last executing test programs:

3.886566628s ago: executing program 0 (id=1017):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
syz_clone(0xa49a4400, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)

3.761092915s ago: executing program 0 (id=1018):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = gettid()
timer_create(0xb, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r2, &(0x7f0000006600)=[{{0x0, 0x0, 0x0}, 0x8}], 0x1, 0x2, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

3.584398755s ago: executing program 0 (id=1020):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
ftruncate(r0, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
mlock2(&(0x7f00003ba000/0x4000)=nil, 0x4000, 0x0)
mbind(&(0x7f00005f7000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f0000898000/0x4000)=nil, 0x4000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000240)=ANY=[@ANYRESDEC=r0, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @cgroup_sockopt, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000200000000000000001809"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000340), r0)
sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x2c, r1, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4004810)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x3)
shutdown(r2, 0x2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r4}, 0x10)
process_mrelease(0xffffffffffffffff, 0x700000000000000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0))
r5 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x301)
ioctl$USBDEVFS_REAPURB(r5, 0x4004550c, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x4d, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a300000000068000000090a010400000000000000000100000008000a4000000000200011800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30000000000900020073797a3200000000080005400000001f0c000980080001400037"], 0xb0}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r10], 0x44}}, 0x0)
ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000480)=r10)

3.486547451s ago: executing program 2 (id=1022):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00), &(0x7f0000001c40)=r3}, 0x20)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x88, 0x1403, 0x1, 0x0, 0x25dfdbfb, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth1_macvtap\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'gre0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'vlan0\x00'}}]}, 0x88}, 0x1, 0x0, 0x0, 0x4040024}, 0x8000)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x4, 0x12011, 0xffffffffffffffff, 0x0)

2.715079297s ago: executing program 0 (id=1026):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="60000000020601046c0001000000000000000000050005000a000000050001000600000005000400000000000900020073797a300000000014000300686173683a69702c706f72742c6970001400078008"], 0x60}}, 0x0)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000019200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWSETELEM={0x14, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x70}}, 0x0)

2.694438469s ago: executing program 0 (id=1027):
socket$nl_generic(0x10, 0x3, 0x10)
timer_create(0x0, 0x0, &(0x7f0000000180))
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f0000000500)={'sit0\x00', &(0x7f0000000200)={@multicast1, 0x1}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000180)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f00000000c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x558, &(0x7f0000000680)="$eJzs3c9vI1cdAPDvTH52d9vsQg9QAbtAYUGrtTfedlX10nIBoaoSouKAOGxD4o3C2nGIndKESKR/A0ggcYI/gQMSB6SeOHDjiMQBEOWAVCACbZA4GM14kriJw5rEsdn485Fm58ebme979s6852dnXgBj60ZE7ETEdES8GRFzxfakmOLVzpTt92h3e3Fvd3sxiXb7jb8leXq2LbqOyVwuzjkbEV/9UsQ3k+Nxm5tbDxdqtep6sV5u1dfKzc2t2yv1heXqcnW1Urk3f+/OS3dfrAysrNfrP3v/iyuvfe2Xv/j4e7/Z+fx3s2xdKdK6yzFInaJPHcTJTEbEa+cRbAQmivn0iPPB6aQR8aGI+FR+/c/FRP6/EwC4yNrtuWjPda8DABddmveBJWkpItK0aASUOn14z8altNZotm49aGysLnX6yq7GVPpgpVa9c23md9/Od55KsvX5PC1Pz9crR9bvRsS1iPjBzFP5emmxUVsaTZMHAMbe5e76PyL+OZOmpVJfh/b4Vg8AeGLMjjoDAMDQqf8BYPyo/wFg/PRR/xdf9u+ce14AgOHw+R8Axo/6HwDGj/ofAMbKV15/PZvae8Xzr5fe2tx42Hjr9lK1+bBU31gsLTbW10rLjcZy/sye+uPOV2s01uZfiI23y61qs1Vubm7drzc2Vlv38+d6369ODaVUAMB/c+36u79NImLn5afyKbrGclBXw8WWDnAv4MkycZaDNRDgiWa0LxhffVXheSPh1+eeF2A0ej7Me7bn4gf96H8I4ndG8H/l5kf77/83xjNcLHr2YXydrv//lYHnAxi+U/f//2Gw+QCGr91Ojo75P32QBABcSGf4CV/7e4NqhAAj9bjBvAfy/T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcMFci4luRpKV8LPA0+zctlSKejoirMZU8WKlV70TEM3E9IqZmsvX5UWcaADij9C9JMf7XzbnnrxxNnU7+NZPPI+I7P37jh28vtFrr89n2vx9sn9kfPqxyeNwZxhUEAPr3p352yuvvSjHv+iD/aHd7cX86xzwe8/4XDgYfXdzb3c6nTspktNvtdsRs3pa49I8kJotjZiPiuYiYGED8nXci4iO9yp/kfSNXi5FPu+NHEfvpocZPPxA/zdM68+zl+/AA8gLj5t3s/vNqr+svjRv5vPf1P5vfoc4uv//NRuzf+/a64k8WkSZ6xM+u+Rv9xnjhV18+trE910l7J+K5yV7xk4P4yQnxn+8z/u8/9onvv3JCWvsnETejd/zuWOVWfa3c3Ny6vVJfWK4uV1crlXvz9+68dPfFSjnvoy7v91Qf99eXbz1zUt6y8l86IX7nnb98pPzTB8d+ps/y//Tfb37jk4erM0fjf+7Tvd//Z/N579c/qxM/22f8hUs/P3H47iz+0gnlf9z7f6vP+O/9eWupz10BgCFobm49XKjVqutnWsg+hQ7iPMcWsiz2t/N+c/FsQf8Y+cLhy5JEEoMuV9YY62fnqfN6Vc99YfKgrTjYM389O+OQi5MOvBSnWYirxcKjYQUd3T0JGI7Di37UOQEAAAAAAAAAAAAAAE4yjL9hGnUZAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuLj+EwAA//8GP8IF")
quotactl$Q_GETQUOTA(0xffffffff80000700, &(0x7f0000000f80)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="40000000100001040000003ffbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="000000000b52e44ac1fbf1e200000000180012800e0001007769726567756172640000000400028008000300", @ANYBLOB], 0x40}, 0x1, 0xd}, 0x0)
pipe2(&(0x7f0000000000), 0x48000)
timer_create(0x0, &(0x7f0000000340)={0x0, 0x9, 0x2, @thr={&(0x7f0000000240)="197cc978946e6345846f3ebb9561b7f01e59bffdffbc1490301f9629e33d84049204e66b160dd2318ede1423b3e660d1c2a447d535ee2a5664fa5ad1e0e22acab135637edba11a04e5522d44c680c57ae995148e5b10de2e8aaf", &(0x7f00000002c0)="9524aee87d1593d30729d136f313bbe28946bc7bc6016fa04dc4a097944fa34a684059f7b24903cc5520733eb776c1f520010d2defcc9c3bdcb12e0f314b317d58730049790b5335e07f1d747b3cce94e1c8f194edc77cb250450acbaa2156f48c2982bdb683084c55b444ea33f32d87e21f46fa3a13e05ad456ddc548"}}, &(0x7f0000000400))
syz_emit_ethernet(0x8a, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaac4bc9cac008686dd600000000054060000000000000000000000ffff07000000fe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50e2000090780000080a0000000000000000030a0000000000000000fe08f989e8e82b840502000b317275"], 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x40d, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5059}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x200500bc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r4}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
r7 = syz_open_dev$evdev(&(0x7f0000000140), 0x0, 0x0)
ioctl$EVIOCGRAB(r7, 0x40044590, &(0x7f0000000180))
ioctl$EVIOCGRAB(r7, 0x40044590, 0x0)

2.553831787s ago: executing program 2 (id=1030):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
write$tun(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="595194e6b94a1f000000000088a800008100000086dd"], 0x52)

2.50393797s ago: executing program 0 (id=1031):
unshare(0x62040200)
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x2205, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000600)={{{@in6=@private0, @in6=@remote}}, {{@in6=@ipv4={""/10, ""/2, @multicast1}}, 0x0, @in=@broadcast}}, &(0x7f00000001c0)=0xe8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000002340)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000700)=ANY=[@ANYRES32=r1, @ANYRES32=r1, @ANYBLOB="2f0000000820000004000000", @ANYRES32, @ANYBLOB="990a70118781db5e4e94aafab4817994062041357ad5416fa8775b3f9643bd27970f578118002bfddc0e7f845fbb3b4035eeaeed8de19108f06548f576a97df8bc2feb0665f6b6d08a4a88a40b8db0b2105d5831395eae8637803907294a90080863420bca8057d20f741e54863c9f4dde5dca76d3f71fd240fc2b0e07706463b6d842eaefface16a4d629620666bbbad00daefdb7f4c51eb6dc5d22503bbba5a559ad086b4e6c46152b0a583f30dcb5031b9071cfbd82ff0c720a364e39abe4fdc4c953551ac9e95ef9089d1482f645d66cf26477ad509acdbe9e87", @ANYRES64=0x0], 0x20)
unshare(0x8000000)
r2 = semget$private(0x0, 0x4000, 0x0)
semctl$GETALL(0x0, 0x0, 0xd, &(0x7f0000000400)=""/86)
semctl$GETALL(r2, 0x0, 0xd, &(0x7f0000000a80)=""/4096)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x4)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1000004)
readv(r4, &(0x7f0000000340)=[{&(0x7f0000001740)=""/153, 0x99}], 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
mkdir(&(0x7f0000000200)='./bus/file0\x00', 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0701000000000000000000000000081811", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f00000005c0), 0x1, 0x54e, &(0x7f00000010c0)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
socket$key(0xf, 0x3, 0x2)

2.481541772s ago: executing program 2 (id=1032):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fd}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {0x7}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x4000000}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x58}}, 0x0)

1.315261431s ago: executing program 2 (id=1043):
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x69c780})
io_uring_enter(r0, 0x3516, 0x4, 0x0, 0x0, 0x0)

1.256304054s ago: executing program 3 (id=1045):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=@newlink={0x20, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc080}}, 0x20}, 0x1, 0xba01}, 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x100, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000180)="024dfc7b58623401", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x1, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x7], &(0x7f0000000500)=[0x2], 0x0, 0x1f}}, 0x3c)

1.255750094s ago: executing program 2 (id=1046):
socket$igmp(0x2, 0x3, 0x2)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @empty}, 0xffffffffffffff3c)
setsockopt$MRT6_DEL_MFC(0xffffffffffffffff, 0x29, 0xcd, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r2, 0x890b, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
dup(r2)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
add_key$fscrypt_v1(&(0x7f0000000400), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
timer_settime(0x0, 0x5, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r6 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MIF(r6, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x1}, 0xc)

1.132966432s ago: executing program 3 (id=1047):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
syz_clone(0xa49a4400, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)

1.060733006s ago: executing program 3 (id=1049):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='workqueue_queue_work\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x5, &(0x7f00000003c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x45, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
open(0x0, 0x143c62, 0x0)
mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4002, &(0x7f0000000040)=0xa632, 0x5, 0x0)
set_mempolicy_home_node(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0)

1.030568048s ago: executing program 3 (id=1051):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x0, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

942.509343ms ago: executing program 3 (id=1054):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000900)={0x1c, 0x3, 0x6, 0x301, 0x0, 0x0, {0x3, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x854)

941.505984ms ago: executing program 3 (id=1056):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_setup(0x7bc3, 0x0, &(0x7f0000000100), 0x0)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)
socket$rds(0x15, 0x5, 0x0)
syz_open_procfs(0x0, 0x0)
r0 = syz_open_dev$vcsa(0x0, 0x1, 0x102)
r1 = syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file1\x00', 0x80c406, &(0x7f0000000540)=ANY=[@ANYBLOB='dots,dots,dmask=000000000200000,nodots,discard,nfs=nostale_ro,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c646f733178666c6f70707900000000000000003030ffffffff303030303031373737373737373756c0f39fdb37372c004c0f1208ec0c34b7df4ba1c1e6b76697434db8574db9bcaef6a61a12c3f260bebc7ac5b1b11361119b83f1cf9f686b715b8e58fd37cea6623dc422c2ddbcefe94e5c255b5e8c90613e6b598b3b7a2c05de53dab7"], 0x1, 0x291, &(0x7f0000000280)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4243c, &(0x7f0000000700)=ANY=[@ANYRES16, @ANYRESHEX, @ANYRESOCT=r1, @ANYRESOCT=r1, @ANYRESHEX=r1, @ANYBLOB="defdd6f24cb9acb7fe0b0dc92a093135912ebef426731ffe88138f2b03791edb32e2ba3924188f2c07da77a1d75290af3db49e3aeedbaabdfc897ff5feb67e05cb1f923278506034c99285994c8d2a07e7732f9e4666bedc57efbc75eda531e10945eab9810dce4df5cb4468fee9df15bad908ce6d2cf900c4541ebe94681428ac2202f0132ddfd00bb4d24ace8c513914431814c2", @ANYRESOCT=r1, @ANYRES32=r1, @ANYRES8, @ANYRES8=r1], 0x0, 0x0, &(0x7f0000000000))
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x40, r2, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x40}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000640)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
socket$tipc(0x1e, 0x5, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r6 = syz_io_uring_setup(0x364d, &(0x7f0000000180)={0x0, 0xd25d, 0x13900}, &(0x7f0000000000), &(0x7f0000000200))
io_uring_enter(r6, 0x2def, 0x0, 0x0, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0x0)
sendmsg$SMC_PNETID_DEL(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x14, r2, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file7\x00', 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)

896.021796ms ago: executing program 1 (id=1057):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
bind$bt_hci(r0, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r0, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x20000005}}, {{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000600)=[{&(0x7f0000001dc0)="bb", 0x1}], 0x1}}], 0x2, 0x0)

895.590346ms ago: executing program 1 (id=1058):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x1c, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x9c}}, 0x0)

879.234547ms ago: executing program 1 (id=1059):
unshare(0x62040200)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000d40)=@mangle={'mangle\x00', 0x64, 0x6, 0x570, 0xd0, 0x290, 0xd0, 0x1c0, 0x360, 0x4a0, 0x4a0, 0x4a0, 0x4a0, 0x4a0, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x0, 0x3a010000}}, @HL={0x28, 'HL\x00', 0x0, {0x0, 0xc}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, 'wg1\x00', {0x5}}}}, {{@ipv6={@private0, @remote, [], [], 'veth0_to_team\x00', 'tunl0\x00', {}, {}, 0x11, 0x0, 0x3, 0x12}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@hbh={{0x48}, {0x0, 0x7, 0x0, [0x1, 0x8, 0x5, 0x3bdc, 0x3, 0x7ffe, 0x5, 0x6, 0xfff9, 0x7, 0x6, 0xc97, 0x3f, 0xef00, 0x6, 0x4], 0x8}}]}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x2f}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5d0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x4)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1000004)
readv(r3, &(0x7f0000000340)=[{&(0x7f0000001740)=""/153, 0x99}], 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300060000000903000038000000000000000e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58)
close(0xffffffffffffffff)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x4, 0x12011, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)

