last executing test programs:

5.022890928s ago: executing program 1 (id=2620):
socket$netlink(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18010000010000000000000004000000850000007b00000095a4675ddf914d6bda468d6a68d86318144a61259ec3bac6d19a18f9ec7955bb7689396089ac65a3d6eed617ba4e9ee16bcb9edbc282939344b88eba8e2449aedae79d8c7627c48f2ff3531ff37d235708f589d2ffa3a7fbde1d99f41d96c000064edd915ce107d048292056b3099705ef7c74cbe664dde1945d0bf7a4ebe3eb6f8779775ae327addbd9f1f155b285cf98d84c"], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xc, 0xb, &(0x7f0000000bc0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000004000000958d2023acb79be519fe5557c5395f021e8dd51889e398a3c4c4f01b03c4bc2f76549e4e583f3e91dac0f8"], &(0x7f0000000040)='GPL\x00', 0xb5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x18)
syz_clone(0x6200, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00')
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000e40)=ANY=[@ANYBLOB="0a00000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="0400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="003765000000000700000300000000000000000000000f8288b38b92d2b59726893d54265bae4971f9dcdfdf3e42f870d6f841d44fea1ba38a0812f507e8eb621597db1bb0803a949834c357922b99b6bc3486bd49c1e9e005de1ba90dcfe183efa5599ed5abe70726c530f1e30fe95117212f599f5be671ac917d6f3a3fd29da35bebe3e4dcf2e9ae0b4dfb5dbd65b8cc488c9626f52330d6894780579009c263edbea597387c523a21775a6663f3d3ad2dc1ef6e4d3bf8e5a8bef5f0eed4c08b4ceb91cda72c7eeb97f737575f4a4beaeba7acdb5ff0a8fa4559"], 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xf, 0x0, 0x700, 0x0, [@sadb_key={0x5, 0x9, 0xe0, 0x0, "01d78771b90bd8a3b4914783c58777003d5b9538a9d03e6e9bfdac55"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x3, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e23, @dev}}]}, 0x78}, 0x1, 0x7}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r9, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001540)=@newtaction={0x488, 0x30, 0x12f, 0x4000, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x7c3, 0x2, 0x3, 0xffffff81, 0x10, 0xc, 0x2, 0x3, 0x40, 0x200, 0x8, 0x9, 0x0, 0x5, 0x0, 0x8, 0xa, 0x6, 0x200, 0x1, 0x3, 0xcc37, 0x5, 0xb5, 0x649f, 0x4, 0x0, 0x6, 0xfb1, 0x72a4, 0xd, 0x7fff, 0x6, 0x3, 0x0, 0x3, 0x7, 0xc3a0, 0x4, 0xc, 0x0, 0xaf, 0x1, 0x6, 0x4, 0x6, 0x5, 0x80, 0xe, 0x2, 0x7, 0x6, 0x7, 0x1991, 0x8, 0xfffffe29, 0x5, 0x3, 0x101, 0xfff, 0x4, 0x5, 0x8000, 0x4, 0x7, 0x3, 0x0, 0xfffffff3, 0x1, 0x9, 0x80020003, 0x2, 0x3, 0x5, 0x101, 0x1, 0xfffffffc, 0x6, 0x7fffffff, 0x200, 0x3, 0x1, 0x6, 0x3, 0x100, 0x2, 0x7, 0x6d0, 0x226, 0x7ff, 0x0, 0x6, 0x7, 0xfffff001, 0xa, 0x7ed8, 0x3, 0xffff, 0x0, 0x0, 0x249, 0x5, 0x2fbf, 0x2, 0x8000, 0x7, 0x25fe9fd5, 0x1, 0x9, 0x1, 0xe, 0x9, 0x0, 0x3, 0x4e, 0xa158, 0x8, 0x1, 0x119203c5, 0xd0, 0x7, 0x8, 0x3226, 0x80000008, 0x3, 0x4, 0xc64f, 0xffffff6d, 0x5, 0x6, 0x6, 0xfffffff7, 0x6, 0x7, 0x9, 0xc, 0xe, 0x7, 0x200, 0x60459141, 0x1, 0x5, 0x6, 0x84, 0x0, 0x1, 0x5, 0x2, 0x8, 0x0, 0x2d5, 0x7, 0xfffffffa, 0x1000, 0x6, 0x94, 0x15a, 0x4, 0x6, 0x2, 0x4002, 0x2, 0x4, 0x1001, 0x5, 0x1, 0x3, 0x4003, 0x80, 0x7a5b054a, 0x8, 0xffffff80, 0x2, 0xfff, 0x3, 0xb, 0x8, 0x3, 0x7, 0x2, 0x6, 0xf, 0x5, 0x7, 0x1, 0x77, 0x20009, 0x274d, 0x6, 0x40, 0xfffffffe, 0xb, 0x7, 0x1, 0x9ab, 0x7, 0xffffffc0, 0x204, 0x4943, 0x3c, 0x2c7, 0x7, 0x8, 0x4, 0x0, 0x99f, 0x5, 0x7ff, 0x6, 0x6, 0x3, 0x4, 0xb, 0x7ff, 0x1e, 0x3, 0xe49, 0x56, 0x9, 0x1, 0x6, 0x2, 0x6a1c, 0x9, 0x8, 0x4dbda2da, 0x7fff, 0x5, 0x5, 0x0, 0x7, 0x8, 0x7fff, 0xed, 0x7fff, 0x1000, 0xcbe, 0x7ff, 0x6, 0x8, 0x6, 0xff, 0x5, 0x1, 0x7, 0x9, 0x5, 0x8, 0x5, 0x4, 0xfffffffd, 0x2, 0xeffe, 0xe74, 0x8]}, @TCA_POLICE_TBF={0x3c, 0x1, {0xff, 0x7, 0x2, 0x7ff, 0x6, {0x9, 0x1, 0x8, 0xef3, 0x9, 0x1}, {0x2, 0x1, 0x2, 0x827, 0x29a, 0x100}, 0x3, 0x9, 0x7}}]]}, {0x4}, {0xc, 0xb, {0x0, 0x1}}, {0xc, 0xa}}}]}]}, 0x488}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x8)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20084f, &(0x7f0000000d40)={[{@barrier_val={'barrier', 0x3d, 0x8}}], [{@hash}, {@uid_gt}, {@measure}, {@euid_gt}, {@smackfstransmute={'smackfstransmute', 0x3d, '\xad\xfc\xcc\xc5%\x9d0a\xe4\xbd\xd0U\xaf\xb0Ip6\xd9\xf39\x97\xbf\x10bF8\x88W\\\xa93\xd4\xf0\xb3\xfa\'{Cf5v\x17>\x84h*]ox\x1f6\xcc\x9e[a\x98=9I\b\xe2a\x95).q\xc3h\t\x1cE\xa9Y\xc6\xa1~e\x82\xbd8\xf1\x05\xed\v\xb0\x13\xcd\rpr\xf8>\xd1\x85\xa4\x01\n\xad\xd0PO\xa9\f\x90'}}]}, 0x1, 0x518, &(0x7f0000001600)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000340)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008000000"], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r10, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r11}, 0x18)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f00000004c0), 0x1, 0x57b, &(0x7f0000000640)="$eJzs3T9sG9UfAPDvXeJf/+VHigQSVB0qQCpSVScpLRSmdkUUVeqAxAKR40ZVnDiKHWiiDOleITogQF3KBgMjiIEBsTCysoCYkSoagdR0AKPznzRN7OC0TYziz0e6+L17Z3/f+fx99p3ucgH0rWPZnzTi2Yi4mEQMr2sbjGbjscZyqytLhXsrS4UkarVLvyeRRMTdlaVCa/mk+XgoIpYj4pmI+D4XcSLdHLeysDg1XioV55r1ker07EhlYfHklenxyeJkcealV149c/b0mbFTY+ufdq+2vpbb3rpe/+XGB9d/fP3WjS++PLpc+Gg8iXMx1Gxbvx6PU+M9ycW5DfNP70SwHkp63QEeykAzz7NUejqGY6CZ9e3Uhne1a8AOq+2LqAF9KpH/0KdavwOy/d/WtJu/P26fb+yAZHFXm1OjZbBxbCL21/dNDv6RPLBnku1vHt7NjrInLV+LiNHBwc2f/6T5+Xt4o4+jg+yo7843NtTm7Z+ujT/RZvwZah07fUSt8W910/h3P/5Ah/HvYpcx/nr71087xr8WcaRt/GQtftImfhoR73YZ/+Zb35zt1Fb7LOJ4tI/fkmx9fHjk8pVScbTxt22Mb48ffW2r9T/YIX7jmO3++tdMu/d/tsv1//qHr55b3iL+i89vvf3bvf8HIuLDLuM/effzNzq13b6W3Ml+BWx3+2fzbnUZ/+Vzx37uclEAAAAAAAAAAGAb0vq5bEmaXyunaT7fuIb3qTiYlsqV6onL5fmZicY5b4cjl7bOtBpu1JOsPtY8H7dVP7Whvnbu0MCBej1fKJcmervqAAAAAAAAAAAAAAAAAAAA8J9xaMP1/38O1K//33i7amCv6nzLb2Cvk//Qvx7M/6Rn/QB2n+9/6Fs1+Q/9S/5D/5L/0L/kP/SvDvmf2+1+ALvP9z/0L/kPAAAAAAAAAAAAAAAAAAAAAAAAAAA74uKFC9lUu7eyVMjqE4ML81Pl905OFCtT+en5Qr5QnpvNT5bLk6VivlCe/rfXS8rl2dGYmb86Ui1WqiOVhcV3psvzM617ihb9T3EAAAAAAAAAAAAAAAAAAADYbKg+JWk+ItJ6OU3z+Yj/R8ThyCWXr5SKoxHxRET8NJDbl9XHet1pAAAAAAAAAAAAAAAAAAAA2GMqC4tT46VSca5PCoPbWTgilh9vN7JX3Pazcs1t1abpzSMdmxQUHqXQy1EJAAAAAAAAAAAAAAAAAAD60/2Lfrt9xt872yEAAAAAAAAAAAAAAAAAAADoS+lvSURk0/HhF4Y2tv4vWR2oP0bE+zcvfXx1vFqdG8vm31mbX/2kOf9UL/oPdKuVp608BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO6rLCxOjZdKxbkdLPR6HQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAexj8BAAD//+q51EI=")
r12 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r12, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0xfdef}], 0x1, 0xe7b, 0x0, 0x1)

4.822846211s ago: executing program 1 (id=2622):
gettid()
socket$nl_netfilter(0x10, 0x3, 0xc)
set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0xa)
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0xffa8)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000000000), 0x4)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0xb, 0x0, @vifc_lcl_addr=@empty, @remote}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x5, 0x3, &(0x7f0000000500)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x40f00, 0x3}, 0x94)
socket$inet6(0xa, 0x1, 0xfffffffd)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xc478, 0x400, 0x2, 0x8b6}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000300)=<r5=>0x0)
kexec_load(0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x41000000}], 0x160000)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r3, 0x1b20, 0x6513, 0x0, 0x0, 0x0)
syz_usb_connect$hid(0x200000000000000, 0x36, &(0x7f0000000080)=ANY=[], 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
ppoll(&(0x7f0000000100)=[{}], 0x1, 0x0, &(0x7f0000000080)={[0x8001a0efffffff]}, 0x8)

3.178090034s ago: executing program 4 (id=2641):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="44000000100001040000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x44}}, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000f40)={0x42c, r1, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x1c8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xb5, 0x3, "8295bdb98093b616ea9da037497e370b0e4f65f9232861d49d7dc351ae4cd68361eae00cede3a1f72183a9ac8698a42678d96e5f64ab00d3cbbce02cc18b78e634344b1794c64db8f4a18fa7a95b5e25ffe792e6aa5261fdb3f2fabeaa79b166d53be56fb6b55c48747a133e6f3057c28bdcfa504e9e71af4467a1398e8b7f3f478b3ebb3467b2c464ff1e3a1a7ac0ea3c96d4853f8980737f910d2cadacb76f7d3dacf157989511126f5b3326ce7d1037"}, @TIPC_NLA_NODE_ID={0x62, 0x3, "cf1839dcf6a112a0c0c62213e3ff1e0b7ab08af3cca72a58cd3715cccd6cdfc53e26fb5c9b3857fff003dc5a1f7db80749c6fc6544215ea5601477a96ef3148af262097a27f80874cee4790d4de687f0c658c13ca0dd6b39fe07d5ef23f3"}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "223ec27b48e1911568c644187dd9ceed0c11bbf6a0f0428c1caeb4b303ab05"}}, @TIPC_NLA_NODE_ID={0x9, 0x3, "7c1ff2a829"}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "182e4d1558c44ff86962cb78db59e7ce714ebc5fb84f58aeddff26b6f5966beab34e67db"}}]}, @TIPC_NLA_NODE={0x170, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x111, 0x3, "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"/269}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x401}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "2683e58ec66eceb7a7957df8e0e6900870da13f521c7"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x2}]}, @TIPC_NLA_MEDIA={0x38, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe0}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffc01}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xd6e4}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x957}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfffffffb}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}]}, @TIPC_NLA_NODE={0x58, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x268}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "531666a7789b1d708d1d40448e002c3405acc5a4541f4cac566fe835413551"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x101}]}]}, 0x42c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40040)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f00000003c0)=0x2, 0x12)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r7, 0x0, 0x2}, 0x18)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0x20)
setxattr$incfs_metadata(&(0x7f0000000000)='./cgroup\x00', &(0x7f0000000840), 0x0, 0x0, 0x2)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, 0x0, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x18)
openat$selinux_avc_hash_stats(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

3.146676375s ago: executing program 4 (id=2643):
clock_settime(0x1ed5d7403, &(0x7f0000000180))
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000200)=ANY=[@ANYRESOCT], &(0x7f0000000140)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0, r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
memfd_create(&(0x7f0000001f40)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xfa\xed\x04\x00\x00\x00\xd4N\x12;\x83-j\xa7\x02\x92\xecA\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4\xe1\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x19\b\x00\x00\x00\x00~\xf3S\x12\"\x00^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x00ZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99Y', 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000540)=ANY=[@ANYRESOCT=r1], 0x0, 0x5}, 0x94)
ptrace$setregs(0xf, r1, 0x0, &(0x7f0000000380))
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x200, 0xfffffffd}}, 0x10)
r3 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
fchdir(r4)
fsopen(&(0x7f0000000240)='ecryptfs\x00', 0x0)
rt_sigsuspend(&(0x7f0000000100)={[0x8]}, 0x8)
r5 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
ftruncate(r5, 0x2007ffb)
sendfile(r5, r5, 0x0, 0x1000000201005)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x80000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000002c0)={'ip6_vti0\x00', 0x0})
creat(&(0x7f0000000000)='./bus\x00', 0x8e)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_opts(r6, 0x29, 0x39, &(0x7f0000000280)=ANY=[], 0x18)

2.845597769s ago: executing program 3 (id=2644):
r0 = mq_open(&(0x7f0000000480)='!sel\x00\x00\x00\x10\x00\x00\x00\x00\xd7\\P\xc1\xde.O\xcb]0y\x00\x00\x00\x00\x00\x00\x00\x00', 0x6e93ebbbcc0884f2, 0x196, &(0x7f0000000440)={0x2000000000002000, 0x1, 0x56, 0x3})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040))
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000009500000000000000f8b72d788d6a729f108e1fa05d4dad0718469414805f27348d9965af9f2f17f2d4a02bf770"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3}, 0x18)
r4 = socket$inet(0xa, 0x801, 0x84)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmsg(r5, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r6, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
bind$tipc(r5, &(0x7f0000000180)=@name={0x1e, 0x2, 0x3, {{0x42, 0x1}, 0x1}}, 0x10)
r7 = accept4(r4, 0x0, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r7, 0x84, 0x84, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e23, @empty}}, 0x4}, &(0x7f0000000200)=0x90)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r0, &(0x7f0000000880)=""/202, 0x8f, 0x200000000004, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000010a850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r8 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
ioctl$IMSETDEVNAME(r8, 0x80184947, &(0x7f0000000280)={0xd0, 'syz0\x00'})
pwritev2(r8, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x30000000, 0x3)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x10, 0x4, 0x8, 0x8}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa4000000", @ANYRES32=r10, @ANYBLOB="0000000002000000b705000008000000850000005e00000095"], &(0x7f0000000300)='GPL\x00', 0x8}, 0x94)

