last executing test programs:

10.845886491s ago: executing program 3 (id=935):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10)
close(r0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, 0x0)
openat$pfkey(0xffffffffffffff9c, 0x0, 0x400, 0x0)

10.644340951s ago: executing program 3 (id=940):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x24000014)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x44}}, 0x0)

10.395980745s ago: executing program 3 (id=942):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x1, 0x7, 0x0, 0x1}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2b}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4008050)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

10.251832589s ago: executing program 3 (id=945):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="009f587a31d53b5cb6077bd11087bb6e13aac56feecaaae0b009cee43814e80646ff2772abedb27f35c706ba7c624afb75f473956061ae41834d27270063fa18a3515f9ac6cd6f15a042b1edcd60bdeb55446beed1014aa13d43d399fb4f716b8a24502a8e3e697642b172841c89aecefe0cfb3c32d7c28955601f41fb90d51951d91a35a5abeb4ffceef5cf6e190ec9eb6f91a0d06882039b54dd4485b823414e06691b0244ca11ac0baeaeec1a96861d358464329c64b77e6ff2e2d8a6bb29268be3e7c46750210270d79e1054add6c2ef3f0373", @ANYRES32, @ANYRESOCT], 0x1, 0x1282, &(0x7f0000002880)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x101000)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, 0x0)
r1 = memfd_create(&(0x7f0000000a80)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zj\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb8<X\xfa\xdd\x8a6\xa1\x82\xf7r\xd8z\x85\x8do\xa5\xed\xd4\xbc8\xfb\x16\x8e\x8b-W\xd4\xc9\xbc\x94CR[Du8U^\xf2tl8\xfe\xd0\x94\xfe\xf5\x1c+\x00U\te\xfa6\xca\xb9\xb4Q\xd9\xee\r6\x861h{\xc7z\'F\xc7\x91\x06x\xe1`\xf1:\xbd+\xd5\f\xb2\xce\xa4\x06\x90\x90\x9b\x1d\xcaa\xf7\x8f\x9e\x80\x93\xafT\xdfl\xec\xc6\x8e\x96', 0x5)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400"], 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
memfd_secret(0x80000)
fsetxattr$security_selinux(r1, &(0x7f0000000480), &(0x7f00000004c0)='system_u:object_r:hwdata_t:s0\x00', 0x1a, 0x0)

10.191658655s ago: executing program 3 (id=949):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000780)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000070000000200000007"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r2}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r3}, 0x10)
r4 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r4, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @local}, 0x1c)

9.990840015s ago: executing program 3 (id=955):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)
write$cgroup_subtree(r4, &(0x7f00000001c0)={[{0x2b, 'cpu'}]}, 0x5)

9.949225529s ago: executing program 32 (id=955):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5)
write$cgroup_subtree(r4, &(0x7f00000001c0)={[{0x2b, 'cpu'}]}, 0x5)

5.361319972s ago: executing program 5 (id=1026):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, 0x0, &(0x7f0000000280)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{0x60}, {}, {0x3}, {}, {}, {}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0)

4.926175104s ago: executing program 5 (id=1033):
r0 = socket(0xa, 0x5, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x8d40, 0x0)
ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000080)=0xfffffffa)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in6={{0xa, 0x6, 0x5, @private2, 0x1}}, 0x1, 0x4, 0x7, 0x3c1, 0x24, 0xd2, 0x9d}, 0x9c)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "00769a7d8200010000001495595915303d6000"})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000004"], 0x50)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
r3 = syz_open_pts(r1, 0x0)
ioctl$TCFLSH(r3, 0x540b, 0x0)

4.894849787s ago: executing program 5 (id=1035):
r0 = syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2362402, &(0x7f0000000440), 0xc1, 0x7e3, &(0x7f00000007c0)="$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")
openat(r0, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x1ef042, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)={0x2, 0x7, 0x0, 0x5, 0x15, 0x0, 0x70bd2d, 0x25dfdbff, [@sadb_lifetime={0x4, 0x4, 0x6, 0x8000000000000000, 0x91, 0x3}, @sadb_key={0xf, 0x8, 0x378, 0x0, "090ebfec9e2e3f6284fffc3a538f5212ae23b28b4b70c77d434f23dc0c55c8788e01000107681d064eefc35e3482e4d4a448cf108710e8edd11bd233993d66e49569e4fd124e86c129f52b117a5205e9319e9eda8011760959550a3879874558519fd39d6df151e389053010336dfc"}]}, 0xa8}}, 0x4040014)
socket$nl_audit(0x10, 0x3, 0x9)

3.655248799s ago: executing program 1 (id=1054):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sched_switch\x00', r1}, 0x18)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='netlink_extack\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r3, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000001a00010000000000000000000a008000", @ANYRES32=0x0, @ANYBLOB="0000000008001f00000000001400", @ANYRES64=r3], 0x38}}, 0x0)

3.595748705s ago: executing program 1 (id=1055):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r2 = open(&(0x7f0000000000)='./file0\x00', 0x1607c0, 0x78e22799f4a46ffe)
r3 = socket$inet(0x2, 0x3, 0xd)
setsockopt$MRT_DEL_VIF(r3, 0x0, 0xcb, 0x0, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fcntl$getflags(r2, 0x401)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='mm_page_free\x00'}, 0x10)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)
semctl$IPC_RMID(0xffffffffffffffff, 0x0, 0x0)

3.44457757s ago: executing program 1 (id=1058):
socket(0x1, 0x5, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x4})
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
rt_sigsuspend(&(0x7f00000002c0)={[0x225c17d03]}, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x9}, 0x18)
ioctl$MON_IOCT_RING_SIZE(0xffffffffffffffff, 0x9204, 0x6a1e)
kexec_load(0x3e00, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

2.672273627s ago: executing program 4 (id=1077):
r0 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0xfd, 0x3, 0x2, 0x5c, @local, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7800, 0x40, 0x4, 0x4}})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x85)
r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r2}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000680)={'syztnl1\x00', 0x0})

2.620301211s ago: executing program 4 (id=1078):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2, 0x0, 0x7}, 0x18)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(r3, 0xfffffffc)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000500)={'syz_tun\x00', &(0x7f0000000180)=@ethtool_link_settings={0x4d, 0x400, 0xf, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, [0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1]}})

2.567020886s ago: executing program 4 (id=1079):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r2}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x3}, 0x0, 0x0)

2.566146627s ago: executing program 1 (id=1080):
symlink(&(0x7f0000001780)='./file0/../file0\x00', 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, 0x0, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xfffffdd6}], 0x1, 0x9c00, 0x0, 0x3)
accept4(r0, &(0x7f00000000c0)=@rc, &(0x7f0000000140)=0x80, 0x800)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8604, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x6, 0x7, 0x20004, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_NAME(0xf, &(0x7f0000000700)=',&#^%\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x400000ffc000)

2.288223494s ago: executing program 5 (id=1082):
perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x23a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x100000}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001100)={{r0, <r2=>0xffffffffffffffff}, &(0x7f0000001080), &(0x7f00000001c0)=r1}, 0x20)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000200), 0x7ff, r2}, 0x38)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0a00000001010000ff7f0000cc00000000000000", @ANYRES32, @ANYBLOB="005f760000000000d500"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000004"], 0x50)

2.211763792s ago: executing program 2 (id=1084):
r0 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
write$binfmt_elf32(r1, &(0x7f0000001440)=ANY=[@ANYBLOB="7f454c460b397a2dd4000000000000000300060007000000ba03000038000000fd2600000180ffff060020000100020004000600000000000300000000000000040000000900e6fffe"], 0x58)
inotify_init1(0x0)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f00000009c0)=ANY=[@ANYBLOB="020300030c0000000007000000000000020009001000000053bb00000000000003000600000000000200100000000000000000000000000002000100000000000000060d00000000030005000000000002000000"], 0x60}, 0x1, 0x7}, 0x0)
close(r1)
execveat$binfmt(0xffffffffffffff9c, r0, 0x0, 0x0, 0x0)

2.053122877s ago: executing program 2 (id=1086):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000008000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @multicast1}}}], 0x20}}], 0x1, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r2, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f"], 0x57)
setsockopt$inet_mreqsrc(r1, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

1.999197953s ago: executing program 0 (id=1087):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0x0, 0xee01}}, './file0/../file0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r1, &(0x7f0000000480)={0x0, 0xffffffffffffff3c, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r2, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001380)={'wlan1\x00'})
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a98000000060a0b040000000000000000020000006c000480680001800a000100696e6e65720000005800028008000240000000840800034000000007080004400000000f08000140f5000000340005800c0001007061796c6f61640024000280080004010000002708020340000000b9080002400000000208000140000000"], 0xc0}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x5, 0x0)
umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x0)

1.780705504s ago: executing program 2 (id=1088):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
gettid()
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r3, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
close(r2)
socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e22, @private}, 0x2, 0x4, 0x2, 0x3}}, 0x2e)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x0)

1.658623406s ago: executing program 2 (id=1089):
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x9}}, './file0\x00'})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000007c0)={0x400000000000000, 0x0, &(0x7f0000000700)={&(0x7f0000001900)=ANY=[@ANYBLOB="020f000015000000000000000000000005000500000000000a00000000000000000000000000000000432e0000000000000000000000000008001200000002000000f1edc4ea00000600000000000000000000000000000000000000000000000000000000000000fc01000000000000000000000000810005000600000000000a00000000000000ff0200000000000000000000000000010000000000000000010018"], 0xa8}}, 0x40080)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
symlink(&(0x7f0000000240)='./bus\x00', &(0x7f0000000280)='./bus\x00')
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000480)={0x1c, r3, 0x62c21a4ade68aba1, 0x0, 0x0, {{0x32}, {@val={0x8, 0x117, 0x56}, @void, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4050}, 0x0)

1.339538157s ago: executing program 0 (id=1090):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
kexec_load(0x0, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x143142, 0x40)
fsetxattr$security_capability(r2, 0x0, 0x0, 0x0, 0x2)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
close(r3)

1.31386769s ago: executing program 0 (id=1091):
r0 = io_uring_setup(0x1d58, &(0x7f0000000340)={0x0, 0xb140, 0x1000, 0x6, 0x196})
r1 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r1, &(0x7f0000000000)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @empty}}, 0x24)
listen(r1, 0x4)
recvmmsg(r1, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f000000}}], 0x1, 0x40000100, 0x0)
close_range(r0, r1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xf, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
sendmsg$nl_route(r2, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000180001"], 0x38}}, 0x10)

1.31301641s ago: executing program 2 (id=1092):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@empty, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, {{@in=@multicast1, 0x0, 0x2b}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x3}}, 0xe8)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e"], 0x70}}, 0x0)
sendmmsg(r2, &(0x7f0000000180), 0x3ef, 0x0)

1.265712735s ago: executing program 2 (id=1093):
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@printk={@ld}, @call={0x85, 0x0, 0x0, 0x7}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='workqueue_queue_work\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_clone(0x11000000, 0x0, 0x0, 0x0, &(0x7f0000000280), &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x43b00000, 0x0, 0x5b, 0x0, 0x0, 0x0)

1.263866595s ago: executing program 5 (id=1094):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0})
write(r1, &(0x7f0000000000)="fa", 0xfffffdef)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f0000001540)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/4092, 0xffc}, {0x0}], 0x2}, 0xffffffff}, {{0x0, 0x0, 0x0}, 0x73a0}, {{&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @private2}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000180)=""/125, 0x7d}], 0x1, &(0x7f00000014c0)=""/122, 0x7a}, 0x1}], 0x3, 0x42, 0x0)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
lsm_set_self_attr(0x67, &(0x7f0000000740)={0x65, 0xa, 0x20}, 0x20, 0x0)
syz_clone(0x111, 0x0, 0x0, 0x0, 0x0, 0x0)
sendfile(r3, r3, 0x0, 0x40000f63c)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x70, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x34, 0x11, 0x0, 0x1, @limit={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0xfffffffffffffffc}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x100000000}, @NFTA_LIMIT_BURST={0x8, 0x3, 0x1, 0x0, 0x8}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xffffffffffffffff}}}, 0x98}, 0x1, 0x0, 0x0, 0x4000850}, 0x4040)

1.240111727s ago: executing program 4 (id=1095):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0xf)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000200100000102"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000011c0)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$netlink(0x10, 0x3, 0xf)
bind$netlink(r3, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4800000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="000000000000000028001280090001007665746800"], 0x48}}, 0x4040004)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x14, 0x1, 0x8, 0x5, 0x0, 0x0, {0x5, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x20000050}, 0x14)

1.159740365s ago: executing program 0 (id=1096):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7dc470d00281f324, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7fff}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20)
r3 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000000, 0x0, 0x200000000000000}, 0x50)

1.159142295s ago: executing program 0 (id=1097):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x2, 0x4}, 0x20)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

1.129724078s ago: executing program 4 (id=1098):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x80000000001, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0xa47, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup3(r0, r1, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x12, r1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000001f00)=""/4106, 0xfffffd38, 0x0, 0x0}, &(0x7f0000000100)=0x40)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x18)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000001380)=0x40)

1.016161069s ago: executing program 4 (id=1099):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000400000000dfffff1918120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10)
perf_event_open(&(0x7f0000000500)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x4062, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x2, 0xa, 0xfffffffe, &(0x7f0000000300))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_clone(0xc2002000, 0x0, 0x0, 0x0, 0x0, 0x0)

534.088057ms ago: executing program 1 (id=1100):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@quota}, {@debug}]}, 0x1, 0x246, &(0x7f0000000ac0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x183042, 0x15)
r1 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r1, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r1, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {0x0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x10040045}, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fdatasync(0xffffffffffffffff)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x9, 0xfff, 0x9})

388.766901ms ago: executing program 5 (id=1101):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f00000000c0))
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000040)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x26, &(0x7f0000000000)={0x1})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x26, &(0x7f0000000000)={0x1})
fcntl$lock(r4, 0x25, &(0x7f00000000c0))
close(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