621.411172ms ago: executing program 1 (id=1061):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='workqueue_queue_work\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x5, &(0x7f00000003c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x45, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
open(0x0, 0x143c62, 0x0)
mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4002, &(0x7f0000000040)=0xa632, 0x5, 0x0)
set_mempolicy_home_node(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0)

589.784514ms ago: executing program 1 (id=1062):
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
write$sndseq(0xffffffffffffffff, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}], 0x38)
write$sndseq(0xffffffffffffffff, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"448cc880fe353ca0f2c2e953"}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}], 0xc4)

512.008409ms ago: executing program 1 (id=1063):
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00), &(0x7f0000001c40)=r3}, 0x20)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
r6 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x88, 0x1403, 0x1, 0x0, 0x25dfdbfb, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth1_macvtap\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'gre0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'vlan0\x00'}}]}, 0x88}, 0x1, 0x0, 0x0, 0x4040024}, 0x8000)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x4, 0x12011, 0xffffffffffffffff, 0x0)

266.915313ms ago: executing program 4 (id=1068):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="60000000020601046c0001000000000000000000050005000a000000050001000600000005000400000000000900020073797a300000000014000300686173683a69702c706f72742c697000140007800800084000002f"], 0x60}}, 0x0)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000019200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWSETELEM={0x14, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x70}}, 0x0)

232.938256ms ago: executing program 4 (id=1069):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0xba01}, 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x100, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000180)="024dfc7b58623401", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x1, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x7], &(0x7f0000000500)=[0x2], 0x0, 0x1f}}, 0x3c)

188.605348ms ago: executing program 4 (id=1070):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="60000000020601046c0001000000000000000000050005000a000000050001000600000005000400000000000900020073797a300000000014000300686173683a69702c70"], 0x60}}, 0x0)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

140.478321ms ago: executing program 4 (id=1071):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000b80)=@delchain={0x144, 0x65, 0x810, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xc, 0x2}, {0x0, 0x9}, {0x9, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffffe}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_route={{0xa}, {0x104, 0x2, [@TCA_ROUTE4_TO={0x8, 0x2, 0xffffffff}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_ACT={0xf0, 0x6, [@m_nat={0x2c, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_skbedit={0xc0, 0xd, 0x0, 0x0, {{0xc}, {0x4}, {0x91, 0x6, "a707b36aaa9f7af7d3b4438eb81ccd8c40a11da73586f8e91ba98cf4b06aea06a75b1413c78cca3c419f9095aafa256bce3950c25943fca70489b3f03d378675d9c2515fcb79f523793a6f8477ff7f8e1546cfdfba51e1529bdfcf9ee8ae90bcb04ef45ca81ebd80db96f6ad88ea4314ba6ed68624e8a9cfca306226cc0d0f98313a49c92b80650e8b3e0160ec"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}]}, 0x144}, 0x1, 0x0, 0x0, 0x600400c5}, 0x40001)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {0x0}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})

88.014374ms ago: executing program 2 (id=1072):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000002c0)=ANY=[], 0x0, 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xc4}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xca}, 0x8)
sendmmsg$inet6(r2, &(0x7f0000003c40)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r6, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r4, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)

53.121846ms ago: executing program 4 (id=1073):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34665c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbccbddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e712a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd13f4cec49669e443dcb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ef8dba2f23b01a9ae44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af40000000000000005f58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef07000000000000006da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405a07feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09c0e5a3bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea10d3cfb41b92ecbb422a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f74562adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b4412331d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225a53072423b907c6682f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd100fcffff007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711c6529ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a22c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29008000000000000005ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc030ea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efd936b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800001f00000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351b9332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d9890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b0783883ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a138d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fce43d8c53a8031e64026e0d36b6401064c49a729f11ab377f7132c5232bb80195dd5d43d29646a9378eea0761b7ed9d2172e33ed87c7413c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828b07f1dc7df9c8e5da22dfb9dacbf5529e4e994128d835f85465173ea7bbcc519a0c9798ce8b1b07567e3e07169c8c3e4da8bf725c050000000000000000000000000000000000000000004775abdf0c62728eb55a9e2849a1ce05bed60dfe4cc9fa43f9684297c02382c0a35829be7a86305792a9d2e80ca9e8fc50f31f6e0fa810303da03d8b74b42c1ebaf16bb343256405a3a07229a54de09a97b269cd29e8b2f0b0d46c51a6a93eec37f4bc6e29a8e19120ae050ab682662e9b2cc3263a4aba62b63ca9123a53c0f4bf3c4463b8144c89bf058a0af0ae9fc2b7cdfc4817703e267cddc193637d7fd97646090da37093657643daae3840c7f5c10f93524f7ae4791ec6e9d9722e5f670ccb358e051a"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x5a, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a80000008500000005000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xd8, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c9f4cef7f9606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbcebddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ed8dba2f23b01a9aeb980aff9fa3a64709270c701db801f44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af4c0eb97fca585ec6bf58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75055df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83766b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b556381768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719107000000000000002d7e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea2a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f76062adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b441233151122b41a8d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225c380fac12f8205d182f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd1f539bd43007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711d7219ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a26c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29754f928c59306ce105ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42ddd5f393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc05bea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efdb36b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800000000000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351ba332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d96ee1b84bb64b14aebc6b5194c55dd6890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56be76acb7654a195bc3e98df3a5dffd5b07838a3ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a139d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fcc49a729f11ab377f7132c543d29646a9378eea0761b7ed9d2172e33ed87c6513c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8dc0d472672286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8455029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a82a6ef09d0ed9829dec16ab67a4f59a504e09f55ab82bbd405087a17a229a149c53ee9145500db213cb36489a10957739e481a756e65bde579bbbfb404213f661eeaaffacbcfbfd60b1a715c366da2b37ac7e9e3033f8ec04db1c2412e02ccd0617d9fb646c4897750d068c936c3558a94b05d7c65c0d458c0d70d0aa864bc1e324d3f69b1b4061627da875a4b5c2668ab0990623fe6f3b54cd1c79da4baf256f88750c18486330589473e267fa44e220cf40db662b570c2a2fbba9a34a3dd7bbd8368fe506daa62b45797d4b397905a69e58eb436c08cc78963197adb1b16ad83a1a9b420e74c6bcdf1ed0b306141a83bf1268e954ad069257fbfaa1a7ea582badc1a7f2a5b0965f3535872d85c0bc3a233a3ea85df6a8ed76f0f803d54b7bef77d8ea71621f8a78dd17c3b58c5c7476ed6191acbb949e77f7cac81c543f7751e5e1000"/4545], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000480)={@ifindex, r0, 0x2f, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f00000003c0)={0x0, <r3=>0x0}, 0x8)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)={@fallback=r0, r2, 0x2f, 0x28, 0x4, @void, @void, @void, @value=r3}, 0x20)

0s ago: executing program 4 (id=1074):
unshare(0x62040200)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000d40)=@mangle={'mangle\x00', 0x64, 0x6, 0x570, 0xd0, 0x290, 0xd0, 0x1c0, 0x360, 0x4a0, 0x4a0, 0x4a0, 0x4a0, 0x4a0, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x0, 0x3a010000}}, @HL={0x28, 'HL\x00', 0x0, {0x0, 0xc}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, 'wg1\x00', {0x5}}}}, {{@ipv6={@private0, @remote, [], [], 'veth0_to_team\x00', 'tunl0\x00', {}, {}, 0x11, 0x0, 0x3, 0x12}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}, {{@uncond, 0x0, 0x118, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@hbh={{0x48}, {0x0, 0x7, 0x0, [0x1, 0x8, 0x5, 0x3bdc, 0x3, 0x7ffe, 0x5, 0x6, 0xfff9, 0x7, 0x6, 0xc97, 0x3f, 0xef00, 0x6, 0x4], 0x8}}]}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x2f}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5d0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x6a)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000480)='cgroup.threads\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x4)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1000004)
readv(r3, &(0x7f0000000340)=[{&(0x7f0000001740)=""/153, 0x99}], 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300060000000903000038000000000000000e000000000020000100050000000000000000000300000008000000f30000007f00000004"], 0x58)
close(0xffffffffffffffff)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x4, 0x12011, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f00000002c0)=0xfffffffc, 0x0, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)

kernel console output (not intermixed with test programs):

