last executing test programs:

640.123667ms ago: executing program 2 (id=3):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="f8000000160001000000000000000000ff01000000000000000000000000000100000000000000000000ffff000000000000000000000000000080a000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000ffffac14142300000000330000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000f1ffffffffffffff03000000000000000000000000000000000000000000000000000000000000000000000000000000feffffffffffffff000000000000000096070000000000000000000000000000100000000000060000000000b1a00100"], 0xf8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_int(r4, 0x1, 0x29, &(0x7f0000000100)=0x3ff, 0x4)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f0000000080)=0x4571, 0x4)
sendmmsg$inet6(r4, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x80, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
read(r4, &(0x7f0000000000)=""/45, 0x2d)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
r6 = timerfd_create(0x0, 0x0)
timerfd_settime(r6, 0x1, &(0x7f0000000000)={{0x77359400}, {0x0, 0x3938700}}, 0x0)
timerfd_gettime(r6, 0x0)
read(r6, &(0x7f00000003c0)=""/233, 0xe9)
setresgid(0x0, 0x0, r5)
listxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000120013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="f8000000160001000000000000000000ff01000000000000000000000000000100000000000000000000ffff000000000000000000000000000080a000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000ffffac14142300000000330000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000f1ffffffffffffff03000000000000000000000000000000000000000000000000000000000000000000000000000000feffffffffffffff000000000000000096070000000000000000000000000000100000000000060000000000b1a00100"], 0xf8}}, 0x0) (async)
socket$nl_xfrm(0x10, 0x3, 0x6) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) (async)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) (async)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
socket$igmp6(0xa, 0x3, 0x2) (async)
setsockopt$sock_int(r4, 0x1, 0x29, &(0x7f0000000100)=0x3ff, 0x4) (async)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f0000000080)=0x4571, 0x4) (async)
sendmmsg$inet6(r4, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x80, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0) (async)
read(r4, &(0x7f0000000000)=""/45, 0x2d) (async)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc) (async)
timerfd_create(0x0, 0x0) (async)
timerfd_settime(r6, 0x1, &(0x7f0000000000)={{0x77359400}, {0x0, 0x3938700}}, 0x0) (async)
timerfd_gettime(r6, 0x0) (async)
read(r6, &(0x7f00000003c0)=""/233, 0xe9) (async)
setresgid(0x0, 0x0, r5) (async)
listxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) (async)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000120013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0) (async)

611.695798ms ago: executing program 1 (id=2):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = signalfd(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0xffffffffffffffff, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)
r6 = open(&(0x7f0000000080)='./bus\x00', 0x400169042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x7800007, 0x12, r6, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xa, &(0x7f0000000340)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xffff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, r6, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ftruncate(r7, 0x81fd)
write$P9_RREADDIR(0xffffffffffffffff, &(0x7f0000000280)={0xb}, 0xb)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000000), 0x1670e68)
mlock(&(0x7f0000002000/0x2000)=nil, 0x2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
read$FUSE(r0, &(0x7f0000000640)={0x2020}, 0x2020)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r9, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, {0x306, @multicast}, 0x1c, {0x2, 0x4e21, @multicast2}, 'veth0\x00'})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$vfat(&(0x7f0000000580), &(0x7f0000000180)='./file0\x00', 0x1000802, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1, 0x22a, &(0x7f0000000800)="$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")

565.749069ms ago: executing program 2 (id=6):
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10)
r1 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x4e20, @loopback=0xac14140d}, 0x10)

527.087619ms ago: executing program 0 (id=1):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
r1 = openat$incfs(r0, &(0x7f0000000000)='.pending_reads\x00', 0x0, 0x0)
ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x40046721, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00')
readlinkat(r5, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r7 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000240)={0x43, 0x0, 0x3, 0x3}, 0x10)

526.183109ms ago: executing program 4 (id=5):
mkdir(&(0x7f0000000540)='./file0\x00', 0x20)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
chdir(&(0x7f00000003c0)='./file0\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r0, &(0x7f0000000280)='./file0\x00', 0x200)

460.958631ms ago: executing program 2 (id=7):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f0000001ec0)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="9749279d88ad", 0x6}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000540)="c21bf0", 0x3}], 0x1, &(0x7f0000001f80)=ANY=[@ANYBLOB="f8000000000000001401000003000000d3efad252370925176b29c4ad4e3f1bec76dfa4825ca7275f88cef2cd359b8ce6a9a68475fc2e1796d314b962d4ed422ef1b525f2cdef5480937ae244e0e906f2cbfafbb238712b4f5c64c11b0ceb0215d32261d4c9a5d1e390cae16dc56b85c6e316f78f505c7f4543799f07b3ca33a78a632da407289b7d6c60f6429dc1bf0c3579c838b84548f80ac9c4c3e4f99c0c2fdcc7f02d8b47a6723a81fbc6021099d9c0b91a78ffbded8c6be34b5462995d48f02ee1bda7a85ab2cd0a7c1758ff1b076442282ed8eb6b0a7cf5f39b2adf8aa16d0b57fd2e67c5fbe9a72d4834b316e0f1ff479474dfbdad9"], 0x1d8}}], 0x2, 0xc884)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
setsockopt$bt_hci_HCI_FILTER(r2, 0x0, 0x2, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x42, 0x0, 0x0)
r5 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
close(r5)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), r6)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r7, 0x1, 0x70bd25, 0x25dfdbfb, {{}, {0x0, 0x800b}}}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