298.09733ms ago: executing program 0 (id=1102):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$eJzs3E1rE10UwPGTNEnTlHayeHhEQXrRjW6GNu7FIC2IAUttxBcQp81EQ8akZEIlIrZduXEhfggXpcvuCtov0I07V27cdSO4sAtxJDOTl7aJrWnSWPv/QZlD7j0z9+Y24dyBzPbdN0/zWVvPGmUJRpUERER2ROISlJqAfwy6cUSaLcvl4W+fzt++d/9mMpWanFFqKjl7JaGUGh17/+zFkN9tY1C24g+3vya+bP2/dXb75+yTnK1ytioUy8pQc8XPZWPOMlUmZ+d1paYt07BNlSvYZslrd5ZELFNlreLCQkUZhcxIbKFk2rYyChWVNyuqXFTlUkUZj41cQem6rkZigoOkV2dmjGSHyfNdHgx6pFRKGgMiMrSvJb3alwEBAIC+8uv/erUfrJb0ndT/oZb1/9qFzfLwnfVRv/7fiFTrf5Gm+v9R41ymygTr9X9URBr1f9HbH3S7/t9fEZ1sr3cvjjhOPYy06n+k+h8nRLX+j/mfX9fKg7VxN6D+BwAAAAAAAAAAAAAAAAAAAADgJNhxHM1xHM07DvivOtqgiETdX5B47X0eJnpk9/o3/lj/06Hx4I7QqIj1ajG9mPaOfodNEbHElHHR5If7/+CrxpFl5XZSVXH5YC35+UuLae+7JJmVnJs/IZrE9+Y7ztSN1OSE8uzOD0usOT8hmvzXOj+xNz9cPUbk0sWmfF00+TgvRbEk4/8yrpb/ckKp67dSe64/5PYDAAAAAOBfoKu6+v59sLld39/u7Y+9dm9/HZLW9we8/fV4y/19SM6F+jVrAAAAAABOF7vyPG9YllnqUbAiIj2+RJugNsPDZtUekNumT0AC7Zq6ENQu3ll6dWxdG0/4UO9YsKOhjkX+cFFaBrXbRu36yHQnZ3Y0kaO+h2fevvv++z7enTGRw5zw6nr0gJl2GkQOmmn42L6AAAAAABybRtFfe+VafwcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMApdByP4uv3HAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC/xa8AAAD//46ZAFE=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000002c0)='GPL\x00', 0x9, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x1ff003, 0x81, 0xffff, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffc}, 0x50)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x32)
write(r4, &(0x7f00000001c0)="49bda8f11851b8436bebb2", 0xb)
sendfile(r4, r0, 0x0, 0x3ffff)
sendfile(r4, r0, 0x0, 0x7ffffffffffffffd)

0s ago: executing program 1 (id=1103):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000005c0), 0x10)
sendmsg$can_raw(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000380)={&(0x7f000000a000)=@canfd={{0x5}, 0x2, 0x2, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000094e2f9663a918fa1efd9b0b"}, 0x48}, 0x2}, 0x24000895)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x4a, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x18)
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$getownex(r3, 0x10, &(0x7f00000000c0))
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0xa85, 0xf)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1d, &(0x7f0000000040)=0x8, 0x4)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="30000000030801020000040000000007ff05000300060000000600024002000000"], 0x30}, 0x1, 0x0, 0x0, 0x4010}, 0xc0480d0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x26, &(0x7f0000000040)=0x8, 0x4)

kernel console output (not intermixed with test programs):