2.232985238s ago: executing program 4 (id=2648):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETSHIFTSTATE(r0, 0x541c, &(0x7f00000000c0)={0x6, 0x2})
r1 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000340)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x3000c085)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
setresgid(0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000006ac0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000}}, {{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000001300)="07934f5238660dfcaf02f114627440f823aa9fb303e33f43507df8bdcfeb82f1f0224a53cc5ede6f6d5f2f24bcea9cc0f239da82092044be382ea125b9e193d301f4e4869509392365b934c5450de1ba8a", 0x51}], 0x1, 0x0, 0x0, 0x40}}, {{0x0, 0x0, &(0x7f0000003cc0)=[{&(0x7f0000001cc0)="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", 0x7fd}], 0x1, 0x0, 0x0, 0x2400c805}}], 0x3, 0x0)
write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc)

2.199394249s ago: executing program 0 (id=2649):
clock_settime(0x1ed5d7403, &(0x7f0000000180))
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYRES64], &(0x7f0000000140)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5a}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={0x0, r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
memfd_create(&(0x7f0000001f40)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xfa\xed\x04\x00\x00\x00\xd4N\x12;\x83-j\xa7\x02\x92\xecA\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4\xe1\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x19\b\x00\x00\x00\x00~\xf3S\x12\"\x00^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x00ZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99Y', 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000540)=ANY=[@ANYRESOCT=r1], 0x0, 0x5}, 0x94)
ptrace$setregs(0xf, r1, 0x0, &(0x7f0000000380))
bind$tipc(0xffffffffffffffff, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x200, 0xfffffffd}}, 0x10)
r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fchdir(r3)
rt_sigsuspend(&(0x7f0000000100)={[0x8]}, 0x8)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=@newtaction={0x70, 0x30, 0xb, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_skbedit={0x58, 0x1, 0x0, 0x0, {{0xc}, {0xffffffffffffff7e, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_MARK={0x8, 0x3}, @TCA_SKBEDIT_PTYPE={0x6, 0x4}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x10}, {0xc, 0xa}, {0xc, 0x9, {0xf5}}}}]}]}, 0x70}}, 0x0)
r5 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
ftruncate(r5, 0x2007ffb)
sendfile(r5, r5, 0x0, 0x1000000201005)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x80000000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
creat(&(0x7f0000000000)='./bus\x00', 0x8e)
r6 = socket$l2tp6(0xa, 0x2, 0x73)
setsockopt$inet6_opts(r6, 0x29, 0x39, &(0x7f0000000280)=ANY=[], 0x18)

1.970385702s ago: executing program 3 (id=2650):
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff2b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
wait4(0x0, 0x0, 0x8, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000200)={[{@errors_remount}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x10}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@nojournal_checksum}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r0}, 0x18)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000480)={0x0, 0x0, 0x4}, &(0x7f00000004c0)=0x8)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x1, 0x147480)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x7a, &(0x7f0000000240)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb0800461c006c0068000008019078ac1414bbac1e00010703b700030a9078000b0004431a0080006800ed015601ff0a010101ac1e01010044280a90ffffffff000000030000000800000003fffffffc000000090000100000000000000000028606000000038d0294040100000000"], 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f00000009c0)=@nat={'nat\x00', 0x19, 0x0, 0xc0, [0x200000000500, 0x0, 0x0, 0x200000000530, 0x200000000560], 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000001000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000"]}, 0x138)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x1, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)

1.800386024s ago: executing program 1 (id=2651):
unshare(0x6a040000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000cc0)={'lo\x00', &(0x7f0000000c80)=@ethtool_sset_info={0xa}})
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4}, 0x40db, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000020d8f4976e39334618b552e2e816"], 0x50)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a00000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000170000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r5, &(0x7f0000000000), 0xffffff6a)
fallocate(r5, 0x0, 0x0, 0x2c2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r6}, 0x18)
socket$rds(0x15, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xf0, 0xd215)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)

1.518454848s ago: executing program 2 (id=2654):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000004c0)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB, @ANYBLOB], 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{}, 0x0, 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73f72cc9f0ba1f848350000005e120602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x4000850)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r1}, 0x18)
fsopen(&(0x7f00000000c0)='proc\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0x40, 0x1, 0x40, 0xfc, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x2, @perf_config_ext={0x2, 0xfffffffc}, 0x1100, 0x5dd8, 0x2, 0x1, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000400)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r4, 0x0, r6, 0x0, 0x88000cc, 0x0)
fcntl$setpipe(r5, 0x407, 0x100004)
write$eventfd(r5, &(0x7f0000000240), 0xffffff14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r7, @ANYBLOB="0000000000000000b708000000feffff7b8af8aa6bad86e9c46f7b3d3bd9d70ffc6dff00000000bfa200080000000007e90000f8ffff7f7e5fb2aaac40b300b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffe}, [@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @call={0x85, 0x0, 0x0, 0x23}]}, 0x0, 0xfffffffe, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, @fallback=0x2c, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r8 = socket$inet6(0x10, 0x3, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r9}, 0x10)
sendto$inet6(r8, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)

1.469024479s ago: executing program 1 (id=2655):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000680)='/sys/power/disk', 0x2, 0x0)
io_setup(0x20, &(0x7f0000001140))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@remote, 0x200000, 0x0, 0xff, 0x1, 0x0, 0x4}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000200)={@mcast2, 0x200000, 0x2, 0x0, 0xb, 0x7, 0xa4}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0)

1.36598682s ago: executing program 4 (id=2656):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="440000001000010400000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x44}}, 0x0)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000f40)={0x42c, r1, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x1c8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xb5, 0x3, "8295bdb98093b616ea9da037497e370b0e4f65f9232861d49d7dc351ae4cd68361eae00cede3a1f72183a9ac8698a42678d96e5f64ab00d3cbbce02cc18b78e634344b1794c64db8f4a18fa7a95b5e25ffe792e6aa5261fdb3f2fabeaa79b166d53be56fb6b55c48747a133e6f3057c28bdcfa504e9e71af4467a1398e8b7f3f478b3ebb3467b2c464ff1e3a1a7ac0ea3c96d4853f8980737f910d2cadacb76f7d3dacf157989511126f5b3326ce7d1037"}, @TIPC_NLA_NODE_ID={0x62, 0x3, "cf1839dcf6a112a0c0c62213e3ff1e0b7ab08af3cca72a58cd3715cccd6cdfc53e26fb5c9b3857fff003dc5a1f7db80749c6fc6544215ea5601477a96ef3148af262097a27f80874cee4790d4de687f0c658c13ca0dd6b39fe07d5ef23f3"}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "223ec27b48e1911568c644187dd9ceed0c11bbf6a0f0428c1caeb4b303ab05"}}, @TIPC_NLA_NODE_ID={0x9, 0x3, "7c1ff2a829"}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "182e4d1558c44ff86962cb78db59e7ce714ebc5fb84f58aeddff26b6f5966beab34e67db"}}]}, @TIPC_NLA_NODE={0x170, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x111, 0x3, "5f0585b13a17cfa009c45503fa943af879f1855cd0ea84abde18dfa584d51c9fccfa6f9fb56b7f919e86e154d44073b40401fd4b27c0b61765dcc8ec4d1223d2f25702482f394a4ac03d82dde31f16b18e1f88ab9d93ba72a654d81e732b6404167d9d181208430e2cb819767d781c9036d14f65bc06a10cdf566ac8c80618991fbc3463728c3538a87cade7f2df2266b6cca22c24b33e57f44cda2c45fc206a8e85ba509d4601658894aa53fcac55f3aa2187af0a08d40ce9f7e61ba8d5897a4a97098f56079ffb19ba0fc88b07234c81b7fce0cb20959591ef1c0aedb4f0c6060dad7a9118f55e6083166265cca09cc37e452a9a03953c4d03b86696a5b04103ed00"/269}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x401}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "2683e58ec66eceb7a7957df8e0e6900870da13f521c7"}}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x2}]}, @TIPC_NLA_MEDIA={0x38, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe0}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffc01}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xd6e4}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x957}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfffffffb}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}]}, @TIPC_NLA_NODE={0x58, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x268}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "531666a7789b1d708d1d40448e002c3405acc5a4541f4cac566fe835413551"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x101}]}]}, 0x42c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40040)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f00000003c0)=0x2, 0x12)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r6}, 0x38)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r7, 0x0, 0x2}, 0x18)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0x20)
setxattr$incfs_metadata(&(0x7f0000000000)='./cgroup\x00', &(0x7f0000000840), 0x0, 0x0, 0x2)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r8, 0x0, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0), 0x602, 0x0)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x18)
openat$selinux_avc_hash_stats(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840)

1.358660461s ago: executing program 1 (id=2657):
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x37, &(0x7f0000000000)=""/143, &(0x7f00000000c0)=0x8f)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x19, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x9}, [@exit]}, &(0x7f0000000180)='syzkaller\x00', 0x6, 0x6d, &(0x7f00000001c0)=""/109, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000240)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000280)={0x0, 0x8, 0x4, 0x2}, 0x10, 0x0, 0x0, 0x3, 0x0, &(0x7f00000002c0)=[{0x5, 0x4, 0xf, 0x9}, {0x5, 0x5, 0xe, 0x1}, {0x2, 0x3, 0x7, 0xc}], 0x10, 0x400}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000100)='fsi_slave_init\x00', r0, 0x0, 0x2}, 0x18)
r2 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$selinux_access(r2, &(0x7f0000000440)={'system_u:object_r:initrc_exec_t:s0', 0x20, '/usr/sbin/cupsd', 0x20, 0x8}, 0x48)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r2, 0x40049366, &(0x7f00000004c0)=0x4)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/profiling', 0x101801, 0xc)
ioctl$SIOCPNDELRESOURCE(r3, 0x89ef, &(0x7f0000000540)=0x9)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000600)={r3, 0x58, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000740)={@ifindex=<r5=>0x0, 0x36, 0x0, 0x2, &(0x7f0000000640)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0xa, 0x0, &(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000006c0)=[0x0], &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0], <r6=>0x0}, 0x40)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000780)={r3, r4, 0x25, 0x1, @val=@tcx={@void, @value=r0, @void, @void, r6}}, 0x1c)
ioctl$PPPIOCSMAXCID(r3, 0x40047451, &(0x7f00000007c0)=0x4)
ioctl$PPPIOCGNPMODE(r3, 0xc008744c, &(0x7f0000000800)={0x8029, 0x1})
r7 = io_uring_setup(0x107b, &(0x7f0000000840)={0x0, 0x571, 0x8, 0x1, 0x2cb, 0x0, r3})
r8 = syz_io_uring_setup(0x5d48, &(0x7f00000008c0)={0x0, 0xc22a, 0x2, 0x0, 0x3cd, 0x0, r7}, &(0x7f0000000940), &(0x7f0000000980))
msgget$private(0x0, 0x284)
prctl$PR_SET_MM(0x23, 0xb, &(0x7f0000ffc000/0x2000)=nil)
bind$packet(r1, &(0x7f00000009c0)={0x11, 0x18, r5, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x14}}, 0x14)
r9 = getpgrp(0x0)
ptrace$getregset(0x4204, r9, 0x202, &(0x7f0000000b00)={&(0x7f0000000a00)=""/222, 0xde})
madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1)
syz_create_resource$binfmt(&(0x7f0000000b40)='./file0\x00')
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000b80), 0x1, 0x0)
timerfd_create(0x3, 0x80000)
dup3(r8, r8, 0x0)
pipe2$9p(&(0x7f0000000c40)={<r10=>0xffffffffffffffff}, 0x0)
fstat(r7, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, <r11=>0x0})
mount$9p_fd(0x0, &(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00), 0x223808, &(0x7f0000000d00)={'trans=fd,', {'rfdno', 0x3d, r10}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@access_user}, {@noextend}, {@dfltuid}, {@ignoreqv}, {@loose}, {@version_L}, {@version_L}, {@aname={'aname', 0x3d, '\x18-^'}}], [{@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@dont_measure}, {@euid_lt={'euid<', r11}}]}})
r12 = add_key$keyring(&(0x7f0000000e80), &(0x7f0000000ec0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffa)
add_key$keyring(&(0x7f0000000e00), &(0x7f0000000e40)={'syz', 0x3}, 0x0, 0x0, r12)

1.334869361s ago: executing program 0 (id=2658):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async, rerun: 32)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) (rerun: 32)
write$binfmt_misc(r3, &(0x7f0000000240), 0xfffffecc)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000040)) (async)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) (async)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r4, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x54, 0x10, 0xffffff1f, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10000}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x2}, @IFLA_GRE_ENCAP_FLAGS={0x6, 0xf, 0x7}, @IFLA_GRE_REMOTE={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x28}}]}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x54}, 0x1, 0x0, 0x0, 0x40}, 0x0) (async)
r5 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000040)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1f, 0x1f}}, @IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)

1.334519671s ago: executing program 4 (id=2659):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000c00)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
tgkill(0x0, 0x0, 0x21) (fail_nth: 1)

1.260291822s ago: executing program 1 (id=2660):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
r1 = socket$kcm(0x11, 0x200000000000002, 0x300)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000001f80)=r0, 0x4)
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
socket$key(0xf, 0x3, 0x2)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r6, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x1058, [{0x11}, {0x0, 0x100000000000000}]}, 0x68)
r7 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r7, &(0x7f0000000080)={&(0x7f0000000100)=@caif=@rfm={0x25, 0x5, "cdfaaf7254f4ef6249f068fcdd7e1cbd"}, 0x80, &(0x7f00000002c0)=[{&(0x7f0000000300)="27050200340f14000600002fb96dbcf706e105", 0x13}], 0x1}, 0x800)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000c00)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000118110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b702000014002000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r9}, 0x10)
time(0x0)
tgkill(0x0, 0x0, 0x21)

1.259977662s ago: executing program 4 (id=2661):
gettid()
socket$nl_netfilter(0x10, 0x3, 0xc)
set_mempolicy(0x3, &(0x7f00000000c0)=0x5, 0xa)
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0)
write$selinux_load(r0, &(0x7f0000000000)=ANY=[], 0xffa8)
openat$nci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000000000), 0x4)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0xb, 0x0, @vifc_lcl_addr=@empty, @remote}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x5, 0x3, &(0x7f0000000500)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x40f00, 0x3}, 0x94)
socket$inet6(0xa, 0x1, 0xfffffffd)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xc478, 0x400, 0x2, 0x8b6}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000300)=<r5=>0x0)
kexec_load(0x0, 0x1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x41000000}], 0x160000)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000500)='/sys/kernel/kexec_crash_size', 0x202, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r3, 0x0, &(0x7f0000000040)='./file0\x00', 0x64, 0x183000, 0x23456})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
io_uring_enter(r3, 0x1b20, 0x6513, 0x0, 0x0, 0x0)
syz_usb_connect$hid(0x200000000000000, 0x36, &(0x7f0000000080)=ANY=[], 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
ppoll(&(0x7f0000000100)=[{}], 0x1, 0x0, &(0x7f0000000080)={[0x8001a0efffffff]}, 0x8)

1.080539624s ago: executing program 3 (id=2662):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
socket(0x10, 0x803, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r3}, &(0x7f0000001c00), 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000080), 0x180, 0x0)

