last executing test programs:

8.026183042s ago: executing program 3 (id=1214):
socket$inet6(0xa, 0x40000080806, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001240)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x6, 0x4, 0x5b, 0x8a, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000180)={r0, r1}, 0xc)

7.94001175s ago: executing program 3 (id=1216):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000044700000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001280)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000002000000000000000000000000070200006111960884fc57f0532d6bbfd3ac1144a81714d8c76790b9e5beef8421c8b08937dd741474175608bcd18c03f1d7c30b844b6175581d56b8aca9bb7aa34a327469eae6c23621577c7b75e47e37a89b33e42bdaa8c947ba0f"], 0x18}, 0x1, 0x5502000000000000}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x0, 0x1a, &(0x7f0000000240)=ANY=[@ANYBLOB="180500f1a1d739470d00"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018200000", @ANYRES32, @ANYBLOB="00000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000000500000010000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x90)
write$UHID_CREATE2(r2, &(0x7f00000002c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(r3, 0xc0481273, &(0x7f0000000000))

7.931571201s ago: executing program 3 (id=1218):
r0 = socket$kcm(0x2, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x44, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x402, &(0x7f0000000800)=ANY=[@ANYBLOB="756e695f786c6174653d312c6e6f6e756d7461696c3d300000000000000008303030303030303030303034303030303030303030302c73686f72746e616d653d65722c73686f72746e616d653d6d697865642c756e695f786c6174653d312c73686f72746e616d653d6d697865642c696f630100727365743d757466f69e75731725e72216799ebd57484a7e1948a8aa65667265652c757466383d312c6e66733d6e6f7374616c655f726f2c73686f72682e616d653d6d697865642c757466383d306d653d77696e6e742c007aea3388304ddedb3208ceb9b2c23924743277bd2c0d0019d44efede967f3df81cce421f7aafa8aa7c706311ab7a0ce39abf7858b6ba6ef5206da03692650000000000000001d0559b166f8c433d34c03a60999dea3bab649a260b216354ecc726cd1f6519546e8ef6ae17a0da1b9313ef4b5633c5f1bf756a7816d304d61c4d15539bae9f6e8dc91d178c85744c5cc226ca0568f9f6da8997bc10100b836488e47d0b7e6ccffaf123b1000000d6d876f2e37dde582f497ab6d4d11f7211b4aaf087f529ffc0000ee312a30cc69ae25ac6a986a76824020b12971980e00a27786eef1c2537fdcb1de9c4bed7175c6704f0c39d14da07a8edf97525a0c8138686d6e2b8d90102027245729e944719894ebe079bf1ab2b7002c54c5c714bff93d9475ff23f653874321e4ecc1ebd2baa44aea86a1617e53fcc5683e5c7b14e5158239aebf96ef3b73359414993575bf4e880ac24d7fee38c5a22f6fae6a22a2185cd5a25b7bc11062d649340f8220bfa18cae94fd73afbb38b2fc20a263e091c5eb14ce630628aaf65b7ccab9b4d3b2c220153cd28c86e6c8e58903c66698fd27f4f22a9fd1dd67d70de664e3b985f20ada8c0f531865a9093fe6d3cd52c721dcfe391a812583c4e745b824429ce98f2a7928d22c9b5302719058f593fddbbb60ca7"], 0x1, 0x289, &(0x7f0000000d40)="$eJzs3M9r034cx/H3un63rmNLD18FBfGNXvQStvoHSJENxIIyV1EPQuZSDY3NSMKkIm43Lx78O4ZHb4L6D+zizbu3XQQvA8VI2tSl+yGoa7PZ5wOafJpPX80nbVreCSRbt18+atQDs26Fkiuo5ETWZVukFLcSI8k8126PSdq6XJz88vHMzTt3r1Wq1bkF1fnK4qWyqk6fffv46atz78PJW6+n34zLZune1ufyp82Tm6e2vi8+dAJ1Am16oVq65HmhteTauuwEDVP1hmtbga1OM7D9nv66662stNRqLk8VV3w7CNRqtrRhtzT0NPRbaj2wnKaapqlTRUFaFO1dVttYWLAqWYwGA5GPJ75fsUZFZGJPd20ji0EBAIBspet/OXL1f1y1/Lr+X6f+/wvU/8Mgrv+Lye+3F/U/AAAAAAAAAAAAAAAAAAAAAADHwXYUGVEUGd159zEuIoX2VeOd51mPE/3B9z/cUhfuFUTc56u11ZqIOxJPY5W6OOKKLTNiyLf2/pDotOevVudmtK0k79y1JL+2Whvtzc+KIaX987OdfLzLpfL/STGdL4sh/++fL3fy2rv+MblwPpU3xZAP98UTV5aTu2F0889mVa9cr+7KT7RfBwAAAADAv8DUn/Y9fjfNg/o7+d84P7Dr+Dovp/PZbjsAAAAAAMMiaD1pWK5r+/1vdFeZ7vqanCwY4DCOYeOEiPxR/HLqrq87Xfk9Sw678cI7Kh/dEWwURORQ33BC+jHUbP6PAAAAAPTPTtGf9UgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABheg7jh2QGrzg14UwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDM/QgAAP//1JUjCw==")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB="000000007ee8368b412cef7fac6e5a76fa58a7c27100000000000000000000000004000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r3 = syz_open_dev$usbfs(&(0x7f0000000200), 0x5, 0xc201)
ioctl$USBDEVFS_FREE_STREAMS(r3, 0x8008551d, &(0x7f00000002c0)={0x9b1, 0xc, [{0xa}, {0x9}, {0xc, 0x1}, {0x6, 0x1}, {0xc}, {0x2}, {0x1, 0x1}, {0x3}, {0x6}, {0xb, 0x1}, {0xa}, {0x9, 0x1}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10)
r8 = socket(0x10, 0x3, 0x0)
connect$netlink(r8, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
sendmsg$nl_route_sched(r8, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x30, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x18, 0xc, &(0x7f0000000c00)=ANY=[@ANYRESOCT=r5, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x7}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x275a, 0x0)
r10 = socket$netlink(0x10, 0x3, 0x0)
writev(r10, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r10, &(0x7f0000000300)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r11 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r11, 0x0, 0x23, &(0x7f0000000740)={@local, @private=0xa010101}, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=@newtaction={0x18, 0x30, 0x0, 0xfffffffd, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd60922ff50020210000000000000000000000fffffffffffffe8000000000000000000000000000aa080000000000000011"], 0x0)
setsockopt$inet_msfilter(r11, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a010000000004"], 0x57)
setsockopt$inet_mreqsrc(r1, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

