mark inode dirty (error -117)
[  126.092832][ T7070] EXT4-fs warning (device loop2): ext4_evict_inode:273: xattr delete (err -117)
[  126.126348][ T7090] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  126.128124][ T7070] EXT4-fs (loop2): 1 orphan inode deleted
[  126.136119][ T7090] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  126.155604][ T7070] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.211629][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.340762][ T7104] lo speed is unknown, defaulting to 1000
[  126.358798][ T7108] loop2: detected capacity change from 0 to 1024
[  126.368666][ T7108] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.1264: bad orphan inode 134217728
[  126.387851][ T7108] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.426796][ T3320] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.548290][ T7120] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  126.589485][ T7118] ip6t_srh: unknown srh match flags  4000
[  126.626711][   T31] Bluetooth: hci0: Frame reassembly failed (-84)
[  126.818233][ T7144] loop4: detected capacity change from 0 to 1024
[  126.828373][ T7144] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1277: bad orphan inode 134217728
[  126.839886][ T7144] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.866356][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.887598][ T7149] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  126.990314][ T7164] loop3: detected capacity change from 0 to 512
[  126.997637][ T7164] EXT4-fs: dax option not supported
[  127.108315][ T7164] lo speed is unknown, defaulting to 1000
[  127.210229][ T7173] loop3: detected capacity change from 0 to 1024
[  127.242611][ T7176] SELinux: failed to load policy
[  127.251443][ T7173] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.1288: bad orphan inode 134217728
[  127.265252][ T7173] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.338473][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.468247][ T7183] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  127.483175][ T7186] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.492118][ T7186] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.901671][ T7213] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.910358][ T7213] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  128.026401][ T7218] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  128.451544][ T7232] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[  128.608653][ T7249] SELinux: failed to load policy
[  128.677591][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  128.683749][ T3537] Bluetooth: hci0: command 0x1003 tx timeout
[  128.713493][ T7249] lo speed is unknown, defaulting to 1000
[  128.895491][ T7253] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  128.922102][ T7254] lo speed is unknown, defaulting to 1000
[  129.325189][ T7271] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[  129.350302][ T7274] siw: device registration error -23
[  129.438863][  T156] Bluetooth: hci0: Frame reassembly failed (-84)
[  129.487006][ T7293] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  129.519722][ T7295] SELinux: failed to load policy
[  129.647385][ T7295] lo speed is unknown, defaulting to 1000
[  129.854991][ T7314] syz0: rxe_newlink: already configured on bond_slave_0
[  130.058703][ T7325] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  130.068923][ T7325] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  130.263337][ T7331] lo speed is unknown, defaulting to 1000
[  131.037387][ T7337] lo speed is unknown, defaulting to 1000
[  131.462392][   T29] kauditd_printk_skb: 1025 callbacks suppressed
[  131.462410][   T29] audit: type=1326 audit(1766426537.034:13162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.497695][ T3537] Bluetooth: hci0: command 0x1003 tx timeout
[  131.503820][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  131.523335][ T7350] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  131.557154][   T29] audit: type=1326 audit(1766426537.074:13163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.559948][ T7352] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[  131.581222][   T29] audit: type=1326 audit(1766426537.074:13164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.610988][   T29] audit: type=1326 audit(1766426537.074:13165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.634623][   T29] audit: type=1326 audit(1766426537.074:13166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.658321][   T29] audit: type=1326 audit(1766426537.074:13167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.682375][   T29] audit: type=1326 audit(1766426537.074:13168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.705966][   T29] audit: type=1326 audit(1766426537.074:13169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.729701][   T29] audit: type=1326 audit(1766426537.074:13170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.753354][   T29] audit: type=1326 audit(1766426537.074:13171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7347 comm="syz.2.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f146000f749 code=0x7ffc0000
[  131.781846][ T7363] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  131.941942][ T7374] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  132.686832][ T7388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  132.705307][ T7388] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  132.779778][ T7392] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  133.014802][ T7409] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1372'.