889.042157ms ago: executing program 0 (id=2663):
get_mempolicy(0x0, 0x0, 0xa, &(0x7f0000a94000/0x4000)=nil, 0x1)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r4, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0x4, &(0x7f0000000140)=0x7, 0x4)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000001280)=@newtaction={0x18, 0x31, 0x3d, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1, 0x8}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="09000000070000000300000048"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r8}, 0x18)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000f80)={{r7}, &(0x7f0000000f00), &(0x7f0000000f40)='%pi6   \x00'}, 0x20)
unshare(0x22020400)
r9 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000005, 0x10012, r10, 0x0)
copy_file_range(r10, &(0x7f0000000080)=0x204, r9, 0x0, 0x206a2e2c, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000700)={0x0, 0x1e5, &(0x7f00000006c0)={&(0x7f0000000440)=@deltaction={0x28, 0x31, 0x101, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}]}, 0x28}}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000580)={0x20, 0x1, 0x1, 0x801, 0x0, 0x0, {}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0xd}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x48000)

860.137828ms ago: executing program 0 (id=2664):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800040000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
close(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000000), &(0x7f0000000200)=""/138}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r3}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

704.208769ms ago: executing program 0 (id=2665):
unshare(0x6a040000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000cc0)={'lo\x00', &(0x7f0000000c80)=@ethtool_sset_info={0xa}})
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x4}, 0x40db, 0x0, 0x4, 0x8, 0xa, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000020d8f4976e39334618b552e2e816"], 0x50)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r3=>0x0})
sendto$packet(r2, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a00000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000000170000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000020b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r5, &(0x7f0000000000), 0xffffff6a)
fallocate(r5, 0x0, 0x0, 0x2c2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r6}, 0x18)
socket$rds(0x15, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xf0, 0xd215)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)

681.91ms ago: executing program 2 (id=2666):
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f0000000080), &(0x7f00000000c0)=0x18)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
socketpair(0x1, 0x1, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{}, 0x0, &(0x7f0000000380)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000170000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
inotify_add_watch(0xffffffffffffffff, &(0x7f00000002c0)='./bus\x00', 0x24000137)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x400e, &(0x7f0000000300), 0x1, 0x440, &(0x7f0000000cc0)="$eJzs28tvG8UfAPDv2kn66+uXUJVHH0CgIMoradJSeuACAokDSEhwKMeQpFWo26AmSLSKICBUjqgSJy6IIxJ/ASe4IOCExBXuqFKFcmnhZLT2bmI7thunTlzqz0dad2Z33Jmvd8ee2ckG0LdG05ckYk9E/B4Rw9VsfYHR6j83V5am/15Zmk6iXH7zr6RS7sbK0nReNH/f7jwzEFH4NIlDTepduHT53FSpNHsxy48vnn9vfOHS5Wfnzk+dnT07e2Hy1KkTxyeePzn5XFfiTOO6cfDD+cMHXn376uvTp6++8/O3SR5/QxxdMtru4OPlcper6629NelkoIcNoSPFajeNwUr/H45irJ284Xjlk542DthS5XK5fF/rw8tl4C6WRK9bAPRG/kOfzn/zbZuGHneE6y9WJ0Bp3DezrXpkIApZmcGG+W03jUbE6eV/vkq32Jr7EAAAdb5Pxz/PNBv/FaL2vtD/szWUkYi4JyL2RcTJiNgfEfdGVMreHxEPdFh/4yLJ+vFP4dqmAtugdPz3Qra2VT/+y0d/MVLMcnsr8Q8mZ+ZKs8eyz+RoDO5I8xNt6vjh5d8+b3WsdvyXbmn9+Vgwa8e1gR3175mZWpy6nZhrXf844uBAs/iT1ZWAJCIORMTBTdYx99Q3h1sdu3X8bXRhnan8dcQT1fO/HA3x55L265Pj/4vS7LHx/KpY75dfr7zRqv7bir8L0vO/q+n1vxr/SFK7XrvQyf/+5ZPp65U/Pms5p9ns9T+UvFW374OpxcWLExFDyWvVRtfun2woN7lWPo3/6JHm/X9frH0ShyIivYgfjIiHIuLhrO2PRMSjEXGkzafw00uPvbv5+LdWGv9MR+d/LTEUjXuaJ4rnfvyurtKRTuJPz/+JSupotmcj338baVenVzMAAAD8VxUiYk8khbHVdKEwNlb9G/79satQml9YfPrM/PsXZqrPCIzEYCG/0zVccz90IpvW5/nJhvzx7L7xF8WdlfzY9HxpptfBQ5/b3aL/p/4s9rp1wJbzvBb0L/0f+pf+D/1L/4f+1aT/7+xFO4Dt1+z3/6MetAPYfg3937If9BHzf+hfm+n/vjPg7tC2Lw9tXzuAbbWwM279kLyExLpEFO6IZkhsUaLX30wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADd8W8AAAD//58P56I=")
set_mempolicy(0x1, &(0x7f0000000000), 0x7)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r2, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00'})
unshare(0x2c020400)
ppoll(&(0x7f0000000380)=[{0xffffffffffffffff, 0x200}], 0x1, &(0x7f0000000500), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x12, 0x2, 0x8, 0xd0eb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)

327.516875ms ago: executing program 2 (id=2667):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x7393, &(0x7f0000000180)={0x0, 0x1add, 0x1, 0x2, 0x2e7}, 0x0, 0x0)
fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000380)={0x2})
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28})

294.389395ms ago: executing program 0 (id=2668):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x8, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="bd", 0x1}], 0x1, 0x0, 0x4000}}], 0x1, 0x0)

266.334626ms ago: executing program 2 (id=2669):
r0 = socket(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x400, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x3548, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x4}}}}]}, 0x78}}, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@rand_addr, @rand_addr, <r5=>0x0}, &(0x7f0000000240)=0xc)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newtfilter={0x44, 0x2c, 0xd27, 0x1, 0x0, {0x0, 0x0, 0x0, r5, {0xc}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x1d98}, @TCA_FLOW_PERTURB={0x8}]}}]}, 0x44}}, 0x40014)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000001700)=0x4)
ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000280)=<r7=>0x0)
setpgid(r6, r7)
socket(0x10, 0x3, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008f00850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
socket(0x10, 0x803, 0x0) (async)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3) (async)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0) (async)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x400, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x3548, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x4}}}}]}, 0x78}}, 0x0) (async)
getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080), &(0x7f0000000240)=0xc) (async)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newtfilter={0x44, 0x2c, 0xd27, 0x1, 0x0, {0x0, 0x0, 0x0, r5, {0xc}, {}, {0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x1d98}, @TCA_FLOW_PERTURB={0x8}]}}]}, 0x44}}, 0x40014) (async)
getpid() (async)
sched_setscheduler(r6, 0x2, &(0x7f0000001700)=0x4) (async)
ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000280)) (async)
setpgid(r6, r7) (async)

164.396888ms ago: executing program 2 (id=2670):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]})
accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x80800)

145.834758ms ago: executing program 2 (id=2671):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d0000008500000023000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x100)
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r1, 0xc0f85403, 0x0)

141.313678ms ago: executing program 3 (id=2672):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000680)='/sys/power/disk', 0x2, 0x0)
io_setup(0x20, &(0x7f0000001140))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000000)={@remote, 0x200000, 0x0, 0xff, 0x1, 0x0, 0x4}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000200)={@mcast2, 0x200000, 0x2, 0x0, 0xb, 0x7, 0xa4}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r3}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0)

56.720159ms ago: executing program 3 (id=2674):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x15, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) (async)
r1 = mq_open(&(0x7f000084dff0)='\xa1sxt\x1a\x00\x00\x00\x00\x00\x00\x00\x01\x88\xbdd', 0x6e93ebbbcc0884f2, 0x100, &(0x7f0000000300)={0x0, 0x1, 0x3})
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32)
mq_timedreceive(r1, &(0x7f0000000180)=""/204, 0xcc, 0x0, 0x0) (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000003c0)='skip_task_reaping\x00', r2}, 0x18)
r3 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x2000000000000019, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020100008500000043"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = socket$qrtr(0x2a, 0x2, 0x0)
unshare(0x400)
bind$qrtr(r6, &(0x7f0000000500)={0x2a, 0x0, 0x1}, 0x54)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r4}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000100)='io_uring_register\x00', r7}, 0x10)
r8 = syz_io_uring_setup(0x371d, &(0x7f0000000440)={0x0, 0x0, 0x400, 0xa, 0xffffff}, &(0x7f0000000380), &(0x7f0000000400))
io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000600)=@newtaction={0xa0, 0x30, 0x9, 0x2, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{0x0, 0x0, 0x0, 0xffff0000}, {}, {0x3}, {0x0, 0x7, 0x1}, {0x8}, {0x0, 0x0, 0x0, 0xfffffffd}, {0x6, 0xfe}]}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x9, 0xfffffff7}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x3}}}}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x24000004}, 0x0)
link(0x0, 0x0) (async)
sigaltstack(0x0, 0x0) (async)
open(&(0x7f0000000000)='./bus\x00', 0x1050c1, 0x170)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)

0s ago: executing program 3 (id=2675):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r1, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x34, r2, 0x300, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x50}, 0x8018)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = creat(&(0x7f00000001c0)='./bus\x00', 0x18)
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
ioctl$PPPIOCGCHAN(r5, 0x80047437, &(0x7f0000001f00))
sendmmsg(r5, &(0x7f0000003d40)=[{{0x0, 0x0, &(0x7f0000001f40)=[{&(0x7f0000000740)='q', 0x1}], 0x1}}, {{&(0x7f0000002380)=@can, 0x80, 0x0}}], 0x2, 0x4)
close(r4)
r6 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000001080)=0x8)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r4, 0x84, 0x1a, &(0x7f00000003c0)={r7}, &(0x7f0000000040)=0x8)
bpf$ITER_CREATE(0x21, &(0x7f0000000040)={r4}, 0x8)
r8 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x4110, 0x0, 0x0, 0x5, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_clone(0x2000400, 0x0, 0xfffffebf, 0x0, 0x0, 0x0)
read(r8, &(0x7f0000000000)=""/47, 0x2f)
mknod(&(0x7f0000000000)='./bus\x00', 0x10, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x301040, 0x0)
mount(&(0x7f00000000c0), &(0x7f0000000440)='./bus\x00', 0x0, 0x8c7c88, 0x0)
open(&(0x7f00000002c0)='./bus\x00', 0x0, 0x61)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_emit_ethernet(0x6e, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000008004500006000000000000190780a010101ac1414aa05019078e000000241a00004000000000289000064010101e0000001441c9571ac1e0101000020000a01010100000401ac1414aa0000000344148dfe225e0100000000090a010101fffffffd"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x15, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000006000000000000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7060000000000008500000083000000bf09000000000000550901000000000095000000000000008d93c0ff0400000085200000010000008500000038000000183200000400000000000000000000002b2bc0ffffffffffbf91000000000000b7020000020000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000300)='syzkaller\x00', 0x6, 0x62, &(0x7f0000000440)=""/98, 0x41100, 0x27, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x2, 0xe, 0x7, 0x2c}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x7fffffff}, 0x94)
ioctl$sock_inet_sctp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000004c0))
sendmsg$key(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="021600000a0000000000000000000000080012"], 0x50}}, 0x0)

kernel console output (not intermixed with test programs):