7.780690455s ago: executing program 3 (id=1222):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'bond0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=@newlink={0x48, 0x10, 0x401, 0x500, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x10, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x4}]}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x48}}, 0x0)

7.671909495s ago: executing program 3 (id=1224):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
r1 = open(0x0, 0x14507e, 0x0)
write$selinux_access(r1, &(0x7f0000000180)={'system_u:object_r:unconfined_execmem_exec_t:s0', 0x20, '/usr/lib/telepathy/mission-control-5', 0x20, 0x2}, 0x69)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffbfff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={0x0, 0xffffffffffffffff, 0x0, 0x10b}, 0x18)
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
io_setup(0x8, &(0x7f0000000000))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r1)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r5, 0x1, 0x0, 0x0, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

4.413926268s ago: executing program 3 (id=1279):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

1.782996433s ago: executing program 2 (id=1329):
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x100440a, &(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYRESDEC=0x0, @ANYRES16, @ANYRES32], 0xfb, 0x692, &(0x7f0000000b40)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000340)='./file0\x00')

1.745209387s ago: executing program 2 (id=1330):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000580)='kfree\x00', r0, 0x0, 0x100000000000}, 0x18)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000080)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}, {{}, {0x0, 0x0, 0x1, 0x1}}], 0x10)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, 0x0, 0x0)