8.761447][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.768590][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[   28.778301][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.785348][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   28.813010][ T3297] 8021q: adding VLAN 0 to HW filter on device batadv0
[   28.832991][ T3304] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   28.843372][ T3304] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   28.869465][ T3303] 8021q: adding VLAN 0 to HW filter on device batadv0
[   28.880365][ T3298] 8021q: adding VLAN 0 to HW filter on device batadv0
[   28.901652][ T3295] veth0_vlan: entered promiscuous mode
[   28.922970][ T3295] veth1_vlan: entered promiscuous mode
[   28.977291][ T3295] veth0_macvtap: entered promiscuous mode
[   28.997221][ T3297] veth0_vlan: entered promiscuous mode
[   29.004227][ T3295] veth1_macvtap: entered promiscuous mode
[   29.013610][ T3295] batman_adv: batadv0: Interface activated: batadv_slave_0
[   29.027683][ T3297] veth1_vlan: entered promiscuous mode
[   29.040196][ T3304] 8021q: adding VLAN 0 to HW filter on device batadv0
[   29.048803][ T3295] batman_adv: batadv0: Interface activated: batadv_slave_1
[   29.069757][ T3298] veth0_vlan: entered promiscuous mode
[   29.076557][ T3303] veth0_vlan: entered promiscuous mode
[   29.086623][ T3295] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   29.095407][ T3295] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.104202][ T3295] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.112882][ T3295] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.126136][ T3303] veth1_vlan: entered promiscuous mode
[   29.135457][ T3297] veth0_macvtap: entered promiscuous mode
[   29.145325][ T3298] veth1_vlan: entered promiscuous mode
[   29.154281][ T3297] veth1_macvtap: entered promiscuous mode
[   29.165218][ T3297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   29.175782][ T3297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.186242][ T3297] batman_adv: batadv0: Interface activated: batadv_slave_0
[   29.201498][ T3297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   29.212062][ T3297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.222477][ T3297] batman_adv: batadv0: Interface activated: batadv_slave_1
[   29.230580][ T3303] veth0_macvtap: entered promiscuous mode
[   29.241729][ T3297] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   29.250540][ T3297] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.259372][ T3297] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.268198][ T3297] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.279500][ T3303] veth1_macvtap: entered promiscuous mode
[   29.302108][ T3298] veth0_macvtap: entered promiscuous mode
[   29.311500][   T29] kauditd_printk_skb: 18 callbacks suppressed
[   29.311565][   T29] audit: type=1400 audit(1740313337.903:110): avc:  denied  { mounton } for  pid=3295 comm="syz-executor" path="/root/syzkaller.hqigFP/syz-tmp" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   29.318341][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   29.352557][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.354130][   T29] audit: type=1400 audit(1740313337.903:111): avc:  denied  { mount } for  pid=3295 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   29.362388][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   29.384368][   T29] audit: type=1400 audit(1740313337.903:112): avc:  denied  { mounton } for  pid=3295 comm="syz-executor" path="/root/syzkaller.hqigFP/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   29.394800][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.397642][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_0
[   29.420051][   T29] audit: type=1400 audit(1740313337.903:113): avc:  denied  { mount } for  pid=3295 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   29.431128][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   29.469439][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.479463][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   29.490012][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.500405][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_1
[   29.503368][   T29] audit: type=1400 audit(1740313338.093:114): avc:  denied  { mounton } for  pid=3295 comm="syz-executor" path="/root/syzkaller.hqigFP/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   29.534396][   T29] audit: type=1400 audit(1740313338.093:115): avc:  denied  { mounton } for  pid=3295 comm="syz-executor" path="/root/syzkaller.hqigFP/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3587 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   29.561956][   T29] audit: type=1400 audit(1740313338.093:116): avc:  denied  { unmount } for  pid=3295 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   29.582260][   T29] audit: type=1400 audit(1740313338.103:117): avc:  denied  { mounton } for  pid=3295 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   29.588414][ T3298] veth1_macvtap: entered promiscuous mode
[   29.605104][   T29] audit: type=1400 audit(1740313338.103:118): avc:  denied  { mount } for  pid=3295 comm="syz-executor" name="/" dev="gadgetfs" ino=4556 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   29.636114][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   29.646625][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.656453][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   29.666881][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.676747][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   29.685028][ T3295] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   29.687172][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.712402][ T3298] batman_adv: batadv0: Interface activated: batadv_slave_0
[   29.720996][ T3303] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   29.729848][ T3303] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.738680][ T3303] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.747407][ T3303] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.762835][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   29.773281][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.783125][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   29.793597][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.803444][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   29.813863][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   29.831152][   T29] audit: type=1400 audit(1740313338.353:119): avc:  denied  { read write } for  pid=3297 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   29.841119][ T3298] batman_adv: batadv0: Interface activated: batadv_slave_1
[   29.877929][ T3298] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   29.886750][ T3298] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   29.895572][ T3298] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   29.904388][ T3298] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   29.915226][ T3439] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   29.935352][ T3439] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   30.004953][ T3304] veth0_vlan: entered promiscuous mode
[   30.025578][ T3304] veth1_vlan: entered promiscuous mode
[   30.044784][ T3449] netlink: 5 bytes leftover after parsing attributes in process `syz.3.9'.
[   30.053488][ T3449] netlink: 5 bytes leftover after parsing attributes in process `syz.3.9'.
[   30.064798][ T3304] veth0_macvtap: entered promiscuous mode
[   30.076746][ T3304] veth1_macvtap: entered promiscuous mode
[   30.102376][ T3304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.112862][ T3304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.122779][ T3304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.133295][ T3304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.143124][ T3304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.153576][ T3304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.163393][ T3304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   30.173841][ T3304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.202476][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_0
[   30.214826][ T3304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   30.225295][ T3304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.235139][ T3304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   30.245603][ T3304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.255425][ T3304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   30.265926][ T3304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.275833][ T3304] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   30.286357][ T3304] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   30.360397][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_1
[   30.369285][ T3304] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   30.378007][ T3304] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   30.386780][ T3304] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   30.395515][ T3304] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.042693][ T3506] 9pnet_virtio: no channels available for device syz
[   32.481389][ T3522] netlink: 8 bytes leftover after parsing attributes in process `syz.1.30'.
[   32.549108][ T3526] capability: warning: `syz.2.31' uses deprecated v2 capabilities in a way that may be insecure
[   34.149195][ T3578] bond0: entered promiscuous mode
[   34.154290][ T3578] bond_slave_0: entered promiscuous mode
[   34.160078][ T3578] bond_slave_1: entered promiscuous mode
[   34.206743][ T3569] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   34.387845][   T29] kauditd_printk_skb: 59 callbacks suppressed
[   34.387863][   T29] audit: type=1400 audit(1740313342.983:179): avc:  denied  { write } for  pid=3583 comm="syz.1.53" name="ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   34.424423][   T29] audit: type=1400 audit(1740313342.983:180): avc:  denied  { open } for  pid=3583 comm="syz.1.53" path="/dev/ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   34.447477][   T29] audit: type=1400 audit(1740313342.983:181): avc:  denied  { ioctl } for  pid=3583 comm="syz.1.53" path="/dev/ppp" dev="devtmpfs" ino=139 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   34.471937][   T29] audit: type=1400 audit(1740313342.983:182): avc:  denied  { read } for  pid=3583 comm="syz.1.53" name="ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   34.514672][   T29] audit: type=1400 audit(1740313343.103:183): avc:  denied  { write } for  pid=3587 comm="syz.4.55" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   34.562538][   T29] audit: type=1400 audit(1740313343.153:184): avc:  denied  { create } for  pid=3585 comm="syz.0.54" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   34.583356][   T29] audit: type=1400 audit(1740313343.153:185): avc:  denied  { ioctl } for  pid=3585 comm="syz.0.54" path="socket:[4896]" dev="sockfs" ino=4896 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   34.607952][   T29] audit: type=1400 audit(1740313343.153:186): avc:  denied  { write } for  pid=3585 comm="syz.0.54" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   34.767548][   T29] audit: type=1400 audit(1740313343.213:187): avc:  denied  { setopt } for  pid=3585 comm="syz.0.54" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   35.075233][ T3606] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=3606 comm=syz.3.61
[   35.431139][   T29] audit: type=1400 audit(1740313344.023:188): avc:  denied  { write } for  pid=3613 comm="syz.0.65" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   36.766527][ T3672] Zero length message leads to an empty skb
[   37.952573][ T3708] tipc: Started in network mode
[   37.957620][ T3708] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   37.964790][ T3708] tipc: Enabled bearer <eth:team0>, priority 0
[   38.663498][ T3700] 9pnet_virtio: no channels available for device syz
[   39.103987][ T1036] tipc: Node number set to 11578026
[   39.111774][ T3739] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=3739 comm=syz.0.115
[   39.217321][ T3749] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[   39.228007][ T3749] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   39.571964][ T3718] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   39.611709][ T3718] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   39.833330][   T29] kauditd_printk_skb: 14 callbacks suppressed
[   39.833345][   T29] audit: type=1400 audit(1740313348.423:203): avc:  denied  { getopt } for  pid=3762 comm="syz.3.126" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   40.490191][   T29] audit: type=1400 audit(1740313349.083:204): avc:  denied  { nlmsg_read } for  pid=3813 comm="syz.3.148" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[   40.590481][   T29] audit: type=1326 audit(1740313349.143:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3690 comm="syz.2.97" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2ef76d4127 code=0x7fc00000
[   40.624860][   T29] audit: type=1400 audit(1740313349.223:206): avc:  denied  { bind } for  pid=3819 comm="syz.3.152" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   40.645137][   T29] audit: type=1400 audit(1740313349.223:207): avc:  denied  { node_bind } for  pid=3819 comm="syz.3.152" saddr=fe80::bb scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   40.666864][   T29] audit: type=1400 audit(1740313349.223:208): avc:  denied  { connect } for  pid=3819 comm="syz.3.152" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   40.831121][ T3851] netlink: 68 bytes leftover after parsing attributes in process `syz.2.166'.
[   41.049905][ T3883] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=3883 comm=syz.0.182
[   41.093533][ T3882] netlink: 68 bytes leftover after parsing attributes in process `syz.4.181'.
[   41.285139][ T3914] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=3914 comm=syz.3.196
[   42.130893][ T3893] tipc: Started in network mode
[   42.135819][ T3893] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   42.142952][ T3893] tipc: Enabled bearer <eth:team0>, priority 0
[   42.432066][   T29] audit: type=1400 audit(1740313351.023:209): avc:  denied  { mounton } for  pid=3926 comm="syz.1.200" path="/36/file0" dev="configfs" ino=2094 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   42.941933][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   42.949513][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   42.956956][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   42.964392][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   42.971764][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   42.979183][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   42.986591][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   42.994056][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.001435][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.008829][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.016249][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.023656][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.031066][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.038528][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.045931][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.053311][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.060796][ T3359] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   43.219546][ T1036] tipc: Node number set to 11578026
[   43.225001][   T29] audit: type=1400 audit(1740313351.193:210): avc:  denied  { bind } for  pid=3936 comm="syz.4.202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   43.244240][   T29] audit: type=1400 audit(1740313351.193:211): avc:  denied  { name_bind } for  pid=3936 comm="syz.4.202" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1
[   43.265807][   T29] audit: type=1400 audit(1740313351.193:212): avc:  denied  { node_bind } for  pid=3936 comm="syz.4.202" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1
[   43.274104][ T3359] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   43.436243][ T3969] netlink: 28 bytes leftover after parsing attributes in process `syz.1.218'.
[   43.445218][ T3969] netlink: 8 bytes leftover after parsing attributes in process `syz.1.218'.
[   44.753927][ T3997] syz.4.223 uses obsolete (PF_INET,SOCK_PACKET)
[   45.458326][ T4012] netlink: 428 bytes leftover after parsing attributes in process `syz.3.228'.
[   45.994457][ T4015] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   47.213990][   T29] kauditd_printk_skb: 13 callbacks suppressed