sendmsg$TIPC_CMD_GET_NODES(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x1c, r7, 0x800, 0x70bd29, 0x25dfdbfd, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4c890)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, 0x0, 0x0)

460.400231ms ago: executing program 3 (id=4):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)

409.617662ms ago: executing program 3 (id=8):
syz_emit_ethernet(0x2a, &(0x7f0000001800)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @random="50a245d5cde0", @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x3, @empty, @empty, @empty, @multicast1}}}}, 0x0)
unshare(0x62040200)
r0 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000080)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0xf}}}}, 0x108)

4.757649ms ago: executing program 4 (id=9):
r0 = socket$inet6(0xa, 0x2, 0x4)
sendmsg$inet6(r0, &(0x7f0000000600)={&(0x7f0000000080)={0xa, 0x4e23, 0x1000000080000, @dev={0xfe, 0x80, '\x00', 0x2a}, 0x7ffffff7}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=[@pktinfo={{0x24, 0x29, 0x32, {@ipv4={'\x00', '\xff\xff', @loopback}}}}], 0x28}, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000080)={'wg0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000940)=ANY=[@ANYBLOB="4800000014000100000000000000000002"], 0x48}}, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x101341)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x124840, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000380)=ANY=[@ANYBLOB="0180c2010000aaaaaaaaaaaa88a800008100000008004500001c0066000000019078ac1414bbac14140012009078000067ce"], 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x47, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
socketpair(0x1, 0x1, 0x0, 0x0)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r8, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
ioctl$TCSETS(r8, 0x5402, &(0x7f0000000080)={0xffffff7f, 0x539, 0x7fffffff, 0xa1, 0x1b, "c6444ee5ad0d88e6d76531fcffffffed327ac0"})

2.131399ms ago: executing program 3 (id=10):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c) (async)
connect$inet6(r0, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @dev}, 0x1c) (async)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0x5}, 0x1c) (async)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e21, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) (async)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81004e230e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac71002000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@ipv4_newrule={0x2c, 0x20, 0x301, 0x0, 0x0, {0x2, 0x14}, [@FRA_GENERIC_POLICY=@FRA_FWMASK={0x8, 0x10, 0x9}, @FRA_DST={0x8, 0x1, @loopback}]}, 0x2c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)

1.226099ms ago: executing program 3 (id=11):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x4d0500, 0x0) (async)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000003c0)={[{@lazytime}, {@noquota}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@dax_inode}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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") (async)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2) (async)
readv(r0, &(0x7f00000018c0)=[{0x0}, {&(0x7f0000000640)=""/229, 0xe5}], 0x2) (async)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) (async)
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
execve(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) (async)
sync() (async)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) (async)
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100), 0x0, 0x0, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, <r3=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r3) (async)
r4 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setreuid(r3, r5) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) (async)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
fdatasync(0xffffffffffffffff)
r7 = openat$cgroup_freezer_state(r6, &(0x7f0000000140), 0x2, 0x0) (async)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
write$UHID_INPUT(r9, &(0x7f0000002080)={0x200f, {"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", 0x1000}}, 0x1006)
ioctl$KVM_SET_DEVICE_ATTR(r9, 0x4018aee1, &(0x7f0000000180)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000080)=0x8}) (async)
write$cgroup_freezer_state(r7, &(0x7f0000000040)='FROZEN\x00', 0x7) (async)
syz_usb_connect$cdc_ecm(0x0, 0x6b, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r5], 0x0)
sync()

0s ago: executing program 3 (id=12):
r0 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x101000)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
shutdown(r4, 0x1)
recvmmsg(r5, &(0x7f00000058c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)=""/9, 0x24}, 0x9}], 0x8000000000001e4, 0x300, 0x0)
r6 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r7, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, 0x0)
mlock(&(0x7f0000a38000/0x1000)=nil, 0x1000)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000a3c000/0x1000)=nil, 0x1000, &(0x7f0000000080)='\x00\xc9\xf5\x00\x00\x00\x00\x00\x00\x00+\x1ct\xc6\fr\xbaU\xc1\xb2\xd2\xde\xbfk\xc0\x18\x94\xc5&\xec\x03\xa0w\"E\xc9\xf2,K4\x10\xc8\x8cuj\xd3\xf0\xb3\xa9f\xebj\xc2\xadZI\x0f\x13\xfe\xf1^_d\x98\xab\xf7\xb7\x17\xdf\xca\xac\x15\v4\xd0\xbe\xa8\xc3+<3-Y\n<\x1d\xb2\xe0kU\xc0\xc1\x14\xa0$B\xb3\xe6\xe9\xfc*t\xd1')
mremap(&(0x7f0000a30000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000a3a000/0x1000)=nil)
mlock2(&(0x7f0000a32000/0xe000)=nil, 0xe000, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.233' (ED25519) to the list of known hosts.
[   21.837800][   T23] audit: type=1400 audit(1743652541.710:66): avc:  denied  { mounton } for  pid=341 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   21.840192][  T341] cgroup1: Unknown subsys name 'net'
[   21.860693][   T23] audit: type=1400 audit(1743652541.710:67): avc:  denied  { mount } for  pid=341 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   21.866911][  T341] cgroup1: Unknown subsys name 'net_prio'
[   21.893754][  T341] cgroup1: Unknown subsys name 'devices'
[   21.900349][   T23] audit: type=1400 audit(1743652541.770:68): avc:  denied  { unmount } for  pid=341 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   22.065971][  T341] cgroup1: Unknown subsys name 'hugetlb'
[   22.071605][  T341] cgroup1: Unknown subsys name 'rlimit'