 = 8 limit=128
[   46.715371][ T3789] syz.2.109: attempt to access beyond end of device
[   46.715371][ T3789] loop2: rw=2049, sector=409, nr_sectors = 8 limit=128
[   46.735200][ T3785] syz.2.109: attempt to access beyond end of device
[   46.735200][ T3785] loop2: rw=2049, sector=257, nr_sectors = 8 limit=128
[   47.202024][ T3803] netlink: 12 bytes leftover after parsing attributes in process `syz.2.116'.
[   47.217790][ T3803] vlan2: entered allmulticast mode
[   47.224988][ T3803] netdevsim netdevsim2 netdevsim3: entered allmulticast mode
[   47.248121][ T3805] netlink: 4 bytes leftover after parsing attributes in process `syz.0.117'.
[   47.311211][ T3805] team0: Port device team_slave_1 removed
[   47.431795][   T52] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.446030][   T52] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.459010][ T3820] loop3: detected capacity change from 0 to 512
[   47.470775][   T52] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.479910][ T3820] EXT4-fs: Ignoring removed bh option
[   47.486151][   T52] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.497053][ T3820] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[   47.508018][ T3820] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   47.516260][ T3820] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=884ec128, mo2=0002]
[   47.525181][ T3820] EXT4-fs (loop3): orphan cleanup on readonly fs
[   47.531568][ T3820] EXT4-fs error (device loop3): ext4_quota_enable:7132: comm syz.3.124: Bad quota inum: 4294967291, type: 0
[   47.543712][ T3820] EXT4-fs (loop3): Remounting filesystem read-only
[   47.550517][ T3820] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=0, err=-117, ino=4294967291). Please run e2fsck to fix.
[   47.567467][ T3820] EXT4-fs (loop3): Cannot turn on quotas: error -117
[   47.575795][ T3820] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.637076][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.665272][ T3834] netlink: 64 bytes leftover after parsing attributes in process `syz.3.129'.
[   47.762423][ T3827] netem: incorrect ge model size
[   47.767825][ T3827] netem: change failed
[   48.056761][ T3855] lo: Caught tx_queue_len zero misconfig
[   48.089018][ T3861] loop3: detected capacity change from 0 to 512
[   48.104594][ T3863] loop1: detected capacity change from 0 to 1024
[   48.112856][ T3863] EXT4-fs: Ignoring removed orlov option
[   48.119756][ T3863] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   48.121801][ T3861] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.140: error while reading EA inode 32 err=-116
[   48.143363][ T3861] EXT4-fs (loop3): Remounting filesystem read-only
[   48.150044][ T3861] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   48.150078][ T3857] loop4: detected capacity change from 0 to 128
[   48.163276][ T3861] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   48.180365][ T3861] EXT4-fs (loop3): 1 orphan inode deleted
[   48.186962][ T3861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.201277][ T3863] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   48.244676][ T3857] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[   48.252698][ T3857] FAT-fs (loop4): Filesystem has been set read-only
[   48.423725][ T3883] loop4: detected capacity change from 0 to 512
[   48.437810][ T3883] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   48.481328][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.518588][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.595652][ T3896] mmap: syz.3.150 (3896) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   48.596619][ T3899] loop1: detected capacity change from 0 to 128
[   48.630988][ T3899] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   48.658717][ T3899] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   48.727062][ T3905] syzkaller0: entered allmulticast mode
[   48.743448][ T3905] syzkaller0: entered promiscuous mode
[   48.758723][ T3907] ip6_vti0 speed is unknown, defaulting to 1000
[   48.771809][ T3905] syzkaller0 (unregistering): left allmulticast mode
[   48.779222][ T3905] syzkaller0 (unregistering): left promiscuous mode
[   48.877989][ T3907] ip6_vti0 speed is unknown, defaulting to 1000
[   48.884674][ T3907] ip6_vti0 speed is unknown, defaulting to 1000
[   48.923140][ T3907] infiniband syz2: set active
[   48.928360][ T3907] infiniband syz2: added ip6_vti0
[   48.933819][ T1036] ip6_vti0 speed is unknown, defaulting to 1000
[   48.948780][ T3907] RDS/IB: syz2: added
[   48.953337][ T3907] ip6_vti0 speed is unknown, defaulting to 1000
[   49.091915][ T3907] ip6_vti0 speed is unknown, defaulting to 1000
[   49.225948][ T3923] netlink: 60 bytes leftover after parsing attributes in process `syz.0.160'.
[   49.235490][ T3923] netlink: 60 bytes leftover after parsing attributes in process `syz.0.160'.
[   49.237691][ T3907] ip6_vti0 speed is unknown, defaulting to 1000
[   49.293756][ T3923] netlink: 60 bytes leftover after parsing attributes in process `syz.0.160'.
[   49.303222][ T3923] netlink: 60 bytes leftover after parsing attributes in process `syz.0.160'.
[   49.318315][ T3907] ip6_vti0 speed is unknown, defaulting to 1000
[   49.354546][ T3923] netlink: 60 bytes leftover after parsing attributes in process `syz.0.160'.
[   49.364126][ T3923] netlink: 60 bytes leftover after parsing attributes in process `syz.0.160'.
[   49.396493][ T3907] ip6_vti0 speed is unknown, defaulting to 1000
[   49.568878][ T3939] loop2: detected capacity change from 0 to 256
[   49.599972][ T3939] FAT-fs (loop2): Directory bread(block 64) failed
[   49.616436][ T3940] netlink: 8 bytes leftover after parsing attributes in process `syz.0.166'.
[   49.619852][ T3939] FAT-fs (loop2): Directory bread(block 65) failed
[   49.642091][ T3943] loop4: detected capacity change from 0 to 1024
[   49.652856][ T3939] FAT-fs (loop2): Directory bread(block 66) failed
[   49.665305][ T3939] FAT-fs (loop2): Directory bread(block 67) failed
[   49.672720][ T3939] FAT-fs (loop2): Directory bread(block 68) failed
[   49.673707][ T3943] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.679677][ T3939] FAT-fs (loop2): Directory bread(block 69) failed
[   49.698879][ T3939] FAT-fs (loop2): Directory bread(block 70) failed
[   49.705705][ T3939] FAT-fs (loop2): Directory bread(block 71) failed
[   49.712262][ T3939] FAT-fs (loop2): Directory bread(block 72) failed
[   49.718912][ T3939] FAT-fs (loop2): Directory bread(block 73) failed
[   49.746426][ T3943] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.791278][ T3950] syz.1.169 uses obsolete (PF_INET,SOCK_PACKET)
[   49.860354][ T3955] netlink: 'syz.2.171': attribute type 13 has an invalid length.
[   49.868347][ T3955] netlink: 'syz.2.171': attribute type 17 has an invalid length.
[   49.938536][   T29] kauditd_printk_skb: 155 callbacks suppressed
[   49.938573][   T29] audit: type=1400 audit(1760836802.590:717): avc:  denied  { load_policy } for  pid=3961 comm="syz.1.174" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   49.983054][ T3963] SELinux: failed to load policy
[   49.996332][ T3955] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   50.062168][   T29] audit: type=1400 audit(1760836802.710:718): avc:  denied  { execmem } for  pid=3975 comm="syz.1.176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   50.100649][ T3972] tipc: Started in network mode
[   50.105692][ T3972] tipc: Node identity 1ef70c53d1bf, cluster identity 4711
[   50.113325][ T3972] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   50.141487][   T29] audit: type=1326 audit(1760836802.790:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   50.164996][   T29] audit: type=1326 audit(1760836802.790:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   50.189205][ T3971] tipc: Resetting bearer <eth:syzkaller0>
[   50.200398][ T3979] loop2: detected capacity change from 0 to 512
[   50.230789][   T29] audit: type=1326 audit(1760836802.850:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   50.255585][   T29] audit: type=1326 audit(1760836802.850:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   50.278993][   T29] audit: type=1326 audit(1760836802.850:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   50.302728][   T29] audit: type=1326 audit(1760836802.850:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   50.326075][   T29] audit: type=1326 audit(1760836802.850:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   50.351036][   T29] audit: type=1326 audit(1760836802.850:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3978 comm="syz.2.177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   50.399097][ T3971] tipc: Disabling bearer <eth:syzkaller0>
[   50.406681][ T3979] EXT4-fs (loop2): orphan cleanup on readonly fs
[   50.413892][ T3979] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.177: bad orphan inode 13
[   50.430838][ T3979] ext4_test_bit(bit=12, block=18) = 1
[   50.436653][ T3979] is_bad_inode(inode)=0
[   50.441544][ T3979] NEXT_ORPHAN(inode)=2130706432
[   50.447050][ T3979] max_ino=32
[   50.452518][ T3979] i_nlink=1
[   50.459566][ T3979] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   50.518430][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.673139][ T3996] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.731220][ T3996] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.791417][ T4007] ip6_vti0 speed is unknown, defaulting to 1000
[   50.804474][ T3996] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.882901][ T3996] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   50.963520][ T1476] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.997453][ T1476] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   51.015200][ T1476] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   51.032826][ T1476] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   51.532423][ T4049] process 'syz.4.204' launched '/dev/fd/7' with NULL argv: empty string added
[   51.563326][ T4050] ip6_vti0 speed is unknown, defaulting to 1000
[   52.056425][ T4053] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   52.404911][ T4081] loop3: detected capacity change from 0 to 512
[   52.412312][ T4081] ext4: Unknown parameter 'appraise'
[   52.507807][ T4097] netlink: 12 bytes leftover after parsing attributes in process `syz.1.223'.
[   52.548051][ T4102] loop1: detected capacity change from 0 to 1024
[   52.555342][ T4102] EXT4-fs: Ignoring removed oldalloc option
[   52.561541][ T4102] EXT4-fs: Ignoring removed bh option
[   52.577616][ T4102] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.699314][ T4108] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.769750][ T4108] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.781662][ T4112] netlink: 'syz.3.227': attribute type 1 has an invalid length.
[   52.789686][ T4112] netlink: 'syz.3.227': attribute type 4 has an invalid length.
[   52.797917][ T4112] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.227'.
[   52.860030][ T4108] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.909878][ T4108] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   52.978137][   T31] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.003181][   T31] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.020625][   T31] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.029388][   T31] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   53.125629][ T4119] loop2: detected capacity change from 0 to 512
[   53.132759][ T4119] ext4: Unknown parameter 'appraise'
[   53.646842][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.747350][ T4139] loop2: detected capacity change from 0 to 512
[   53.850173][ T4139] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.237: error while reading EA inode 32 err=-116
[   53.866718][ T4139] EXT4-fs (loop2): Remounting filesystem read-only
[   53.873389][ T4139] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   53.884311][ T4139] EXT4-fs (loop2): 1 orphan inode deleted
[   53.890645][ T4139] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.938268][ T4148] loop4: detected capacity change from 0 to 512
[   53.948707][ T4150] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.983951][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.008988][ T4148] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.240: couldn't read orphan inode 26 (err -116)
[   54.021984][ T4159] Zero length message leads to an empty skb
[   54.029435][ T4150] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.029682][ T4148] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.053555][ T4148] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.086131][ T4163] loop2: detected capacity change from 0 to 1024
[   54.093295][ T4163] EXT4-fs: Ignoring removed oldalloc option
[   54.099393][ T4163] EXT4-fs: Ignoring removed bh option
[   54.116796][ T4163] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.138939][ T4150] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.182191][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.208407][ T4150] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.244559][ T4173] SELinux:  Context system_u:object_r:newrole_exec_t:s0 is not valid (left unmapped).
[   54.269946][   T31] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.289250][   T31] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.309651][   T31] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.329095][   T31] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.407327][ T4177] loop4: detected capacity change from 0 to 512
[   54.420157][ T4177] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   54.443172][ T4177] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   54.459086][ T4177] EXT4-fs (loop4): 1 truncate cleaned up
[   54.465967][ T4177] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.509837][ T4176] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.682925][ T4184] ip6_vti0 speed is unknown, defaulting to 1000
[   54.794508][ T4187] v: renamed from ip6_vti0 (while UP)
[   54.809646][ T4186] v speed is unknown, defaulting to 1000
[   54.815880][ T3394] v speed is unknown, defaulting to 1000
[   54.821895][ T3394] syz2: Port: 1 Link DOWN
[   55.188143][   T29] kauditd_printk_skb: 710 callbacks suppressed
[   55.188160][   T29] audit: type=1400 audit(1760836807.840:1437): avc:  denied  { read } for  pid=4196 comm="syz.3.257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   55.223477][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.226262][ T4199] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.240439][ T4199] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.351230][ T4208] bridge: RTM_NEWNEIGH with invalid ether address
[   55.401013][ T4210] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.437998][ T4216] netlink: 8 bytes leftover after parsing attributes in process `syz.1.265'.
[   55.449981][   T29] audit: type=1400 audit(1760836808.100:1438): avc:  denied  { firmware_load } for  pid=4215 comm="syz.1.265" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[   55.478337][ T4210] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.564065][ T4210] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.617173][ T4210] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   55.729241][   T12] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   55.754360][   T12] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   55.784256][   T12] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   55.812513][   T12] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.132411][   T29] audit: type=1400 audit(1760836808.780:1439): avc:  denied  { execute } for  pid=4276 comm="syz.3.282" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=7831 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   56.181907][ T4282] loop1: detected capacity change from 0 to 512
[   56.197591][ T4282] ext4: Unknown parameter 'appraise'
[   56.417039][   T29] audit: type=1326 audit(1760836809.060:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4302 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   56.442762][   T29] audit: type=1326 audit(1760836809.060:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4302 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   56.468269][   T29] audit: type=1326 audit(1760836809.060:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4302 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   56.558064][ T4319] v speed is unknown, defaulting to 1000
[   56.884588][ T4328] loop4: detected capacity change from 0 to 512
[   56.954572][   T29] audit: type=1326 audit(1760836809.600:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4302 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   56.989681][ T4331] netlink: 24 bytes leftover after parsing attributes in process `syz.1.277'.
[   56.992688][   T29] audit: type=1326 audit(1760836809.640:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4302 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   57.023221][ T4328] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   57.038109][ T4331] netlink: 4 bytes leftover after parsing attributes in process `syz.1.277'.
[   57.048424][   T29] audit: type=1326 audit(1760836809.700:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4302 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   57.079245][ T4328] EXT4-fs (loop4): 1 truncate cleaned up