1.682120513s ago: executing program 2 (id=1331):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x0, 0x401, 0x0, 0xffffffffffffffff, 0xff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socketpair(0x1e, 0x80005, 0x0, 0x0)
close(0xffffffffffffffff)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000180), 0x127)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00'}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r3}, 0x10)
syz_clone(0x0, 0x0, 0x1100, 0x0, 0x0, 0x0)

1.629848068s ago: executing program 2 (id=1333):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000080000000b00000000000000", @ANYRES32, @ANYBLOB="00000000000000000000fbffffff100003000000", @ANYRES32=0x0, @ANYBLOB='\x00'/27], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$rds(0x15, 0x5, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000200)=0x14)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="3000000001000000080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000001148d49b0a55fff41222ed835630091030c01761af1a143a2b48dcd8e1c0637c54591e519be8b4e57ffe642f1694d5dcbcf498e2146858625eb4530aadfb261e262225a6cfc1cbb27a56b692a2726bb96d73f09844c1014a1a2f079bb4e2a76f3794ab26c83297a98f7ae97cc06409a49af0ca2d92756309cf961be1206fe8497af2ab82f61b39fe1d734d2a2a869270e8e6b612c3214f71badd47b4cd951c98031182707fc2539a93b59be7dddc0cf06f0e6237b21cd78cce81446100729546f3c5d24e80e5dbf4dc8d1fd1"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000040)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x8}, 0xffffffffffffffb6)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000300)={0x0, 0x1, 0x7})
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffff038}, {0x6}]}, 0x10)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_open_procfs$namespace(0x0, &(0x7f00000002c0)='ns/mnt\x00')
sendmsg$nl_xfrm(r4, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c0000000206050000000000000000000000000014000780080017400000000008000640000000000500010006000000050005000000000005000400000000000900020073797a31000000000d0003006c6973743a73657474023500000000"], 0x5c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f00000005c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000400)={&(0x7f0000000500)={0xb8, 0x1, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x1400}, @CTA_TUPLE_MASTER={0x18, 0xe, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @loopback}}}]}, @CTA_TUPLE_ORIG={0x38, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SYNPROXY={0x3c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0xe}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x4}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x3}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40010}, 0x40000)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400a4026110d4941004", @ANYRES16=0x0, @ANYBLOB="0000000000000000000012000000"], 0x14}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[], 0x58}}, 0x4040051)

1.446996624s ago: executing program 2 (id=1334):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000001600008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f00000002c0)={<r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000000c0)=[{&(0x7f0000000000)='|', 0x1}], 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)

1.292955099s ago: executing program 2 (id=1335):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='tlb_flush\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
r1 = open(0x0, 0x14507e, 0x0)
write$selinux_access(r1, &(0x7f0000000180)={'system_u:object_r:unconfined_execmem_exec_t:s0', 0x20, '/usr/lib/telepathy/mission-control-5', 0x20, 0x2}, 0x69)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r1)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x0, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

1.134002774s ago: executing program 4 (id=1340):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000200)='tlb_flush\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x10)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
r1 = open(0x0, 0x14507e, 0x0)
write$selinux_access(r1, &(0x7f0000000180)={'system_u:object_r:unconfined_execmem_exec_t:s0', 0x20, '/usr/lib/telepathy/mission-control-5', 0x20, 0x2}, 0x69)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffbfff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
symlink(&(0x7f0000000dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000000), r1)
sendmsg$DEVLINK_CMD_RATE_NEW(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x0, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

434.799119ms ago: executing program 1 (id=1347):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x100440a, &(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYRESDEC=0x0, @ANYRES16, @ANYRES32], 0xfb, 0x692, &(0x7f0000000b40)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x8}, 0x18)
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