e.
[  167.412555][ T9687] name failslab, interval 1, probability 0, space 0, times 0
[  167.425251][ T9687] CPU: 0 UID: 0 PID: 9687 Comm: syz.3.2091 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  167.425278][ T9687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  167.425358][ T9687] Call Trace:
[  167.425364][ T9687]  <TASK>
[  167.425370][ T9687]  __dump_stack+0x1d/0x30
[  167.425390][ T9687]  dump_stack_lvl+0xe8/0x140
[  167.425409][ T9687]  dump_stack+0x15/0x1b
[  167.425426][ T9687]  should_fail_ex+0x265/0x280
[  167.425455][ T9687]  should_failslab+0x8c/0xb0
[  167.425517][ T9687]  kmem_cache_alloc_node_noprof+0x57/0x320
[  167.425539][ T9687]  ? dup_task_struct+0x70/0x6a0
[  167.425560][ T9687]  dup_task_struct+0x70/0x6a0
[  167.425662][ T9687]  ? freezing_slow_path+0xed/0x100
[  167.425688][ T9687]  copy_process+0x399/0x1fe0
[  167.425756][ T9687]  ? kstrtouint+0x76/0xc0
[  167.425781][ T9687]  ? kstrtouint_from_user+0x9f/0xf0
[  167.425809][ T9687]  ? __rcu_read_unlock+0x4f/0x70
[  167.425846][ T9687]  kernel_clone+0x16c/0x5b0
[  167.425929][ T9687]  ? vfs_write+0x75e/0x8e0
[  167.425984][ T9687]  __x64_sys_clone+0xe6/0x120
[  167.426016][ T9687]  x64_sys_call+0x2c59/0x2fb0
[  167.426112][ T9687]  do_syscall_64+0xd2/0x200
[  167.426127][ T9687]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  167.426148][ T9687]  ? clear_bhb_loop+0x40/0x90
[  167.426168][ T9687]  ? clear_bhb_loop+0x40/0x90
[  167.426208][ T9687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.426228][ T9687] RIP: 0033:0x7f8196a0e929
[  167.426244][ T9687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.426309][ T9687] RSP: 002b:00007f8195076fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  167.426328][ T9687] RAX: ffffffffffffffda RBX: 00007f8196c35fa0 RCX: 00007f8196a0e929
[  167.426340][ T9687] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000042164000
[  167.426351][ T9687] RBP: 00007f8195077090 R08: 0000000000000000 R09: 0000000000000000
[  167.426361][ T9687] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  167.426371][ T9687] R13: 0000000000000001 R14: 00007f8196c35fa0 R15: 00007fffe9ea1a48
[  167.426402][ T9687]  </TASK>
[  167.687323][ T9692] netlink: 'syz.1.2093': attribute type 10 has an invalid length.
[  167.872504][ T9692] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2093'.
[  167.888839][ T9702] IPv4: Oversized IP packet from 127.202.26.0
[  168.208192][ T9718] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8455 sclass=netlink_route_socket pid=9718 comm=syz.2.2104
[  168.222100][ T9718] bond_slave_1: entered promiscuous mode
[  168.228103][ T9718] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2104'.
[  168.238779][ T9718] bond0: (slave bond_slave_1): Releasing backup interface
[  168.247154][ T9718] bond_slave_1 (unregistering): left promiscuous mode
[  168.276637][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.284133][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.291636][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.291760][ T9718] loop2: detected capacity change from 0 to 512
[  168.299064][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.299086][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.306717][ T9718] ext4: Bad value for 'sb'
[  168.312761][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.332134][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.339558][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.347005][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.354434][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.361843][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.369196][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.379052][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.386662][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.394199][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.401647][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.409167][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.416630][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.424069][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.431464][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.438826][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.446227][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.453606][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.461076][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.468452][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.475895][   T10] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0
[  168.483803][   T10] hid-generic 0000:0000:0000.0057: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  168.875413][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.170155][ T9766] SELinux: failed to load policy
[  169.178453][ T9766] pimreg: entered allmulticast mode
[  169.208062][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.215503][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.218722][ T9768] netlink: 'syz.0.2124': attribute type 3 has an invalid length.
[  169.223045][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.235356][ T9766] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  169.238085][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.253875][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.261393][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.262146][ T9766] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  169.268767][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.283883][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.291295][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.298685][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.306113][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.313876][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.321289][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.328668][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.336104][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.343525][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.351002][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.358428][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.365839][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.373306][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.380733][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.388123][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.395526][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.402959][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.410359][   T10] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0
[  169.423877][   T10] hid-generic 0000:0000:0000.0058: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  169.494333][ T9781] IPv4: Oversized IP packet from 127.202.26.0
[  169.539501][ T9649] pimreg: left allmulticast mode
[  169.654314][ T9791] loop4: detected capacity change from 0 to 1024
[  169.681319][ T9791] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.838902][ T9798] EXT4-fs (loop4): resizing filesystem from 512 to 0 blocks
[  169.846303][ T9798] EXT4-fs warning (device loop4): ext4_resize_fs:2042: can't shrink FS - resize aborted
[  169.889842][ T9800] netlink: 'syz.1.2135': attribute type 3 has an invalid length.
[  169.950190][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.015360][ T9809] loop4: detected capacity change from 0 to 1024
[  170.041081][ T9809] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.102927][ T9809] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 4 with error 28
[  170.115352][ T9809] EXT4-fs (loop4): This should not happen!! Data will be lost
[  170.115352][ T9809] 
[  170.125088][ T9809] EXT4-fs (loop4): Total free blocks count 0
[  170.131150][ T9809] EXT4-fs (loop4): Free/Dirty block details
[  170.137167][ T9809] EXT4-fs (loop4): free_blocks=0
[  170.142142][ T9809] EXT4-fs (loop4): dirty_blocks=0
[  170.147199][ T9809] EXT4-fs (loop4): Block reservation details
[  170.153262][ T9809] EXT4-fs (loop4): i_reserved_data_blocks=0
[  170.216917][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.434409][ T9820] netlink: 188 bytes leftover after parsing attributes in process `syz.1.2142'.
[  170.446521][ T9820] netlink: 'syz.1.2142': attribute type 27 has an invalid length.
[  170.504195][ T9820] veth0_vlan: left allmulticast mode
[  170.524365][ T9833] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2145'.
[  170.546398][ T9826] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.574739][ T9826] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  170.736990][ T9843] netlink: 'syz.1.2149': attribute type 3 has an invalid length.
[  170.842804][   T29] kauditd_printk_skb: 804 callbacks suppressed
[  170.842839][   T29] audit: type=1326 audit(1751283997.466:9059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  170.877040][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  170.884976][   T29] audit: type=1326 audit(1751283997.466:9060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  170.885710][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  170.908509][   T29] audit: type=1326 audit(1751283997.466:9061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  170.908534][   T29] audit: type=1326 audit(1751283997.466:9062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  170.908556][   T29] audit: type=1326 audit(1751283997.466:9063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  170.915994][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  170.939418][   T29] audit: type=1326 audit(1751283997.466:9064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  170.962695][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  170.985952][   T29] audit: type=1326 audit(1751283997.466:9065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  170.993306][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.016668][   T29] audit: type=1326 audit(1751283997.466:9066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  171.016698][   T29] audit: type=1326 audit(1751283997.466:9067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  171.016720][   T29] audit: type=1326 audit(1751283997.466:9068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9852 comm="syz.0.2152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  171.024181][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.024203][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.024223][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.024246][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.154901][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.162389][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.169820][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.177713][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.185249][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.185370][ T9858] loop4: detected capacity change from 0 to 1024
[  171.192634][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.192657][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.192681][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.221252][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.228660][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.236076][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.243520][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.250929][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.258505][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.266101][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.273596][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.281110][   T23] hid-generic 0000:0000:0000.0059: unknown main item tag 0x0
[  171.295872][ T9858] EXT4-fs: Ignoring removed nobh option
[  171.301559][ T9858] EXT4-fs: Ignoring removed bh option
[  171.400194][   T23] hid-generic 0000:0000:0000.0059: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  171.411534][ T9858] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.456268][ T9858] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.590987][ T9869] netlink: 'syz.1.2158': attribute type 27 has an invalid length.
[  171.631771][ T9869] 8021q: adding VLAN 0 to HW filter on device bond0
[  171.642914][ T9869] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  171.918308][ T9886] loop4: detected capacity change from 0 to 2048
[  171.969609][ T9886]  loop4: p1 < > p4
[  171.975297][ T9886] loop4: p4 size 8388608 extends beyond EOD, truncated
[  172.013334][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.021835][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.029276][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.036678][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.044171][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.051574][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.058974][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.066454][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.073906][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.081421][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.088817][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.096236][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.112440][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.119958][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.127333][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.134751][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.142152][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.149697][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.157429][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.164901][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.172330][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.179746][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.187122][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.194557][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.201964][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.209389][   T23] hid-generic 0000:0000:0000.005A: unknown main item tag 0x0
[  172.217267][ T9897] FAULT_INJECTION: forcing a failure.
[  172.217267][ T9897] name failslab, interval 1, probability 0, space 0, times 0
[  172.225748][ T9765] pimreg: left allmulticast mode
[  172.229993][ T9897] CPU: 0 UID: 0 PID: 9897 Comm: syz.1.2167 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  172.230018][ T9897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  172.230066][ T9897] Call Trace:
[  172.230074][ T9897]  <TASK>
[  172.230082][ T9897]  __dump_stack+0x1d/0x30
[  172.230328][ T9897]  dump_stack_lvl+0xe8/0x140
[  172.230348][ T9897]  dump_stack+0x15/0x1b
[  172.230363][ T9897]  should_fail_ex+0x265/0x280
[  172.230472][ T9897]  should_failslab+0x8c/0xb0
[  172.230496][ T9897]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  172.230522][ T9897]  ? proc_alloc_inode+0x34/0x90
[  172.230543][ T9897]  ? __pfx_proc_alloc_inode+0x10/0x10
[  172.230637][ T9897]  proc_alloc_inode+0x34/0x90
[  172.230657][ T9897]  alloc_inode+0x40/0x170
[  172.230686][ T9897]  new_inode+0x1d/0xe0
[  172.230729][ T9897]  proc_pid_make_inode+0x1f/0xd0
[  172.230797][ T9897]  proc_map_files_instantiate+0x81/0x130
[  172.230818][ T9897]  proc_fill_cache+0x1c1/0x240
[  172.230877][ T9897]  ? __pfx_proc_map_files_instantiate+0x10/0x10
[  172.230965][ T9897]  proc_map_files_readdir+0x500/0x680
[  172.230994][ T9897]  iterate_dir+0x114/0x330
[  172.231020][ T9897]  ? mutex_lock+0xd/0x30
[  172.231046][ T9897]  __se_sys_getdents64+0x88/0x1b0
[  172.231135][ T9897]  ? __pfx_filldir64+0x10/0x10
[  172.231164][ T9897]  __x64_sys_getdents64+0x43/0x50
[  172.231251][ T9897]  x64_sys_call+0x1302/0x2fb0
[  172.231290][ T9897]  do_syscall_64+0xd2/0x200
[  172.231314][ T9897]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  172.231339][ T9897]  ? clear_bhb_loop+0x40/0x90
[  172.231359][ T9897]  ? clear_bhb_loop+0x40/0x90
[  172.231380][ T9897]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.231488][ T9897] RIP: 0033:0x7fbbc667e929
[  172.231504][ T9897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.231521][ T9897] RSP: 002b:00007fbbc4ce7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  172.231540][ T9897] RAX: ffffffffffffffda RBX: 00007fbbc68a5fa0 RCX: 00007fbbc667e929
[  172.231553][ T9897] RDX: 000000000000005f RSI: 0000200000000080 RDI: 0000000000000003
[  172.231598][ T9897] RBP: 00007fbbc4ce7090 R08: 0000000000000000 R09: 0000000000000000
[  172.231611][ T9897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.231624][ T9897] R13: 0000000000000000 R14: 00007fbbc68a5fa0 R15: 00007ffca19715d8
[  172.231642][ T9897]  </TASK>
[  172.321062][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.409541][   T23] hid-generic 0000:0000:0000.005A: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  172.420376][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.495053][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.502479][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.509905][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.517316][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.524806][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.532251][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.539713][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.547125][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.554538][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.562022][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.574191][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.581661][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.589093][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.596549][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.604031][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.611438][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.618847][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.626269][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.633674][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.641155][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.648656][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.656090][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.663510][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.670903][    T9] hid-generic 0000:0000:0000.005B: unknown main item tag 0x0
[  172.685738][    T9] hid-generic 0000:0000:0000.005B: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  172.751702][ T9911] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9911 comm=syz.1.2173
[  172.768298][ T9909] netlink: 'syz.3.2174': attribute type 27 has an invalid length.
[  172.804571][ T9909] bridge0: port 3(syz_tun) entered disabled state
[  172.821729][ T9915] netlink: 'syz.2.2176': attribute type 3 has an invalid length.
[  172.876688][ T9919] bridge0: port 3(syz_tun) entered blocking state
[  172.883301][ T9919] bridge0: port 3(syz_tun) entered forwarding state
[  172.894522][ T9919] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.902618][ T9919] 8021q: adding VLAN 0 to HW filter on device team0
[  172.906783][ T9929] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2182'.
[  172.919584][ T9919] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  172.981529][ T9931] SELinux: failed to load policy
[  173.030388][ T9931] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.039364][ T9931] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.075166][ T9946] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9946 comm=syz.3.2189
[  173.138775][ T9951] netlink: 'syz.4.2191': attribute type 3 has an invalid length.
[  173.142005][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.157299][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.164747][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.172152][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.179738][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.187274][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.194842][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.202321][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.209817][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.217189][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.224591][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.232037][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.302564][ T9958] loop4: detected capacity change from 0 to 1024
[  173.314599][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.322050][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.329529][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.336904][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.344354][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.351802][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.359181][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.366610][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.374016][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.381460][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.388834][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.396397][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.403797][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.411282][   T23] hid-generic 0000:0000:0000.005C: unknown main item tag 0x0
[  173.419586][   T23] hid-generic 0000:0000:0000.005C: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  173.431746][ T9958] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.441364][ T9962] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2196'.
[  173.574724][ T9966] netlink: 'syz.3.2197': attribute type 27 has an invalid length.
[  173.595082][ T9958] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 4 with error 28
[  173.607449][ T9958] EXT4-fs (loop4): This should not happen!! Data will be lost
[  173.607449][ T9958] 
[  173.617260][ T9958] EXT4-fs (loop4): Total free blocks count 0
[  173.623390][ T9958] EXT4-fs (loop4): Free/Dirty block details
[  173.629357][ T9958] EXT4-fs (loop4): free_blocks=0
[  173.634383][ T9958] EXT4-fs (loop4): dirty_blocks=0
[  173.639473][ T9958] EXT4-fs (loop4): Block reservation details