[   47.214007][   T29] audit: type=1400 audit(1740313355.793:226): avc:  denied  { mount } for  pid=4026 comm="syz.2.234" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   47.338072][   T29] audit: type=1400 audit(1740313355.893:227): avc:  denied  { unmount } for  pid=3303 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   47.457294][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.464742][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.472137][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.479601][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.487042][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.494547][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.501968][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.509452][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.516940][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.524470][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.531892][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.539427][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.546841][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.554260][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.561643][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.569043][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.576472][ T3375] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   47.680473][ T3375] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   47.801147][ T4047] 9pnet_fd: Insufficient options for proto=fd
[   48.053827][ T4051] Cannot find del_set index 0 as target
[   48.454303][   T29] audit: type=1400 audit(1740313357.043:228): avc:  denied  { ioctl } for  pid=4059 comm="syz.0.246" path="socket:[6672]" dev="sockfs" ino=6672 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   48.504544][ T4066] netlink: 4 bytes leftover after parsing attributes in process `syz.2.249'.
[   48.513086][   T29] audit: type=1400 audit(1740313357.103:229): avc:  denied  { ioctl } for  pid=4065 comm="syz.2.249" path="socket:[6689]" dev="sockfs" ino=6689 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   48.722774][ T4079] pim6reg: entered allmulticast mode
[   48.820579][ T4085] x_tables: duplicate underflow at hook 1
[   48.826928][   T29] audit: type=1400 audit(1740313357.413:230): avc:  denied  { setopt } for  pid=4076 comm="syz.4.254" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   49.274042][ T4097] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   49.708136][   T29] audit: type=1400 audit(1740313358.303:231): avc:  denied  { connect } for  pid=4115 comm="syz.2.270" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   49.728189][   T29] audit: type=1400 audit(1740313358.323:232): avc:  denied  { read } for  pid=4115 comm="syz.2.270" path="socket:[5809]" dev="sockfs" ino=5809 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   49.781893][   T29] audit: type=1400 audit(1740313358.373:233): avc:  denied  { write } for  pid=4115 comm="syz.2.270" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[   49.914956][   T29] audit: type=1400 audit(1740313358.493:234): avc:  denied  { setopt } for  pid=4129 comm="syz.4.277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   49.942303][ T4134] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   49.958016][ T4134] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   50.461645][ T4154] tipc: Started in network mode
[   50.466554][ T4154] tipc: Node identity 7f000001, cluster identity 4711
[   50.473600][ T4154] tipc: Enabled bearer <udp:syz2>, priority 10
[   51.101621][ T4161] netlink: 44 bytes leftover after parsing attributes in process `syz.4.287'.
[   51.574086][ T4190] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   51.582291][ T4190] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   51.604050][   T24] tipc: Node number set to 2130706433
[   51.652903][   T29] audit: type=1400 audit(1740313360.243:235): avc:  denied  { create } for  pid=4196 comm="syz.1.303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   52.158219][ T4209] tipc: Enabled bearer <udp:syz2>, priority 10
[   52.763997][ T4224] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   52.772667][ T4224] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   53.822161][ T4247] 9pnet_virtio: no channels available for device syz
[   54.001810][   T29] kauditd_printk_skb: 1 callbacks suppressed
[   54.001824][   T29] audit: type=1400 audit(1740313362.583:237): avc:  denied  { execute } for  pid=4283 comm="syz.2.338" path="/72/cpu.stat" dev="tmpfs" ino=384 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   54.026317][ T4292] netlink: 4 bytes leftover after parsing attributes in process `syz.3.341'.
[   54.058823][   T29] audit: type=1400 audit(1740313362.623:238): avc:  denied  { ioctl } for  pid=4291 comm="syz.3.341" path="socket:[6071]" dev="sockfs" ino=6071 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   54.084309][   T29] audit: type=1400 audit(1740313362.623:239): avc:  denied  { bind } for  pid=4291 comm="syz.3.341" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   54.111689][ T4292] team0 (unregistering): Port device team_slave_0 removed
[   54.126431][ T4292] team0 (unregistering): Port device team_slave_1 removed
[   54.158581][   T29] audit: type=1400 audit(1740313362.753:240): avc:  denied  { bind } for  pid=4307 comm="syz.2.347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   54.318283][ T4314] 9pnet_virtio: no channels available for device syz
[   54.415971][ T4330] netlink: 'syz.2.351': attribute type 3 has an invalid length.
[   54.423667][ T4330] netlink: 8 bytes leftover after parsing attributes in process `syz.2.351'.
[   54.535132][   T29] audit: type=1400 audit(1740313363.073:241): avc:  denied  { bind } for  pid=4331 comm="syz.0.357" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[   54.690968][   T29] audit: type=1400 audit(1740313363.173:242): avc:  denied  { bind } for  pid=4336 comm="syz.3.358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   54.710227][   T29] audit: type=1400 audit(1740313363.173:243): avc:  denied  { name_bind } for  pid=4336 comm="syz.3.358" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   54.730876][   T29] audit: type=1400 audit(1740313363.173:244): avc:  denied  { node_bind } for  pid=4336 comm="syz.3.358" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[   54.751535][   T29] audit: type=1400 audit(1740313363.183:245): avc:  denied  { setopt } for  pid=4336 comm="syz.3.358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   54.770911][   T29] audit: type=1400 audit(1740313363.183:246): avc:  denied  { connect } for  pid=4336 comm="syz.3.358" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   54.771450][ T4280] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   55.132200][ T4376] netlink: 76 bytes leftover after parsing attributes in process `syz.1.376'.
[   55.802124][ T4368] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   55.841538][ T4394] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.870028][ T4394] bridge_slave_0 (unregistering): left allmulticast mode
[   55.877154][ T4394] bridge_slave_0 (unregistering): left promiscuous mode
[   55.884398][ T4394] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.977772][ T4418] loop2: detected capacity change from 0 to 512
[   57.000642][ T4415] loop3: detected capacity change from 0 to 512
[   57.011051][ T4415] =======================================================
[   57.011051][ T4415] WARNING: The mand mount option has been deprecated and
[   57.011051][ T4415]          and is ignored by this kernel. Remove the mand
[   57.011051][ T4415]          option from the mount to silence this warning.
[   57.011051][ T4415] =======================================================
[   57.111682][ T4420] usb usb1: check_ctrlrecip: process 4420 (syz.0.389) requesting ep 01 but needs 81
[   57.121161][ T4420] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[   57.188442][ T4414] loop1: detected capacity change from 0 to 512
[   58.959060][ T4415] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   58.968887][ T4415] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   58.968912][ T4415] EXT4-fs: failed to create workqueue
[   58.983790][ T4415] EXT4-fs (loop3): mount failed
[   58.989505][ T4418] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.393: bg 0: block 35: padding at end of block bitmap is not set
[   59.029708][ T4414] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   59.038482][ T4414] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[   59.038585][ T4414] EXT4-fs: failed to create workqueue
[   59.053425][ T4414] EXT4-fs (loop1): mount failed
[   59.065834][ T4418] EXT4-fs (loop2): Remounting filesystem read-only
[   59.072468][ T4418] EXT4-fs (loop2): 1 truncate cleaned up
[   59.079269][ T4418] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.092489][ T4418] SELinux: (dev loop2, type ext4) getxattr errno 5
[   59.136523][ T4418] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.193302][   T29] kauditd_printk_skb: 7 callbacks suppressed
[   59.193315][   T29] audit: type=1400 audit(1740313367.783:254): avc:  denied  { open } for  pid=4417 comm="syz.2.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   59.218587][   T29] audit: type=1400 audit(1740313367.783:255): avc:  denied  { kernel } for  pid=4417 comm="syz.2.393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   59.447977][ T4452] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.483207][ T4452] bridge_slave_0 (unregistering): left allmulticast mode
[   59.490317][ T4452] bridge_slave_0 (unregistering): left promiscuous mode
[   59.497390][ T4452] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.712265][ T4461] loop3: detected capacity change from 0 to 512
[   59.720634][ T4461] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   59.784940][ T4461] EXT4-fs (loop3): orphan cleanup on readonly fs
[   59.793158][ T4461] Quota error (device loop3): do_check_range: Getting block 196613 out of range 1-5
[   59.803231][ T4461] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[   59.812819][ T4461] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.407: Failed to acquire dquot type 1
[   59.825754][ T4461] EXT4-fs (loop3): 1 truncate cleaned up
[   59.832252][ T4461] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   59.850732][   T29] audit: type=1400 audit(1740313368.443:256): avc:  denied  { mount } for  pid=4456 comm="syz.3.407" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   59.937068][ T4427] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   61.146249][ T4470] loop4: detected capacity change from 0 to 512
[   62.090139][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.099715][   T29] audit: type=1326 audit(1740313370.673:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4480 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   62.123061][   T29] audit: type=1326 audit(1740313370.673:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4480 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   62.146367][   T29] audit: type=1326 audit(1740313370.673:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4480 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   62.169600][   T29] audit: type=1326 audit(1740313370.673:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4480 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   62.192885][   T29] audit: type=1326 audit(1740313370.673:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4480 comm="syz.0.415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   62.226746][ T4483] loop1: detected capacity change from 0 to 512
[   62.235265][ T4470] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   62.256745][ T4470] EXT4-fs (loop4): orphan cleanup on readonly fs
[   62.263761][ T4470] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.410: Failed to acquire dquot type 1
[   62.281702][ T4470] EXT4-fs (loop4): 1 truncate cleaned up
[   62.289039][ T4483] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.416: bg 0: block 35: padding at end of block bitmap is not set
[   62.305252][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   62.312127][ T4483] EXT4-fs (loop1): 1 truncate cleaned up
[   62.320174][ T4483] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.333131][ T4483] SELinux: (dev loop1, type ext4) getxattr errno 5
[   62.340294][ T4470] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   62.361514][ T4483] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.415451][ T4483] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[   62.422034][ T4483] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   62.429578][ T4483] vhci_hcd vhci_hcd.0: Device attached
[   62.440530][ T4494] vhci_hcd: cannot find the pending unlink 7
[   62.446654][ T4494] vhci_hcd: connection closed
[   62.447193][ T3322] vhci_hcd: stop threads
[   62.456200][ T3322] vhci_hcd: release socket
[   62.460655][ T3322] vhci_hcd: disconnect device
[   62.538251][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.599441][ T4493] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   63.164575][ T4539] loop0: detected capacity change from 0 to 512
[   63.176525][ T4539] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.266209][ T4539] EXT4-fs (loop0): orphan cleanup on readonly fs
[   63.275118][ T4539] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.434: Failed to acquire dquot type 1
[   63.290101][ T4539] EXT4-fs (loop0): 1 truncate cleaned up
[   63.302297][ T4539] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   64.714292][   T29] kauditd_printk_skb: 179 callbacks suppressed
[   64.714311][   T29] audit: type=1326 audit(1740313373.283:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.743840][   T29] audit: type=1326 audit(1740313373.283:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.767184][   T29] audit: type=1326 audit(1740313373.283:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.790446][   T29] audit: type=1326 audit(1740313373.283:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.813654][   T29] audit: type=1326 audit(1740313373.283:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.836917][   T29] audit: type=1326 audit(1740313373.283:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.860122][   T29] audit: type=1326 audit(1740313373.283:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.883338][   T29] audit: type=1326 audit(1740313373.283:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.906545][   T29] audit: type=1326 audit(1740313373.283:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   64.929904][   T29] audit: type=1326 audit(1740313373.283:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4554 comm="syz.3.441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[   65.030007][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.127645][ T4533] syz.2.435 (4533) used greatest stack depth: 7160 bytes left
[   65.410144][ T4574] loop1: detected capacity change from 0 to 512
[   65.420875][ T4574] EXT4-fs: Ignoring removed mblk_io_submit option
[   65.444816][ T4574] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   65.482683][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   65.607105][ T4593] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.455'.
[   66.465912][ T4590] syz.1.455 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[   66.479998][ T4590] CPU: 1 UID: 0 PID: 4590 Comm: syz.1.455 Not tainted 6.14.0-rc3-syzkaller-00295-g27102b38b8ca #0
[   66.480024][ T4590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   66.480040][ T4590] Call Trace:
[   66.480046][ T4590]  <TASK>
[   66.480115][ T4590]  dump_stack_lvl+0xf2/0x150
[   66.480156][ T4590]  dump_stack+0x15/0x1a
[   66.480174][ T4590]  dump_header+0x83/0x2d0
[   66.480213][ T4590]  oom_kill_process+0x341/0x4c0
[   66.480290][ T4590]  out_of_memory+0x9af/0xbe0
[   66.480326][ T4590]  ? css_next_descendant_pre+0x11c/0x140
[   66.480352][ T4590]  mem_cgroup_out_of_memory+0x13e/0x190
[   66.480388][ T4590]  try_charge_memcg+0x508/0x7f0
[   66.480478][ T4590]  obj_cgroup_charge_pages+0xbd/0x1a0
[   66.480503][ T4590]  __memcg_kmem_charge_page+0x9d/0x170
[   66.480528][ T4590]  __alloc_frozen_pages_noprof+0x1bc/0x340
[   66.480563][ T4590]  alloc_pages_mpol+0xb4/0x260
[   66.480656][ T4590]  alloc_pages_noprof+0xe8/0x130
[   66.480682][ T4590]  __vmalloc_node_range_noprof+0x6e5/0xe70
[   66.480789][ T4590]  __kvmalloc_node_noprof+0x121/0x170
[   66.480822][ T4590]  ? ip_set_alloc+0x1f/0x30
[   66.480866][ T4590]  ip_set_alloc+0x1f/0x30
[   66.480889][ T4590]  hash_ipport_create+0x4dc/0x9f0
[   66.480980][ T4590]  ? __pfx_hash_ipport_create+0x10/0x10
[   66.481011][ T4590]  ip_set_create+0x3b1/0x970
[   66.481075][ T4590]  ? __nla_parse+0x40/0x60
[   66.481158][ T4590]  nfnetlink_rcv_msg+0x4a9/0x570
[   66.481194][ T4590]  netlink_rcv_skb+0x12c/0x230
[   66.481220][ T4590]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   66.481293][ T4590]  nfnetlink_rcv+0x16c/0x15d0
[   66.481315][ T4590]  ? kmem_cache_free+0xdc/0x2d0
[   66.481381][ T4590]  ? nlmon_xmit+0x51/0x60
[   66.481411][ T4590]  ? __kfree_skb+0x102/0x150
[   66.481435][ T4590]  ? consume_skb+0x49/0x160
[   66.481464][ T4590]  ? nlmon_xmit+0x51/0x60
[   66.481499][ T4590]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   66.481526][ T4590]  ? __dev_queue_xmit+0xb6e/0x2090
[   66.481568][ T4590]  ? ref_tracker_free+0x3a5/0x410
[   66.481600][ T4590]  ? __netlink_deliver_tap+0x4c6/0x4f0
[   66.481640][ T4590]  netlink_unicast+0x599/0x670
[   66.481675][ T4590]  netlink_sendmsg+0x5cc/0x6e0
[   66.481734][ T4590]  ? __pfx_netlink_sendmsg+0x10/0x10
[   66.481771][ T4590]  __sock_sendmsg+0x140/0x180
[   66.481828][ T4590]  ____sys_sendmsg+0x326/0x4b0
[   66.481876][ T4590]  __sys_sendmsg+0x19d/0x230
[   66.481931][ T4590]  __x64_sys_sendmsg+0x46/0x50
[   66.481961][ T4590]  x64_sys_call+0x2734/0x2dc0
[   66.482051][ T4590]  do_syscall_64+0xc9/0x1c0
[   66.482112][ T4590]  ? clear_bhb_loop+0x55/0xb0
[   66.482202][ T4590]  ? clear_bhb_loop+0x55/0xb0