[   22.310616][   T23] audit: type=1400 audit(1743652542.180:69): avc:  denied  { setattr } for  pid=341 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=9542 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   22.333881][   T23] audit: type=1400 audit(1743652542.180:70): avc:  denied  { mounton } for  pid=341 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   22.341946][  T345] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   22.358888][   T23] audit: type=1400 audit(1743652542.180:71): avc:  denied  { mount } for  pid=341 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   22.390183][   T23] audit: type=1400 audit(1743652542.250:72): avc:  denied  { read } for  pid=146 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   22.412205][   T23] audit: type=1400 audit(1743652542.250:73): avc:  denied  { relabelto } for  pid=345 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[   22.437836][   T23] audit: type=1400 audit(1743652542.250:74): avc:  denied  { write } for  pid=345 comm="mkswap" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.466748][   T23] audit: type=1400 audit(1743652542.340:75): avc:  denied  { read } for  pid=341 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   22.502939][  T341] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   23.214070][  T357] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.220915][  T357] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.228556][  T357] device bridge_slave_0 entered promiscuous mode
[   23.239375][  T357] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.246402][  T357] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.253849][  T357] device bridge_slave_1 entered promiscuous mode
[   23.260366][  T355] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.267368][  T355] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.274792][  T355] device bridge_slave_0 entered promiscuous mode
[   23.286573][  T353] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.293429][  T353] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.300756][  T353] device bridge_slave_0 entered promiscuous mode
[   23.311516][  T353] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.318395][  T353] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.325896][  T353] device bridge_slave_1 entered promiscuous mode
[   23.332369][  T355] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.339404][  T355] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.347102][  T355] device bridge_slave_1 entered promiscuous mode
[   23.384064][  T354] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.390979][  T354] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.399067][  T354] device bridge_slave_0 entered promiscuous mode
[   23.406283][  T354] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.413151][  T354] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.420464][  T354] device bridge_slave_1 entered promiscuous mode
[   23.476760][  T356] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.483645][  T356] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.491146][  T356] device bridge_slave_0 entered promiscuous mode
[   23.501997][  T356] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.508908][  T356] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.516431][  T356] device bridge_slave_1 entered promiscuous mode
[   23.717730][  T353] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.724599][  T353] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.731731][  T353] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.738494][  T353] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.754954][  T357] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.761797][  T357] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.768974][  T357] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.775814][  T357] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.786726][  T356] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.793583][  T356] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.800784][  T356] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.807576][  T356] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.828109][  T355] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.834970][  T355] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.842090][  T355] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.848869][  T355] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.887472][  T354] bridge0: port 2(bridge_slave_1) entered blocking state
[   23.894330][  T354] bridge0: port 2(bridge_slave_1) entered forwarding state
[   23.901441][  T354] bridge0: port 1(bridge_slave_0) entered blocking state
[   23.908236][  T354] bridge0: port 1(bridge_slave_0) entered forwarding state
[   23.949548][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   23.957090][  T103] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.964937][  T103] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.971937][  T103] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.979402][  T103] bridge0: port 1(bridge_slave_0) entered disabled state
[   23.986672][  T103] bridge0: port 2(bridge_slave_1) entered disabled state
[   23.993819][  T103] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.000818][  T103] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.007895][  T103] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.014996][  T103] bridge0: port 1(bridge_slave_0) entered disabled state
[   24.022037][  T103] bridge0: port 2(bridge_slave_1) entered disabled state