[  173.645596][ T9958] EXT4-fs (loop4): i_reserved_data_blocks=0
[  173.672555][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.684537][ T9966] bridge0: port 3(syz_tun) entered disabled state
[  173.694506][ T9975] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9975 comm=syz.4.2201
[  173.767237][ T9969] bridge0: port 3(syz_tun) entered blocking state
[  173.773809][ T9969] bridge0: port 3(syz_tun) entered forwarding state
[  173.795925][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.803658][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.811090][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.818506][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.825915][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.833335][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.840904][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.848384][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.855839][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.863283][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.870740][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.878141][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.887236][ T9969] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.895279][ T9969] 8021q: adding VLAN 0 to HW filter on device team0
[  173.904938][ T9969] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  173.922285][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.929769][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.937254][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.944834][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.952278][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.959692][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.967074][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.974580][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.982107][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.989508][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  173.996898][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  174.004310][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  174.011789][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  174.019182][ T3413] hid-generic 0000:0000:0000.005D: unknown main item tag 0x0
[  174.091450][ T9995] netlink: 'syz.4.2207': attribute type 3 has an invalid length.
[  174.099987][ T9995] netlink: 'syz.4.2207': attribute type 3 has an invalid length.
[  174.274721][ T3413] hid-generic 0000:0000:0000.005D: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  174.505269][T10005] IPv4: Oversized IP packet from 127.202.26.0
[  174.548119][T10010] IPv4: Oversized IP packet from 127.202.26.0
[  174.815083][T10016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10016 comm=syz.1.2214
[  175.016537][T10033] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2219'.
[  175.079551][T10035] loop2: detected capacity change from 0 to 1024
[  175.289887][T10035] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.326152][T10035] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 4 with error 28
[  175.338644][T10035] EXT4-fs (loop2): This should not happen!! Data will be lost
[  175.338644][T10035] 
[  175.348329][T10035] EXT4-fs (loop2): Total free blocks count 0
[  175.354351][T10035] EXT4-fs (loop2): Free/Dirty block details
[  175.360309][T10035] EXT4-fs (loop2): free_blocks=0
[  175.365522][T10035] EXT4-fs (loop2): dirty_blocks=0
[  175.370656][T10035] EXT4-fs (loop2): Block reservation details
[  175.376640][T10035] EXT4-fs (loop2): i_reserved_data_blocks=0
[  175.406731][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.483080][T10062] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10062 comm=syz.4.2229
[  175.552490][T10066] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2231'.
[  175.611864][T10077] FAULT_INJECTION: forcing a failure.
[  175.611864][T10077] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.625096][T10077] CPU: 1 UID: 0 PID: 10077 Comm: syz.4.2236 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  175.625188][T10077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.625200][T10077] Call Trace:
[  175.625207][T10077]  <TASK>
[  175.625215][T10077]  __dump_stack+0x1d/0x30
[  175.625237][T10077]  dump_stack_lvl+0xe8/0x140
[  175.625258][T10077]  dump_stack+0x15/0x1b
[  175.625283][T10077]  should_fail_ex+0x265/0x280
[  175.625337][T10077]  should_fail+0xb/0x20
[  175.625363][T10077]  should_fail_usercopy+0x1a/0x20
[  175.625393][T10077]  _copy_from_user+0x1c/0xb0
[  175.625462][T10077]  ___sys_sendmsg+0xc1/0x1d0
[  175.625503][T10077]  __x64_sys_sendmsg+0xd4/0x160
[  175.625593][T10077]  x64_sys_call+0x2999/0x2fb0
[  175.625611][T10077]  do_syscall_64+0xd2/0x200
[  175.625627][T10077]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  175.625649][T10077]  ? clear_bhb_loop+0x40/0x90
[  175.625731][T10077]  ? clear_bhb_loop+0x40/0x90
[  175.625753][T10077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.625795][T10077] RIP: 0033:0x7f6cb1abe929
[  175.625808][T10077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.625823][T10077] RSP: 002b:00007f6cb0127038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  175.625901][T10077] RAX: ffffffffffffffda RBX: 00007f6cb1ce5fa0 RCX: 00007f6cb1abe929
[  175.625914][T10077] RDX: 0000000000044094 RSI: 0000200000000000 RDI: 0000000000000004
[  175.625926][T10077] RBP: 00007f6cb0127090 R08: 0000000000000000 R09: 0000000000000000
[  175.625937][T10077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.625998][T10077] R13: 0000000000000000 R14: 00007f6cb1ce5fa0 R15: 00007fff6c732308
[  175.626016][T10077]  </TASK>
[  175.818216][T10079] rdma_op ffff88810088cd80 conn xmit_rdma 0000000000000000
[  175.923277][   T29] kauditd_printk_skb: 200 callbacks suppressed
[  175.923290][   T29] audit: type=1326 audit(1751284002.546:9269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbbc667e929 code=0x0
[  175.985239][   T29] audit: type=1326 audit(1751284002.596:9270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.008771][   T29] audit: type=1326 audit(1751284002.596:9271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.032416][   T29] audit: type=1326 audit(1751284002.596:9272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.055993][   T29] audit: type=1326 audit(1751284002.596:9273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.079589][   T29] audit: type=1326 audit(1751284002.596:9274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.103378][   T29] audit: type=1326 audit(1751284002.596:9275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.126888][   T29] audit: type=1326 audit(1751284002.596:9276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.150475][   T29] audit: type=1326 audit(1751284002.596:9277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.173987][   T29] audit: type=1326 audit(1751284002.596:9278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10087 comm="syz.1.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7fbbc667e929 code=0x7ffc0000
[  176.450089][T10114] loop3: detected capacity change from 0 to 512
[  176.458744][T10116] 9pnet_virtio: no channels available for device 127.0.0.1
[  176.462067][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.473415][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.480062][T10116] netlink: 'syz.4.2248': attribute type 13 has an invalid length.
[  176.480863][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.496063][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.503451][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.510933][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.518298][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.525720][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.533150][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.540549][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.547928][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.555369][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.562745][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.570244][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.577704][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.585104][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.592475][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.599858][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.607217][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.614654][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.622085][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.629474][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.636842][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.644231][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.651601][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.659030][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.666459][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.673826][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.681280][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.688647][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.696029][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.703398][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.710766][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.718128][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.725767][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.733143][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.740598][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.747954][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.755324][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.762695][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.770128][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.777487][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.784859][ T3413] hid-generic 0000:0000:0000.005E: unknown main item tag 0x0
[  176.793680][ T3413] hid-generic 0000:0000:0000.005E: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  176.882973][T10123] SELinux: failed to load policy
[  176.921865][T10130] loop2: detected capacity change from 0 to 256
[  176.941080][T10130] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  176.982684][T10133] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  176.999409][T10133] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.125296][T10141] Cannot find del_set index 0 as target
[  177.166439][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.173980][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.181532][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.188928][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.196335][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.203777][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.211209][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.218623][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.226088][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.233502][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.241045][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.248493][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.255889][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.255913][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.270744][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.278387][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.278408][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.278428][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.278448][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.278467][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.278486][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.306141][T10145] loop3: detected capacity change from 0 to 8192
[  177.308350][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.308377][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.344514][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.344543][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.359331][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.359352][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.367555][T10151] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.374465][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.374496][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.374517][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.383751][T10151] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.390215][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.407837][T10151] loop4: detected capacity change from 0 to 1024
[  177.412681][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.421130][T10151] EXT4-fs: Ignoring removed orlov option
[  177.426364][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.436173][T10151] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.439487][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.466749][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.474180][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.481548][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.488919][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.496305][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.503708][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.511125][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.518592][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.525982][ T3394] hid-generic 0000:0000:0000.005F: unknown main item tag 0x0
[  177.533995][ T3394] hid-generic 0000:0000:0000.005F: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  177.562185][T10156] loop2: detected capacity change from 0 to 512
[  177.568845][T10156] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  177.579894][T10156] EXT4-fs (loop2): 1 truncate cleaned up
[  177.585822][T10156] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.629000][T10159] pim6reg: entered allmulticast mode
[  177.635932][T10159] pim6reg: left allmulticast mode
[  177.644552][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.693626][T10159] loop3: detected capacity change from 0 to 512
[  177.701771][T10159] EXT4-fs: Ignoring removed bh option
[  177.707639][T10159] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  177.817892][T10171] loop2: detected capacity change from 0 to 128
[  177.824947][T10171] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  177.837787][T10171] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  177.845359][T10171] tipc: Disabling bearer <eth:syzkaller0>
[  177.895440][T10173] SELinux:  Context Ü is not valid (left unmapped).
[  177.903378][T10173] random: crng reseeded on system resumption
[  177.913167][T10173] Restarting kernel threads ...
[  177.918113][T10173] Done restarting kernel threads.
[  178.023001][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.030564][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.037981][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.045458][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.052856][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.060259][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.067688][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.075182][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.082670][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.090091][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.097483][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.104892][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.112388][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.119847][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.127215][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.134768][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.142169][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.149588][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.156979][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.164419][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.171788][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.179145][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.186658][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.194058][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.201514][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.208946][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.216344][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.223783][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.231154][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.238507][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.245916][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.253306][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.260747][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.268100][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.275564][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.282963][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.290345][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.297865][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.305313][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.312684][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.320140][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.327540][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.334908][    T9] hid-generic 0000:0000:0000.0060: unknown main item tag 0x0
[  178.342855][    T9] hid-generic 0000:0000:0000.0060: hidraw0: <UNKNOWN> HID v7.ff Device [syz1] on syz0
[  178.347874][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.384460][T10189] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2277'.
[  178.393530][T10189] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2277'.
[  178.412084][T10193] loop2: detected capacity change from 0 to 512
[  178.419184][T10193] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  178.439386][T10193] EXT4-fs (loop2): 1 truncate cleaned up
[  178.445499][T10193] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.516968][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.526185][T10209] loop3: detected capacity change from 0 to 1024
[  178.537956][T10211] loop2: detected capacity change from 0 to 128
[  178.543150][T10209] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.570101][T10211] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  178.583685][T10209] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 4 with error 28
[  178.596013][T10209] EXT4-fs (loop3): This should not happen!! Data will be lost
[  178.596013][T10209] 
[  178.605687][T10209] EXT4-fs (loop3): Total free blocks count 0
[  178.611737][T10209] EXT4-fs (loop3): Free/Dirty block details
[  178.617625][T10209] EXT4-fs (loop3): free_blocks=0
[  178.622641][T10209] EXT4-fs (loop3): dirty_blocks=0
[  178.627664][T10209] EXT4-fs (loop3): Block reservation details
[  178.633788][T10209] EXT4-fs (loop3): i_reserved_data_blocks=0
[  178.647106][T10211] ext4 filesystem being mounted at /511/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.679256][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.903468][T10227] bridge0: entered allmulticast mode
[  178.938824][T10229] netlink: 'syz.0.2293': attribute type 10 has an invalid length.
[  178.948609][T10229] veth0_vlan: left promiscuous mode
[  178.954192][T10229] veth0_vlan: entered promiscuous mode
[  178.961692][T10229] team0: Device veth0_vlan failed to register rx_handler
[  179.079412][T10229] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2293'.
[  179.146544][T10232] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  179.160904][T10232] SELinux: failed to load policy
[  179.429829][ T3319] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  179.469881][T10237] netlink: 'syz.2.2296': attribute type 10 has an invalid length.
[  179.477822][T10237] veth0_vlan: entered allmulticast mode
[  179.553598][T10243] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2296'.
[  179.569124][T10244] loop4: detected capacity change from 0 to 1024
[  179.576485][T10244] EXT4-fs: Ignoring removed nobh option
[  179.582088][T10244] EXT4-fs: Ignoring removed bh option
[  179.591908][T10244] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.605117][T10244] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.709044][T10251] loop3: detected capacity change from 0 to 512
[  179.715823][T10251] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  179.726910][T10251] EXT4-fs (loop3): 1 truncate cleaned up
[  179.733129][T10251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.783013][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.916388][T10254] loop3: detected capacity change from 0 to 1024
[  179.923543][T10254] EXT4-fs: Ignoring removed nobh option
[  179.929138][T10254] EXT4-fs: Ignoring removed bh option
[  179.940593][T10254] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.998281][T10268] netlink: 'syz.0.2304': attribute type 10 has an invalid length.
[  180.008858][T10268] veth0_vlan: left promiscuous mode
[  180.014431][T10268] veth0_vlan: entered promiscuous mode
[  180.022420][T10268] team0: Device veth0_vlan failed to register rx_handler
[  180.161566][T10268] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2304'.
[  180.313957][T10277] loop2: detected capacity change from 0 to 128
[  180.322022][T10277] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  180.334953][T10277] ext4 filesystem being mounted at /513/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.637259][T10283] loop4: detected capacity change from 0 to 1024
[  180.646023][T10283] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.670655][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.713237][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.721037][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.728831][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.736644][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.744410][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.752183][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.760005][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.767774][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.775527][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x1