[   66.482228][ T4590]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   66.482260][ T4590] RIP: 0033:0x7fc65566d169
[   66.482281][ T4590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   66.482303][ T4590] RSP: 002b:00007fc653cd1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   66.482394][ T4590] RAX: ffffffffffffffda RBX: 00007fc655885fa0 RCX: 00007fc65566d169
[   66.482410][ T4590] RDX: 0000000000000000 RSI: 00004000000002c0 RDI: 0000000000000008
[   66.482425][ T4590] RBP: 00007fc6556ee2a0 R08: 0000000000000000 R09: 0000000000000000
[   66.482490][ T4590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   66.482537][ T4590] R13: 0000000000000000 R14: 00007fc655885fa0 R15: 00007ffe6f556718
[   66.482559][ T4590]  </TASK>
[   66.482567][ T4590] memory: usage 307200kB, limit 307200kB, failcnt 159
[   66.710824][ T4615] xt_TCPMSS: Only works on TCP SYN packets
[   66.711455][ T4590] memory+swap: usage 307624kB, limit 9007199254740988kB, failcnt 0
[   66.831837][ T4590] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   66.839182][ T4590] Memory cgroup stats for /syz1:
[   66.839422][ T4590] cache 0
[   66.846983][ T4615] random: crng reseeded on system resumption
[   66.847337][ T4590] rss 0
[   66.847346][ T4590] shmem 0
[   66.859220][ T4590] mapped_file 0
[   66.862695][ T4590] dirty 0
[   66.865678][ T4590] writeback 0
[   66.868986][ T4590] workingset_refault_anon 50
[   66.873712][ T4590] workingset_refault_file 64
[   66.878341][ T4590] swap 434176
[   66.881634][ T4590] swapcached 0
[   66.885067][ T4590] pgpgin 39375
[   66.888441][ T4590] pgpgout 39375
[   66.891908][ T4590] pgfault 51007
[   66.895411][ T4590] pgmajfault 37
[   66.898901][ T4590] inactive_anon 0
[   66.902605][ T4590] active_anon 0
[   66.906093][ T4590] inactive_file 0
[   66.909724][ T4590] active_file 0
[   66.913181][ T4590] unevictable 0
[   66.916688][ T4590] hierarchical_memory_limit 314572800
[   66.922220][ T4590] hierarchical_memsw_limit 9223372036854771712
[   66.928486][ T4590] total_cache 0
[   66.931948][ T4590] total_rss 0
[   66.935278][ T4590] total_shmem 0
[   66.938767][ T4590] total_mapped_file 0
[   66.942761][ T4590] total_dirty 0
[   66.946258][ T4590] total_writeback 0
[   66.950087][ T4590] total_workingset_refault_anon 50
[   66.955260][ T4590] total_workingset_refault_file 64
[   66.960371][ T4590] total_swap 434176
[   66.964200][ T4590] total_swapcached 0
[   66.968097][ T4590] total_pgpgin 39375
[   66.971999][ T4590] total_pgpgout 39375
[   66.976002][ T4590] total_pgfault 51007
[   66.980002][ T4590] total_pgmajfault 37
[   66.984042][ T4590] total_inactive_anon 0
[   66.988194][ T4590] total_active_anon 0
[   66.992176][ T4590] total_inactive_file 0
[   66.996397][ T4590] total_active_file 0
[   67.000371][ T4590] total_unevictable 0
[   67.004379][ T4590] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.455,pid=4589,uid=0
[   67.018952][ T4590] Memory cgroup out of memory: Killed process 4589 (syz.1.455) total-vm:93712kB, anon-rss:916kB, file-rss:22116kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   67.039763][ T4614] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   67.074906][ T4614] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   67.216029][ T4623] loop4: detected capacity change from 0 to 512
[   67.229255][ T4623] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.269631][ T4623] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   67.325222][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.425661][ T4590] syz.1.455 (4590) used greatest stack depth: 6344 bytes left
[   67.565421][ T4642] netlink: 68 bytes leftover after parsing attributes in process `syz.0.472'.
[   67.618341][ T4645] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.631232][ T4645] bridge_slave_0 (unregistering): left allmulticast mode
[   67.638342][ T4645] bridge_slave_0 (unregistering): left promiscuous mode
[   67.645390][ T4645] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.300662][ T4636] syz.2.470 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[   68.314779][ T4636] CPU: 1 UID: 0 PID: 4636 Comm: syz.2.470 Not tainted 6.14.0-rc3-syzkaller-00295-g27102b38b8ca #0
[   68.314815][ T4636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   68.314830][ T4636] Call Trace:
[   68.314838][ T4636]  <TASK>
[   68.314845][ T4636]  dump_stack_lvl+0xf2/0x150
[   68.314933][ T4636]  dump_stack+0x15/0x1a
[   68.314958][ T4636]  dump_header+0x83/0x2d0
[   68.315001][ T4636]  oom_kill_process+0x341/0x4c0
[   68.315042][ T4636]  out_of_memory+0x9af/0xbe0
[   68.315080][ T4636]  ? css_next_descendant_pre+0x11c/0x140
[   68.315107][ T4636]  mem_cgroup_out_of_memory+0x13e/0x190
[   68.315195][ T4636]  try_charge_memcg+0x508/0x7f0
[   68.315216][ T4636]  obj_cgroup_charge_pages+0xbd/0x1a0
[   68.315243][ T4636]  __memcg_kmem_charge_page+0x9d/0x170
[   68.315265][ T4636]  __alloc_frozen_pages_noprof+0x1bc/0x340
[   68.315328][ T4636]  alloc_pages_mpol+0xb4/0x260
[   68.315392][ T4636]  alloc_pages_noprof+0xe8/0x130
[   68.315413][ T4636]  __vmalloc_node_range_noprof+0x6e5/0xe70
[   68.315447][ T4636]  __kvmalloc_node_noprof+0x121/0x170
[   68.315534][ T4636]  ? ip_set_alloc+0x1f/0x30
[   68.315556][ T4636]  ip_set_alloc+0x1f/0x30
[   68.315575][ T4636]  hash_ipport_create+0x4dc/0x9f0
[   68.315612][ T4636]  ? __pfx_hash_ipport_create+0x10/0x10
[   68.315650][ T4636]  ip_set_create+0x3b1/0x970
[   68.315680][ T4636]  ? __alloc_frozen_pages_noprof+0x171/0x340
[   68.315728][ T4636]  ? __nla_parse+0x40/0x60
[   68.315761][ T4636]  nfnetlink_rcv_msg+0x4a9/0x570
[   68.315824][ T4636]  netlink_rcv_skb+0x12c/0x230
[   68.315876][ T4636]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   68.315908][ T4636]  nfnetlink_rcv+0x16c/0x15d0
[   68.315964][ T4636]  ? kmem_cache_free+0xdc/0x2d0
[   68.316000][ T4636]  ? nlmon_xmit+0x51/0x60
[   68.316047][ T4636]  ? __kfree_skb+0x102/0x150
[   68.316070][ T4636]  ? consume_skb+0x49/0x160
[   68.316107][ T4636]  ? nlmon_xmit+0x51/0x60
[   68.316173][ T4636]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   68.316275][ T4636]  ? __dev_queue_xmit+0xb6e/0x2090
[   68.316303][ T4636]  ? ref_tracker_free+0x3a5/0x410
[   68.316340][ T4636]  ? __netlink_deliver_tap+0x4c6/0x4f0
[   68.316445][ T4636]  netlink_unicast+0x599/0x670
[   68.316552][ T4636]  netlink_sendmsg+0x5cc/0x6e0
[   68.316607][ T4636]  ? __pfx_netlink_sendmsg+0x10/0x10
[   68.316644][ T4636]  __sock_sendmsg+0x140/0x180
[   68.316672][ T4636]  ____sys_sendmsg+0x326/0x4b0
[   68.316770][ T4636]  __sys_sendmsg+0x19d/0x230
[   68.316812][ T4636]  __x64_sys_sendmsg+0x46/0x50
[   68.316841][ T4636]  x64_sys_call+0x2734/0x2dc0
[   68.316926][ T4636]  do_syscall_64+0xc9/0x1c0
[   68.316958][ T4636]  ? clear_bhb_loop+0x55/0xb0
[   68.316984][ T4636]  ? clear_bhb_loop+0x55/0xb0
[   68.317015][ T4636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.317121][ T4636] RIP: 0033:0x7f2ef76dd169
[   68.317135][ T4636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.317152][ T4636] RSP: 002b:00007f2ef5d41038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   68.317170][ T4636] RAX: ffffffffffffffda RBX: 00007f2ef78f5fa0 RCX: 00007f2ef76dd169
[   68.317246][ T4636] RDX: 0000000000000000 RSI: 00004000000002c0 RDI: 0000000000000004
[   68.317260][ T4636] RBP: 00007f2ef775e2a0 R08: 0000000000000000 R09: 0000000000000000
[   68.317274][ T4636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   68.317288][ T4636] R13: 0000000000000000 R14: 00007f2ef78f5fa0 R15: 00007fffe3d9cb28
[   68.317304][ T4636]  </TASK>
[   68.317310][ T4636] memory: usage 307200kB, limit 307200kB, failcnt 191
[   68.659111][ T4636] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0
[   68.667058][ T4636] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0
[   68.674359][ T4636] Memory cgroup stats for /syz2:
[   68.674550][ T4636] cache 0
[   68.682417][ T4636] rss 0
[   68.685207][ T4636] shmem 0
[   68.688189][ T4636] mapped_file 0
[   68.691647][ T4636] dirty 0
[   68.694617][ T4636] writeback 0
[   68.697904][ T4636] workingset_refault_anon 44
[   68.702488][ T4636] workingset_refault_file 256
[   68.707186][ T4636] swap 180224
[   68.710471][ T4636] swapcached 4096
[   68.714152][ T4636] pgpgin 34849
[   68.717536][ T4636] pgpgout 34848
[   68.720979][ T4636] pgfault 40140
[   68.724451][ T4636] pgmajfault 25
[   68.727924][ T4636] inactive_anon 0
[   68.731634][ T4636] active_anon 4096
[   68.735417][ T4636] inactive_file 0
[   68.739069][ T4636] active_file 0
[   68.742579][ T4636] unevictable 0
[   68.746059][ T4636] hierarchical_memory_limit 314572800
[   68.751427][ T4636] hierarchical_memsw_limit 9223372036854771712
[   68.757603][ T4636] total_cache 0
[   68.761061][ T4636] total_rss 0
[   68.764370][ T4636] total_shmem 0
[   68.767897][ T4636] total_mapped_file 0
[   68.771923][ T4636] total_dirty 0
[   68.775398][ T4636] total_writeback 0
[   68.779212][ T4636] total_workingset_refault_anon 44
[   68.784346][ T4636] total_workingset_refault_file 256
[   68.789542][ T4636] total_swap 180224
[   68.793334][ T4636] total_swapcached 4096
[   68.797562][ T4636] total_pgpgin 34849
[   68.801480][ T4636] total_pgpgout 34848
[   68.805517][ T4636] total_pgfault 40140
[   68.809499][ T4636] total_pgmajfault 25
[   68.813537][ T4636] total_inactive_anon 0
[   68.817715][ T4636] total_active_anon 4096
[   68.821960][ T4636] total_inactive_file 0
[   68.826208][ T4636] total_active_file 0
[   68.830237][ T4636] total_unevictable 0
[   68.834249][ T4636] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.470,pid=4634,uid=0
[   68.848810][ T4636] Memory cgroup out of memory: Killed process 4634 (syz.2.470) total-vm:93580kB, anon-rss:1044kB, file-rss:22120kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   68.927555][ T4662] loop4: detected capacity change from 0 to 512
[   68.956400][ T4663] xt_TCPMSS: Only works on TCP SYN packets
[   68.974388][ T4662] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   68.988233][ T4662] ext4 filesystem being mounted at /77/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   68.999793][ T4662] netlink: 32 bytes leftover after parsing attributes in process `syz.4.479'.
[   69.022820][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   69.075339][ T4663] random: crng reseeded on system resumption
[   69.235806][ T4682] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.483'.
[   69.260724][ T4683] xt_TCPMSS: Only works on TCP SYN packets
[   69.355683][ T4685] loop2: detected capacity change from 0 to 512
[   69.365959][ T4685] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   69.376737][ T4685] EXT4-fs (loop2): orphan cleanup on readonly fs
[   69.383647][ T4685] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.486: Failed to acquire dquot type 1
[   69.397010][ T4685] EXT4-fs (loop2): 1 truncate cleaned up
[   70.123856][ T4693] netlink: 76 bytes leftover after parsing attributes in process `syz.4.489'.
[   70.235736][ T4685] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   70.605998][ T4703] loop3: detected capacity change from 0 to 512
[   70.786516][ T4703] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   71.136059][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.171061][ T4703] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   71.239174][ T4703] netlink: 32 bytes leftover after parsing attributes in process `syz.3.493'.
[   71.262724][ T4698] 9pnet_virtio: no channels available for device syz
[   71.332189][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   71.547101][ T4733] loop4: detected capacity change from 0 to 512
[   71.993091][ T4733] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.005835][ T4733] EXT4-fs (loop4): orphan cleanup on readonly fs
[   72.984119][ T4733] __quota_error: 319 callbacks suppressed
[   72.984140][ T4733] Quota error (device loop4): do_check_range: Getting block 196613 out of range 1-5
[   72.999390][ T4733] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[   73.008815][ T4733] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.502: Failed to acquire dquot type 1
[   73.686349][ T4740] tipc: Started in network mode
[   73.691244][ T4740] tipc: Node identity 7f000001, cluster identity 4711
[   73.698271][ T4740] tipc: Enabled bearer <udp:syz2>, priority 10
[   73.704773][ T4740] tipc: Enabled bearer <eth:team0>, priority 0
[   73.720131][ T4733] EXT4-fs (loop4): 1 truncate cleaned up
[   73.733759][   T29] audit: type=1326 audit(1740313381.903:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4726 comm="syz.2.501" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x0
[   73.766597][ T4733] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   73.985453][ T4747] loop0: detected capacity change from 0 to 512
[   74.014841][ T4747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.055138][ T4747] ext4 filesystem being mounted at /129/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   74.617038][ T3295] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.824019][ T1036] tipc: Node number set to 2130706433
[   74.858392][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.881141][ T4773] xt_TCPMSS: Only works on TCP SYN packets
[   75.823423][ T4763] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   75.835165][   T29] audit: type=1400 audit(1740313384.433:765): avc:  denied  { ioctl } for  pid=4776 comm="syz.3.515" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[   75.886085][ T4773] random: crng reseeded on system resumption
[   75.982848][   T29] audit: type=1326 audit(1740313384.573:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.1.519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[   76.006344][   T29] audit: type=1326 audit(1740313384.573:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.1.519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[   76.029614][   T29] audit: type=1326 audit(1740313384.573:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.1.519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[   76.052999][   T29] audit: type=1326 audit(1740313384.573:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.1.519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[   76.076272][   T29] audit: type=1326 audit(1740313384.573:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.1.519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[   76.099783][   T29] audit: type=1326 audit(1740313384.573:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4791 comm="syz.1.519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[   76.108802][ T4795] xt_TCPMSS: Only works on TCP SYN packets
[   76.955607][ T4796] syz.4.520 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[   76.969686][ T4796] CPU: 0 UID: 0 PID: 4796 Comm: syz.4.520 Not tainted 6.14.0-rc3-syzkaller-00295-g27102b38b8ca #0
[   76.969710][ T4796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   76.969722][ T4796] Call Trace:
[   76.969729][ T4796]  <TASK>
[   76.969736][ T4796]  dump_stack_lvl+0xf2/0x150
[   76.969765][ T4796]  dump_stack+0x15/0x1a
[   76.969802][ T4796]  dump_header+0x83/0x2d0
[   76.969852][ T4796]  oom_kill_process+0x341/0x4c0
[   76.969886][ T4796]  out_of_memory+0x9af/0xbe0
[   76.970004][ T4796]  mem_cgroup_out_of_memory+0x13e/0x190
[   76.970039][ T4796]  try_charge_memcg+0x508/0x7f0
[   76.970102][ T4796]  obj_cgroup_charge_pages+0xbd/0x1a0
[   76.970131][ T4796]  __memcg_kmem_charge_page+0x9d/0x170
[   76.970160][ T4796]  __alloc_frozen_pages_noprof+0x1bc/0x340
[   76.970191][ T4796]  alloc_pages_mpol+0xb4/0x260
[   76.970288][ T4796]  alloc_pages_noprof+0xe8/0x130
[   76.970311][ T4796]  __vmalloc_node_range_noprof+0x6e5/0xe70
[   76.970351][ T4796]  __kvmalloc_node_noprof+0x121/0x170
[   76.970466][ T4796]  ? ip_set_alloc+0x1f/0x30
[   76.970496][ T4796]  ip_set_alloc+0x1f/0x30
[   76.970524][ T4796]  hash_ipport_create+0x4dc/0x9f0
[   76.970568][ T4796]  ? __pfx_hash_ipport_create+0x10/0x10
[   76.970659][ T4796]  ip_set_create+0x3b1/0x970
[   76.970692][ T4796]  ? __alloc_frozen_pages_noprof+0x171/0x340
[   76.970776][ T4796]  ? __nla_parse+0x40/0x60
[   76.970817][ T4796]  nfnetlink_rcv_msg+0x4a9/0x570
[   76.970863][ T4796]  netlink_rcv_skb+0x12c/0x230
[   76.970891][ T4796]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   76.970918][ T4796]  nfnetlink_rcv+0x16c/0x15d0
[   76.970947][ T4796]  ? kmem_cache_free+0xdc/0x2d0
[   76.970971][ T4796]  ? nlmon_xmit+0x51/0x60
[   76.971030][ T4796]  ? __kfree_skb+0x102/0x150
[   76.971055][ T4796]  ? consume_skb+0x49/0x160
[   76.971075][ T4796]  ? nlmon_xmit+0x51/0x60
[   76.971103][ T4796]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   76.971127][ T4796]  ? __dev_queue_xmit+0xb6e/0x2090
[   76.971218][ T4796]  ? pcpu_block_update+0x372/0x3b0
[   76.971241][ T4796]  ? ref_tracker_free+0x3a5/0x410
[   76.971327][ T4796]  ? __netlink_deliver_tap+0x4c6/0x4f0
[   76.971440][ T4796]  netlink_unicast+0x599/0x670
[   76.971472][ T4796]  netlink_sendmsg+0x5cc/0x6e0
[   76.971530][ T4796]  ? __pfx_netlink_sendmsg+0x10/0x10
[   76.971565][ T4796]  __sock_sendmsg+0x140/0x180
[   76.971623][ T4796]  ____sys_sendmsg+0x326/0x4b0
[   76.971708][ T4796]  __sys_sendmsg+0x19d/0x230
[   76.971750][ T4796]  __x64_sys_sendmsg+0x46/0x50
[   76.971842][ T4796]  x64_sys_call+0x2734/0x2dc0
[   76.971956][ T4796]  do_syscall_64+0xc9/0x1c0
[   76.971984][ T4796]  ? clear_bhb_loop+0x55/0xb0
[   76.972017][ T4796]  ? clear_bhb_loop+0x55/0xb0