[  133.047536][    C0] ==================================================================
[  133.055684][    C0] BUG: KCSAN: data-race in wq_worker_tick / wq_worker_tick
[  133.062914][    C0] 
[  133.065246][    C0] read-write to 0xffff8881000738b8 of 8 bytes by interrupt on cpu 1:
[  133.073352][    C0]  wq_worker_tick+0x60/0x230
[  133.078004][    C0]  sched_tick+0xd7/0x220
[  133.082298][    C0]  update_process_times+0x15f/0x190
[  133.087527][    C0]  tick_nohz_handler+0x276/0x3d0
[  133.092484][    C0]  __hrtimer_run_queues+0x20f/0x5a0
[  133.097781][    C0]  hrtimer_interrupt+0x21a/0x460
[  133.102736][    C0]  __sysvec_apic_timer_interrupt+0x5f/0x1d0
[  133.108736][    C0]  sysvec_apic_timer_interrupt+0x6f/0x80
[  133.114665][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  133.120730][    C0]  kcsan_setup_watchpoint+0x406/0x420
[  133.126134][    C0]  tty_ldisc_deref+0x16/0x30
[  133.130791][    C0]  tty_port_default_receive_buf+0x64/0x90
[  133.136527][    C0]  flush_to_ldisc+0x148/0x340
[  133.141216][    C0]  process_scheduled_works+0x4ce/0x9d0
[  133.146692][    C0]  worker_thread+0x582/0x770
[  133.151315][    C0]  kthread+0x489/0x510
[  133.155417][    C0]  ret_from_fork+0x149/0x290
[  133.160117][    C0]  ret_from_fork_asm+0x1a/0x30
[  133.164898][    C0] 
[  133.167251][    C0] read-write to 0xffff8881000738b8 of 8 bytes by interrupt on cpu 0:
[  133.175378][    C0]  wq_worker_tick+0x60/0x230
[  133.179990][    C0]  sched_tick+0xd7/0x220
[  133.184265][    C0]  update_process_times+0x15f/0x190
[  133.189526][    C0]  tick_nohz_handler+0x276/0x3d0
[  133.194483][    C0]  __hrtimer_run_queues+0x20f/0x5a0
[  133.199722][    C0]  hrtimer_interrupt+0x21a/0x460
[  133.204671][    C0]  __sysvec_apic_timer_interrupt+0x5f/0x1d0
[  133.210607][    C0]  sysvec_apic_timer_interrupt+0x6f/0x80
[  133.216254][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  133.222342][    C0]  kcsan_setup_watchpoint+0x406/0x420
[  133.227767][    C0]  n_tty_receive_buf_common+0x82f/0xc10
[  133.233332][    C0]  n_tty_receive_buf2+0x33/0x40
[  133.238217][    C0]  tty_ldisc_receive_buf+0x66/0xf0
[  133.243359][    C0]  tty_port_default_receive_buf+0x59/0x90
[  133.249090][    C0]  flush_to_ldisc+0x148/0x340
[  133.253776][    C0]  process_scheduled_works+0x4ce/0x9d0
[  133.259259][    C0]  worker_thread+0x582/0x770
[  133.263866][    C0]  kthread+0x489/0x510
[  133.267962][    C0]  ret_from_fork+0x149/0x290
[  133.272620][    C0]  ret_from_fork_asm+0x1a/0x30
[  133.277439][    C0] 
[  133.279774][    C0] value changed: 0x0000000000169540 -> 0x000000000016bc50
[  133.286943][    C0] 
[  133.289267][    C0] Reported by Kernel Concurrency Sanitizer on:
[  133.295447][    C0] CPU: 0 UID: 0 PID: 156 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  133.305258][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  133.315325][    C0] Workqueue: events_unbound flush_to_ldisc
[  133.321156][    C0] ==================================================================
[  133.401989][ T7410] lo speed is unknown, defaulting to 1000
[  134.837508][ T3537] Bluetooth: hci0: command 0x1003 tx timeout
[  134.837508][   T44] Bluetooth: hci0: Opcode 0x1003 failed: -110