[   57.105811][ T4328] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   57.165041][   T29] audit: type=1326 audit(1760836809.810:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4302 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   57.204605][ T4328] 9pnet_fd: Insufficient options for proto=fd
[   57.266741][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   57.319705][ T4345] $H�: renamed from bond0 (while UP)
[   57.339410][ T4345] $H�: entered promiscuous mode
[   57.344586][ T4345] bond_slave_0: entered promiscuous mode
[   57.350427][ T4345] bond_slave_1: entered promiscuous mode
[   57.494420][ T4354] v speed is unknown, defaulting to 1000
[   57.596343][ T4357] v: renamed from ip6_vti0 (while UP)
[   57.639462][ T4356] v speed is unknown, defaulting to 1000
[   57.823669][ T4369] netlink: 12 bytes leftover after parsing attributes in process `syz.3.290'.
[   57.884176][ T4372] loop4: detected capacity change from 0 to 512
[   57.942284][ T4372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   57.972139][ T4372] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   58.021899][ T4380] loop2: detected capacity change from 0 to 512
[   58.071715][ T4380] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.085546][ T4384] syzkaller0: entered promiscuous mode
[   58.091151][ T4384] syzkaller0: entered allmulticast mode
[   58.106600][ T4380] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.147903][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.253249][ T4390] loop2: detected capacity change from 0 to 2048
[   58.316530][ T4390] Alternate GPT is invalid, using primary GPT.
[   58.322983][ T4390]  loop2: p1 p2 p3
[   58.326866][ T4390] loop2: partition table partially beyond EOD, truncated
[   58.357103][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.452188][ T4397] loop2: detected capacity change from 0 to 512
[   58.467978][ T4397] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   58.495792][ T4397] EXT4-fs (loop2): 1 truncate cleaned up
[   58.505953][ T4397] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.597885][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   58.653837][ T4393] netlink: 'syz.1.299': attribute type 83 has an invalid length.
[   58.697491][ T4415] netlink: 12 bytes leftover after parsing attributes in process `syz.3.307'.
[   58.739047][ T4420] netlink: '+}[@': attribute type 10 has an invalid length.
[   58.756137][ T4420] team0 (unregistering): Port device team_slave_0 removed
[   58.767112][ T4420] team0 (unregistering): Port device team_slave_1 removed
[   58.780644][ T4422] Driver unsupported XDP return value 0 on prog  (id 274) dev N/A, expect packet loss!
[   58.916288][ T4426] loop3: detected capacity change from 0 to 2048
[   58.957336][ T4426] Alternate GPT is invalid, using primary GPT.
[   58.964047][ T4426]  loop3: p1 p2 p3
[   58.968362][ T4426] loop3: partition table partially beyond EOD, truncated
[   59.005931][ T4430] loop1: detected capacity change from 0 to 512
[   59.012936][ T4430] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   59.026470][ T4430] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters
[   59.043449][ T4430] EXT4-fs (loop1): 1 truncate cleaned up
[   59.050701][ T4430] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.088715][ T4429] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.638397][ T4462] loop3: detected capacity change from 0 to 512
[   59.679010][ T4462] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   59.726659][ T4462] EXT4-fs (loop3): 1 truncate cleaned up
[   59.733013][ T4462] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   59.830561][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.514957][   T29] kauditd_printk_skb: 118 callbacks suppressed
[   60.514975][   T29] audit: type=1326 audit(1760836813.160:1565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8389ac5e67 code=0x7ffc0000
[   60.611446][ T4539] netlink: 12 bytes leftover after parsing attributes in process `syz.4.334'.
[   60.645237][   T29] audit: type=1326 audit(1760836813.160:1566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8389a6b099 code=0x7ffc0000
[   60.669710][   T29] audit: type=1326 audit(1760836813.160:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8389ac5e67 code=0x7ffc0000
[   60.693742][   T29] audit: type=1326 audit(1760836813.160:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8389a6b099 code=0x7ffc0000
[   60.717388][   T29] audit: type=1326 audit(1760836813.160:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   60.740936][   T29] audit: type=1326 audit(1760836813.160:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   60.764882][   T29] audit: type=1326 audit(1760836813.160:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   60.788918][   T29] audit: type=1326 audit(1760836813.160:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8389ac5e67 code=0x7ffc0000
[   60.813141][   T29] audit: type=1326 audit(1760836813.160:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8389a6b099 code=0x7ffc0000
[   60.836923][   T29] audit: type=1326 audit(1760836813.160:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4533 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8389ac5e67 code=0x7ffc0000
[   60.922231][ T4542] netlink: 24 bytes leftover after parsing attributes in process `syz.4.335'.
[   61.054050][ T4547] loop4: detected capacity change from 0 to 1024
[   61.098880][ T4547] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   61.168497][ T4547] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.207926][ T4547] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.337: inode has both inline data and extents flags
[   61.226793][ T4464] syz.2.326 (4464) used greatest stack depth: 9608 bytes left
[   61.346706][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   61.407439][ T4561] loop0: detected capacity change from 0 to 512
[   61.428710][ T4457] syz.2.326 (4457) used greatest stack depth: 7240 bytes left
[   61.438797][ T4561] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   61.453301][ T4561] EXT4-fs (loop0): 1 truncate cleaned up
[   61.468082][ T4561] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   61.491159][ T4564] netlink: 16 bytes leftover after parsing attributes in process `syz.2.340'.
[   61.506912][ T4561] 9pnet_fd: Insufficient options for proto=fd
[   61.548380][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   61.954599][ T4593] loop3: detected capacity change from 0 to 1024
[   61.967277][ T4593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   61.980747][ T4593] ext4 filesystem being mounted at /file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   61.993423][ T4593] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   62.008963][ T4600] tipc: Started in network mode
[   62.014280][ T4600] tipc: Node identity ac14140f, cluster identity 4711
[   62.021516][ T4600] tipc: New replicast peer: 255.255.255.255
[   62.028586][ T4600] tipc: Enabled bearer <udp:syz2>, priority 10
[   62.140268][ T4608] loop3: detected capacity change from 0 to 512
[   62.151044][ T4608] EXT4-fs: Mount option(s) incompatible with ext2
[   62.159510][ T4613] syzkaller0: entered promiscuous mode
[   62.162740][ T4615] rdma_op ffff8881325b3180 conn xmit_rdma 0000000000000000
[   62.165809][ T4613] syzkaller0: entered allmulticast mode
[   62.263608][ T4623] loop0: detected capacity change from 0 to 1024
[   62.274837][ T4623] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.317336][ T4626] netlink: 'syz.1.369': attribute type 12 has an invalid length.
[   62.367520][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.444953][ T4639] netlink: 16 bytes leftover after parsing attributes in process `syz.0.372'.
[   62.501172][ T4643] loop1: detected capacity change from 0 to 512
[   62.510853][ T4643] EXT4-fs: Ignoring removed oldalloc option
[   62.551312][ T4643] EXT4-fs (loop1): 1 truncate cleaned up
[   62.557549][ T4643] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.623867][ T4650] netlink: 4 bytes leftover after parsing attributes in process `syz.4.379'.
[   62.813876][ T4617] Set syz1 is full, maxelem 65536 reached
[   62.826000][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.832376][ T4658] netlink: 4 bytes leftover after parsing attributes in process `syz.3.384'.
[   62.844201][ T4658] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   62.851781][ T4658] batman_adv: batadv0: Removing interface: batadv_slave_0
[   62.861273][ T4658] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   62.869016][ T4658] batman_adv: batadv0: Removing interface: batadv_slave_1
[   62.947478][ T4668] netlink: 'syz.2.388': attribute type 13 has an invalid length.
[   63.079840][ T4668] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.087857][ T4668] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.145844][   T10] tipc: Node number set to 2886997007
[   63.166863][ T4668] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.181966][ T4668] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.229036][ T4524] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   63.238143][ T4524] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   63.246885][ T4687] netlink: 16 bytes leftover after parsing attributes in process `syz.4.391'.
[   63.249596][ T4524] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   63.283185][ T4524] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   63.303668][ T4691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.393'.
[   63.325636][ T4693] loop2: detected capacity change from 0 to 1024
[   63.332677][ T4693] EXT4-fs: inline encryption not supported
[   63.339588][ T4693] EXT4-fs: Ignoring removed nomblk_io_submit option
[   63.346469][ T4693] EXT4-fs: Ignoring removed bh option
[   63.357560][ T4693] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   63.374965][ T4693] netlink: 8 bytes leftover after parsing attributes in process `syz.2.394'.
[   63.407802][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.453860][ T4702] netlink: 'syz.4.396': attribute type 8 has an invalid length.
[   63.475238][ T4702] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   63.496339][ T4707] pimreg: entered allmulticast mode
[   63.504186][ T4707] pimreg: left allmulticast mode
[   63.721310][ T4720] netlink: 'syz.0.415': attribute type 4 has an invalid length.
[   63.724960][ T4721] netlink: 16 bytes leftover after parsing attributes in process `syz.3.405'.
[   63.750404][ T4720] netlink: 'syz.0.415': attribute type 4 has an invalid length.
[   63.778715][ T4723] v speed is unknown, defaulting to 1000
[   63.804246][ T4727] netlink: 96 bytes leftover after parsing attributes in process `syz.2.408'.
[   64.347346][ T4754] netlink: 'syz.1.416': attribute type 58 has an invalid length.
[   64.355454][ T4754] netlink: 20 bytes leftover after parsing attributes in process `syz.1.416'.
[   64.609615][ T4760] netlink: 16 bytes leftover after parsing attributes in process `syz.1.420'.
[   64.936074][ T4773] netlink: 4 bytes leftover after parsing attributes in process `syz.1.424'.
[   65.052857][ T4738] syz.3.411 (4738) used greatest stack depth: 6328 bytes left
[   65.182723][ T4794] netlink: 'syz.0.443': attribute type 13 has an invalid length.
[   65.261580][ T4794] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.269186][ T4794] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.336627][ T4794] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   65.352994][ T4794] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   65.427943][ T4483] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   65.438255][ T4483] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   65.469297][ T4483] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   65.495489][ T4483] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   65.525179][   T29] kauditd_printk_skb: 439 callbacks suppressed
[   65.525200][   T29] audit: type=1326 audit(1760836818.170:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4816745e67 code=0x7ffc0000
[   65.555954][   T29] audit: type=1326 audit(1760836818.170:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f48166eb099 code=0x7ffc0000
[   65.581324][   T29] audit: type=1326 audit(1760836818.170:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   65.616686][   T29] audit: type=1326 audit(1760836818.180:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4816745e67 code=0x7ffc0000
[   65.640567][   T29] audit: type=1326 audit(1760836818.180:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f48166eb099 code=0x7ffc0000
[   65.664631][   T29] audit: type=1326 audit(1760836818.180:2019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   65.689034][   T29] audit: type=1326 audit(1760836818.180:2020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4816745e67 code=0x7ffc0000
[   65.712819][   T29] audit: type=1326 audit(1760836818.180:2021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f48166eb099 code=0x7ffc0000
[   65.736458][   T29] audit: type=1326 audit(1760836818.180:2022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   65.760985][   T29] audit: type=1326 audit(1760836818.180:2023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4801 comm="syz.1.445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4816745e67 code=0x7ffc0000
[   66.170461][ T4824] v speed is unknown, defaulting to 1000
[   66.241938][ T4830] loop1: detected capacity change from 0 to 512
[   66.255992][ T4830] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   66.506229][ T4838] netlink: 4 bytes leftover after parsing attributes in process `syz.1.449'.
[   66.598775][ T4848] 0�X��D: left allmulticast mode
[   66.618709][ T4848] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.626080][ T4848] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.638214][ T4848] $H�: left promiscuous mode
[   66.643581][ T4848] bond_slave_0: left promiscuous mode
[   66.649201][ T4848] bond_slave_1: left promiscuous mode
[   66.712525][ T4848] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.723452][ T4848] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   66.733307][ T4855] netlink: 'syz.2.454': attribute type 58 has an invalid length.
[   66.757788][ T4848] veth2: left promiscuous mode
[   66.763005][ T4848] veth2: left allmulticast mode
[   66.771886][ T4483] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   66.816942][ T4483] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   66.827361][ T4483] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   66.835881][ T4483] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.018565][ T4871] loop3: detected capacity change from 0 to 512
[   67.025687][ T4871] vfat: Bad value for 'allow_utime'
[   67.064667][ T4873] netlink: 'syz.3.462': attribute type 13 has an invalid length.
[   67.116369][ T4873] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.123865][ T4873] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.164333][ T4876] loop0: detected capacity change from 0 to 2048
[   67.189700][ T4876] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.216349][ T4500] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.232061][ T4500] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.243186][ T3323] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.252834][ T4500] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.265193][ T4500] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   67.468627][ T4484] Bluetooth: hci0: Frame reassembly failed (-84)
[   67.608758][ T4908] macvtap1: entered allmulticast mode
[   67.614494][ T4908] bridge0: entered allmulticast mode
[   67.629356][ T4908] batman_adv: batadv0: Adding interface: macvtap1
[   67.638389][ T4908] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   67.665580][ T4908] batman_adv: batadv0: Interface activated: macvtap1
[   67.706997][ T4913] loop1: detected capacity change from 0 to 2048
[   67.716911][ T4913] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.806580][ T4919] netlink: 'syz.4.479': attribute type 10 has an invalid length.
[   67.815787][ T4919] team0: Port device dummy0 added
[   67.823004][ T4919] netlink: 'syz.4.479': attribute type 10 has an invalid length.
[   67.831888][ T4919] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   67.841996][ T4919] team0: Failed to send options change via netlink (err -105)
[   67.850050][ T4919] team0: Failed to send port change of device dummy0 via netlink (err -105)
[   67.859156][ T4919] team0: Port device dummy0 removed
[   67.866190][ T4919] $H�: (slave dummy0): Enslaving as an active interface with an up link
[   67.872562][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.970719][ T4931] netlink: 'syz.4.485': attribute type 4 has an invalid length.
[   67.980694][ T4931] netlink: 'syz.4.485': attribute type 4 has an invalid length.
[   68.067379][ T4935] __nla_validate_parse: 10 callbacks suppressed
[   68.067403][ T4935] netlink: 40 bytes leftover after parsing attributes in process `syz.4.487'.
[   68.083465][ T4935] vlan0: entered promiscuous mode
[   68.088938][ T4935] vlan0: entered allmulticast mode
[   68.094233][ T4935] veth0_vlan: entered allmulticast mode
[   68.100217][ T4935] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[   68.163191][ T4939] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.489'.
[   68.218623][ T4945] pim6reg: entered allmulticast mode
[   68.227434][ T4945] pim6reg: left allmulticast mode
[   68.289730][ T4952] rdma_rxe: rxe_newlink: failed to add bond0
[   68.440815][ T4959] netlink: 20 bytes leftover after parsing attributes in process `syz.4.496'.
[   68.654672][ T4965] v speed is unknown, defaulting to 1000