[   76.972086][ T4796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.972112][ T4796] RIP: 0033:0x7f5f71ffd169
[   76.972126][ T4796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.972144][ T4796] RSP: 002b:00007f5f70667038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   76.972162][ T4796] RAX: ffffffffffffffda RBX: 00007f5f72215fa0 RCX: 00007f5f71ffd169
[   76.972173][ T4796] RDX: 0000000000000000 RSI: 00004000000002c0 RDI: 0000000000000004
[   76.972213][ T4796] RBP: 00007f5f7207e2a0 R08: 0000000000000000 R09: 0000000000000000
[   76.972227][ T4796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   76.972239][ T4796] R13: 0000000000000000 R14: 00007f5f72215fa0 R15: 00007ffdb546ae48
[   76.972255][ T4796]  </TASK>
[   76.972325][ T4796] memory: usage 307200kB, limit 307200kB, failcnt 154
[   77.314036][ T4796] memory+swap: usage 307364kB, limit 9007199254740988kB, failcnt 0
[   77.321933][ T4796] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[   77.329305][ T4796] Memory cgroup stats for /syz4:
[   77.342604][ T4796] cache 0
[   77.350575][ T4796] rss 0
[   77.353401][ T4796] shmem 0
[   77.356361][ T4796] mapped_file 0
[   77.359819][ T4796] dirty 0
[   77.362747][ T4796] writeback 0
[   77.366122][ T4796] workingset_refault_anon 7
[   77.370629][ T4796] workingset_refault_file 0
[   77.375178][ T4796] swap 167936
[   77.378468][ T4796] swapcached 20480
[   77.382182][ T4796] pgpgin 69874
[   77.385607][ T4796] pgpgout 69869
[   77.389074][ T4796] pgfault 83239
[   77.392609][ T4796] pgmajfault 6
[   77.396015][ T4796] inactive_anon 0
[   77.399694][ T4796] active_anon 0
[   77.403179][ T4796] inactive_file 0
[   77.406849][ T4796] active_file 0
[   77.410314][ T4796] unevictable 0
[   77.413834][ T4796] hierarchical_memory_limit 314572800
[   77.419295][ T4796] hierarchical_memsw_limit 9223372036854771712
[   77.425504][ T4796] total_cache 0
[   77.429088][ T4796] total_rss 0
[   77.432375][ T4796] total_shmem 0
[   77.435866][ T4796] total_mapped_file 0
[   77.439853][ T4796] total_dirty 0
[   77.443308][ T4796] total_writeback 0
[   77.447221][ T4796] total_workingset_refault_anon 7
[   77.452254][ T4796] total_workingset_refault_file 0
[   77.457306][ T4796] total_swap 167936
[   77.461212][ T4796] total_swapcached 20480
[   77.465480][ T4796] total_pgpgin 69874
[   77.469467][ T4796] total_pgpgout 69869
[   77.473441][ T4796] total_pgfault 83239
[   77.477458][ T4796] total_pgmajfault 6
[   77.481428][ T4796] total_inactive_anon 0
[   77.485641][ T4796] total_active_anon 0
[   77.489628][ T4796] total_inactive_file 0
[   77.493858][ T4796] total_active_file 0
[   77.497937][ T4796] total_unevictable 0
[   77.501922][ T4796] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.520,pid=4794,uid=0
[   77.516509][ T4796] Memory cgroup out of memory: Killed process 4794 (syz.4.520) total-vm:93580kB, anon-rss:916kB, file-rss:22120kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   77.853496][ T4816] SET target dimension over the limit!
[   78.505430][ T4820] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   78.559680][ T4853] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.540'.
[   79.713766][ T4882] pim6reg: entered allmulticast mode
[   79.921455][ T4863] SET target dimension over the limit!
[   80.003994][   T29] kauditd_printk_skb: 232 callbacks suppressed
[   80.004009][   T29] audit: type=1326 audit(1740313388.583:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.033536][   T29] audit: type=1326 audit(1740313388.583:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.057153][   T29] audit: type=1326 audit(1740313388.583:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.080570][   T29] audit: type=1326 audit(1740313388.583:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.104154][   T29] audit: type=1326 audit(1740313388.583:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.127651][   T29] audit: type=1326 audit(1740313388.583:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.152164][   T29] audit: type=1326 audit(1740313388.583:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.175514][   T29] audit: type=1326 audit(1740313388.583:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.198909][   T29] audit: type=1326 audit(1740313388.583:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.222282][   T29] audit: type=1326 audit(1740313388.583:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4883 comm="syz.4.552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   80.444532][ T4879] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   80.686183][ T4895] usb usb1: check_ctrlrecip: process 4895 (syz.4.553) requesting ep 01 but needs 81
[   80.706631][ T4903] hub 6-0:1.0: USB hub found
[   80.721698][ T4903] hub 6-0:1.0: 8 ports detected
[   80.736686][ T4895] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[   82.875935][ T4955] netlink: 'syz.0.573': attribute type 13 has an invalid length.
[   82.883857][ T4955] netlink: 'syz.0.573': attribute type 27 has an invalid length.
[   83.114193][ T4966] usb usb1: check_ctrlrecip: process 4966 (syz.3.574) requesting ep 01 but needs 81
[   83.123673][ T4966] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[   83.604782][ T4981] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.581'.
[   84.371736][ T4999] loop2: detected capacity change from 0 to 512
[   84.395597][ T4999] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.449911][ T4999] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   84.516883][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.603497][ T5008] hub 6-0:1.0: USB hub found
[   84.608392][ T5008] hub 6-0:1.0: 8 ports detected
[   85.494652][ T5005] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[   85.963990][   T29] kauditd_printk_skb: 72 callbacks suppressed
[   85.964043][   T29] audit: type=1326 audit(1740313394.553:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.009642][   T29] audit: type=1326 audit(1740313394.603:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.033127][   T29] audit: type=1326 audit(1740313394.603:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.056632][   T29] audit: type=1326 audit(1740313394.603:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.080175][   T29] audit: type=1326 audit(1740313394.603:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.103530][   T29] audit: type=1326 audit(1740313394.603:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.131652][   T29] audit: type=1326 audit(1740313394.603:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.155125][   T29] audit: type=1326 audit(1740313394.603:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.178538][   T29] audit: type=1326 audit(1740313394.613:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5042 comm="syz.2.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[   86.201938][   T29] audit: type=1326 audit(1740313394.723:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5046 comm="syz.0.605" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f065cc3d169 code=0x0
[   86.315438][ T5057] netlink: 32 bytes leftover after parsing attributes in process `syz.1.608'.
[   86.712805][ T5066] netlink: 68 bytes leftover after parsing attributes in process `syz.1.611'.
[   87.230781][ T5088] loop4: detected capacity change from 0 to 1024
[   87.239670][ T5089] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.250213][ T5088] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   87.276953][ T5089] bridge_slave_0 (unregistering): left allmulticast mode
[   87.284058][ T5089] bridge_slave_0 (unregistering): left promiscuous mode
[   87.291070][ T5089] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.325859][ T5088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.365204][ T5088] bridge_slave_1: left allmulticast mode
[   87.370911][ T5088] bridge_slave_1: left promiscuous mode
[   87.376784][ T5088] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.462731][ T5088] bond0: (slave bond_slave_0): Releasing backup interface
[   87.479078][ T5088] bond0: (slave bond_slave_1): Releasing backup interface
[   87.496515][ T5097] netlink: 68 bytes leftover after parsing attributes in process `syz.2.623'.
[   87.497491][ T5088] team0: Port device team_slave_0 removed
[   87.516490][ T5088] team0: Port device team_slave_1 removed
[   87.523239][ T5088] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   87.530878][ T5088] batman_adv: batadv0: Removing interface: batadv_slave_0
[   87.539646][ T5088] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   87.547186][ T5088] batman_adv: batadv0: Removing interface: batadv_slave_1
[   87.591477][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.685333][ T5107] loop2: detected capacity change from 0 to 512
[   87.694526][ T5107] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   87.707628][ T5107] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   87.729953][ T5107] EXT4-fs (loop2): 1 truncate cleaned up
[   87.736677][ T5107] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.788604][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.144593][ T5117] hub 6-0:1.0: USB hub found
[   88.149319][ T5117] hub 6-0:1.0: 8 ports detected
[   88.333420][ T3304] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[   88.344363][ T3304] CPU: 1 UID: 0 PID: 3304 Comm: syz-executor Not tainted 6.14.0-rc3-syzkaller-00295-g27102b38b8ca #0
[   88.344390][ T3304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   88.344404][ T3304] Call Trace:
[   88.344411][ T3304]  <TASK>
[   88.344420][ T3304]  dump_stack_lvl+0xf2/0x150
[   88.344496][ T3304]  dump_stack+0x15/0x1a
[   88.344516][ T3304]  dump_header+0x83/0x2d0
[   88.344553][ T3304]  oom_kill_process+0x341/0x4c0
[   88.344589][ T3304]  out_of_memory+0x9af/0xbe0
[   88.344631][ T3304]  ? css_next_descendant_pre+0x11c/0x140
[   88.344658][ T3304]  mem_cgroup_out_of_memory+0x13e/0x190
[   88.344691][ T3304]  try_charge_memcg+0x508/0x7f0
[   88.344725][ T3304]  charge_memcg+0x50/0xc0
[   88.344751][ T3304]  mem_cgroup_swapin_charge_folio+0xd0/0x150
[   88.344801][ T3304]  __read_swap_cache_async+0x236/0x480
[   88.344826][ T3304]  swap_cluster_readahead+0x381/0x3f0
[   88.344934][ T3304]  swapin_readahead+0xe4/0x6f0
[   88.345028][ T3304]  ? swap_cache_get_folio+0x77/0x210
[   88.345057][ T3304]  do_swap_page+0x31b/0x2550
[   88.345095][ T3304]  ? hrtimer_try_to_cancel+0x1d3/0x1e0
[   88.345121][ T3304]  ? __rcu_read_lock+0x36/0x50
[   88.345164][ T3304]  ? __pfx_default_wake_function+0x10/0x10
[   88.345200][ T3304]  handle_mm_fault+0x8e4/0x2ac0
[   88.345268][ T3304]  exc_page_fault+0x3b9/0x650
[   88.345294][ T3304]  asm_exc_page_fault+0x26/0x30
[   88.345427][ T3304] RIP: 0033:0x7f5f7202f9e5
[   88.345443][ T3304] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 5e db 1b 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[   88.345462][ T3304] RSP: 002b:00007ffdb546b188 EFLAGS: 00010246
[   88.345476][ T3304] RAX: 0000000000000000 RBX: 0000000000000118 RCX: 00007f5f7202f9e3
[   88.345486][ T3304] RDX: 00007ffdb546b1a0 RSI: 0000000000000000 RDI: 0000000000000000
[   88.345560][ T3304] RBP: 00007ffdb546b20c R08: 00000000107fa3cb R09: 0000000000000000
[   88.345640][ T3304] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[   88.345653][ T3304] R13: 00000000000927c0 R14: 000000000001563e R15: 00007ffdb546b260
[   88.345671][ T3304]  </TASK>
[   88.345676][ T3304] memory: usage 307200kB, limit 307200kB, failcnt 371
[   88.557941][ T3304] memory+swap: usage 307384kB, limit 9007199254740988kB, failcnt 0
[   88.565865][ T3304] kmem: usage 307200kB, limit 9007199254740988kB, failcnt 0
[   88.573226][ T3304] Memory cgroup stats for /syz4:
[   88.578912][ T3304] cache 0
[   88.586860][ T3304] rss 0
[   88.589629][ T3304] shmem 0
[   88.592569][ T3304] mapped_file 0
[   88.596257][ T3304] dirty 0
[   88.599235][ T3304] writeback 0
[   88.602516][ T3304] workingset_refault_anon 67
[   88.607186][ T3304] workingset_refault_file 128
[   88.611867][ T3304] swap 188416
[   88.615196][ T3304] swapcached 0
[   88.618578][ T3304] pgpgin 83265
[   88.621999][ T3304] pgpgout 83265
[   88.625598][ T3304] pgfault 98424
[   88.629049][ T3304] pgmajfault 51
[   88.632511][ T3304] inactive_anon 0
[   88.636162][ T3304] active_anon 0
[   88.639660][ T3304] inactive_file 0
[   88.643342][ T3304] active_file 0
[   88.646839][ T3304] unevictable 0
[   88.650299][ T3304] hierarchical_memory_limit 314572800
[   88.655782][ T3304] hierarchical_memsw_limit 9223372036854771712
[   88.662015][ T3304] total_cache 0
[   88.665494][ T3304] total_rss 0
[   88.668819][ T3304] total_shmem 0
[   88.672277][ T3304] total_mapped_file 0
[   88.676278][ T3304] total_dirty 0
[   88.679757][ T3304] total_writeback 0
[   88.683592][ T3304] total_workingset_refault_anon 67
[   88.688718][ T3304] total_workingset_refault_file 128
[   88.693962][ T3304] total_swap 188416
[   88.697765][ T3304] total_swapcached 0
[   88.701755][ T3304] total_pgpgin 83265
[   88.705734][ T3304] total_pgpgout 83265
[   88.709816][ T3304] total_pgfault 98424
[   88.713807][ T3304] total_pgmajfault 51
[   88.717883][ T3304] total_inactive_anon 0
[   88.722038][ T3304] total_active_anon 0
[   88.726041][ T3304] total_inactive_file 0
[   88.730188][ T3304] total_active_file 0
[   88.734258][ T3304] total_unevictable 0
[   88.738242][ T3304] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.626,pid=5102,uid=0
[   88.752864][ T3304] Memory cgroup out of memory: Killed process 5102 (syz.4.626) total-vm:93580kB, anon-rss:916kB, file-rss:22120kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[   88.942242][ T5124] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.633'.
[   88.976274][ T5126] netlink: 68 bytes leftover after parsing attributes in process `syz.3.634'.
[   89.069263][ T5132] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[   89.078171][ T5132] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   89.941302][ T5148] loop2: detected capacity change from 0 to 512
[   89.956056][ T5148] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.968638][ T5148] ext4 filesystem being mounted at /134/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.980138][ T5148] netlink: 32 bytes leftover after parsing attributes in process `syz.2.643'.
[   90.002436][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.015087][ T5153] netlink: 68 bytes leftover after parsing attributes in process `syz.4.645'.
[   90.058155][ T5155] loop2: detected capacity change from 0 to 128
[   90.072646][ T5155] smc: net device bond0 applied user defined pnetid SYZ0
[   90.220595][ T5173] smc: net device bond0 erased user defined pnetid SYZ0
[   91.052164][   T29] kauditd_printk_skb: 433 callbacks suppressed
[   91.052182][   T29] audit: type=1326 audit(1740313399.643:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[   91.730782][ T5185] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[   91.738714][ T5185] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[   91.915226][   T29] audit: type=1326 audit(1740313399.683:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f71f99359 code=0x7ffc0000
[   91.938590][   T29] audit: type=1326 audit(1740313399.683:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[   91.962005][   T29] audit: type=1326 audit(1740313399.683:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f71f99359 code=0x7ffc0000
[   91.985314][   T29] audit: type=1326 audit(1740313399.683:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   92.008662][   T29] audit: type=1326 audit(1740313399.683:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[   92.031965][   T29] audit: type=1326 audit(1740313399.683:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f71f99359 code=0x7ffc0000
[   92.055199][   T29] audit: type=1326 audit(1740313399.683:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5167 comm="syz.4.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[   92.060752][ T5195] netlink: 68 bytes leftover after parsing attributes in process `syz.4.657'.
[   92.606769][ T5205] xt_TCPMSS: Only works on TCP SYN packets
[   92.727526][ T5205] random: crng reseeded on system resumption
[   93.290336][ T5221] bridge_slave_0: left allmulticast mode
[   93.296078][ T5221] bridge_slave_0: left promiscuous mode
[   93.301771][ T5221] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.318223][ T5221] bridge_slave_1: left allmulticast mode
[   93.323905][ T5221] bridge_slave_1: left promiscuous mode
[   93.326217][   T29] audit: type=1400 audit(1740313401.923:1537): avc:  denied  { unmount } for  pid=3303 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[   93.329581][ T5221] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.358961][ T5221] bond0: (slave bond_slave_0): Releasing backup interface
[   93.373431][ T5221] bond0: (slave bond_slave_1): Releasing backup interface
[   93.379079][ T5223] loop2: detected capacity change from 0 to 512
[   93.397792][ T5221] team0: Port device team_slave_0 removed
[   93.405122][ T5223] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.666: bg 0: block 35: padding at end of block bitmap is not set
[   93.420948][ T5223] EXT4-fs (loop2): Remounting filesystem read-only
[   93.421037][ T5221] team0: Port device team_slave_1 removed
[   93.429573][ T5223] EXT4-fs (loop2): 1 truncate cleaned up
[   93.434634][ T5221] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   93.446445][ T5221] batman_adv: batadv0: Removing interface: batadv_slave_0