[  180.783326][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.791080][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.798816][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.806642][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.814382][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.822140][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.829916][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.837678][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.845428][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.853194][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.860979][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.868754][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.876568][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x2
[  180.884346][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.892097][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.899869][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.907605][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.915397][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.923184][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x1
[  180.930963][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.938693][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.946514][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.954260][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.962122][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.969878][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.977633][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.985403][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  180.993150][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x2
[  181.000973][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  181.008702][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  181.016462][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x1
[  181.024375][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  181.028790][   T29] kauditd_printk_skb: 2141 callbacks suppressed
[  181.028803][   T29] audit: type=1326 audit(1751284007.646:11420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10291 comm="syz.1.2312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbbc66758e7 code=0x7ffc0000
[  181.032121][    T9] hid-generic 0000:0000:FFFFFFFD.0061: unknown main item tag 0x0
[  181.075271][   T29] audit: type=1326 audit(1751284007.656:11421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6cb1ab58e7 code=0x7ffc0000
[  181.098214][    T9] hid-generic 0000:0000:FFFFFFFD.0061: hidraw0: <UNKNOWN> HID v6c.fc Device [syz0] on syz1
[  181.098797][   T29] audit: type=1326 audit(1751284007.656:11422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6cb1a5ab19 code=0x7ffc0000
[  181.132313][   T29] audit: type=1326 audit(1751284007.656:11423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6cb1ab58e7 code=0x7ffc0000
[  181.155767][   T29] audit: type=1326 audit(1751284007.656:11424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6cb1a5ab19 code=0x7ffc0000
[  181.179263][   T29] audit: type=1326 audit(1751284007.656:11425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6cb1ab58e7 code=0x7ffc0000
[  181.202790][   T29] audit: type=1326 audit(1751284007.656:11426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6cb1a5ab19 code=0x7ffc0000
[  181.226251][   T29] audit: type=1326 audit(1751284007.656:11427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6cb1ab58e7 code=0x7ffc0000
[  181.249726][   T29] audit: type=1326 audit(1751284007.656:11428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6cb1a5ab19 code=0x7ffc0000
[  181.273192][   T29] audit: type=1326 audit(1751284007.656:11429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10282 comm="syz.4.2309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6cb1ab58e7 code=0x7ffc0000
[  181.315285][T10283] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 4 with error 28
[  181.327719][T10283] EXT4-fs (loop4): This should not happen!! Data will be lost
[  181.327719][T10283] 
[  181.337516][T10283] EXT4-fs (loop4): Total free blocks count 0
[  181.343525][T10283] EXT4-fs (loop4): Free/Dirty block details
[  181.349568][T10283] EXT4-fs (loop4): free_blocks=0
[  181.354569][T10283] EXT4-fs (loop4): dirty_blocks=0
[  181.357120][T10296] SELinux: failed to load policy
[  181.359741][T10283] EXT4-fs (loop4): Block reservation details
[  181.370738][T10283] EXT4-fs (loop4): i_reserved_data_blocks=0
[  181.378402][ T3319] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  181.409123][T10301] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10301 comm=syz.2.2313
[  181.458962][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.485739][T10309] netlink: 'syz.2.2319': attribute type 3 has an invalid length.
[  181.517583][T10309] netlink: 'syz.2.2319': attribute type 3 has an invalid length.
[  181.589759][T10317] loop3: detected capacity change from 0 to 1024
[  181.602449][T10317] EXT4-fs: Ignoring removed nobh option
[  181.608092][T10317] EXT4-fs: Ignoring removed bh option
[  181.639173][T10324] netlink: 'syz.4.2322': attribute type 10 has an invalid length.
[  181.677767][T10324] veth0_vlan: entered allmulticast mode
[  181.692886][T10329] loop2: detected capacity change from 0 to 128
[  181.693059][T10317] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.725087][T10329] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  181.729650][T10317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.767907][T10329] ext4 filesystem being mounted at /518/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.845037][T10324] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2322'.
[  181.855759][ T3319] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  181.887444][T10335] netlink: 'syz.2.2325': attribute type 27 has an invalid length.
[  181.913024][T10335] veth0_vlan: left allmulticast mode
[  181.956895][T10335] 8021q: adding VLAN 0 to HW filter on device bond0
[  181.973313][T10335] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  182.061387][T10342] loop2: detected capacity change from 0 to 1024
[  182.114896][T10342] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.150266][T10342] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 4 with error 28
[  182.162649][T10342] EXT4-fs (loop2): This should not happen!! Data will be lost
[  182.162649][T10342] 
[  182.172402][T10342] EXT4-fs (loop2): Total free blocks count 0
[  182.178381][T10342] EXT4-fs (loop2): Free/Dirty block details
[  182.184462][T10342] EXT4-fs (loop2): free_blocks=0
[  182.189438][T10342] EXT4-fs (loop2): dirty_blocks=0
[  182.194504][T10342] EXT4-fs (loop2): Block reservation details
[  182.200524][T10342] EXT4-fs (loop2): i_reserved_data_blocks=0
[  182.246548][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.290711][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.298486][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.306373][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.314231][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.322162][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.330029][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.337799][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.345565][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.353318][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x1
[  182.361074][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.368794][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.376534][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.384347][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.392194][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.399936][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.407672][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.415542][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.423365][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.431162][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.438976][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.446735][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.454667][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x2
[  182.462453][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.470271][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.478170][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.485939][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.493702][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.501469][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x1
[  182.509881][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.517612][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.523011][T10355] netlink: 'syz.2.2331': attribute type 3 has an invalid length.
[  182.525372][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.533949][T10355] netlink: 'syz.2.2331': attribute type 3 has an invalid length.
[  182.540816][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.540841][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.564172][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.571995][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.580090][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.587830][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x2
[  182.595596][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.603426][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.611248][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x1
[  182.619115][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.626983][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: unknown main item tag 0x0
[  182.639384][ T1051] hid-generic 0000:0000:FFFFFFFD.0062: hidraw0: <UNKNOWN> HID v6c.fc Device [syz0] on syz1
[  182.651678][T10359] loop2: detected capacity change from 0 to 128
[  182.691134][T10359] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  182.706898][T10361] loop4: detected capacity change from 0 to 512
[  182.729640][T10359] ext4 filesystem being mounted at /522/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.749648][T10361] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  182.776944][T10361] EXT4-fs (loop4): 1 truncate cleaned up
[  182.812668][T10361] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.895607][ T3319] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  182.946167][T10377] netlink: 'syz.2.2339': attribute type 27 has an invalid length.
[  183.008000][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.089834][T10378] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.099665][T10378] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  183.189818][T10399] loop2: detected capacity change from 0 to 128
[  183.199333][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.207133][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.214892][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.222656][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.230744][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.238477][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.246493][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.254418][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.262291][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x1
[  183.265682][T10384] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2343'.
[  183.270200][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.287035][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.294863][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.302674][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.310484][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.318237][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.325980][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.333775][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.341607][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.343121][T10399] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  183.349378][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.369649][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.372951][T10399] ext4 filesystem being mounted at /525/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.377369][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.395559][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x2
[  183.403321][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.411143][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.418890][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.426714][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.434506][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.442394][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x1
[  183.450250][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.457958][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.465951][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.473786][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.481547][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.489291][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.497061][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.504902][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.512662][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x2
[  183.520382][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.528118][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.535933][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x1
[  183.543732][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.551477][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: unknown main item tag 0x0
[  183.560349][ T1051] hid-generic 0000:0000:FFFFFFFD.0063: hidraw0: <UNKNOWN> HID v6c.fc Device [syz0] on syz1
[  183.572128][ T3319] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  183.587705][T10405] loop4: detected capacity change from 0 to 512
[  183.595128][T10405] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  183.608165][T10405] EXT4-fs (loop4): 1 truncate cleaned up
[  183.670171][T10412] loop4: detected capacity change from 0 to 1024
[  183.688888][T10412] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 4 with error 28
[  183.701351][T10412] EXT4-fs (loop4): This should not happen!! Data will be lost
[  183.701351][T10412] 
[  183.711053][T10412] EXT4-fs (loop4): Total free blocks count 0
[  183.717079][T10412] EXT4-fs (loop4): Free/Dirty block details
[  183.723028][T10412] EXT4-fs (loop4): free_blocks=0
[  183.728030][T10412] EXT4-fs (loop4): dirty_blocks=0
[  183.733084][T10412] EXT4-fs (loop4): Block reservation details
[  183.739176][T10412] EXT4-fs (loop4): i_reserved_data_blocks=0
[  183.960631][T10440] loop3: detected capacity change from 0 to 512
[  183.977497][T10440] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  183.990228][T10440] EXT4-fs (loop3): 1 truncate cleaned up
[  184.216615][T10453] validate_nla: 5 callbacks suppressed
[  184.216628][T10453] netlink: 'syz.3.2370': attribute type 3 has an invalid length.
[  184.260111][T10453] netlink: 'syz.3.2370': attribute type 3 has an invalid length.
[  184.387615][T10465] netlink: 'syz.1.2375': attribute type 10 has an invalid length.
[  184.405930][T10465] veth0_vlan: entered allmulticast mode
[  184.471209][T10438] loop2: detected capacity change from 0 to 1024
[  184.522951][T10465] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2375'.
[  184.533339][T10438] EXT4-fs: Ignoring removed nobh option
[  184.538935][T10438] EXT4-fs: Ignoring removed bh option
[  184.575073][T10478] netlink: 'syz.3.2378': attribute type 10 has an invalid length.
[  184.711159][T10478] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2378'.
[  184.771324][T10483] loop4: detected capacity change from 0 to 512
[  184.808315][T10483] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  184.891067][T10493] netlink: 'syz.0.2383': attribute type 3 has an invalid length.
[  184.898982][T10493] netlink: 'syz.0.2383': attribute type 3 has an invalid length.
[  184.901377][T10483] EXT4-fs (loop4): 1 truncate cleaned up
[  185.034494][T10499] IPv4: Oversized IP packet from 127.202.26.0
[  185.303988][T10505] SELinux: failed to load policy
[  185.803020][T10522] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10522 comm=syz.0.2393
[  185.897128][T10526] netlink: 'syz.4.2395': attribute type 3 has an invalid length.
[  185.919268][T10526] netlink: 'syz.4.2395': attribute type 3 has an invalid length.
[  186.005076][T10532] netlink: 'syz.0.2397': attribute type 10 has an invalid length.
[  186.019704][T10532] veth0_vlan: left promiscuous mode
[  186.035455][T10532] veth0_vlan: entered promiscuous mode
[  186.056318][T10532] team0: Device veth0_vlan failed to register rx_handler
[  186.110701][   T29] kauditd_printk_skb: 517 callbacks suppressed
[  186.110724][   T29] audit: type=1326 audit(1751284012.736:11947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10514 comm="syz.3.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  186.175750][   T29] audit: type=1326 audit(1751284012.736:11948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10514 comm="syz.3.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  186.193570][T10520] loop2: detected capacity change from 0 to 1024
[  186.199340][   T29] audit: type=1326 audit(1751284012.736:11949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10514 comm="syz.3.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  186.229305][   T29] audit: type=1326 audit(1751284012.736:11950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10514 comm="syz.3.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  186.252958][   T29] audit: type=1326 audit(1751284012.736:11951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10514 comm="syz.3.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  186.269932][T10520] EXT4-fs: Ignoring removed nobh option
[  186.276772][   T29] audit: type=1326 audit(1751284012.736:11952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10514 comm="syz.3.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  186.282337][T10520] EXT4-fs: Ignoring removed bh option
[  186.305846][   T29] audit: type=1326 audit(1751284012.736:11953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10514 comm="syz.3.2390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  186.359849][T10532] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2397'.
[  186.380211][T10541] netlink: 'syz.4.2399': attribute type 10 has an invalid length.
[  186.497501][T10541] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2399'.
[  186.590774][T10547] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2400'.
[  186.855323][T10563] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10563 comm=syz.2.2406
[  187.010236][   T29] audit: type=1326 audit(1751284013.626:11954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10564 comm="syz.0.2407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  187.033915][   T29] audit: type=1326 audit(1751284013.626:11955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10564 comm="syz.0.2407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  187.057472][   T29] audit: type=1326 audit(1751284013.626:11956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10564 comm="syz.0.2407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  187.228983][T10578] loop4: detected capacity change from 0 to 512
[  187.236040][T10578] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  187.256932][T10578] EXT4-fs (loop4): 1 truncate cleaned up
[  187.421912][ T3305] EXT4-fs unmount: 13 callbacks suppressed
[  187.421929][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.469138][T10585] veth0_vlan: left promiscuous mode
[  187.474804][T10585] veth0_vlan: entered promiscuous mode
[  187.481757][T10585] team0: Device veth0_vlan failed to register rx_handler
[  187.596469][T10597] loop3: detected capacity change from 0 to 1024
[  187.603249][T10597] EXT4-fs: Ignoring removed nobh option
[  187.608829][T10597] EXT4-fs: Ignoring removed bh option
[  187.617201][T10585] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2417'.
[  187.644092][T10597] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.660526][T10597] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.963741][T10617] loop2: detected capacity change from 0 to 512
[  187.970751][T10617] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  187.982889][T10617] EXT4-fs (loop2): 1 truncate cleaned up
[  187.989045][T10617] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  188.051498][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.672721][T10667] IPv4: Oversized IP packet from 127.202.26.0
[  188.745188][T10669] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2443'.
[  189.035713][T10672] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2444'.
[  189.289923][T10692] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2450'.
[  189.324303][T10695] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10695 comm=syz.2.2453
[  189.352487][T10698] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2454'.
[  189.385566][T10701] validate_nla: 3 callbacks suppressed
[  189.385582][T10701] netlink: 'syz.1.2456': attribute type 3 has an invalid length.
[  189.400111][T10701] netlink: 'syz.1.2456': attribute type 3 has an invalid length.
[  189.408302][T10699] bridge: RTM_NEWNEIGH with invalid ether address
[  189.575724][T10713] loop4: detected capacity change from 0 to 512
[  189.591102][T10713] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e018, mo2=0002]
[  189.606221][T10713] System zones: 1-12
[  189.611645][T10713] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2460: invalid indirect mapped block 8 (level 2)
[  189.629864][T10713] EXT4-fs (loop4): 1 truncate cleaned up
[  189.643897][T10713] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.890739][T10749] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10749 comm=syz.3.2467