[   68.985071][ T4969] syzkaller0: entered promiscuous mode
[   68.991253][ T4969] syzkaller0: entered allmulticast mode
[   69.185153][ T4973] loop1: detected capacity change from 0 to 512
[   69.198963][ T4973] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   69.211985][ T4973] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.231587][ T4973] validate_nla: 3 callbacks suppressed
[   69.231606][ T4973] netlink: 'syz.1.502': attribute type 13 has an invalid length.
[   69.322020][ T4973] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   69.336152][ T4973] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   69.429874][ T4973] batman_adv: batadv0: Interface deactivated: macvtap1
[   69.440620][ T4973] bridge0: left allmulticast mode
[   69.448531][ T4981] netlink: 24 bytes leftover after parsing attributes in process `syz.2.504'.
[   69.455563][ T4500] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.469032][ T4500] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.489748][ T4500] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.500367][ T4982] netlink: 4 bytes leftover after parsing attributes in process `syz.2.504'.
[   69.525475][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.538661][ T4500] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.548620][ T3526] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   69.658874][ T4996] netlink: 12 bytes leftover after parsing attributes in process `syz.2.511'.
[   69.679226][ T4996] 8021q: adding VLAN 0 to HW filter on device bond1
[   69.711750][ T4996] vlan2: entered allmulticast mode
[   69.717067][ T4996] bond1: entered allmulticast mode
[   69.798730][ T5007] loop2: detected capacity change from 0 to 128
[   69.837840][ T5007] infiniband syz!: set down
[   69.842494][ T5007] infiniband syz!: added team_slave_0
[   69.854940][ T5007] RDS/IB: syz!: added
[   69.922882][ T5015] netlink: 24 bytes leftover after parsing attributes in process `syz.4.518'.
[   70.130388][ T5023] tipc: Started in network mode
[   70.136522][ T5023] tipc: Node identity 063023bdf798, cluster identity 4711
[   70.144290][ T5023] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   70.154171][ T5022] tipc: Resetting bearer <eth:syzkaller0>
[   70.197548][ T5022] tipc: Disabling bearer <eth:syzkaller0>
[   70.232852][ T5026] loop2: detected capacity change from 0 to 8192
[   70.242228][ T5026] vfat: Unknown parameter '�'
[   70.399811][ T5034] v speed is unknown, defaulting to 1000
[   70.662024][ T5026] netlink: 4 bytes leftover after parsing attributes in process `syz.2.523'.
[   70.681401][ T5026] netem: change failed
[   70.773052][ T5048] ip6t_srh: unknown srh match flags  4000
[   70.785688][ T5048] loop1: detected capacity change from 0 to 512
[   70.801495][ T5048] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.531: error while reading EA inode 32 err=-116
[   70.816080][ T5048] EXT4-fs (loop1): Remounting filesystem read-only
[   70.823582][ T5048] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   70.863298][ T5048] EXT4-fs (loop1): 1 orphan inode deleted
[   70.876311][ T5048] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.907793][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.371448][   T29] kauditd_printk_skb: 551 callbacks suppressed
[   71.371529][   T29] audit: type=1326 audit(1760836824.020:2575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.471761][   T29] audit: type=1326 audit(1760836824.060:2576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.496059][   T29] audit: type=1326 audit(1760836824.060:2577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.521262][   T29] audit: type=1326 audit(1760836824.060:2578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.545463][   T29] audit: type=1326 audit(1760836824.060:2579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.570361][   T29] audit: type=1326 audit(1760836824.060:2580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.595944][   T29] audit: type=1326 audit(1760836824.060:2581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.620279][   T29] audit: type=1326 audit(1760836824.060:2582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.644277][   T29] audit: type=1326 audit(1760836824.060:2583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.668720][   T29] audit: type=1326 audit(1760836824.060:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5068 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   71.790832][ T5074] netlink: 'syz.4.551': attribute type 1 has an invalid length.
[   71.808535][ T5074] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.828477][ T5074] bond0: (slave ip6gretap1): making interface the new active one
[   71.838788][ T5074] bond0: (slave ip6gretap1): Enslaving as an active interface with an up link
[   71.853411][ T5078] netlink: 'syz.1.542': attribute type 4 has an invalid length.
[   71.856153][ T5074] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5074 comm=syz.4.551
[   71.862425][ T5078] netlink: 'syz.1.542': attribute type 4 has an invalid length.
[   71.971877][ T5084] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[   72.002299][ T5086] v speed is unknown, defaulting to 1000
[   72.070269][ T5093] loop3: detected capacity change from 0 to 512
[   72.086971][ T5093] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.107117][ T5093] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.159054][ T5093] netlink: 'syz.3.549': attribute type 13 has an invalid length.
[   72.170050][ T5090] macvtap1: entered allmulticast mode
[   72.176961][ T5090] bridge0: entered allmulticast mode
[   72.190058][ T5090] batman_adv: batadv0: Adding interface: macvtap1
[   72.197287][ T5090] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   72.225697][ T5090] batman_adv: batadv0: Interface activated: macvtap1
[   72.297712][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.337874][ T5109] netlink: 24 bytes leftover after parsing attributes in process `syz.0.556'.
[   72.380087][ T5113] netlink: 4 bytes leftover after parsing attributes in process `syz.3.555'.
[   72.662547][ T5126] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[   72.851476][ T5137] loop4: detected capacity change from 0 to 512
[   72.882437][ T5137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   72.896834][ T5137] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   72.914115][ T5137] netlink: 'syz.4.566': attribute type 13 has an invalid length.
[   72.965929][ T5137] batman_adv: batadv0: Interface deactivated: macvtap1
[   72.975195][ T5137] bridge0: left allmulticast mode
[   73.018826][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.026386][ T5147] loop2: detected capacity change from 0 to 512
[   73.047830][ T5149] loop4: detected capacity change from 0 to 512
[   73.057381][ T5147] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.570: bg 0: block 248: padding at end of block bitmap is not set
[   73.072366][ T5147] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.570: Failed to acquire dquot type 1
[   73.084676][ T5147] EXT4-fs (loop2): 1 truncate cleaned up
[   73.091347][ T5147] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.100478][ T5149] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[   73.104524][ T5147] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.152869][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.162680][ T4500] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:41: Failed to release dquot type 1
[   73.250039][ T5164] loop4: detected capacity change from 0 to 2048
[   73.277000][ T5164] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.457514][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.555489][ T5181] netlink: 'syz.2.580': attribute type 1 has an invalid length.
[   73.563575][ T5181] netlink: 'syz.2.580': attribute type 2 has an invalid length.
[   73.582477][ T5181] __nla_validate_parse: 1 callbacks suppressed
[   73.582522][ T5181] netlink: 4 bytes leftover after parsing attributes in process `syz.2.580'.
[   73.619598][ T5185] batadv_slave_1: entered promiscuous mode
[   73.633677][ T5185] netlink: 4 bytes leftover after parsing attributes in process `syz.3.582'.
[   73.644802][ T5185] batadv_slave_1 (unregistering): left promiscuous mode
[   73.656405][ T5187] macsec0: entered promiscuous mode
[   73.747030][ T5197] netlink: 664 bytes leftover after parsing attributes in process `syz.3.587'.
[   73.783818][ T5199] loop3: detected capacity change from 0 to 2048
[   73.817573][ T5199] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.842217][ T5205] netlink: 12 bytes leftover after parsing attributes in process `syz.1.598'.
[   73.875668][ T5205] 8021q: adding VLAN 0 to HW filter on device bond2
[   73.914696][ T5205] vlan2: entered allmulticast mode
[   73.920135][ T5205] bond2: entered allmulticast mode
[   74.016728][ T4500] Bluetooth: hci0: Frame reassembly failed (-84)
[   74.035266][ T5215] v speed is unknown, defaulting to 1000
[   74.062554][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.100108][ T5221] netlink: 'syz.3.592': attribute type 4 has an invalid length.
[   74.115967][ T5221] netlink: 'syz.3.592': attribute type 4 has an invalid length.
[   74.185357][ T5225] pim6reg1: entered promiscuous mode
[   74.191690][ T5225] pim6reg1: entered allmulticast mode
[   74.208742][ T5228] netlink: 332 bytes leftover after parsing attributes in process `syz.2.596'.
[   74.239801][ T5230] tipc: Started in network mode
[   74.245968][ T5230] tipc: Node identity ac14140f, cluster identity 4711
[   74.253473][ T5230] tipc: New replicast peer: 255.255.255.83
[   74.259664][ T5230] tipc: Enabled bearer <udp:�>, priority 10
[   75.161252][ T5248] netlink: 24 bytes leftover after parsing attributes in process `syz.3.603'.
[   75.230217][ T5248] IPVS: Unknown mcast interface: ipvlan1
[   75.387840][ T1036] tipc: Node number set to 2886997007
[   75.632538][ T5266] loop9: detected capacity change from 0 to 7
[   75.639023][ T5266] Buffer I/O error on dev loop9, logical block 0, async page read
[   75.649807][ T5266] Buffer I/O error on dev loop9, logical block 0, async page read
[   75.657959][ T5266]  loop9: unable to read partition table
[   75.667643][ T5266] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ���
[   75.667643][ T5266] 
) failed (rc=-5)
[   75.704672][ T5272] netlink: 12 bytes leftover after parsing attributes in process `syz.0.613'.
[   75.721732][ T5272] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.741655][ T5272] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.750499][ T5272] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[   75.763812][ T5272] bond1: (slave vxcan3): Error -95 calling set_mac_address
[   75.814777][ T5276] macvlan2: entered promiscuous mode
[   75.820256][ T5276] macvlan2: entered allmulticast mode
[   75.826427][ T5276] bond1: (slave macvlan2): Error -98 calling set_mac_address
[   76.025352][ T3526] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   76.350808][ T5275] syz.2.614 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   76.367148][ T5275] CPU: 1 UID: 0 PID: 5275 Comm: syz.2.614 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   76.367174][ T5275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   76.367186][ T5275] Call Trace:
[   76.367192][ T5275]  <TASK>
[   76.367199][ T5275]  __dump_stack+0x1d/0x30
[   76.367263][ T5275]  dump_stack_lvl+0xe8/0x140
[   76.367281][ T5275]  dump_stack+0x15/0x1b
[   76.367295][ T5275]  dump_header+0x81/0x220
[   76.367326][ T5275]  oom_kill_process+0x342/0x400
[   76.367364][ T5275]  out_of_memory+0x979/0xb80
[   76.367437][ T5275]  try_charge_memcg+0x610/0xa10
[   76.367541][ T5275]  obj_cgroup_charge_pages+0xa6/0x150
[   76.367575][ T5275]  __memcg_kmem_charge_page+0x9f/0x170
[   76.367636][ T5275]  __alloc_frozen_pages_noprof+0x188/0x360
[   76.367673][ T5275]  alloc_pages_mpol+0xb3/0x260
[   76.367693][ T5275]  alloc_pages_noprof+0x90/0x130
[   76.367711][ T5275]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   76.367885][ T5275]  __kvmalloc_node_noprof+0x483/0x670
[   76.367914][ T5275]  ? ip_set_alloc+0x24/0x30
[   76.367939][ T5275]  ? ip_set_alloc+0x24/0x30
[   76.367995][ T5275]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   76.368077][ T5275]  ip_set_alloc+0x24/0x30
[   76.368113][ T5275]  hash_netiface_create+0x282/0x740
[   76.368146][ T5275]  ? __pfx_hash_netiface_create+0x10/0x10
[   76.368225][ T5275]  ip_set_create+0x3cc/0x970
[   76.368268][ T5275]  nfnetlink_rcv_msg+0x4c6/0x590
[   76.368314][ T5275]  netlink_rcv_skb+0x123/0x220
[   76.368349][ T5275]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   76.368379][ T5275]  nfnetlink_rcv+0x167/0x16c0
[   76.368409][ T5275]  ? insn_get_opcode+0x7dd/0x890
[   76.368587][ T5275]  ? insn_get_modrm+0x367/0x390
[   76.368610][ T5275]  ? bpf_check+0xc239/0xd9d0
[   76.368644][ T5275]  ? perf_event_read_local+0x4af/0x4f0
[   76.368747][ T5275]  ? bpf_perf_event_read+0xdf/0x150
[   76.368771][ T5275]  ? __rcu_read_unlock+0x4f/0x70
[   76.368796][ T5275]  ? bpf_trace_run2+0x124/0x1c0
[   76.368874][ T5275]  ? security_compute_sid+0x11da/0x1290
[   76.368903][ T5275]  ? should_fail_ex+0x30/0x280
[   76.368985][ T5275]  ? selinux_nlmsg_lookup+0x99/0x890
[   76.369010][ T5275]  ? __rcu_read_unlock+0x34/0x70
[   76.369034][ T5275]  ? __netlink_lookup+0x266/0x2a0
[   76.369069][ T5275]  netlink_unicast+0x5c0/0x690
[   76.369163][ T5275]  netlink_sendmsg+0x58b/0x6b0
[   76.369209][ T5275]  ? __pfx_netlink_sendmsg+0x10/0x10
[   76.369253][ T5275]  __sock_sendmsg+0x145/0x180
[   76.369369][ T5275]  ____sys_sendmsg+0x31e/0x4e0
[   76.369447][ T5275]  ___sys_sendmsg+0x17b/0x1d0
[   76.369534][ T5275]  __x64_sys_sendmsg+0xd4/0x160
[   76.369570][ T5275]  x64_sys_call+0x191e/0x3000
[   76.369592][ T5275]  do_syscall_64+0xd2/0x200
[   76.369674][ T5275]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   76.369702][ T5275]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   76.369725][ T5275]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.369745][ T5275] RIP: 0033:0x7f89625aefc9
[   76.369814][ T5275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.369832][ T5275] RSP: 002b:00007f896100f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.369850][ T5275] RAX: ffffffffffffffda RBX: 00007f8962805fa0 RCX: 00007f89625aefc9
[   76.369912][ T5275] RDX: 0000000000000800 RSI: 0000200000000200 RDI: 0000000000000008
[   76.369923][ T5275] RBP: 00007f8962631f91 R08: 0000000000000000 R09: 0000000000000000
[   76.369945][ T5275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.369957][ T5275] R13: 00007f8962806038 R14: 00007f8962805fa0 R15: 00007ffc50e263a8
[   76.370042][ T5275]  </TASK>
[   76.370049][ T5275] memory: usage 307200kB, limit 307200kB, failcnt 636
[   76.577216][ T5289] loop1: detected capacity change from 0 to 512
[   76.578616][ T5275] memory+swap: usage 307548kB, limit 9007199254740988kB, failcnt 0
[   76.649802][   T29] kauditd_printk_skb: 112 callbacks suppressed
[   76.649827][   T29] audit: type=1326 audit(1760836829.220:2694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   76.650787][ T5275] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[   76.650805][ T5275] Memory cgroup stats for /syz2
[   76.655544][   T29] audit: type=1326 audit(1760836829.220:2695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   76.662121][ T5275] :
[   76.668695][   T29] audit: type=1326 audit(1760836829.220:2696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   76.675617][ T5275] cache 0
[   76.679729][   T29] audit: type=1326 audit(1760836829.220:2697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   76.700528][ T5275] rss 20480
[   76.700539][ T5275] shmem 0
[   76.700545][ T5275] mapped_file 0
[   76.700553][ T5275] dirty 0
[   76.709673][   T29] audit: type=1326 audit(1760836829.220:2698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f481674f003 code=0x7ffc0000
[   76.718423][ T5275] writeback 0
[   76.718436][ T5275] workingset_refault_anon 106
[   76.718447][ T5275] workingset_refault_file 1269
[   76.726736][   T29] audit: type=1326 audit(1760836829.220:2699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f481674da7f code=0x7ffc0000
[   76.734792][ T5275] swap 356352
[   76.734803][ T5275] swapcached 20480
[   76.734810][ T5275] pgpgin 45120
[   76.734817][ T5275] pgpgout 45115
[   76.734823][ T5275] pgfault 59502
[   76.734830][ T5275] pgmajfault 70
[   76.734836][ T5275] inactive_anon 20480
[   76.734843][ T5275] active_anon 0
[   76.734849][ T5275] inactive_file 0
[   76.743404][   T29] audit: type=1326 audit(1760836829.220:2700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f481674f057 code=0x7ffc0000
[   76.743501][   T29] audit: type=1326 audit(1760836829.220:2701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f481674d810 code=0x7ffc0000
[   76.753018][ T5275] active_file 0
[   76.756373][   T29] audit: type=1326 audit(1760836829.220:2702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f481674ebcb code=0x7ffc0000
[   76.756420][   T29] audit: type=1326 audit(1760836829.230:2703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5288 comm="syz.1.619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f481674dc2a code=0x7ffc0000
[   76.765467][ T5275] unevictable 0
[   76.765482][ T5275] hierarchical_memory_limit 314572800
[   76.794826][ T5289] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[   76.813936][ T5275] hierarchical_memsw_limit 9223372036854771712
[   76.813953][ T5275] total_cache 0
[   76.813963][ T5275] total_rss 20480