[   93.455327][ T5221] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   93.462763][ T5221] batman_adv: batadv0: Removing interface: batadv_slave_1
[   93.470338][ T5223] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.496689][ T5223] SELinux: (dev loop2, type ext4) getxattr errno 5
[   93.503682][ T5223] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.523690][ T3388] tipc: Resetting bearer <eth:team0>
[   93.577403][ T5223] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[   93.583966][ T5223] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   93.591549][ T5223] vhci_hcd vhci_hcd.0: Device attached
[   93.601545][ T5231] vhci_hcd: cannot find the pending unlink 7
[   93.656929][ T5237] usb usb1: check_ctrlrecip: process 5237 (syz.3.667) requesting ep 01 but needs 81
[   93.666653][ T5231] vhci_hcd: connection closed
[   93.667939][   T40] vhci_hcd: stop threads
[   93.668168][ T5237] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[   93.672640][   T40] vhci_hcd: release socket
[   93.688495][   T40] vhci_hcd: disconnect device
[   93.934522][ T5238] hub 6-0:1.0: USB hub found
[   93.939293][ T5238] hub 6-0:1.0: 8 ports detected
[   93.940612][ T5258] loop4: detected capacity change from 0 to 1024
[   94.001009][ T5259] xt_TCPMSS: Only works on TCP SYN packets
[   94.008065][ T5258] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   94.033460][ T5258] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.111670][ T5259] random: crng reseeded on system resumption
[   94.221991][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.487710][   T29] audit: type=1326 audit(1740313403.073:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5280 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[   95.117164][ T5291] hub 6-0:1.0: USB hub found
[   95.125589][ T5291] hub 6-0:1.0: 8 ports detected
[   95.310746][ T5302] loop3: detected capacity change from 0 to 512
[   95.340309][ T5302] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.693: bg 0: block 35: padding at end of block bitmap is not set
[   95.368652][ T5302] EXT4-fs (loop3): Remounting filesystem read-only
[   95.375418][ T5302] EXT4-fs (loop3): 1 truncate cleaned up
[   95.385211][ T5302] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.486206][ T5302] SELinux: (dev loop3, type ext4) getxattr errno 5
[   95.493153][ T5302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.507494][ T5302] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   95.514023][ T5302] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   95.521593][ T5302] vhci_hcd vhci_hcd.0: Device attached
[   95.575991][ T5306] usb usb1: check_ctrlrecip: process 5306 (syz.4.692) requesting ep 01 but needs 81
[   95.596860][ T5306] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[   95.638685][ T5308] vhci_hcd: connection closed
[   95.638909][ T3322] vhci_hcd: stop threads
[   95.647978][ T3322] vhci_hcd: release socket
[   95.652573][ T3322] vhci_hcd: disconnect device
[   95.684163][ T5317] tipc: Resetting bearer <eth:team0>
[   95.856846][ T5327] xt_TCPMSS: Only works on TCP SYN packets
[   95.970018][ T5327] random: crng reseeded on system resumption
[   96.498784][ T5339] loop3: detected capacity change from 0 to 512
[   97.324920][ T5339] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   97.336882][ T5339] EXT4-fs (loop3): orphan cleanup on readonly fs
[   97.344070][ T5339] __quota_error: 211 callbacks suppressed
[   97.344083][ T5339] Quota error (device loop3): do_check_range: Getting block 196613 out of range 1-5
[   97.359322][ T5339] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[   97.368773][ T5339] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.703: Failed to acquire dquot type 1
[   97.382700][ T5339] EXT4-fs (loop3): 1 truncate cleaned up
[   97.393307][ T5339] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   97.981033][   T29] audit: type=1326 audit(1740313406.573:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5343 comm="syz.2.706" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x0
[   98.023036][   T29] audit: type=1326 audit(1740313406.613:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5354 comm="syz.0.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   98.046427][   T29] audit: type=1326 audit(1740313406.613:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5354 comm="syz.0.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   98.069774][   T29] audit: type=1326 audit(1740313406.613:1753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5354 comm="syz.0.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   98.093144][   T29] audit: type=1326 audit(1740313406.613:1754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5354 comm="syz.0.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   98.116551][   T29] audit: type=1326 audit(1740313406.613:1755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5354 comm="syz.0.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   98.139897][   T29] audit: type=1326 audit(1740313406.613:1756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5354 comm="syz.0.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   98.163307][   T29] audit: type=1326 audit(1740313406.613:1757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5354 comm="syz.0.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[   98.217230][ T3297] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.267191][ T5364] usb usb1: check_ctrlrecip: process 5364 (syz.1.708) requesting ep 01 but needs 81
[   98.413454][ T5364] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[   98.835546][ T5387] usb usb1: check_ctrlrecip: process 5387 (syz.1.718) requesting ep 01 but needs 81
[   98.858720][ T5387] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[   98.968156][ T5393] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   98.974708][ T5393] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   98.982240][ T5393] vhci_hcd vhci_hcd.0: Device attached
[   98.989822][ T5394] vhci_hcd: cannot find the pending unlink 7
[   98.999450][ T5394] vhci_hcd: connection closed
[   98.999663][ T3388] vhci_hcd: stop threads
[   99.008637][ T3388] vhci_hcd: release socket
[   99.013076][ T3388] vhci_hcd: disconnect device
[   99.904433][ T5412] xt_TCPMSS: Only works on TCP SYN packets
[  100.052353][ T5412] random: crng reseeded on system resumption
[  100.767906][ T5423] xt_TCPMSS: Only works on TCP SYN packets
[  100.894590][ T5423] random: crng reseeded on system resumption
[  100.961701][ T5427] hub 6-0:1.0: USB hub found
[  100.977037][ T5427] hub 6-0:1.0: 8 ports detected
[  101.182414][ T5431] netlink: 'syz.3.732': attribute type 4 has an invalid length.
[  101.190184][ T5431] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.732'.
[  101.396327][ T5435] process 'syz.3.734' launched './file0' with NULL argv: empty string added
[  101.414052][ T2998] udevd[2998]: worker [3289] terminated by signal 33 (Unknown signal 33)
[  101.540742][ T5440] loop3: detected capacity change from 0 to 512
[  101.626090][ T5440] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.735: bg 0: block 35: padding at end of block bitmap is not set
[  102.031034][ T5440] EXT4-fs (loop3): Remounting filesystem read-only
[  102.108872][ T5440] EXT4-fs (loop3): 1 truncate cleaned up
[  102.178485][ T5440] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.192439][ T5453] loop4: detected capacity change from 0 to 512
[  102.212450][ T5440] SELinux: (dev loop3, type ext4) getxattr errno 5
[  102.219312][ T5440] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.233338][ T5440] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[  102.239951][ T5440] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  102.247640][ T5440] vhci_hcd vhci_hcd.0: Device attached
[  102.253658][ T5458] vhci_hcd: cannot find the pending unlink 7
[  102.259730][ T5458] vhci_hcd: connection closed
[  102.259772][ T3388] vhci_hcd: stop threads
[  102.269263][ T3388] vhci_hcd: release socket
[  102.273731][ T3388] vhci_hcd: disconnect device
[  102.281162][ T5453] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.295805][ T5453] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  102.312257][ T5453] netlink: 32 bytes leftover after parsing attributes in process `syz.4.739'.
[  102.453751][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.733645][   T29] kauditd_printk_skb: 72 callbacks suppressed
[  104.733659][   T29] audit: type=1326 audit(1740313413.323:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.763158][   T29] audit: type=1326 audit(1740313413.323:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.786567][   T29] audit: type=1326 audit(1740313413.323:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.809932][   T29] audit: type=1326 audit(1740313413.323:1833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.833295][   T29] audit: type=1326 audit(1740313413.323:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.856615][   T29] audit: type=1326 audit(1740313413.323:1835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.880030][   T29] audit: type=1326 audit(1740313413.323:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.903410][   T29] audit: type=1326 audit(1740313413.323:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.926774][   T29] audit: type=1326 audit(1740313413.323:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  104.950114][   T29] audit: type=1326 audit(1740313413.323:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5479 comm="syz.3.744" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f6581a6d169 code=0x7ffc0000
[  105.173069][ T5494] netlink: 32 bytes leftover after parsing attributes in process `syz.3.752'.
[  105.555336][ T5504] loop4: detected capacity change from 0 to 512
[  105.569884][ T5504] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  105.584613][ T5504] EXT4-fs (loop4): orphan cleanup on readonly fs
[  105.591825][ T5504] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.754: Failed to acquire dquot type 1
[  105.603762][ T5504] EXT4-fs (loop4): 1 truncate cleaned up
[  105.610204][ T5504] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  107.055206][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.592339][    C1] hrtimer: interrupt took 23250 ns
[  109.167125][ T5569] siw: device registration error -23
[  109.458905][ T5575] usb usb1: check_ctrlrecip: process 5575 (syz.1.777) requesting ep 01 but needs 81
[  109.511133][ T5575] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  109.919852][   T29] kauditd_printk_skb: 64 callbacks suppressed
[  109.919869][   T29] audit: type=1326 audit(1740313418.513:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.4.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  109.964862][   T29] audit: type=1326 audit(1740313418.513:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.4.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  109.988285][   T29] audit: type=1326 audit(1740313418.553:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.4.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  110.011671][   T29] audit: type=1326 audit(1740313418.553:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.4.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  110.035081][   T29] audit: type=1326 audit(1740313418.553:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.4.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  110.058464][   T29] audit: type=1326 audit(1740313418.563:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.4.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  110.083060][   T29] audit: type=1326 audit(1740313418.673:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.4.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  110.106416][   T29] audit: type=1326 audit(1740313418.673:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5592 comm="syz.4.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  110.284668][   T29] audit: type=1326 audit(1740313418.883:1910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5605 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  110.330881][   T29] audit: type=1326 audit(1740313418.903:1911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5605 comm="syz.4.789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  110.631216][ T5617] netlink: 32 bytes leftover after parsing attributes in process `syz.3.790'.
[  110.762454][ T5622] usb usb1: check_ctrlrecip: process 5622 (syz.2.792) requesting ep 01 but needs 81
[  110.825860][ T5622] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  111.288690][ T5638] SET target dimension over the limit!
[  112.015634][ T5664] usb usb1: check_ctrlrecip: process 5664 (syz.3.807) requesting ep 01 but needs 81
[  112.053047][ T5664] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  113.339054][ T5695] __kmem_cache_create_args(9p-fcall-cache-7) failed with error -22
[  113.347010][ T5695] CPU: 0 UID: 0 PID: 5695 Comm: syz.4.817 Not tainted 6.14.0-rc3-syzkaller-00295-g27102b38b8ca #0
[  113.347038][ T5695] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  113.347087][ T5695] Call Trace:
[  113.347092][ T5695]  <TASK>
[  113.347099][ T5695]  dump_stack_lvl+0xf2/0x150
[  113.347130][ T5695]  dump_stack+0x15/0x1a
[  113.347154][ T5695]  __kmem_cache_create_args+0x249/0x280
[  113.347193][ T5695]  p9_client_create+0xa37/0xb90
[  113.347231][ T5695]  v9fs_session_init+0xf9/0xda0
[  113.347259][ T5695]  ? should_fail_ex+0x31/0x260
[  113.347298][ T5695]  ? v9fs_mount+0x53/0x570
[  113.347318][ T5695]  ? should_failslab+0x8f/0xb0
[  113.347414][ T5695]  ? __kmalloc_cache_noprof+0x186/0x320
[  113.347439][ T5695]  v9fs_mount+0x69/0x570
[  113.347460][ T5695]  ? __pfx_v9fs_mount+0x10/0x10
[  113.347476][ T5695]  legacy_get_tree+0x77/0xd0
[  113.347526][ T5695]  vfs_get_tree+0x56/0x1e0
[  113.347555][ T5695]  do_new_mount+0x227/0x690
[  113.347605][ T5695]  path_mount+0x49b/0xb30
[  113.347631][ T5695]  __se_sys_mount+0x27f/0x2d0
[  113.347741][ T5695]  __x64_sys_mount+0x67/0x80
[  113.347827][ T5695]  x64_sys_call+0x2c84/0x2dc0
[  113.347851][ T5695]  do_syscall_64+0xc9/0x1c0
[  113.348001][ T5695]  ? clear_bhb_loop+0x55/0xb0
[  113.348027][ T5695]  ? clear_bhb_loop+0x55/0xb0
[  113.348105][ T5695]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.348129][ T5695] RIP: 0033:0x7f5f71ffd169
[  113.348143][ T5695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.348164][ T5695] RSP: 002b:00007f5f6f9bc038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  113.348187][ T5695] RAX: ffffffffffffffda RBX: 00007f5f72216400 RCX: 00007f5f71ffd169
[  113.348202][ T5695] RDX: 0000400000000040 RSI: 0000400000000000 RDI: 0000000000000000
[  113.348228][ T5695] RBP: 00007f5f7207e2a0 R08: 0000400000000140 R09: 0000000000000000
[  113.348242][ T5695] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.348256][ T5695] R13: 0000000000000000 R14: 00007f5f72216400 R15: 00007ffdb546ae48
[  113.348272][ T5695]  </TASK>
[  113.959353][ T5723] netlink: 'syz.0.830': attribute type 4 has an invalid length.
[  113.967114][ T5723] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.830'.
[  114.347610][ T5737] usb usb1: check_ctrlrecip: process 5737 (syz.1.824) requesting ep 01 but needs 81
[  114.369366][ T5737] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  114.657592][ T5750] netlink: 'syz.0.841': attribute type 4 has an invalid length.
[  114.665390][ T5750] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.841'.
[  114.820448][ T5755] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.842'.
[  115.190633][   T29] kauditd_printk_skb: 632 callbacks suppressed
[  115.190647][   T29] audit: type=1326 audit(1740313423.783:2544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5769 comm="syz.1.849" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x0
[  115.493497][   T29] audit: type=1326 audit(1740313424.083:2545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[  115.516880][   T29] audit: type=1326 audit(1740313424.083:2546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f71f99359 code=0x7ffc0000
[  115.625631][   T29] audit: type=1326 audit(1740313424.083:2547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[  115.649117][   T29] audit: type=1326 audit(1740313424.133:2548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f71f99359 code=0x7ffc0000
[  115.672398][   T29] audit: type=1326 audit(1740313424.133:2549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  115.695707][   T29] audit: type=1326 audit(1740313424.133:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[  115.719001][   T29] audit: type=1326 audit(1740313424.143:2551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f71f99359 code=0x7ffc0000
[  115.742195][   T29] audit: type=1326 audit(1740313424.143:2552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  115.765354][   T29] audit: type=1326 audit(1740313424.143:2553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5771 comm="syz.4.850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[  116.076091][ T5799] usb usb1: check_ctrlrecip: process 5799 (syz.3.854) requesting ep 01 but needs 81
[  116.572133][ T5799] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  117.598137][ T5840] netlink: 76 bytes leftover after parsing attributes in process `syz.0.873'.
[  119.053461][ T5863] smc: net device bond0 applied user defined pnetid SYZ0