[  189.926945][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.950037][T10754] loop4: detected capacity change from 0 to 512
[  189.956861][T10754] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  189.973416][T10754] EXT4-fs (loop4): 1 truncate cleaned up
[  189.980051][T10754] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.994819][T10757] netlink: 'syz.3.2469': attribute type 3 has an invalid length.
[  190.010468][T10757] netlink: 'syz.3.2469': attribute type 3 has an invalid length.
[  190.103998][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.138382][T10763] loop4: detected capacity change from 0 to 1024
[  190.221055][T10763] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.249466][T10763] ext4 filesystem being mounted at /488/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.262738][T10768] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2472'.
[  190.272471][T10765] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2472'.
[  190.325373][T10763] netlink: 'syz.4.2471': attribute type 6 has an invalid length.
[  190.357538][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.372710][T10772] netlink: 'syz.0.2475': attribute type 10 has an invalid length.
[  190.380760][T10772] veth0_vlan: left promiscuous mode
[  190.441295][T10772] veth0_vlan: entered promiscuous mode
[  190.448005][T10772] team0: Device veth0_vlan failed to register rx_handler
[  190.475288][T10787] netlink: 'syz.4.2481': attribute type 3 has an invalid length.
[  190.483137][T10787] netlink: 'syz.4.2481': attribute type 3 has an invalid length.
[  190.535096][T10785] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10785 comm=syz.2.2480
[  190.579465][T10772] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2475'.
[  190.660920][T10807] loop2: detected capacity change from 0 to 1024
[  190.667667][T10807] EXT4-fs: Ignoring removed nobh option
[  190.673373][T10807] EXT4-fs: Ignoring removed bh option
[  190.708182][T10807] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.739927][T10807] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.937154][T10820] netlink: 340 bytes leftover after parsing attributes in process `syz.3.2491'.
[  190.947949][T10820] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2491'.
[  191.027845][T10829] netlink: 'syz.3.2494': attribute type 3 has an invalid length.
[  191.035976][T10829] netlink: 'syz.3.2494': attribute type 3 has an invalid length.
[  191.105296][T10835] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2497'.
[  191.121341][T10837] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10837 comm=syz.3.2498
[  191.151138][T10839] loop4: detected capacity change from 0 to 512
[  191.157991][T10839] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  191.170317][   T29] kauditd_printk_skb: 317 callbacks suppressed
[  191.170329][   T29] audit: type=1326 audit(1751284017.796:12274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10840 comm="syz.3.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.200636][   T29] audit: type=1326 audit(1751284017.796:12275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10840 comm="syz.3.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.209470][T10839] EXT4-fs (loop4): 1 truncate cleaned up
[  191.224515][   T29] audit: type=1326 audit(1751284017.796:12276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10840 comm="syz.3.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.253592][   T29] audit: type=1326 audit(1751284017.796:12277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10840 comm="syz.3.2500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.279014][T10839] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.316407][T10848] FAULT_INJECTION: forcing a failure.
[  191.316407][T10848] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  191.329641][T10848] CPU: 1 UID: 0 PID: 10848 Comm: syz.0.2503 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  191.329706][T10848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  191.329752][T10848] Call Trace:
[  191.329757][T10848]  <TASK>
[  191.329763][T10848]  __dump_stack+0x1d/0x30
[  191.329782][T10848]  dump_stack_lvl+0xe8/0x140
[  191.329799][T10848]  dump_stack+0x15/0x1b
[  191.329817][T10848]  should_fail_ex+0x265/0x280
[  191.329845][T10848]  should_fail+0xb/0x20
[  191.329932][T10848]  should_fail_usercopy+0x1a/0x20
[  191.329987][T10848]  _copy_to_user+0x20/0xa0
[  191.330005][T10848]  simple_read_from_buffer+0xb5/0x130
[  191.330106][T10848]  proc_fail_nth_read+0x100/0x140
[  191.330135][T10848]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  191.330200][T10848]  vfs_read+0x1a0/0x6f0
[  191.330230][T10848]  ? __rcu_read_unlock+0x4f/0x70
[  191.330250][T10848]  ? __fget_files+0x184/0x1c0
[  191.330272][T10848]  ksys_read+0xda/0x1a0
[  191.330350][T10848]  __x64_sys_read+0x40/0x50
[  191.330453][T10848]  x64_sys_call+0x2d77/0x2fb0
[  191.330548][T10848]  do_syscall_64+0xd2/0x200
[  191.330566][T10848]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  191.330587][T10848]  ? clear_bhb_loop+0x40/0x90
[  191.330630][T10848]  ? clear_bhb_loop+0x40/0x90
[  191.330649][T10848]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.330672][T10848] RIP: 0033:0x7f28b13cd33c
[  191.330698][T10848] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  191.330721][T10848] RSP: 002b:00007f28afa37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  191.330742][T10848] RAX: ffffffffffffffda RBX: 00007f28b15f5fa0 RCX: 00007f28b13cd33c
[  191.330752][T10848] RDX: 000000000000000f RSI: 00007f28afa370a0 RDI: 000000000000000d
[  191.330763][T10848] RBP: 00007f28afa37090 R08: 0000000000000000 R09: 0000000000000000
[  191.330774][T10848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.330787][T10848] R13: 0000000000000000 R14: 00007f28b15f5fa0 R15: 00007ffce491e828
[  191.330807][T10848]  </TASK>
[  191.599305][   T29] audit: type=1326 audit(1751284018.206:12278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10851 comm="syz.3.2504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.623054][   T29] audit: type=1326 audit(1751284018.206:12279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10851 comm="syz.3.2504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.646839][   T29] audit: type=1326 audit(1751284018.206:12280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10851 comm="syz.3.2504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.670712][   T29] audit: type=1326 audit(1751284018.206:12281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10851 comm="syz.3.2504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.694483][   T29] audit: type=1326 audit(1751284018.206:12282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10851 comm="syz.3.2504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.718048][   T29] audit: type=1326 audit(1751284018.206:12283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10851 comm="syz.3.2504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8196a0e929 code=0x7ffc0000
[  191.761713][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.777274][T10862] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2510'.
[  192.047084][T10891] loop4: detected capacity change from 0 to 512
[  192.067193][T10891] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  192.097212][T10891] EXT4-fs (loop4): 1 truncate cleaned up
[  192.112110][T10891] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  192.129538][T10897] loop3: detected capacity change from 0 to 1024
[  192.136407][T10897] EXT4-fs: Ignoring removed nobh option
[  192.142032][T10897] EXT4-fs: Ignoring removed bh option
[  192.178809][T10897] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.199662][T10897] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.679900][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.740218][T10908] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2523'.
[  192.995161][T10930] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10930 comm=syz.4.2529
[  193.021997][T10932] xt_hashlimit: max too large, truncated to 1048576
[  193.059497][T10929] SELinux: failed to load policy
[  193.059509][T10932] FAULT_INJECTION: forcing a failure.
[  193.059509][T10932] name failslab, interval 1, probability 0, space 0, times 0
[  193.077127][T10932] CPU: 1 UID: 0 PID: 10932 Comm: syz.0.2531 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  193.077155][T10932] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  193.077239][T10932] Call Trace:
[  193.077246][T10932]  <TASK>
[  193.077255][T10932]  __dump_stack+0x1d/0x30
[  193.077273][T10932]  dump_stack_lvl+0xe8/0x140
[  193.077369][T10932]  dump_stack+0x15/0x1b
[  193.077452][T10932]  should_fail_ex+0x265/0x280
[  193.077554][T10932]  should_failslab+0x8c/0xb0
[  193.077576][T10932]  __kmalloc_noprof+0xa5/0x3e0
[  193.077602][T10932]  ? iter_file_splice_write+0xfe/0x970
[  193.077629][T10932]  iter_file_splice_write+0xfe/0x970
[  193.077699][T10932]  ? atime_needs_update+0x3be/0x3e0
[  193.077780][T10932]  ? shmem_file_splice_read+0x5c2/0x600
[  193.077818][T10932]  ? __pfx_iter_file_splice_write+0x10/0x10
[  193.077847][T10932]  direct_splice_actor+0x153/0x2a0
[  193.077873][T10932]  ? shmem_mmap+0x31/0xb0
[  193.077891][T10932]  splice_direct_to_actor+0x30f/0x680
[  193.077967][T10932]  ? __pfx_direct_splice_actor+0x10/0x10
[  193.078052][T10932]  do_splice_direct+0xda/0x150
[  193.078157][T10932]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  193.078241][T10932]  do_sendfile+0x380/0x650
[  193.078314][T10932]  __x64_sys_sendfile64+0x105/0x150
[  193.078339][T10932]  x64_sys_call+0xb39/0x2fb0
[  193.078358][T10932]  do_syscall_64+0xd2/0x200
[  193.078501][T10932]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  193.078522][T10932]  ? clear_bhb_loop+0x40/0x90
[  193.078540][T10932]  ? clear_bhb_loop+0x40/0x90
[  193.078557][T10932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.078577][T10932] RIP: 0033:0x7f28b13ce929
[  193.078658][T10932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.078673][T10932] RSP: 002b:00007f28afa37038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  193.078690][T10932] RAX: ffffffffffffffda RBX: 00007f28b15f5fa0 RCX: 00007f28b13ce929
[  193.078703][T10932] RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000008
[  193.078716][T10932] RBP: 00007f28afa37090 R08: 0000000000000000 R09: 0000000000000000
[  193.078730][T10932] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000001
[  193.078743][T10932] R13: 0000000000000000 R14: 00007f28b15f5fa0 R15: 00007ffce491e828
[  193.078770][T10932]  </TASK>
[  193.351874][T10929] pimreg: entered allmulticast mode
[  193.389052][T10939] loop2: detected capacity change from 0 to 512
[  193.450628][T10939] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  193.576309][T10939] EXT4-fs (loop2): 1 truncate cleaned up
[  193.594566][T10939] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.656126][T10959] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2539'.
[  193.719434][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.828561][T10966] loop2: detected capacity change from 0 to 1024
[  193.843884][T10966] EXT4-fs: Ignoring removed nobh option
[  193.849502][T10966] EXT4-fs: Ignoring removed bh option
[  193.871453][T10966] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.894548][T10966] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.907659][T10974] FAULT_INJECTION: forcing a failure.
[  193.907659][T10974] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  193.920981][T10974] CPU: 1 UID: 0 PID: 10974 Comm: syz.0.2545 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  193.921036][T10974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  193.921048][T10974] Call Trace:
[  193.921055][T10974]  <TASK>
[  193.921063][T10974]  __dump_stack+0x1d/0x30
[  193.921162][T10974]  dump_stack_lvl+0xe8/0x140
[  193.921182][T10974]  dump_stack+0x15/0x1b
[  193.921199][T10974]  should_fail_ex+0x265/0x280
[  193.921230][T10974]  should_fail_alloc_page+0xf2/0x100
[  193.921261][T10974]  __alloc_frozen_pages_noprof+0xff/0x360
[  193.921354][T10974]  alloc_pages_mpol+0xb3/0x250
[  193.921384][T10974]  vma_alloc_folio_noprof+0x1aa/0x300
[  193.921422][T10974]  handle_mm_fault+0xec2/0x2be0
[  193.921441][T10974]  ? mas_walk+0xf2/0x120
[  193.921508][T10974]  do_user_addr_fault+0x636/0x1090
[  193.921538][T10974]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  193.921565][T10974]  exc_page_fault+0x62/0xa0
[  193.921594][T10974]  asm_exc_page_fault+0x26/0x30
[  193.921614][T10974] RIP: 0033:0x7f28b137bf4b
[  193.921631][T10974] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  193.921649][T10974] RSP: 002b:00007f28afa34e10 EFLAGS: 00010246
[  193.921665][T10974] RAX: 00007f28afa36f30 RBX: 00007f28b15c4620 RCX: 0000000000000000
[  193.921678][T10974] RDX: 00007f28afa36f78 RSI: 00007f28b142dbf8 RDI: 00007f28afa34e30
[  193.921688][T10974] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  193.921717][T10974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.921746][T10974] R13: 0000000000000000 R14: 00007f28b15f5fa0 R15: 00007ffce491e828
[  193.921766][T10974]  </TASK>
[  193.921776][T10974] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  194.435819][T10983] loop4: detected capacity change from 0 to 512
[  194.699197][T10988] loop2: detected capacity change from 0 to 1024
[  194.756268][T10983] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  194.765410][T10983] EXT4-fs (loop4): Couldn't mount because of unsupported optional features (fffc1829)
[  194.775017][T10983] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  194.813837][T10988] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.901072][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.943596][T10996] loop4: detected capacity change from 0 to 512
[  194.953434][T10996] /dev/loop4: Can't open blockdev
[  195.075165][T11009] validate_nla: 8 callbacks suppressed
[  195.075179][T11009] netlink: 'syz.4.2558': attribute type 10 has an invalid length.
[  195.238833][T11009] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2558'.
[  195.496621][T11019] netlink: 'syz.2.2561': attribute type 3 has an invalid length.
[  195.512384][T11019] netlink: 'syz.2.2561': attribute type 3 has an invalid length.
[  195.534019][T11023] FAULT_INJECTION: forcing a failure.
[  195.534019][T11023] name failslab, interval 1, probability 0, space 0, times 0
[  195.546791][T11023] CPU: 1 UID: 0 PID: 11023 Comm: syz.1.2563 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  195.546847][T11023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  195.546858][T11023] Call Trace:
[  195.546863][T11023]  <TASK>
[  195.546870][T11023]  __dump_stack+0x1d/0x30
[  195.546890][T11023]  dump_stack_lvl+0xe8/0x140
[  195.546932][T11023]  dump_stack+0x15/0x1b
[  195.546949][T11023]  should_fail_ex+0x265/0x280
[  195.546979][T11023]  should_failslab+0x8c/0xb0
[  195.547003][T11023]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  195.547089][T11023]  ? shmem_alloc_inode+0x34/0x50
[  195.547111][T11023]  ? __pfx_shmem_alloc_inode+0x10/0x10
[  195.547130][T11023]  shmem_alloc_inode+0x34/0x50
[  195.547156][T11023]  alloc_inode+0x40/0x170
[  195.547188][T11023]  new_inode+0x1d/0xe0
[  195.547208][T11023]  shmem_get_inode+0x244/0x750
[  195.547229][T11023]  shmem_mknod+0x46/0x180
[  195.547249][T11023]  shmem_mkdir+0x33/0x70
[  195.547270][T11023]  vfs_mkdir+0x210/0x340
[  195.547307][T11023]  do_mkdirat+0x132/0x3f0
[  195.547397][T11023]  __x64_sys_mkdir+0x42/0x50
[  195.547486][T11023]  x64_sys_call+0x2289/0x2fb0
[  195.547504][T11023]  do_syscall_64+0xd2/0x200
[  195.547520][T11023]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  195.547546][T11023]  ? clear_bhb_loop+0x40/0x90
[  195.547599][T11023]  ? clear_bhb_loop+0x40/0x90
[  195.547619][T11023]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.547639][T11023] RIP: 0033:0x7fbbc667e929
[  195.547655][T11023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.547695][T11023] RSP: 002b:00007fbbc4ce7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[  195.547714][T11023] RAX: ffffffffffffffda RBX: 00007fbbc68a5fa0 RCX: 00007fbbc667e929
[  195.547769][T11023] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00002000000000c0
[  195.547846][T11023] RBP: 00007fbbc4ce7090 R08: 0000000000000000 R09: 0000000000000000
[  195.547857][T11023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.547869][T11023] R13: 0000000000000000 R14: 00007fbbc68a5fa0 R15: 00007ffca19715d8
[  195.547888][T11023]  </TASK>
[  196.039977][T10928] pimreg: left allmulticast mode
[  196.132972][T11036] loop3: detected capacity change from 0 to 512
[  196.208116][T11042] loop4: detected capacity change from 0 to 512
[  196.233038][T11036] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2571: bg 0: block 16: invalid block bitmap
[  196.272353][T11042] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  196.304747][T11036] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem
[  196.320951][T11036] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.2571: attempt to clear invalid blocks 1669132790 len 1
[  196.323371][T11049] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2573'.
[  196.343453][T11049] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2573'.
[  196.343813][T11036] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2571: invalid indirect mapped block 4294967295 (level 1)
[  196.368405][T11042] EXT4-fs (loop4): 1 truncate cleaned up
[  196.374543][T11042] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.388112][T11049] wireguard0: entered promiscuous mode
[  196.398184][   T29] kauditd_printk_skb: 240 callbacks suppressed
[  196.398199][   T29] audit: type=1326 audit(1751284023.016:12524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.428000][   T29] audit: type=1326 audit(1751284023.016:12525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.451628][   T29] audit: type=1326 audit(1751284023.016:12526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.482589][T11036] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2571: invalid indirect mapped block 4294967295 (level 2)
[  196.499772][T11036] EXT4-fs (loop3): 1 truncate cleaned up
[  196.506331][   T29] audit: type=1326 audit(1751284023.106:12527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.530068][   T29] audit: type=1326 audit(1751284023.106:12528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.544556][T11036] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.553686][   T29] audit: type=1326 audit(1751284023.106:12529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.575176][T11054] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2574'.
[  196.589384][   T29] audit: type=1326 audit(1751284023.106:12530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.598200][T11054] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2574'.
[  196.622024][   T29] audit: type=1326 audit(1751284023.106:12531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.654202][   T29] audit: type=1326 audit(1751284023.106:12532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.662970][T11036] netlink: 332 bytes leftover after parsing attributes in process `syz.3.2571'.
[  196.677917][   T29] audit: type=1326 audit(1751284023.106:12533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11040 comm="syz.0.2570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28b13ce929 code=0x7ffc0000
[  196.688579][T11036] netlink: 'syz.3.2571': attribute type 9 has an invalid length.
[  196.718232][T11036] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2571'.
[  196.727275][T11036] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2571'.
[  196.784096][T11054] wireguard1: entered promiscuous mode
[  196.814566][T11036] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2571'.
[  196.846267][T11063] netlink: 'syz.0.2577': attribute type 10 has an invalid length.
[  196.858486][T11064] netlink: 'syz.2.2578': attribute type 10 has an invalid length.
[  196.858626][T11066] netlink: 'syz.1.2579': attribute type 10 has an invalid length.
[  196.866507][T11064] veth0_vlan: entered allmulticast mode
[  196.880032][T11063] veth0_vlan: left promiscuous mode
[  196.885555][T11063] veth0_vlan: entered promiscuous mode
[  196.892351][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.894855][ T3305] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.902709][T11063] team0: Device veth0_vlan failed to register rx_handler
[  196.971361][T11074] SELinux: failed to load policy
[  196.979595][T11074] pimreg: entered allmulticast mode
[  196.997347][T11075] loop3: detected capacity change from 0 to 1024
[  197.004585][T11075] EXT4-fs: Ignoring removed nobh option
[  197.010401][T11075] EXT4-fs: Ignoring removed bh option
[  197.017139][T11064] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2578'.
[  197.026466][T11067] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2577'.
[  197.038561][T11075] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.051687][T11075] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.075027][T11103] FAULT_INJECTION: forcing a failure.
[  198.075027][T11103] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  198.088342][T11103] CPU: 0 UID: 0 PID: 11103 Comm: syz.3.2590 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  198.088371][T11103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.088383][T11103] Call Trace:
[  198.088391][T11103]  <TASK>
[  198.088399][T11103]  __dump_stack+0x1d/0x30
[  198.088443][T11103]  dump_stack_lvl+0xe8/0x140
[  198.088463][T11103]  dump_stack+0x15/0x1b
[  198.088482][T11103]  should_fail_ex+0x265/0x280
[  198.088513][T11103]  should_fail+0xb/0x20
[  198.088598][T11103]  should_fail_usercopy+0x1a/0x20
[  198.088623][T11103]  _copy_from_user+0x1c/0xb0
[  198.088641][T11103]  ___sys_sendmsg+0xc1/0x1d0
[  198.088726][T11103]  __x64_sys_sendmsg+0xd4/0x160
[  198.088761][T11103]  x64_sys_call+0x2999/0x2fb0
[  198.088852][T11103]  do_syscall_64+0xd2/0x200
[  198.088871][T11103]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  198.088898][T11103]  ? clear_bhb_loop+0x40/0x90
[  198.088949][T11103]  ? clear_bhb_loop+0x40/0x90