[   24.038849][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   24.046690][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   24.055249][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.062072][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[   24.069836][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   24.078478][  T103] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.085328][  T103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   24.115042][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   24.122850][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   24.130352][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   24.138537][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   24.146720][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.153577][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[   24.161201][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   24.169517][  T103] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.176383][  T103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   24.183586][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   24.191566][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.198413][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[   24.205829][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   24.214106][  T103] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.220927][  T103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   24.239050][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   24.247356][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   24.256476][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.263320][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[   24.270557][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   24.278446][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   24.298687][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   24.307059][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   24.315374][  T103] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.322203][  T103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   24.330764][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   24.339075][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   24.347086][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   24.355362][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   24.363452][  T103] bridge0: port 1(bridge_slave_0) entered blocking state
[   24.370274][  T103] bridge0: port 1(bridge_slave_0) entered forwarding state
[   24.396857][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   24.405163][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   24.413166][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   24.421160][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   24.430698][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   24.438835][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   24.447606][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   24.456145][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   24.464318][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   24.472255][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   24.480226][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   24.488425][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   24.496567][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   24.504858][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   24.513118][  T103] bridge0: port 2(bridge_slave_1) entered blocking state
[   24.520054][  T103] bridge0: port 2(bridge_slave_1) entered forwarding state
[   24.544624][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   24.553070][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   24.577402][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   24.585837][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   24.595348][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   24.603554][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   24.611451][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   24.619631][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   24.632624][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   24.640697][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   24.662731][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   24.671202][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   24.679769][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   24.688296][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   24.697524][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   24.705698][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   24.725551][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   24.734106][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   24.742281][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   24.750685][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   24.759508][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   24.767428][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   24.777420][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   24.785916][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   24.811009][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   24.820018][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   24.831134][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   24.840801][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   24.849199][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   24.858567][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   24.867413][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   24.889513][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   24.898212][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   24.934068][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   24.942322][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   24.951608][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   24.960552][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   24.969226][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   24.977780][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   24.986274][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   24.994875][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   25.003574][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   25.012205][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   25.020973][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   25.029499][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   25.038245][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   25.046928][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   25.055674][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   25.083528][  T355] request_module fs-gadgetfs succeeded, but still no fs?
[   25.095336][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   25.106194][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   25.117768][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   25.126828][  T103] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   25.159456][  T378] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3'.