[  119.689681][ T5878] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  119.697575][ T5878] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  120.078212][ T5868] smc: net device bond0 erased user defined pnetid SYZ0
[  120.197930][   T29] kauditd_printk_skb: 468 callbacks suppressed
[  120.197948][   T29] audit: type=1326 audit(1740313428.793:3022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.0.887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f065cc34127 code=0x7ffc0000
[  120.244527][   T29] audit: type=1326 audit(1740313428.793:3023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.0.887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f065cbd9359 code=0x7ffc0000
[  120.267914][   T29] audit: type=1326 audit(1740313428.793:3024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.0.887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[  120.291249][   T29] audit: type=1326 audit(1740313428.793:3025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5879 comm="syz.4.886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[  120.314623][   T29] audit: type=1326 audit(1740313428.793:3026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5879 comm="syz.4.886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5f71f99359 code=0x7ffc0000
[  120.337981][   T29] audit: type=1326 audit(1740313428.793:3027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5879 comm="syz.4.886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f5f71ffd169 code=0x7ffc0000
[  120.361502][   T29] audit: type=1326 audit(1740313428.803:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.0.887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f065cc34127 code=0x7ffc0000
[  120.384774][   T29] audit: type=1326 audit(1740313428.803:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.0.887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f065cbd9359 code=0x7ffc0000
[  120.408008][   T29] audit: type=1326 audit(1740313428.803:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5882 comm="syz.0.887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f065cc3d169 code=0x7ffc0000
[  120.431352][   T29] audit: type=1326 audit(1740313428.803:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5879 comm="syz.4.886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5f71ff4127 code=0x7ffc0000
[  120.715940][ T5902] netlink: 'syz.4.894': attribute type 4 has an invalid length.
[  120.723702][ T5902] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.894'.
[  120.776848][ T5908] netlink: 76 bytes leftover after parsing attributes in process `syz.3.898'.
[  120.923116][ T5915] bridge_slave_1: left allmulticast mode
[  120.928906][ T5915] bridge_slave_1: left promiscuous mode
[  120.934704][ T5915] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.967525][ T5915] bond0: (slave bond_slave_0): Releasing backup interface
[  120.976550][ T5915] bond_slave_0: left promiscuous mode
[  120.986980][ T5915] bond0: (slave bond_slave_1): Releasing backup interface
[  121.005072][ T5915] bond_slave_1: left promiscuous mode
[  121.013361][ T5915] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  121.020838][ T5915] batman_adv: batadv0: Removing interface: batadv_slave_0
[  121.449624][ T5926] netlink: 124 bytes leftover after parsing attributes in process `syz.0.903'.
[  121.475600][ T5915] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  121.483024][ T5915] batman_adv: batadv0: Removing interface: batadv_slave_1
[  121.804174][ T5935] usb usb1: check_ctrlrecip: process 5935 (syz.0.904) requesting ep 01 but needs 81
[  121.814001][ T5927] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  121.821746][ T5928] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  121.864170][ T5935] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  121.898660][ T5941] smc: net device bond0 applied user defined pnetid SYZ0
[  122.260819][ T5951] pim6reg: entered allmulticast mode
[  122.584795][ T5954] netlink: 76 bytes leftover after parsing attributes in process `syz.0.910'.
[  123.182317][ T5966] netlink: 124 bytes leftover after parsing attributes in process `syz.2.914'.
[  123.292306][ T5947] smc: net device bond0 erased user defined pnetid SYZ0
[  123.376567][ T5971] usb usb1: check_ctrlrecip: process 5971 (syz.2.915) requesting ep 01 but needs 81
[  123.400370][ T5971] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  123.690632][ T5989] netlink: 76 bytes leftover after parsing attributes in process `syz.0.922'.
[  123.728416][ T5990] usb usb1: check_ctrlrecip: process 5990 (syz.4.917) requesting ep 01 but needs 81
[  123.738065][ T5990] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  124.507029][ T6005] bridge_slave_1: left allmulticast mode
[  124.512811][ T6005] bridge_slave_1: left promiscuous mode
[  124.518656][ T6005] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.546881][ T6005] bond0: (slave bond_slave_0): Releasing backup interface
[  124.600772][ T6005] bond0: (slave bond_slave_1): Releasing backup interface
[  124.655255][ T6005] team0: Port device team_slave_0 removed
[  124.683335][ T6005] team0: Port device team_slave_1 removed
[  124.721062][ T6005] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  124.728905][ T6005] batman_adv: batadv0: Removing interface: batadv_slave_0
[  124.805468][ T6005] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  124.812935][ T6005] batman_adv: batadv0: Removing interface: batadv_slave_1
[  124.853093][ T1008] tipc: Resetting bearer <eth:team0>
[  124.973025][ T6021] smc: net device bond0 applied user defined pnetid SYZ0
[  125.004359][ T6021] smc: net device bond0 erased user defined pnetid SYZ0
[  125.241888][ T6034] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  125.250092][ T6034] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  125.553577][ T6036] netlink: 124 bytes leftover after parsing attributes in process `syz.1.936'.
[  125.646061][ T6040] netlink: 'syz.3.938': attribute type 4 has an invalid length.
[  125.653818][ T6040] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.938'.
[  126.061706][   T29] kauditd_printk_skb: 461 callbacks suppressed
[  126.061720][   T29] audit: type=1326 audit(1740313434.653:3493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.133784][ T6053] tipc: Resetting bearer <eth:team0>
[  126.139102][   T29] audit: type=1326 audit(1740313434.683:3494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.162482][   T29] audit: type=1326 audit(1740313434.683:3495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.185882][   T29] audit: type=1326 audit(1740313434.683:3496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.209186][   T29] audit: type=1326 audit(1740313434.683:3497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.232507][   T29] audit: type=1326 audit(1740313434.683:3498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.255816][   T29] audit: type=1326 audit(1740313434.683:3499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.279149][   T29] audit: type=1326 audit(1740313434.683:3500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.302430][   T29] audit: type=1326 audit(1740313434.683:3501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.325570][   T29] audit: type=1326 audit(1740313434.683:3502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6049 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65566d169 code=0x7ffc0000
[  126.745775][ T6063] netlink: 76 bytes leftover after parsing attributes in process `syz.4.945'.
[  126.906147][ T6064] hub 6-0:1.0: USB hub found
[  126.911190][ T6064] hub 6-0:1.0: 8 ports detected
[  127.857008][ T6076] netlink: 124 bytes leftover after parsing attributes in process `syz.4.949'.
[  127.929677][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.937170][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.944609][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.951998][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.959400][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.966833][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.974266][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.981650][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.989136][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  127.996578][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  128.004129][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  128.011549][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  128.019054][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  128.026489][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  128.034082][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  128.041576][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  128.048983][ T3372] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  128.074632][ T3372] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  129.152740][ T6111] usb usb1: check_ctrlrecip: process 6111 (syz.1.961) requesting ep 01 but needs 81
[  129.243980][ T6111] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  129.290603][ T6122] xt_TCPMSS: Only works on TCP SYN packets
[  129.306763][ T6122] random: crng reseeded on system resumption
[  129.956329][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  129.963761][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  129.971189][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  129.978614][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  129.986068][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  129.993459][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.000858][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.008305][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.015710][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.023090][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.030667][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.038127][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.045671][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.053059][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.060486][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.067899][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.075369][    T8] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  130.175669][    T8] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  130.262336][ T6140] netlink: 'syz.4.971': attribute type 4 has an invalid length.
[  130.270157][ T6140] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.971'.
[  130.354714][ T6150] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  130.362557][ T6150] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  130.437465][ T6156] netlink: 44 bytes leftover after parsing attributes in process `syz.2.978'.
[  131.016071][ T6174] netlink: 'syz.4.985': attribute type 4 has an invalid length.
[  131.023820][ T6174] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.985'.
[  131.232151][ T6186] netlink: 32 bytes leftover after parsing attributes in process `syz.3.990'.
[  131.855287][ T6202] usb usb1: check_ctrlrecip: process 6202 (syz.3.994) requesting ep 01 but needs 81
[  131.883525][ T6202] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  132.002405][ T6206] usb usb1: check_ctrlrecip: process 6206 (syz.3.995) requesting ep 01 but needs 81
[  132.034874][ T6206] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  132.146443][ T6149] syz.1.975 (6149) used greatest stack depth: 6096 bytes left
[  132.236342][ T6212] tipc: Resetting bearer <eth:team0>
[  132.330407][ T6213] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.997'.
[  132.389230][ T6216] tipc: Enabled bearer <udp:syz2>, priority 10
[  132.395542][ T6217] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  132.599292][ T6224] usb usb1: check_ctrlrecip: process 6224 (syz.1.1000) requesting ep 01 but needs 81
[  132.697285][ T6224] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  133.474035][ T6239] usb usb1: check_ctrlrecip: process 6239 (syz.1.1006) requesting ep 01 but needs 81
[  133.486603][ T6239] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  133.594092][   T29] kauditd_printk_skb: 813 callbacks suppressed
[  133.594107][   T29] audit: type=1326 audit(1740313442.183:4316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2ef76d4127 code=0x7ffc0000
[  133.623716][   T29] audit: type=1326 audit(1740313442.183:4317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2ef7679359 code=0x7ffc0000
[  133.647162][   T29] audit: type=1326 audit(1740313442.183:4318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[  133.670550][   T29] audit: type=1326 audit(1740313442.183:4319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2ef76d4127 code=0x7ffc0000
[  133.693925][   T29] audit: type=1326 audit(1740313442.183:4320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2ef7679359 code=0x7ffc0000
[  133.717306][   T29] audit: type=1326 audit(1740313442.183:4321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[  133.740603][   T29] audit: type=1326 audit(1740313442.183:4322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2ef76d4127 code=0x7ffc0000
[  133.764057][   T29] audit: type=1326 audit(1740313442.183:4323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2ef7679359 code=0x7ffc0000
[  133.787366][   T29] audit: type=1326 audit(1740313442.183:4324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ef76dd169 code=0x7ffc0000
[  133.810820][   T29] audit: type=1326 audit(1740313442.183:4325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6233 comm="syz.2.1004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2ef76d4127 code=0x7ffc0000
[  133.873576][ T6251] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1010'.
[  134.288224][ T6272] pim6reg: entered allmulticast mode
[  134.497120][ T6285] usb usb1: check_ctrlrecip: process 6285 (syz.2.1021) requesting ep 01 but needs 81
[  134.506695][ T6285] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  135.224841][ T6297] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1024'.
[  135.274539][ T6293] hub 6-0:1.0: USB hub found
[  135.279218][ T6293] hub 6-0:1.0: 8 ports detected
[  135.353087][ T6303] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1027'.
[  135.711352][ T6323] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  135.717909][ T6323] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  135.725460][ T6323] vhci_hcd vhci_hcd.0: Device attached
[  135.791186][ T6326] vhci_hcd: cannot find the pending unlink 7
[  135.806145][ T6326] vhci_hcd: connection closed
[  135.806330][   T40] vhci_hcd: stop threads
[  135.815503][   T40] vhci_hcd: release socket
[  135.819915][   T40] vhci_hcd: disconnect device
[  136.434996][ T6331] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1038'.
[  136.589110][ T6335] usb usb1: check_ctrlrecip: process 6335 (syz.3.1039) requesting ep 01 but needs 81
[  136.613996][ T6335] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  136.694345][ T6340] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1042'.
[  136.791326][ T6348] ref_ctr_offset mismatch. inode: 0x42a offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xc080
[  136.865059][ T6337] hub 6-0:1.0: USB hub found
[  136.873051][ T6337] hub 6-0:1.0: 8 ports detected
[  137.011084][ T6364] usb usb1: check_ctrlrecip: process 6364 (syz.4.1052) requesting ep 01 but needs 81
[  137.028162][ T6364] vhci_hcd: default hub control req: 0200 v0000 i0001 l0
[  137.088498][ T6373] smc: net device bond0 applied user defined pnetid SYZ0
[  137.760467][ T6405] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1068'.
[  137.847459][ T6410] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1070'.
[  137.866286][ T6406] hub 6-0:1.0: USB hub found
[  137.871001][ T6406] hub 6-0:1.0: 8 ports detected
[  138.012420][ T6383] smc: net device bond0 erased user defined pnetid SYZ0
[  138.130575][ T6420] ==================================================================
[  138.138682][ T6420] BUG: KCSAN: data-race in do_readv / do_sendfile
[  138.145118][ T6420] 
[  138.147517][ T6420] write to 0xffff888119ffc430 of 8 bytes by task 6421 on cpu 0:
[  138.155158][ T6420]  do_readv+0x127/0x220
[  138.159330][ T6420]  __x64_sys_readv+0x45/0x50
[  138.163939][ T6420]  x64_sys_call+0x2c34/0x2dc0
[  138.168646][ T6420]  do_syscall_64+0xc9/0x1c0
[  138.173179][ T6420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.179093][ T6420] 
[  138.181420][ T6420] read to 0xffff888119ffc430 of 8 bytes by task 6420 on cpu 1:
[  138.188971][ T6420]  do_sendfile+0x113/0x660
[  138.193426][ T6420]  __x64_sys_sendfile64+0x110/0x150
[  138.198646][ T6420]  x64_sys_call+0xfbd/0x2dc0
[  138.203261][ T6420]  do_syscall_64+0xc9/0x1c0
[  138.207881][ T6420]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.213801][ T6420] 
[  138.216126][ T6420] value changed: 0x0000000000000000 -> 0x000000000000000e
[  138.223242][ T6420] 
[  138.225565][ T6420] Reported by Kernel Concurrency Sanitizer on:
[  138.231733][ T6420] CPU: 1 UID: 0 PID: 6420 Comm: syz.4.1074 Not tainted 6.14.0-rc3-syzkaller-00295-g27102b38b8ca #0
[  138.242439][ T6420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  138.252505][ T6420] ==================================================================
[  138.291516][ T6415] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  138.299534][ T6415] tipc: Enabling of bearer <eth:team0> rejected, already enabled