[  198.088967][T11103]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.089057][T11103] RIP: 0033:0x7f8196a0e929
[  198.089073][T11103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.089091][T11103] RSP: 002b:00007f8195077038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  198.089107][T11103] RAX: ffffffffffffffda RBX: 00007f8196c35fa0 RCX: 00007f8196a0e929
[  198.089144][T11103] RDX: 000000002000c800 RSI: 0000200000000380 RDI: 0000000000000003
[  198.089171][T11103] RBP: 00007f8195077090 R08: 0000000000000000 R09: 0000000000000000
[  198.089184][T11103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.089197][T11103] R13: 0000000000000000 R14: 00007f8196c35fa0 R15: 00007fffe9ea1a48
[  198.089220][T11103]  </TASK>
[  198.380018][T11105] loop3: detected capacity change from 0 to 512
[  198.387056][T11105] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  198.398066][T11105] EXT4-fs (loop3): 1 truncate cleaned up
[  198.404125][T11105] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.478072][T11110] netlink: 'syz.2.2594': attribute type 10 has an invalid length.
[  198.487582][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.505414][T11114] netlink: 'syz.3.2595': attribute type 10 has an invalid length.
[  199.353245][T11134] FAULT_INJECTION: forcing a failure.
[  199.353245][T11134] name failslab, interval 1, probability 0, space 0, times 0
[  199.366097][T11134] CPU: 0 UID: 0 PID: 11134 Comm: syz.3.2601 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  199.366125][T11134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  199.366135][T11134] Call Trace:
[  199.366141][T11134]  <TASK>
[  199.366147][T11134]  __dump_stack+0x1d/0x30
[  199.366166][T11134]  dump_stack_lvl+0xe8/0x140
[  199.366202][T11134]  dump_stack+0x15/0x1b
[  199.366218][T11134]  should_fail_ex+0x265/0x280
[  199.366307][T11134]  should_failslab+0x8c/0xb0
[  199.366330][T11134]  kmem_cache_alloc_noprof+0x50/0x310
[  199.366364][T11134]  ? skb_clone+0x151/0x1f0
[  199.366380][T11134]  skb_clone+0x151/0x1f0
[  199.366396][T11134]  __netlink_deliver_tap+0x2c9/0x500
[  199.366479][T11134]  netlink_unicast+0x64c/0x670
[  199.366496][T11134]  netlink_sendmsg+0x58b/0x6b0
[  199.366532][T11134]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.366542][T11134]  __sock_sendmsg+0x145/0x180
[  199.366559][T11134]  __sys_sendto+0x268/0x330
[  199.366594][T11134]  __x64_sys_sendto+0x76/0x90
[  199.366630][T11134]  x64_sys_call+0x2eb6/0x2fb0
[  199.366643][T11134]  do_syscall_64+0xd2/0x200
[  199.366653][T11134]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  199.366673][T11134]  ? clear_bhb_loop+0x40/0x90
[  199.366703][T11134]  ? clear_bhb_loop+0x40/0x90
[  199.366715][T11134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.366727][T11134] RIP: 0033:0x7f8196a107bc
[  199.366736][T11134] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  199.366746][T11134] RSP: 002b:00007f8195075ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  199.366758][T11134] RAX: ffffffffffffffda RBX: 00007f8195075fc0 RCX: 00007f8196a107bc
[  199.366813][T11134] RDX: 0000000000000020 RSI: 00007f8195076010 RDI: 0000000000000003
[  199.366820][T11134] RBP: 0000000000000000 R08: 00007f8195075f14 R09: 000000000000000c
[  199.366827][T11134] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  199.366834][T11134] R13: 00007f8195075f68 R14: 00007f8195076010 R15: 0000000000000000
[  199.366845][T11134]  </TASK>
[  199.602593][T11138] loop2: detected capacity change from 0 to 512
[  199.609294][T11138] EXT4-fs: Ignoring removed nobh option
[  199.625402][T11144] $Hÿ: renamed from bond0 (while UP)
[  199.634508][T11138] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #3: comm syz.2.2603: corrupted inode contents
[  199.638078][T11144] $Hÿ: entered promiscuous mode
[  199.648800][T11138] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #3: comm syz.2.2603: mark_inode_dirty error
[  199.651398][T11144] bond_slave_0: entered promiscuous mode
[  199.651480][T11144] bond_slave_1: entered promiscuous mode
[  199.664661][T11138] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #3: comm syz.2.2603: corrupted inode contents
[  199.668259][T11144] geneve1: entered promiscuous mode
[  199.673999][T11138] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.2603: mark_inode_dirty error
[  199.705254][T11138] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2603: Failed to acquire dquot type 0
[  199.717540][T11138] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.2603: corrupted inode contents
[  199.739406][T11138] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #16: comm syz.2.2603: mark_inode_dirty error
[  199.763803][T11138] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.2603: corrupted inode contents
[  199.846202][T11138] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.2603: mark_inode_dirty error
[  199.858048][T11138] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.2603: corrupted inode contents
[  199.871792][T11138] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  199.880572][T11138] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #16: comm syz.2.2603: corrupted inode contents
[  199.896530][T11138] EXT4-fs error (device loop2): ext4_truncate:4597: inode #16: comm syz.2.2603: mark_inode_dirty error
[  199.912066][T11138] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  199.921667][T11138] EXT4-fs (loop2): 1 truncate cleaned up
[  199.928251][T11138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.976453][T11138] ext4 filesystem being mounted at /584/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.990572][T11138] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.068579][T11158] netlink: 'syz.3.2610': attribute type 10 has an invalid length.
[  200.079689][T11074] pimreg: left allmulticast mode
[  200.201533][T11161] netlink: 'syz.4.2612': attribute type 10 has an invalid length.
[  200.223070][T11163] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11163 comm=syz.1.2611
[  200.346822][T11138] netlink: 'syz.2.2603': attribute type 6 has an invalid length.
[  200.462363][T11179] loop2: detected capacity change from 0 to 1024
[  200.469099][T11179] EXT4-fs: Ignoring removed nobh option
[  200.474777][T11179] EXT4-fs: Ignoring removed bh option
[  200.490941][T11179] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.504196][T11179] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.838786][T11196] SELinux: failed to load policy
[  200.846653][T11198] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11198 comm=syz.0.2623
[  201.152460][T11216] netlink: 'syz.0.2629': attribute type 3 has an invalid length.
[  201.160507][T11216] netlink: 'syz.0.2629': attribute type 3 has an invalid length.
[  201.913539][T11232] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11232 comm=syz.3.2635
[  201.939954][T11235] netlink: 'syz.3.2636': attribute type 10 has an invalid length.
[  202.059709][T11235] __nla_validate_parse: 11 callbacks suppressed
[  202.059725][T11235] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2636'.
[  202.087991][   T29] kauditd_printk_skb: 201 callbacks suppressed
[  202.088007][   T29] audit: type=1326 audit(1751284028.706:12733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.118172][   T29] audit: type=1326 audit(1751284028.706:12734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.122158][T11239] netlink: 'syz.2.2638': attribute type 10 has an invalid length.
[  202.141960][   T29] audit: type=1326 audit(1751284028.706:12735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.173611][   T29] audit: type=1326 audit(1751284028.706:12736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.197226][   T29] audit: type=1326 audit(1751284028.706:12737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.220805][   T29] audit: type=1326 audit(1751284028.706:12738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.244432][   T29] audit: type=1326 audit(1751284028.706:12739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.268194][   T29] audit: type=1326 audit(1751284028.706:12740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.291801][   T29] audit: type=1326 audit(1751284028.706:12741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.298181][T11245] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2638'.
[  202.315633][   T29] audit: type=1326 audit(1751284028.706:12742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11230 comm="syz.4.2634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f6cb1abe929 code=0x7ffc0000
[  202.420695][T11248] netlink: 'syz.4.2640': attribute type 3 has an invalid length.
[  202.428496][T11248] netlink: 'syz.4.2640': attribute type 3 has an invalid length.
[  202.457318][T11250] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2641'.
[  202.980366][T11273] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11273 comm=syz.2.2646
[  203.514667][T11287] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2649'.
[  203.514689][T11287] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2649'.
[  203.802017][T11290] loop3: detected capacity change from 0 to 1024
[  203.802622][T11290] EXT4-fs: Ignoring removed nobh option
[  203.814179][T11290] EXT4-fs: Ignoring removed bh option
[  203.885306][T11290] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.918042][T11298] netlink: 'syz.2.2652': attribute type 3 has an invalid length.
[  203.918079][T11298] netlink: 'syz.2.2652': attribute type 3 has an invalid length.
[  203.966882][T11301] FAULT_INJECTION: forcing a failure.
[  203.966882][T11301] name failslab, interval 1, probability 0, space 0, times 0
[  203.966909][T11301] CPU: 1 UID: 0 PID: 11301 Comm: syz.2.2653 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  203.966979][T11301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.966992][T11301] Call Trace:
[  203.966999][T11301]  <TASK>
[  203.967007][T11301]  __dump_stack+0x1d/0x30
[  203.967029][T11301]  dump_stack_lvl+0xe8/0x140
[  203.967046][T11301]  dump_stack+0x15/0x1b
[  203.967061][T11301]  should_fail_ex+0x265/0x280
[  203.967086][T11301]  ? do_epoll_create+0x57/0x270
[  203.967125][T11301]  should_failslab+0x8c/0xb0
[  203.967145][T11301]  __kmalloc_cache_noprof+0x4c/0x320
[  203.967171][T11301]  do_epoll_create+0x57/0x270
[  203.967265][T11301]  __x64_sys_epoll_create+0x35/0x60
[  203.967286][T11301]  x64_sys_call+0x20e/0x2fb0
[  203.967308][T11301]  do_syscall_64+0xd2/0x200
[  203.967327][T11301]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  203.967411][T11301]  ? clear_bhb_loop+0x40/0x90
[  203.967429][T11301]  ? clear_bhb_loop+0x40/0x90
[  203.967447][T11301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.967465][T11301] RIP: 0033:0x7f934aa2e929
[  203.967478][T11301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.967544][T11301] RSP: 002b:00007f9349097038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d5
[  203.967563][T11301] RAX: ffffffffffffffda RBX: 00007f934ac55fa0 RCX: 00007f934aa2e929
[  203.967577][T11301] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000008001
[  203.967589][T11301] RBP: 00007f9349097090 R08: 0000000000000000 R09: 0000000000000000
[  203.967602][T11301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.967622][T11301] R13: 0000000000000000 R14: 00007f934ac55fa0 R15: 00007ffe2c2cd378
[  203.967641][T11301]  </TASK>
[  204.174731][T11304] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2654'.
[  204.270202][T11309] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2656'.
[  204.298728][T11314] FAULT_INJECTION: forcing a failure.
[  204.298728][T11314] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  204.312099][T11314] CPU: 0 UID: 0 PID: 11314 Comm: syz.4.2659 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  204.312126][T11314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.312198][T11314] Call Trace:
[  204.312204][T11314]  <TASK>
[  204.312212][T11314]  __dump_stack+0x1d/0x30
[  204.312233][T11314]  dump_stack_lvl+0xe8/0x140
[  204.312249][T11314]  dump_stack+0x15/0x1b
[  204.312263][T11314]  should_fail_ex+0x265/0x280
[  204.312329][T11314]  should_fail+0xb/0x20
[  204.312428][T11314]  should_fail_usercopy+0x1a/0x20
[  204.312460][T11314]  _copy_to_user+0x20/0xa0
[  204.312548][T11314]  simple_read_from_buffer+0xb5/0x130
[  204.312577][T11314]  proc_fail_nth_read+0x100/0x140
[  204.312680][T11314]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  204.312705][T11314]  vfs_read+0x1a0/0x6f0
[  204.312734][T11314]  ? __rcu_read_unlock+0x4f/0x70
[  204.312769][T11314]  ? __fget_files+0x184/0x1c0
[  204.312793][T11314]  ksys_read+0xda/0x1a0
[  204.312818][T11314]  __x64_sys_read+0x40/0x50
[  204.312843][T11314]  x64_sys_call+0x2d77/0x2fb0
[  204.312865][T11314]  do_syscall_64+0xd2/0x200
[  204.312895][T11314]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  204.312921][T11314]  ? clear_bhb_loop+0x40/0x90
[  204.313004][T11314]  ? clear_bhb_loop+0x40/0x90
[  204.313026][T11314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.313048][T11314] RIP: 0033:0x7f6cb1abd33c
[  204.313064][T11314] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  204.313082][T11314] RSP: 002b:00007f6cb0127030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  204.313138][T11314] RAX: ffffffffffffffda RBX: 00007f6cb1ce5fa0 RCX: 00007f6cb1abd33c
[  204.313149][T11314] RDX: 000000000000000f RSI: 00007f6cb01270a0 RDI: 0000000000000003
[  204.313159][T11314] RBP: 00007f6cb0127090 R08: 0000000000000000 R09: 0000000000000000
[  204.313170][T11314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.313195][T11314] R13: 0000000000000000 R14: 00007f6cb1ce5fa0 R15: 00007fff6c732308
[  204.313249][T11314]  </TASK>
[  204.393215][T11321] SELinux: failed to load policy
[  204.396312][T11321] pimreg: entered allmulticast mode
[  204.553091][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.006844][T11340] loop2: detected capacity change from 0 to 512
[  205.034343][T11340] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  205.203465][T11340] EXT4-fs (loop2): 1 truncate cleaned up
[  205.222524][T11340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.301218][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.375097][T11347] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2669'.
[  205.399574][T11347] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2669'.
[  205.707695][ T3309] ==================================================================
[  205.715805][ T3309] BUG: KCSAN: data-race in generic_fillattr / inode_add_bytes
[  205.723269][ T3309] 
[  205.725597][ T3309] read-write to 0xffff8881198f69b8 of 8 bytes by task 11377 on cpu 0:
[  205.733748][ T3309]  inode_add_bytes+0x47/0xe0
[  205.738346][ T3309]  __dquot_alloc_space+0x180/0x8a0
[  205.743547][ T3309]  shmem_inode_acct_blocks+0x129/0x240
[  205.749105][ T3309]  shmem_get_folio_gfp+0x5a7/0xd60
[  205.754240][ T3309]  shmem_write_begin+0xa8/0x190
[  205.759097][ T3309]  generic_perform_write+0x184/0x490
[  205.764390][ T3309]  shmem_file_write_iter+0xc5/0xf0
[  205.769503][ T3309]  __kernel_write_iter+0x256/0x4c0
[  205.774627][ T3309]  dump_user_range+0x407/0x8c0
[  205.779391][ T3309]  elf_core_dump+0x1dc2/0x1f80
[  205.784152][ T3309]  do_coredump+0x1dfd/0x27b0
[  205.788759][ T3309]  get_signal+0xd85/0xf70
[  205.793541][ T3309]  arch_do_signal_or_restart+0x96/0x480
[  205.799090][ T3309]  irqentry_exit_to_user_mode+0x5e/0xa0
[  205.804658][ T3309]  irqentry_exit+0x12/0x50
[  205.809100][ T3309]  asm_exc_page_fault+0x26/0x30
[  205.813972][ T3309] 
[  205.816297][ T3309] read to 0xffff8881198f69b8 of 8 bytes by task 3309 on cpu 1:
[  205.823839][ T3309]  generic_fillattr+0x27d/0x340
[  205.828692][ T3309]  shmem_getattr+0x181/0x200
[  205.833286][ T3309]  vfs_getattr_nosec+0x143/0x1e0
[  205.838224][ T3309]  vfs_statx+0x113/0x390
[  205.842472][ T3309]  vfs_fstatat+0x115/0x170
[  205.846901][ T3309]  __se_sys_newfstatat+0x55/0x260
[  205.851934][ T3309]  __x64_sys_newfstatat+0x55/0x70
[  205.856957][ T3309]  x64_sys_call+0x2c22/0x2fb0
[  205.861639][ T3309]  do_syscall_64+0xd2/0x200
[  205.866135][ T3309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.872027][ T3309] 
[  205.874341][ T3309] value changed: 0x0000000000001498 -> 0x00000000000014a8
[  205.881442][ T3309] 
[  205.883756][ T3309] Reported by Kernel Concurrency Sanitizer on:
[  205.889905][ T3309] CPU: 1 UID: 0 PID: 3309 Comm: syz-executor Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  205.900754][ T3309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  205.910807][ T3309] ==================================================================
[  205.942160][T11362] chnl_net:caif_netlink_parms(): no params data found
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  206.161310][T11321] pimreg: left allmulticast mode
[  206.259413][  T788] bridge_slave_1: left allmulticast mode
[  206.265248][  T788] bridge_slave_1: left promiscuous mode
[  206.270999][  T788] bridge0: port 2(bridge_slave_1) entered disabled state
[  206.309826][  T788] bridge_slave_0: left allmulticast mode
[  206.315550][  T788] bridge_slave_0: left promiscuous mode
[  206.321287][  T788] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.354331][  T788] bond0 (unregistering): (slave geneve1): Releasing backup interface
[  206.363858][   T10] SELinux: failure in sel_netif_sid_slow(), invalid network interface (13)
[  206.480990][  T788] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  206.491560][  T788] bond0 (unregistering): Released all slaves
[  206.500277][T11377] bridge0: port 3(syz_tun) entered disabled state
[  206.507838][T11377] syz_tun (unregistering): left allmulticast mode
[  206.514327][T11377] syz_tun (unregistering): left promiscuous mode
[  206.520734][T11377] bridge0: port 3(syz_tun) entered disabled state
[  206.551335][  T788] tipc: Left network mode
[  206.651170][  T788] hsr_slave_0: left promiscuous mode
[  206.661588][  T788] hsr_slave_1: left promiscuous mode
[  206.679630][  T788] batman_adv: batadv0: Removing interface: batadv_slave_0
[  206.689580][  T788] batman_adv: batadv0: Removing interface: batadv_slave_1
[  207.480616][  T788] bridge_slave_0: left allmulticast mode
[  207.486312][  T788] bridge_slave_0: left promiscuous mode
[  207.491935][  T788] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.501513][  T788] bridge_slave_1: left allmulticast mode
[  207.507138][  T788] bridge_slave_1: left promiscuous mode
[  207.512906][  T788] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.520833][  T788] bridge_slave_0: left allmulticast mode
[  207.526810][  T788] bridge_slave_0: left promiscuous mode
[  207.532582][  T788] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.557078][  T788] bond0 (unregistering): (slave geneve1): Releasing backup interface
[  207.700932][  T788] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  207.710164][  T788] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  207.719407][  T788] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  207.727975][  T788] bond0 (unregistering): Released all slaves
[  207.735852][  T788] bond1 (unregistering): Released all slaves
[  207.810919][  T788] bond0 (unregistering): Released all slaves
[  207.871749][  T788] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  207.880895][  T788] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  207.889942][  T788] bond0 (unregistering): Released all slaves
[  207.897844][  T788] bond1 (unregistering): Released all slaves
[  207.945230][  T788] hsr_slave_0: left promiscuous mode
[  207.950899][  T788] hsr_slave_1: left promiscuous mode
[  207.956522][  T788] batman_adv: batadv0: Removing interface: batadv_slave_0
[  207.963875][  T788] batman_adv: batadv0: Removing interface: batadv_slave_1
[  207.973008][  T788] hsr_slave_0: left promiscuous mode
[  207.978561][  T788] hsr_slave_1: left promiscuous mode
[  207.988161][  T788] pimreg (unregistering): left allmulticast mode
[  208.564872][  T788] IPVS: stop unused estimator thread 0...
[  208.819892][  T788] bridge_slave_1: left allmulticast mode
[  208.825546][  T788] bridge_slave_1: left promiscuous mode
[  208.831248][  T788] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.838887][  T788] bridge_slave_0: left allmulticast mode
[  208.844545][  T788] bridge_slave_0: left promiscuous mode
[  208.850224][  T788] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.960860][  T788] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  208.969984][  T788] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  208.978741][  T788] bond0 (unregistering): Released all slaves
[  209.042174][  T788] hsr_slave_0: left promiscuous mode
[  209.047699][  T788] hsr_slave_1: left promiscuous mode
[  209.053184][  T788] batman_adv: batadv0: Removing interface: batadv_slave_0
[  209.060612][  T788] batman_adv: batadv0: Removing interface: batadv_slave_1
[  209.069730][  T788] pimreg (unregistering): left allmulticast mode
[  209.093780][  T788] team0 (unregistering): Port device team_slave_1 removed
[  209.103169][  T788] team0 (unregistering): Port device team_slave_0 removed
[  209.720408][   T12] bridge_slave_1: left allmulticast mode
[  209.726049][   T12] bridge_slave_1: left promiscuous mode
[  209.731771][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  209.739544][   T12] bridge_slave_0: left allmulticast mode
[  209.745171][   T12] bridge_slave_0: left promiscuous mode
[  209.750908][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  209.774685][   T12] $Hÿ (unregistering): (slave geneve1): Releasing backup interface
[  209.782934][   T12] geneve1 (unregistering): left promiscuous mode
[  209.811908][   T12] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  209.820620][   T12] bond_slave_0: left promiscuous mode
[  209.826382][   T12] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  209.835138][   T12] bond_slave_1: left promiscuous mode
[  209.840708][   T12] $Hÿ (unregistering): Released all slaves
[  209.881820][   T12] hsr_slave_0: left promiscuous mode
[  209.887384][   T12] hsr_slave_1: left promiscuous mode
[  209.912018][   T12] team0 (unregistering): Port device team_slave_1 removed
[  209.920997][   T12] team0 (unregistering): Port device team_slave_0 removed