[   77.154680][ T5275] total_shmem 0
[   77.158171][ T5275] total_mapped_file 0
[   77.162266][ T5275] total_dirty 0
[   77.166471][ T5275] total_writeback 0
[   77.170562][ T5275] total_workingset_refault_anon 106
[   77.176114][ T5275] total_workingset_refault_file 1269
[   77.181493][ T5275] total_swap 356352
[   77.185423][ T5275] total_swapcached 20480
[   77.190189][ T5275] total_pgpgin 45120
[   77.194166][ T5275] total_pgpgout 45115
[   77.198349][ T5275] total_pgfault 59502
[   77.202439][ T5275] total_pgmajfault 70
[   77.206784][ T5275] total_inactive_anon 20480
[   77.211433][ T5275] total_active_anon 0
[   77.215606][ T5275] total_inactive_file 0
[   77.219958][ T5275] total_active_file 0
[   77.224623][ T5275] total_unevictable 0
[   77.228757][ T5275] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.614,pid=5274,uid=0
[   77.244362][ T5275] Memory cgroup out of memory: Killed process 5274 (syz.2.614) total-vm:96004kB, anon-rss:1136kB, file-rss:22092kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000
[   77.531704][ T5309] loop2: detected capacity change from 0 to 1024
[   77.540105][ T5309] EXT4-fs: Ignoring removed bh option
[   77.546962][ T5309] EXT4-fs: inline encryption not supported
[   77.554175][ T5309] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   77.568532][ T5309] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[   77.588159][ T5316] netlink: 'syz.1.626': attribute type 8 has an invalid length.
[   77.603918][ T5316] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[   77.615374][ T5309] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.624: lblock 2 mapped to illegal pblock 2 (length 1)
[   77.635580][ T5309] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.624: lblock 0 mapped to illegal pblock 48 (length 1)
[   77.645711][ T5319] netlink: 48 bytes leftover after parsing attributes in process `syz.3.627'.
[   77.650880][ T5309] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.624: Failed to acquire dquot type 0
[   77.674703][ T5309] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   77.686133][ T5309] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.624: mark_inode_dirty error
[   77.689165][ T5321] loop4: detected capacity change from 0 to 512
[   77.699113][ T5309] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   77.716043][ T5309] EXT4-fs (loop2): 1 orphan inode deleted
[   77.722269][ T5309] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.735941][ T4484] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:27: lblock 1 mapped to illegal pblock 1 (length 1)
[   77.737347][ T5321] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.628: bg 0: block 248: padding at end of block bitmap is not set
[   77.751663][ T4484] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:27: Failed to release dquot type 0
[   77.778730][ T5321] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.628: Failed to acquire dquot type 1
[   77.791724][ T5321] EXT4-fs (loop4): 1 truncate cleaned up
[   77.798576][ T5321] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.812181][ T5321] ext4 filesystem being mounted at /123/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   77.824100][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.834273][ T3317] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[   77.848338][ T3317] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem
[   77.859017][ T3317] EXT4-fs error (device loop2): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[   77.871930][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.881833][ T4484] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:27: Failed to release dquot type 1
[   77.904910][ T5327] netlink: 20 bytes leftover after parsing attributes in process `syz.4.632'.
[   77.914004][ T5327] netlink: 36 bytes leftover after parsing attributes in process `syz.4.632'.
[   78.148528][ T5336] loop2: detected capacity change from 0 to 1024
[   78.156750][ T5336] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869)
[   78.168770][ T5336] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002]
[   78.177836][ T5336] EXT4-fs (loop2): failed to initialize system zone (-117)
[   78.185479][ T5336] EXT4-fs (loop2): mount failed
[   78.201684][ T5336] loop2: detected capacity change from 0 to 128
[   78.210814][ T5336] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   78.224046][ T5336] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.264373][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   78.527201][ T5358] loop1: detected capacity change from 0 to 512
[   78.578536][ T5364] netlink: 'syz.3.646': attribute type 10 has an invalid length.
[   78.596185][ T5358] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.643: bg 0: block 248: padding at end of block bitmap is not set
[   78.599583][ T5364] team0: Port device dummy0 added
[   78.630357][ T5358] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.643: Failed to acquire dquot type 1
[   78.641201][ T5364] netlink: 'syz.3.646': attribute type 10 has an invalid length.
[   78.648032][ T5358] EXT4-fs (loop1): 1 truncate cleaned up
[   78.658189][ T5358] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.675278][ T5358] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.707182][ T5364] team0: Port device dummy0 removed
[   78.713464][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.724485][ T5364] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   78.754267][ T4484] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:27: Failed to release dquot type 1
[   78.776906][ T5367] loop9: detected capacity change from 0 to 7
[   78.783542][ T5367] Buffer I/O error on dev loop9, logical block 0, async page read
[   78.792175][ T5367] Buffer I/O error on dev loop9, logical block 0, async page read
[   78.800377][ T5367]  loop9: unable to read partition table
[   78.814818][ T5367] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dG�����ݡ���
[   78.814818][ T5367] 
) failed (rc=-5)
[   78.837151][ T5369] __nla_validate_parse: 1 callbacks suppressed
[   78.837186][ T5369] netlink: 24 bytes leftover after parsing attributes in process `syz.1.647'.
[   78.864703][ T5369] IPVS: Error connecting to the multicast addr
[   79.069904][ T5394] loop3: detected capacity change from 0 to 1024
[   79.079478][ T5394] EXT4-fs: Ignoring removed orlov option
[   79.094864][ T5394] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.384787][ T5406] batadv_slave_1: entered promiscuous mode
[   79.391273][ T5406] netlink: 4 bytes leftover after parsing attributes in process `syz.0.661'.
[   79.405101][ T5406] batadv_slave_1 (unregistering): left promiscuous mode
[   79.412961][ T5406] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.452374][ T5408] netlink: 'syz.1.662': attribute type 4 has an invalid length.
[   79.460369][ T5408] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.662'.
[   79.500705][ T5410] netlink: 24 bytes leftover after parsing attributes in process `syz.0.663'.
[   79.528740][ T5410] IPVS: Error connecting to the multicast addr
[   79.530956][ T5412] netlink: 24 bytes leftover after parsing attributes in process `syz.2.664'.
[   79.574482][ T5412] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=5412 comm=syz.2.664
[   79.589195][ T5412] netlink: 'syz.2.664': attribute type 1 has an invalid length.
[   79.710933][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.824558][ T5428] loop3: detected capacity change from 0 to 1024
[   79.835098][ T5428] EXT4-fs: Ignoring removed orlov option
[   79.841424][ T5428] EXT4-fs: Ignoring removed mblk_io_submit option
[   79.857810][ T5428] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   79.986875][ T5428] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.226728][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.678024][ T5417] syz.0.666 (5417) used greatest stack depth: 6184 bytes left
[   80.699855][ T5445] v speed is unknown, defaulting to 1000
[   80.707434][ T5447] batadv_slave_1: entered promiscuous mode
[   80.730895][ T5447] netlink: 4 bytes leftover after parsing attributes in process `syz.4.674'.
[   80.761445][ T5447] batadv_slave_1 (unregistering): left promiscuous mode
[   80.769270][ T5447] batman_adv: batadv0: Removing interface: batadv_slave_1
[   80.826560][ T5454] netlink: 24 bytes leftover after parsing attributes in process `syz.2.678'.
[   80.838180][ T5454] IPVS: Error connecting to the multicast addr
[   80.869398][ T5457] netlink: 12 bytes leftover after parsing attributes in process `syz.0.688'.
[   80.902990][ T5460] v speed is unknown, defaulting to 1000
[   80.941749][ T5465] $H�: (slave dummy0): Releasing backup interface
[   80.960284][ T5465] bridge_slave_0: left allmulticast mode
[   80.966386][ T5465] bridge_slave_0: left promiscuous mode
[   80.972176][ T5465] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.980740][ T5465] bridge_slave_1: left allmulticast mode
[   80.986659][ T5465] bridge_slave_1: left promiscuous mode
[   80.992809][ T5465] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.002808][ T5465] $H�: (slave bond_slave_0): Releasing backup interface
[   81.011938][ T5465] $H�: (slave bond_slave_1): Releasing backup interface
[   81.020697][ T5465] team0: Port device team_slave_0 removed
[   81.028578][ T5465] team0: Port device team_slave_1 removed
[   81.034890][ T5465] batman_adv: batadv0: Removing interface: batadv_slave_0
[   81.042865][ T5465] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[   81.163593][ T5482] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   81.630987][ T5490] loop3: detected capacity change from 0 to 512
[   81.676546][ T5488] loop2: detected capacity change from 0 to 8192
[   81.699361][ T5490] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.687: bg 0: block 248: padding at end of block bitmap is not set
[   81.744709][ T5490] __quota_error: 722 callbacks suppressed
[   81.744731][ T5490] Quota error (device loop3): write_blk: dquota write failed
[   81.760414][ T5490] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   81.771816][ T5490] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.687: Failed to acquire dquot type 1
[   81.785933][ T5490] EXT4-fs (loop3): 1 truncate cleaned up
[   81.792355][ T5490] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   81.811575][ T5500] netlink: 24 bytes leftover after parsing attributes in process `syz.4.691'.
[   81.821130][ T5500] IPVS: Error connecting to the multicast addr
[   81.830670][ T5490] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.847777][ T5502] batadv_slave_1: entered promiscuous mode
[   81.854259][ T5502] netlink: 4 bytes leftover after parsing attributes in process `syz.1.693'.
[   81.867058][ T5502] batadv_slave_1 (unregistering): left promiscuous mode
[   81.874258][ T5502] batman_adv: batadv0: Removing interface: batadv_slave_1
[   81.947920][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.965288][  T784] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-5
[   81.974770][  T784] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:5: Failed to release dquot type 1
[   82.008678][   T29] audit: type=1326 audit(2000000000.010:3417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5514 comm="syz.1.697" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f481674efc9 code=0x0
[   82.034745][ T5512] delete_channel: no stack
[   82.083620][   T29] audit: type=1326 audit(2000000000.080:3418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5514 comm="syz.1.697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   82.108088][   T29] audit: type=1326 audit(2000000000.080:3419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5514 comm="syz.1.697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   82.136433][   T29] audit: type=1326 audit(2000000000.080:3420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5514 comm="syz.1.697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   82.160889][   T29] audit: type=1326 audit(2000000000.080:3421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5514 comm="syz.1.697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   82.185689][   T29] audit: type=1326 audit(2000000000.080:3422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5514 comm="syz.1.697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   82.211400][   T29] audit: type=1326 audit(2000000000.140:3423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5514 comm="syz.1.697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[   82.246108][ T5521] loop3: detected capacity change from 0 to 8192
[   82.256336][ T5521] vfat: Unknown parameter '�'
[   82.417644][ T5527] netlink: 'syz.2.703': attribute type 13 has an invalid length.
[   82.434970][ T5527] gretap0: refused to change device tx_queue_len
[   82.446058][ T5527] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[   82.510661][ T5532] hsr_slave_0: left promiscuous mode
[   82.517302][ T5532] hsr_slave_1: left promiscuous mode
[   82.862196][ T5542] loop1: detected capacity change from 0 to 512
[   82.877507][ T5542] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.708: bg 0: block 248: padding at end of block bitmap is not set
[   82.902248][ T5542] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.708: Failed to acquire dquot type 1
[   82.924151][ T5542] EXT4-fs (loop1): 1 truncate cleaned up
[   82.933718][ T5542] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.965458][ T5542] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.017287][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.034195][ T4483] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:26: Failed to release dquot type 1
[   83.353420][ T5558] syzkaller0: entered promiscuous mode
[   83.359509][ T5558] syzkaller0: entered allmulticast mode
[   84.418405][ T5587] __nla_validate_parse: 3 callbacks suppressed
[   84.418426][ T5587] netlink: 4 bytes leftover after parsing attributes in process `syz.0.722'.
[   84.812815][ T5612] loop1: detected capacity change from 0 to 1024
[   84.829542][ T5612] EXT4-fs: Ignoring removed orlov option
[   84.835310][ T5612] EXT4-fs: Ignoring removed mblk_io_submit option
[   84.843383][ T5612] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   84.857828][ T5612] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.072384][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.085780][ T5586] syz.0.722 (5586) used greatest stack depth: 6072 bytes left
[   85.328173][ T5642] xt_CT: No such helper "pptp"
[   85.497099][ T5645] netlink: 96 bytes leftover after parsing attributes in process `syz.2.746'.
[   86.143871][ T5664] netlink: 12 bytes leftover after parsing attributes in process `syz.4.753'.
[   86.196740][ T5664] netlink: 12 bytes leftover after parsing attributes in process `syz.4.753'.
[   86.217131][ T5666] netlink: 12 bytes leftover after parsing attributes in process `syz.4.753'.
[   86.254362][ T5666] netlink: 12 bytes leftover after parsing attributes in process `syz.4.753'.
[   86.291931][ T5664] netlink: 12 bytes leftover after parsing attributes in process `syz.4.753'.
[   86.326881][ T5666] netlink: 12 bytes leftover after parsing attributes in process `syz.4.753'.
[   86.571339][ T5686] loop1: detected capacity change from 0 to 1024
[   86.606043][ T5686] EXT4-fs: Ignoring removed orlov option
[   86.642892][ T5686] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.199034][ T5688] syz.4.758 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[   87.214609][ T5688] CPU: 0 UID: 0 PID: 5688 Comm: syz.4.758 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   87.214646][ T5688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   87.214664][ T5688] Call Trace:
[   87.214671][ T5688]  <TASK>
[   87.214680][ T5688]  __dump_stack+0x1d/0x30
[   87.214764][ T5688]  dump_stack_lvl+0xe8/0x140
[   87.214791][ T5688]  dump_stack+0x15/0x1b
[   87.214814][ T5688]  dump_header+0x81/0x220
[   87.214938][ T5688]  oom_kill_process+0x342/0x400
[   87.214981][ T5688]  out_of_memory+0x979/0xb80
[   87.215035][ T5688]  try_charge_memcg+0x610/0xa10
[   87.215081][ T5688]  obj_cgroup_charge_pages+0xa6/0x150
[   87.215165][ T5688]  __memcg_kmem_charge_page+0x9f/0x170
[   87.215263][ T5688]  __alloc_frozen_pages_noprof+0x188/0x360
[   87.215315][ T5688]  alloc_pages_mpol+0xb3/0x260
[   87.215345][ T5688]  alloc_pages_noprof+0x90/0x130
[   87.215372][ T5688]  __vmalloc_node_range_noprof+0x7a5/0xed0
[   87.215489][ T5688]  ? format_decode+0xaf/0x580
[   87.215537][ T5688]  __kvmalloc_node_noprof+0x483/0x670
[   87.215580][ T5688]  ? ip_set_alloc+0x24/0x30
[   87.215646][ T5688]  ? ip_set_alloc+0x24/0x30
[   87.215680][ T5688]  ? __kmalloc_cache_noprof+0x249/0x4a0
[   87.215718][ T5688]  ip_set_alloc+0x24/0x30
[   87.215769][ T5688]  hash_netiface_create+0x282/0x740
[   87.215880][ T5688]  ? __pfx_hash_netiface_create+0x10/0x10
[   87.215928][ T5688]  ip_set_create+0x3cc/0x970
[   87.216016][ T5688]  ? __nla_parse+0x40/0x60
[   87.216049][ T5688]  nfnetlink_rcv_msg+0x4c6/0x590
[   87.216143][ T5688]  netlink_rcv_skb+0x123/0x220
[   87.216197][ T5688]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   87.216236][ T5688]  nfnetlink_rcv+0x167/0x16c0
[   87.216330][ T5688]  ? __free_frozen_pages+0x284/0x510
[   87.216483][ T5688]  ? free_large_kmalloc+0xb1/0x100
[   87.216515][ T5688]  ? bpf_check+0xc239/0xd9d0
[   87.216544][ T5688]  ? perf_event_read_local+0x4af/0x4f0
[   87.216583][ T5688]  ? __stack_map_get+0x25a/0x360
[   87.216656][ T5688]  ? stack_map_peek_elem+0x1f/0x30
[   87.216717][ T5688]  ? __rcu_read_unlock+0x4f/0x70