[   25.359389][  T357] ------------[ cut here ]------------
[   25.364713][  T357] WARNING: CPU: 1 PID: 357 at fs/inode.c:302 drop_nlink+0xbb/0x100
[   25.372393][  T357] Modules linked in:
[   25.376142][  T357] CPU: 1 PID: 357 Comm: syz-executor Not tainted 5.4.290-syzkaller-00002-g41adfeb3d639 #0
[   25.385845][  T357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   25.395765][  T357] RIP: 0010:drop_nlink+0xbb/0x100
[   25.400783][  T357] Code: 49 8b 1e 48 8d bb d0 04 00 00 be 08 00 00 00 e8 8b 99 f2 ff f0 48 ff 83 d0 04 00 00 5b 41 5c 41 5e 41 5f 5d c3 e8 d5 db c2 ff <0f> 0b eb 89 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[   25.420220][  T357] RSP: 0018:ffff8881d6b0fc68 EFLAGS: 00010293
[   25.426130][  T357] RAX: ffffffff81a16f2b RBX: 1ffff1103d75fe96 RCX: ffff8881f0d00000
[   25.433928][  T357] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   25.441744][  T357] RBP: 0000000000000000 R08: ffffffff81a16eaf R09: 0000000000000003
[   25.449554][  T357] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff8881ebaff4b0
[   25.457371][  T357] R13: dffffc0000000000 R14: ffff8881ebaff468 R15: dffffc0000000000
[   25.465180][  T357] FS:  00005555706f7500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   25.474039][  T357] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   25.480542][  T357] CR2: 000055557071a4e8 CR3: 00000001d6ad4000 CR4: 00000000003406a0
[   25.488355][  T357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   25.496183][  T357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   25.503971][  T357] Call Trace:
[   25.507105][  T357]  ? __warn+0x162/0x250
[   25.511112][  T357]  ? report_bug+0x3a1/0x4e0
[   25.515431][  T357]  ? drop_nlink+0xbb/0x100
[   25.519692][  T357]  ? drop_nlink+0xbb/0x100
[   25.523941][  T357]  ? do_invalid_op+0x6e/0x110
[   25.528459][  T357]  ? invalid_op+0x1e/0x30
[   25.532627][  T357]  ? drop_nlink+0x3f/0x100
[   25.537318][  T357]  ? drop_nlink+0xbb/0x100
[   25.541569][  T357]  ? drop_nlink+0xbb/0x100
[   25.545826][  T357]  ? drop_nlink+0xbb/0x100
[   25.550074][  T357]  shmem_rmdir+0x54/0x80
[   25.554165][  T357]  vfs_rmdir+0x285/0x3c0
[   25.558239][  T357]  incfs_kill_sb+0x105/0x200
[   25.562653][  T357]  deactivate_locked_super+0xa8/0x110
[   25.567869][  T357]  deactivate_super+0x1e2/0x2a0
[   25.572546][  T357]  ? vfs_submount+0xb0/0xb0
[   25.576970][  T357]  ? deactivate_locked_super+0x110/0x110
[   25.582446][  T357]  ? fast_dput+0x7a/0x280
[   25.586603][  T357]  cleanup_mnt+0x44e/0x500
[   25.590859][  T357]  task_work_run+0x140/0x170
[   25.595391][  T357]  exit_to_usermode_loop+0x190/0x1a0
[   25.600647][  T357]  prepare_exit_to_usermode+0x199/0x200
[   25.606107][  T357]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   25.611930][  T357] RIP: 0033:0x7f4b567f6497
[   25.616395][  T357] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   25.635915][  T357] RSP: 002b:00007ffc88c4b398 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   25.644159][  T357] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f4b567f6497
[   25.651972][  T357] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc88c4b450
[   25.659780][  T357] RBP: 00007ffc88c4b450 R08: 0000000000000000 R09: 0000000000000000
[   25.667611][  T357] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc88c4c4e0
[   25.675409][  T357] R13: 00007f4b5687608c R14: 00000000000062a3 R15: 00007ffc88c4c520
[   25.683393][  T357] ---[ end trace 4cf7de5d06471958 ]---
[   25.745102][  T357] ==================================================================
[   25.753532][  T357] BUG: KASAN: null-ptr-deref in ihold+0x1b/0x50