[   87.216836][ T5688]  ? bpf_trace_run2+0x124/0x1c0
[   87.216869][ T5688]  ? security_compute_sid+0x11da/0x1290
[   87.216933][ T5688]  ? should_fail_ex+0x30/0x280
[   87.216986][ T5688]  ? selinux_nlmsg_lookup+0x99/0x890
[   87.217010][ T5688]  ? __rcu_read_unlock+0x34/0x70
[   87.217106][ T5688]  ? __netlink_lookup+0x266/0x2a0
[   87.217141][ T5688]  netlink_unicast+0x5c0/0x690
[   87.217173][ T5688]  netlink_sendmsg+0x58b/0x6b0
[   87.217282][ T5688]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.217317][ T5688]  __sock_sendmsg+0x145/0x180
[   87.217407][ T5688]  ____sys_sendmsg+0x31e/0x4e0
[   87.217441][ T5688]  ___sys_sendmsg+0x17b/0x1d0
[   87.217511][ T5688]  __x64_sys_sendmsg+0xd4/0x160
[   87.217629][ T5688]  x64_sys_call+0x191e/0x3000
[   87.217656][ T5688]  do_syscall_64+0xd2/0x200
[   87.217684][ T5688]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   87.217771][ T5688]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   87.217876][ T5688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.217905][ T5688] RIP: 0033:0x7fd061e4efc9
[   87.217966][ T5688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.217990][ T5688] RSP: 002b:00007fd0608af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   87.218016][ T5688] RAX: ffffffffffffffda RBX: 00007fd0620a5fa0 RCX: 00007fd061e4efc9
[   87.218028][ T5688] RDX: 0000000000000800 RSI: 0000200000000200 RDI: 0000000000000008
[   87.218044][ T5688] RBP: 00007fd061ed1f91 R08: 0000000000000000 R09: 0000000000000000
[   87.218060][ T5688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.218076][ T5688] R13: 00007fd0620a6038 R14: 00007fd0620a5fa0 R15: 00007fff87f6da98
[   87.218099][ T5688]  </TASK>
[   87.633310][ T5688] memory: usage 307200kB, limit 307200kB, failcnt 95
[   87.640687][ T5688] memory+swap: usage 307540kB, limit 9007199254740988kB, failcnt 0
[   87.648964][ T5688] kmem: usage 307168kB, limit 9007199254740988kB, failcnt 0
[   87.656931][ T5688] Memory cgroup stats for /syz4:
[   87.684337][ T5705] loop2: detected capacity change from 0 to 128
[   87.698658][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.708057][   T29] kauditd_printk_skb: 66 callbacks suppressed
[   87.708076][   T29] audit: type=1326 audit(2000000005.670:3487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.739207][   T29] audit: type=1326 audit(2000000005.670:3488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.763836][   T29] audit: type=1326 audit(2000000005.670:3489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.788129][   T29] audit: type=1326 audit(2000000005.670:3490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.798117][ T5688] cache 4096
[   87.813241][   T29] audit: type=1326 audit(2000000005.670:3491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.813281][   T29] audit: type=1326 audit(2000000005.670:3492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.816513][ T5688] rss 12288
[   87.840467][   T29] audit: type=1326 audit(2000000005.670:3493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.864425][ T5688] shmem 0
[   87.867665][   T29] audit: type=1326 audit(2000000005.670:3494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.892131][ T5688] mapped_file 4096
[   87.892147][ T5688] dirty 0
[   87.892157][ T5688] writeback 0
[   87.892167][ T5688] workingset_refault_anon 0
[   87.895161][   T29] audit: type=1326 audit(2000000005.670:3495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.895214][   T29] audit: type=1326 audit(2000000005.670:3496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5702 comm="syz.0.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8389acefc9 code=0x7ffc0000
[   87.921298][ T5688] workingset_refault_file 129
[   87.921314][ T5688] swap 352256
[   87.921324][ T5688] swapcached 16384
[   88.001464][ T5688] pgpgin 55065
[   88.005034][ T5688] pgpgout 55057
[   88.008675][ T5688] pgfault 66259
[   88.012625][ T5688] pgmajfault 5
[   88.016201][ T5688] inactive_anon 0
[   88.020205][ T5688] active_anon 28672
[   88.024135][ T5688] inactive_file 0
[   88.027860][ T5688] active_file 0
[   88.031479][ T5688] unevictable 0
[   88.034968][ T5688] hierarchical_memory_limit 314572800
[   88.040479][ T5688] hierarchical_memsw_limit 9223372036854771712
[   88.046864][ T5688] total_cache 4096
[   88.050609][ T5688] total_rss 12288
[   88.054406][ T5688] total_shmem 0
[   88.058023][ T5688] total_mapped_file 4096
[   88.062775][ T5688] total_dirty 0
[   88.066311][ T5688] total_writeback 0
[   88.070434][ T5688] total_workingset_refault_anon 0
[   88.076409][ T5688] total_workingset_refault_file 129
[   88.081835][ T5688] total_swap 352256
[   88.085888][ T5688] total_swapcached 16384
[   88.090428][ T5688] total_pgpgin 55065
[   88.094616][ T5688] total_pgpgout 55057
[   88.098937][ T5688] total_pgfault 66259
[   88.103167][ T5688] total_pgmajfault 5
[   88.107893][ T5688] total_inactive_anon 0
[   88.112633][ T5688] total_active_anon 28672
[   88.117172][ T5688] total_inactive_file 0
[   88.121436][ T5688] total_active_file 0
[   88.126228][ T5688] total_unevictable 0
[   88.130989][ T5688] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.758,pid=5687,uid=0
[   88.145883][ T5688] Memory cgroup out of memory: Killed process 5687 (syz.4.758) total-vm:96004kB, anon-rss:1136kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   88.227649][ T5708] v speed is unknown, defaulting to 1000
[   88.272553][ T5715] loop2: detected capacity change from 0 to 2048
[   88.375756][ T5715]  loop2: p1 < > p4
[   88.385585][ T5715] loop2: p4 size 8388608 extends beyond EOD, truncated
[   88.767075][ T5741] netlink: 'syz.3.780': attribute type 4 has an invalid length.
[   88.775030][ T5741] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.780'.
[   89.023743][ T5750] loop3: detected capacity change from 0 to 128
[   89.048191][ T5750] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   89.070721][ T5750] ext4 filesystem being mounted at /159/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   89.126042][ T5750] EXT4-fs error (device loop3): dx_make_map:1296: inode #2: block 63: comm syz.3.783: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[   89.154863][ T5750] EXT4-fs error (device loop3) in do_split:2029: Corrupt filesystem
[   89.174957][ T5750] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 63: comm syz.3.783: bad entry in directory: inode out of bounds - offset=2012, inode=128, rec_len=36, size=1024 fake=1
[   89.220712][ T3314] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   89.295182][ T5757] loop2: detected capacity change from 0 to 1024
[   89.302247][ T5757] EXT4-fs: Ignoring removed orlov option
[   89.308045][ T5757] EXT4-fs: Ignoring removed mblk_io_submit option
[   89.315890][ T5757] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   89.345220][ T5757] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.364245][ T5756] loop3: detected capacity change from 0 to 512
[   89.381566][ T5756] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.396817][ T5756] ext4 filesystem being mounted at /160/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.448882][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.533662][ T5777] ip6tnl1: entered promiscuous mode
[   89.539308][ T5777] ip6tnl1: entered allmulticast mode
[   89.557541][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.623263][ T5787] .�: renamed from bond_slave_1
[   89.712417][ T5801] netlink: 'syz.3.800': attribute type 1 has an invalid length.
[   89.744796][ T5801] 8021q: adding VLAN 0 to HW filter on device bond1
[   89.766438][ T5802] bridge: RTM_NEWNEIGH with invalid ether address
[   89.787352][ T5804] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.813969][ T5804] bond1: (slave batadv0): making interface the new active one
[   89.836324][ T5804] bond1: (slave batadv0): Enslaving as an active interface with an up link
[   89.849403][ T5801] netlink: 12 bytes leftover after parsing attributes in process `syz.3.800'.
[   89.860411][ T5801] bond1 (unregistering): (slave batadv0): Releasing active interface
[   89.869675][ T5801] bond1 (unregistering): Released all slaves
[   90.183406][ T5816] v speed is unknown, defaulting to 1000
[   90.336852][ T5831] loop2: detected capacity change from 0 to 256
[   90.364604][ T5831] msdos: Bad value for 'time_offset'
[   90.729499][ T5845] netlink: 12 bytes leftover after parsing attributes in process `syz.4.816'.
[   90.760091][ T5847] netlink: 12 bytes leftover after parsing attributes in process `syz.4.817'.
[   90.774849][ T5847] 8021q: adding VLAN 0 to HW filter on device bond1
[   90.786671][ T5847] vlan2: entered allmulticast mode
[   90.791958][ T5847] bond1: entered allmulticast mode
[   90.856868][ T5850] syzkaller0: entered promiscuous mode
[   90.862513][ T5850] syzkaller0: entered allmulticast mode
[   91.007217][ T5852] Q�6��\b��Y�4��: renamed from lo
[   91.485077][ T5869] bridge: RTM_NEWNEIGH with invalid ether address
[   91.611257][ T5877] xt_connbytes: Forcing CT accounting to be enabled
[   91.627151][ T5877] set match dimension is over the limit!
[   92.478414][ T5895] netlink: 8 bytes leftover after parsing attributes in process `syz.1.833'.
[   92.815420][ T5906] loop2: detected capacity change from 0 to 512
[   92.823768][ T5906] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   92.858813][ T5906] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   92.874413][ T5906] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.836: bg 0: block 248: padding at end of block bitmap is not set
[   92.890640][ T5906] __quota_error: 253 callbacks suppressed
[   92.890656][ T5906] Quota error (device loop2): write_blk: dquota write failed
[   92.904256][ T5906] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   92.916416][ T5906] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.836: Failed to acquire dquot type 1
[   92.930545][ T5906] EXT4-fs (loop2): 1 truncate cleaned up
[   92.936697][ T5906] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[   93.354165][   T29] audit: type=1400 audit(2000000011.350:3750): avc:  denied  { getopt } for  pid=5930 comm="syz.4.845" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   93.483696][ T5940] netlink: 20 bytes leftover after parsing attributes in process `syz.1.849'.
[   93.515446][ T5942] loop4: detected capacity change from 0 to 1024
[   93.567125][ T5942] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.601504][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[   93.615314][ T5942] ext4 filesystem being mounted at /169/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.719208][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.752190][ T5958] loop4: detected capacity change from 0 to 256
[   93.769156][ T5958] msdos: Bad value for 'time_offset'
[   93.784592][   T29] audit: type=1326 audit(2000000011.780:3751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5959 comm="syz.2.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   93.810490][   T29] audit: type=1326 audit(2000000011.810:3752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5959 comm="syz.2.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   93.834145][   T29] audit: type=1326 audit(2000000011.810:3753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5959 comm="syz.2.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   93.857812][   T29] audit: type=1326 audit(2000000011.810:3754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5959 comm="syz.2.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   93.897676][   T29] audit: type=1326 audit(2000000011.810:3755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5959 comm="syz.2.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   93.921695][   T29] audit: type=1326 audit(2000000011.810:3756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5959 comm="syz.2.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   93.945255][   T29] audit: type=1326 audit(2000000011.810:3757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5959 comm="syz.2.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[   94.052299][ T5976] netlink: 'syz.3.861': attribute type 1 has an invalid length.
[   94.073005][ T5976] 8021q: adding VLAN 0 to HW filter on device bond1
[   94.075278][ T5979] loop2: detected capacity change from 0 to 1024
[   94.087166][ T5979] EXT4-fs (loop2): filesystem is read-only
[   94.094014][ T5979] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   94.102167][ T5976] netlink: 4 bytes leftover after parsing attributes in process `syz.3.861'.
[   94.105424][ T5979] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   94.124848][ T5979] EXT4-fs error (device loop2): ext4_get_journal_inode:5808: comm syz.2.862: inode #1: comm syz.2.862: iget: illegal inode #
[   94.127414][ T5976] bond1 (unregistering): Released all slaves
[   94.142039][ T5979] EXT4-fs (loop2): no journal found
[   94.149867][ T5979] EXT4-fs (loop2): can't get journal size
[   94.157118][ T5979] EXT4-fs (loop2): failed to initialize system zone (-22)
[   94.165193][ T5979] EXT4-fs (loop2): mount failed
[   94.223146][ T5982] loop2: detected capacity change from 0 to 4096
[   94.232424][ T5982] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   94.246920][ T5982] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.437656][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.460400][ T5994] loop3: detected capacity change from 0 to 512
[   94.483099][ T5994] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.514090][ T5994] ext4 filesystem being mounted at /185/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.582485][ T6007] tipc: New replicast peer: 255.255.255.83
[   94.588691][ T6007] tipc: Enabled bearer <udp:�>, priority 10
[   94.645618][ T6011] v speed is unknown, defaulting to 1000
[   94.804778][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.884820][ T6021] netlink: 12 bytes leftover after parsing attributes in process `syz.3.877'.
[   94.935822][ T6024] netlink: 4 bytes leftover after parsing attributes in process `syz.3.877'.
[   95.043985][ T6030] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: 1
[   95.053208][ T6030] ref_ctr increment failed for inode: 0x3e7 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888103679700
[   95.099452][ T6030] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: -1
[   95.108372][ T6030] ref_ctr decrement failed for inode: 0x3e7 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888103679700
[   95.135197][ T6030] uprobe: syz.3.880:6030 failed to unregister, leaking uprobe
[   95.249010][ T6043] ������: renamed from vlan0
[   95.369866][ T6050] loop3: detected capacity change from 0 to 512
[   95.391097][ T6050] EXT4-fs: Ignoring removed i_version option
[   95.397578][ T6050] EXT4-fs: Ignoring removed bh option
[   95.433862][ T6052] v speed is unknown, defaulting to 1000
[   95.448884][ T6050] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.465463][ T6050] ext4 filesystem being mounted at /189/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   95.661986][ T6050] EXT4-fs error (device loop3): ext4_lookup:1787: inode #12: comm syz.3.886: iget: bad i_size value: 2533274857506816
[   95.687460][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.191636][ T6073] loop3: detected capacity change from 0 to 512
[   96.212999][ T6073] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.894: inode has both inline data and extents flags
[   96.249367][ T6073] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.894: couldn't read orphan inode 15 (err -117)
[   96.287424][ T6073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.380980][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.737894][ T6101] loop3: detected capacity change from 0 to 512
[   96.853421][ T6101] loop3: detected capacity change from 0 to 512
[   96.881878][ T6101] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.895405][ T6101] ext4 filesystem being mounted at /196/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.031461][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.059531][ T6132] v speed is unknown, defaulting to 1000
[   98.096143][   T29] kauditd_printk_skb: 17 callbacks suppressed
[   98.096160][   T29] audit: type=1326 audit(2000000016.100:3775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.132019][ T6134] netlink: 28 bytes leftover after parsing attributes in process `{/}\��"����X�e�'.
[   98.142129][ T6134] netlink: 28 bytes leftover after parsing attributes in process `{/}\��"����X�e�'.
[   98.164858][ T6139] netlink: 4 bytes leftover after parsing attributes in process `syz.3.917'.
[   98.179646][   T29] audit: type=1326 audit(2000000016.140:3776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.204999][   T29] audit: type=1326 audit(2000000016.140:3777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.229405][   T29] audit: type=1326 audit(2000000016.140:3778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.254210][   T29] audit: type=1326 audit(2000000016.140:3779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.278300][   T29] audit: type=1326 audit(2000000016.140:3780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.302403][   T29] audit: type=1326 audit(2000000016.140:3781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.326644][   T29] audit: type=1326 audit(2000000016.140:3782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.351746][   T29] audit: type=1326 audit(2000000016.140:3783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.375718][   T29] audit: type=1326 audit(2000000016.140:3784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6135 comm="syz.4.918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd061e4efc9 code=0x7ffc0000
[   98.403774][ T6142] netlink: 28 bytes leftover after parsing attributes in process `syz.2.916'.
[   98.414038][ T6142] netlink: 28 bytes leftover after parsing attributes in process `syz.2.916'.
[   98.443514][ T6130] v speed is unknown, defaulting to 1000
[   98.535391][ T6148] syzkaller0: entered promiscuous mode
[   98.541109][ T6148] syzkaller0: entered allmulticast mode
[   98.626340][ T6157] xfrm0: entered promiscuous mode
[   98.631740][ T6157] xfrm0: entered allmulticast mode
[   98.746513][ T6174] netlink: 202920 bytes leftover after parsing attributes in process `syz.3.931'.
[   98.852791][ T6174] loop3: detected capacity change from 0 to 8192
[   98.853302][ T6183] loop4: detected capacity change from 0 to 128
[   98.886607][ T6182] loop2: detected capacity change from 0 to 128
[   98.912669][ T6183] bio_check_eod: 36 callbacks suppressed
[   98.912686][ T6183] syz.4.934: attempt to access beyond end of device
[   98.912686][ T6183] loop4: rw=2049, sector=145, nr_sectors = 8 limit=128
[   98.954561][ T6186] rdma_op ffff8881665ac580 conn xmit_rdma 0000000000000000
[   98.995889][ T6190] v speed is unknown, defaulting to 1000
[   99.024803][ T6183] syz.4.934: attempt to access beyond end of device
[   99.024803][ T6183] loop4: rw=2049, sector=161, nr_sectors = 8 limit=128
[   99.039474][ T6183] syz.4.934: attempt to access beyond end of device
[   99.039474][ T6183] loop4: rw=2049, sector=177, nr_sectors = 8 limit=128
[   99.063493][ T6188] syz.4.934: attempt to access beyond end of device
[   99.063493][ T6188] loop4: rw=2049, sector=209, nr_sectors = 8 limit=128
[   99.099038][ T6183] syz.4.934: attempt to access beyond end of device
[   99.099038][ T6183] loop4: rw=2049, sector=193, nr_sectors = 8 limit=128
[   99.107143][ T6199] netlink: 'syz.3.940': attribute type 1 has an invalid length.
[   99.115674][ T6188] syz.4.934: attempt to access beyond end of device
[   99.115674][ T6188] loop4: rw=2049, sector=225, nr_sectors = 8 limit=128
[   99.131769][ T6199] 8021q: adding VLAN 0 to HW filter on device bond1
[   99.156654][ T6199] macvlan0: entered promiscuous mode
[   99.162621][ T6199] macvlan0: entered allmulticast mode
[   99.169797][ T6188] syz.4.934: attempt to access beyond end of device
[   99.169797][ T6188] loop4: rw=2049, sector=257, nr_sectors = 8 limit=128
[   99.175361][ T6199] bond1: (slave macvlan0): Opening slave failed
[   99.183549][ T6188] syz.4.934: attempt to access beyond end of device
[   99.183549][ T6188] loop4: rw=2049, sector=273, nr_sectors = 8 limit=128
[   99.204593][ T6188] syz.4.934: attempt to access beyond end of device
[   99.204593][ T6188] loop4: rw=2049, sector=289, nr_sectors = 8 limit=128
[   99.218616][ T6188] syz.4.934: attempt to access beyond end of device
[   99.218616][ T6188] loop4: rw=2049, sector=305, nr_sectors = 8 limit=128
[   99.243931][ T6196] v speed is unknown, defaulting to 1000
[   99.327839][ T6206] netlink: 'syz.3.942': attribute type 30 has an invalid length.
[   99.370778][ T6208] netlink: 4 bytes leftover after parsing attributes in process `syz.4.943'.
[   99.490800][ T6214] loop3: detected capacity change from 0 to 8192
[   99.542800][ T3314] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[   99.551998][ T3314] FAT-fs (loop3): Filesystem has been set read-only
[   99.560972][ T3314] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[   99.704025][ T6231] IPv6: NLM_F_CREATE should be specified when creating new route
[   99.940032][ T6242] v speed is unknown, defaulting to 1000
[  100.059365][ T6257] netlink: 'syz.0.959': attribute type 10 has an invalid length.
[  100.078822][ T6257] team0: Port device dummy0 added
[  100.085689][ T6257] netlink: 'syz.0.959': attribute type 10 has an invalid length.
[  100.110493][ T6257] team0: Port device dummy0 removed
[  100.118454][ T6257] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  100.228034][ T6242] chnl_net:caif_netlink_parms(): no params data found
[  100.385409][ T6242] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.392524][ T6242] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.411759][ T6242] bridge_slave_0: entered allmulticast mode
[  100.418628][ T6242] bridge_slave_0: entered promiscuous mode
[  100.431790][ T6242] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.439065][ T6242] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.440003][ T6274] netlink: 3 bytes leftover after parsing attributes in process `syz.1.963'.
[  100.446506][ T6242] bridge_slave_1: entered allmulticast mode
[  100.462177][ T6242] bridge_slave_1: entered promiscuous mode
[  100.483534][ T6276] netlink: 'syz.4.965': attribute type 83 has an invalid length.
[  100.511049][ T6274] 0�X���: renamed from caif0
[  100.547266][ T6274] 0�X���: entered allmulticast mode
[  100.552990][ T6274] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  100.569618][ T4505] bridge_slave_1: left allmulticast mode
[  100.575801][ T4505] bridge_slave_1: left promiscuous mode
[  100.581644][ T4505] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.590491][ T4505] bridge_slave_0: left allmulticast mode
[  100.596642][ T4505] bridge_slave_0: left promiscuous mode
[  100.602893][ T4505] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.645155][ T6289] netlink: 40 bytes leftover after parsing attributes in process `syz.2.968'.
[  100.768598][ T4505] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  100.778423][ T4505] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.788461][ T4505] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  100.797482][ T4505] bond0 (unregistering): Released all slaves
[  100.806826][ T4505] bond1 (unregistering): Released all slaves
[  100.825974][ T6242] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.835976][ T6285] bond0: (slave bond_slave_1): Releasing backup interface
[  100.844854][ T6287] tipc: Started in network mode
[  100.850265][ T6287] tipc: Node identity 4, cluster identity 4711
[  100.857802][ T6287] tipc: Node number set to 4
[  100.868178][ T4505] tipc: Left network mode
[  100.886206][ T6242] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.931954][ T6242] team0: Port device team_slave_0 added
[  100.947151][ T6242] team0: Port device team_slave_1 added
[  100.958594][ T6304] netlink: 4 bytes leftover after parsing attributes in process `syz.4.974'.
[  100.998119][ T6242] batman_adv: batadv0: Adding interface: batadv_slave_0
[  101.005187][ T6242] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  101.031387][ T6242] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  101.046377][ T6242] batman_adv: batadv0: Adding interface: batadv_slave_1
[  101.053552][ T6242] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  101.079577][ T6242] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  101.131474][ T6304] netlink: 4 bytes leftover after parsing attributes in process `syz.4.974'.
[  101.169453][ T4505] hsr_slave_0: left promiscuous mode
[  101.189204][ T4505] hsr_slave_1: left promiscuous mode
[  101.220485][ T4505] team0 (unregistering): Port device team_slave_1 removed
[  101.235064][ T4505] team0 (unregistering): Port device team_slave_0 removed
[  101.324882][ T6242] hsr_slave_0: entered promiscuous mode
[  101.345651][ T6242] hsr_slave_1: entered promiscuous mode
[  101.351954][ T6242] debugfs: 'hsr0' already exists in 'hsr'
[  101.357910][ T6242] Cannot create hsr debugfs directory
[  101.463411][ T6242] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  101.473905][ T6242] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  101.483516][ T6242] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  101.492950][ T6242] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  101.538234][ T6242] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.553676][ T6242] 8021q: adding VLAN 0 to HW filter on device team0
[  101.568739][  T784] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.576670][  T784] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.588589][  T784] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.595883][  T784] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.683846][ T6242] 8021q: adding VLAN 0 to HW filter on device batadv0
[  101.862770][ T6242] veth0_vlan: entered promiscuous mode
[  101.876073][ T6242] veth1_vlan: entered promiscuous mode
[  101.894898][ T6242] veth0_macvtap: entered promiscuous mode
[  101.903726][ T6242] veth1_macvtap: entered promiscuous mode
[  101.922301][ T6242] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.935957][ T6242] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.949529][ T4505] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.963543][ T4505] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.975075][ T4505] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.992462][ T4505] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.088126][ T6370] netlink: 24 bytes leftover after parsing attributes in process `syz.2.991'.
[  102.184932][ T6379] loop4: detected capacity change from 0 to 512
[  102.211338][ T6379] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.226084][ T6379] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.303817][ T6377] loop2: detected capacity change from 0 to 32768
[  102.320906][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.427132][ T6377]  loop2: p1 p2 p3 < > p4 < p5 p6 >
[  102.433380][ T6377] loop2: p1 start 460800 is beyond EOD, truncated
[  102.440538][ T6377] loop2: p2 size 83886080 extends beyond EOD, truncated
[  102.450445][ T6377] loop2: p5 start 460800 is beyond EOD, truncated
[  102.457358][ T6377] loop2: p6 size 83886080 extends beyond EOD, truncated
[  102.527277][ T6409] geneve0: entered allmulticast mode
[  103.111266][   T29] kauditd_printk_skb: 584 callbacks suppressed
[  103.111282][   T29] audit: type=1400 audit(2000000021.110:4369): avc:  denied  { create } for  pid=6420 comm="syz.2.1009" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1
[  103.184587][ T6423] v speed is unknown, defaulting to 1000
[  103.369093][   T29] audit: type=1326 audit(2000000021.360:4370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6428 comm="syz.4.1011" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd061e4efc9 code=0x0
[  103.751774][ T6424] Set syz1 is full, maxelem 65536 reached
[  103.905780][   T29] audit: type=1326 audit(2000000021.910:4371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6445 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[  103.985679][   T29] audit: type=1326 audit(2000000021.910:4372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6445 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[  104.009286][   T29] audit: type=1326 audit(2000000021.910:4373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6445 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[  104.032999][   T29] audit: type=1326 audit(2000000021.910:4374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6445 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[  104.056796][   T29] audit: type=1326 audit(2000000021.910:4375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6445 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[  104.080871][   T29] audit: type=1326 audit(2000000021.910:4376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6445 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[  104.104669][   T29] audit: type=1326 audit(2000000021.930:4377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6445 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[  104.128826][   T29] audit: type=1326 audit(2000000021.930:4378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6445 comm="syz.1.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f481674efc9 code=0x7ffc0000
[  104.269996][ T6460] v speed is unknown, defaulting to 1000
[  104.296893][ T6454] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1022'.
[  104.306098][ T6454] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1022'.
[  104.352377][ T6463] v speed is unknown, defaulting to 1000
[  104.674250][ T6465] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1026'.
[  104.683523][ T6465] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1026'.
[  104.725026][ T6480] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1031'.
[  104.868925][ T6486] loop5: detected capacity change from 0 to 2048
[  105.778771][ T6569] netlink: 'syz.0.1046': attribute type 4 has an invalid length.
[  105.912018][ T6580] v speed is unknown, defaulting to 1000
[  106.073308][ T6602] __nla_validate_parse: 1 callbacks suppressed
[  106.073400][ T6602] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1053'.
[  106.115928][ T6613] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1064'.
[  106.164654][ T6613] 8021q: adding VLAN 0 to HW filter on device bond2
[  106.195798][ T6613] vlan2: entered allmulticast mode
[  106.200995][ T6613] bond2: entered allmulticast mode
[  106.318854][ T6633] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1069'.
[  106.339580][ T6639] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1060'.
[  106.349346][ T6639] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1060'.
[  106.358463][ T6639] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1060'.
[  106.372966][ T6639] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  106.731529][ T6695] loop4: detected capacity change from 0 to 1024
[  106.747571][ T6695] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.828824][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.952691][ T6718] loop4: detected capacity change from 0 to 1024
[  106.960313][ T6718] EXT4-fs (loop4): filesystem too large to mount safely on this system
[  106.980261][ T6718] Process accounting resumed
[  107.468971][ T6742] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1083'.
[  107.556511][ T6742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1083'.
[  107.720356][ T6755] netlink: 'syz.2.1086': attribute type 4 has an invalid length.
[  107.786999][ T6756] netlink: 'syz.2.1086': attribute type 4 has an invalid length.
[  108.116813][   T29] kauditd_printk_skb: 275 callbacks suppressed
[  108.116832][   T29] audit: type=1326 audit(2000000026.120:4654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[  108.149254][   T29] audit: type=1326 audit(2000000026.120:4655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f89625a5e67 code=0x7ffc0000
[  108.173069][   T29] audit: type=1326 audit(2000000026.120:4656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f896254b099 code=0x7ffc0000
[  108.197163][   T29] audit: type=1326 audit(2000000026.120:4657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f89625a5e67 code=0x7ffc0000
[  108.222751][   T29] audit: type=1326 audit(2000000026.120:4658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f896254b099 code=0x7ffc0000
[  108.247445][   T29] audit: type=1326 audit(2000000026.120:4659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[  108.275730][   T29] audit: type=1326 audit(2000000026.280:4660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[  108.299670][   T29] audit: type=1326 audit(2000000026.280:4661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[  108.323411][   T29] audit: type=1326 audit(2000000026.280:4662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[  108.348350][   T29] audit: type=1326 audit(2000000026.280:4663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f89625aefc9 code=0x7ffc0000
[  108.521743][ T6782] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1095'.
[  108.888558][ T6777] v speed is unknown, defaulting to 1000
[  109.558131][ T6793] v speed is unknown, defaulting to 1000
[  109.729635][ T6801] ==================================================================
[  109.738049][ T6801] BUG: KCSAN: data-race in shmem_file_splice_read / shmem_file_splice_read
[  109.746978][ T6801] 
[  109.749323][ T6801] write to 0xffff888104b1ca68 of 8 bytes by task 6802 on cpu 0:
[  109.757017][ T6801]  shmem_file_splice_read+0x470/0x600
[  109.763043][ T6801]  splice_direct_to_actor+0x26f/0x680
[  109.768549][ T6801]  do_splice_direct+0xda/0x150
[  109.773517][ T6801]  do_sendfile+0x380/0x650
[  109.778240][ T6801]  __x64_sys_sendfile64+0x105/0x150
[  109.783476][ T6801]  x64_sys_call+0x2bb4/0x3000
[  109.788198][ T6801]  do_syscall_64+0xd2/0x200
[  109.793177][ T6801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.799197][ T6801] 
[  109.801543][ T6801] write to 0xffff888104b1ca68 of 8 bytes by task 6801 on cpu 1:
[  109.809311][ T6801]  shmem_file_splice_read+0x470/0x600
[  109.814713][ T6801]  splice_direct_to_actor+0x26f/0x680
[  109.820104][ T6801]  do_splice_direct+0xda/0x150
[  109.825162][ T6801]  do_sendfile+0x380/0x650
[  109.829878][ T6801]  __x64_sys_sendfile64+0x105/0x150
[  109.835342][ T6801]  x64_sys_call+0x2bb4/0x3000
[  109.840242][ T6801]  do_syscall_64+0xd2/0x200
[  109.844816][ T6801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.850743][ T6801] 
[  109.853085][ T6801] value changed: 0x000000000000b95e -> 0x000000000000b995
[  109.860372][ T6801] 
[  109.862745][ T6801] Reported by Kernel Concurrency Sanitizer on:
[  109.869008][ T6801] CPU: 1 UID: 0 PID: 6801 Comm: syz.0.1102 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  109.878795][ T6801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  109.889158][ T6801] ==================================================================