[   25.759953][  T357] Write of size 4 at addr 0000000000000160 by task syz-executor/357
[   25.767753][  T357] 
[   25.769938][  T357] CPU: 0 PID: 357 Comm: syz-executor Tainted: G        W         5.4.290-syzkaller-00002-g41adfeb3d639 #0
[   25.781034][  T357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   25.790939][  T357] Call Trace:
[   25.794068][  T357]  dump_stack+0x1d8/0x241
[   25.798232][  T357]  ? panic+0x89d/0x89d
[   25.802139][  T357]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[   25.807794][  T357]  ? _raw_spin_trylock_bh+0x190/0x190
[   25.813015][  T357]  ? _raw_spin_unlock+0x49/0x60
[   25.817671][  T357]  ? ihold+0x1b/0x50
[   25.821510][  T357]  __kasan_report+0xe9/0x120
[   25.825918][  T357]  ? ihold+0x1b/0x50
[   25.829654][  T357]  kasan_report+0x30/0x60
[   25.833843][  T357]  check_memory_region+0x272/0x280
[   25.838772][  T357]  ihold+0x1b/0x50
[   25.842408][  T357]  vfs_rmdir+0x1e0/0x3c0
[   25.846488][  T357]  incfs_kill_sb+0x105/0x200
[   25.850913][  T357]  deactivate_locked_super+0xa8/0x110
[   25.856216][  T357]  deactivate_super+0x1e2/0x2a0
[   25.860895][  T357]  ? vfs_submount+0xb0/0xb0
[   25.865232][  T357]  ? deactivate_locked_super+0x110/0x110
[   25.870701][  T357]  ? fast_dput+0x7a/0x280
[   25.874872][  T357]  cleanup_mnt+0x44e/0x500
[   25.879406][  T357]  task_work_run+0x140/0x170
[   25.883820][  T357]  exit_to_usermode_loop+0x190/0x1a0
[   25.888943][  T357]  prepare_exit_to_usermode+0x199/0x200
[   25.894333][  T357]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   25.900136][  T357] RIP: 0033:0x7f4b567f6497
[   25.904385][  T357] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   25.924349][  T357] RSP: 002b:00007ffc88c4b398 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   25.932591][  T357] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f4b567f6497
[   25.940404][  T357] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc88c4b450
[   25.948210][  T357] RBP: 00007ffc88c4b450 R08: 0000000000000000 R09: 0000000000000000
[   25.956023][  T357] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc88c4c4e0
[   25.963880][  T357] R13: 00007f4b5687608c R14: 00000000000062a3 R15: 00007ffc88c4c520
[   25.971648][  T357] ==================================================================
[   25.979540][  T357] Disabling lock debugging due to kernel taint
[   26.001621][  T357] BUG: kernel NULL pointer dereference, address: 0000000000000160
[   26.009241][  T357] #PF: supervisor write access in kernel mode
[   26.015146][  T357] #PF: error_code(0x0002) - not-present page
[   26.020976][  T357] PGD 1eb73d067 P4D 1eb73d067 PUD 0 
[   26.026087][  T357] Oops: 0002 [#1] PREEMPT SMP KASAN
[   26.031118][  T357] CPU: 0 PID: 357 Comm: syz-executor Tainted: G    B   W         5.4.290-syzkaller-00002-g41adfeb3d639 #0
[   26.042237][  T357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   26.052139][  T357] RIP: 0010:ihold+0x20/0x50
[   26.056474][  T357] Code: 0f 1f 84 00 00 00 00 00 66 90 55 53 48 89 fb e8 36 d4 c2 ff 48 8d bb 60 01 00 00 be 04 00 00 00 e8 c5 91 f2 ff bd 01 00 00 00 <f0> 0f c1 ab 60 01 00 00 ff c5 bf 02 00 00 00 89 ee e8 fa d6 c2 ff
[   26.076259][  T357] RSP: 0018:ffff8881d6b0fca0 EFLAGS: 00010246
[   26.082154][  T357] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881f0d00000
[   26.090053][  T357] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff
[   26.097861][  T357] RBP: 0000000000000001 R08: ffffffff813ae545 R09: 0000000000000003
[   26.105768][  T357] R10: ffffffffffffffff R11: dffffc0000000001 R12: 0000000000000000
[   26.113611][  T357] R13: dffffc0000000000 R14: ffff8881eb8b4ac8 R15: 0000000000000000
[   26.121385][  T357] FS:  00005555706f7500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   26.130153][  T357] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   26.136576][  T357] CR2: 0000000000000160 CR3: 00000001d6ad4000 CR4: 00000000003406b0
[   26.144394][  T357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   26.152200][  T357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   26.160009][  T357] Call Trace:
[   26.163148][  T357]  ? __die+0xb4/0x100
[   26.167075][  T357]  ? no_context+0xac7/0xd20
[   26.171416][  T357]  ? is_prefetch+0x4b0/0x4b0
[   26.175836][  T357]  ? ihold+0x1b/0x50
[   26.179683][  T357]  ? __do_page_fault+0xa72/0xbb0
[   26.184457][  T357]  ? __bad_area_nosemaphore+0xc0/0x470
[   26.189746][  T357]  ? page_fault+0x2f/0x40
[   26.193915][  T357]  ? check_panic_on_warn+0x55/0xa0
[   26.198863][  T357]  ? ihold+0x20/0x50
[   26.202594][  T357]  vfs_rmdir+0x1e0/0x3c0
[   26.206676][  T357]  incfs_kill_sb+0x105/0x200
[   26.211101][  T357]  deactivate_locked_super+0xa8/0x110
[   26.216766][  T357]  deactivate_super+0x1e2/0x2a0
[   26.221431][  T357]  ? vfs_submount+0xb0/0xb0
[   26.225767][  T357]  ? deactivate_locked_super+0x110/0x110
[   26.231233][  T357]  ? fast_dput+0x7a/0x280
[   26.235407][  T357]  cleanup_mnt+0x44e/0x500
[   26.239652][  T357]  task_work_run+0x140/0x170
[   26.244083][  T357]  exit_to_usermode_loop+0x190/0x1a0
[   26.249205][  T357]  prepare_exit_to_usermode+0x199/0x200
[   26.254583][  T357]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   26.260322][  T357] RIP: 0033:0x7f4b567f6497
[   26.264565][  T357] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   26.284087][  T357] RSP: 002b:00007ffc88c4b398 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   26.292419][  T357] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f4b567f6497
[   26.300232][  T357] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc88c4b450
[   26.308040][  T357] RBP: 00007ffc88c4b450 R08: 0000000000000000 R09: 0000000000000000
[   26.315866][  T357] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc88c4c4e0
[   26.324020][  T357] R13: 00007f4b5687608c R14: 00000000000062a3 R15: 00007ffc88c4c520
[   26.331830][  T357] Modules linked in:
[   26.335574][  T357] CR2: 0000000000000160
[   26.339559][  T357] ---[ end trace 4cf7de5d06471959 ]---
[   26.344846][  T357] RIP: 0010:ihold+0x20/0x50
[   26.349186][  T357] Code: 0f 1f 84 00 00 00 00 00 66 90 55 53 48 89 fb e8 36 d4 c2 ff 48 8d bb 60 01 00 00 be 04 00 00 00 e8 c5 91 f2 ff bd 01 00 00 00 <f0> 0f c1 ab 60 01 00 00 ff c5 bf 02 00 00 00 89 ee e8 fa d6 c2 ff
[   26.368802][  T357] RSP: 0018:ffff8881d6b0fca0 EFLAGS: 00010246
[   26.374700][  T357] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881f0d00000
[   26.382519][  T357] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff
[   26.390326][  T357] RBP: 0000000000000001 R08: ffffffff813ae545 R09: 0000000000000003
[   26.398136][  T357] R10: ffffffffffffffff R11: dffffc0000000001 R12: 0000000000000000
[   26.405946][  T357] R13: dffffc0000000000 R14: ffff8881eb8b4ac8 R15: 0000000000000000
[   26.413760][  T357] FS:  00005555706f7500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   26.422523][  T357] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   26.428945][  T357] CR2: 0000000000000160 CR3: 00000001d6ad4000 CR4: 00000000003406b0
[   26.436762][  T357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   26.444569][  T357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   26.452387][  T357] Kernel panic - not syncing: Fatal exception
[   26.458534][  T357] Kernel Offset: disabled
[   26.462662][  T357] Rebooting in 86400 seconds..