392.735943ms ago: executing program 0 (id=1348):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000001140)=ANY=[@ANYBLOB="3c010000100013ff000000000000000000000000ff01000000000000000000000000000100730000000000000200"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac1414bb0000000000000000000000000000000033000000ff01000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c001400636d61632861657329"], 0x13c}}, 0x0)

372.737275ms ago: executing program 1 (id=1349):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0xfffc, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0xfffffffc}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x9c}}, 0x0)

351.946066ms ago: executing program 0 (id=1350):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = io_uring_setup(0x7975, &(0x7f00000002c0)={0x0, 0x659, 0x40, 0x1, 0x328})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, &(0x7f0000000380)=[@ioring_restriction_register_op={0x0, 0x3}], 0x1)

302.120291ms ago: executing program 1 (id=1351):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a3200000000140000001100"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a90000000030a0300000000000000000002e000000c00020000000000000000010900010073797a30"], 0xb8}}, 0x0)

301.860421ms ago: executing program 0 (id=1352):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0xfe30)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='\vK\v\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYBLOB="000000000000693fcafc9a31a06a536e20addc25f100"/35, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES16, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\n\x00'/28], 0x48)
shmdt(0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0x4, &(0x7f0000000440)=ANY=[], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r4, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r6, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f00000002c0)="89", 0x1}], 0x1, &(0x7f0000000e40)=ANY=[], 0xd0}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000380)="60454305", 0x4}], 0x1}}], 0x2, 0x0)
close(r6)

268.846834ms ago: executing program 1 (id=1353):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f00000003c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000009c0)='kfree\x00', r1}, 0x10)
r2 = io_uring_setup(0x7975, &(0x7f00000002c0)={0x0, 0x659, 0x40, 0x1, 0x328})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, &(0x7f0000000380), 0x0)

259.978375ms ago: executing program 4 (id=1354):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
writev(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket(0x1e, 0x4, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r4}, 0x10)
alarm(0x8000000000000001)
dup3(r3, r2, 0x0)
recvmsg(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000100)=""/207, 0xcf}], 0x1}, 0x0)
writev(0xffffffffffffffff, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2)

229.661288ms ago: executing program 1 (id=1355):
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x10)
clock_getres(0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000570000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000202000000000001000000000000003b5196dab3af0c41000000030014e5de6f6106000000000000006e6b51c700000000e800000000001000000000000000be04af2a075a803955d485fa684e04b8b614bff8f7afd4fc"], 0x30}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
gettid()
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$SIOCSIFHWADDR(r2, 0x8923, &(0x7f0000000000)={'vlan1\x00', @broadcast})

228.998558ms ago: executing program 0 (id=1356):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0xfe30)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB='\vK\v\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYBLOB="000000000000693fcafc9a31a06a536e20addc25f100"/35, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000200"/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='percpu_alloc_percpu\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES16, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\n\x00'/28], 0x48)
shmdt(0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0x4, &(0x7f0000000440)=ANY=[], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r4, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
r6 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r6, &(0x7f0000002900)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f00000002c0)="89", 0x1}], 0x1, &(0x7f0000000e40)=ANY=[], 0xd0}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000380)="60454305", 0x4}], 0x1}}], 0x2, 0x0)
close(r6)

203.31201ms ago: executing program 0 (id=1357):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000001600008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000008500"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f00000002c0)={<r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000000c0)=[{&(0x7f0000000000)='|', 0x1}], 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)

188.997012ms ago: executing program 1 (id=1358):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x493, &(0x7f0000000640)="$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")
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0008e3"], 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000140), 0x1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000180))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r1, 0x802c550a, &(0x7f0000000280)=@urb_type_interrupt={0x1, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = mq_open(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x20, 0x40, &(0x7f0000000040)={0x6, 0x3, 0xfffffffffffffffc, 0x1000})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000001e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_HASH_TYPE={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_HASH_MODULUS={0x8}, @NFTA_HASH_DREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}}, 0x0)
mq_timedsend(r2, &(0x7f0000000080)="d061caff1aeabef40080d2b911d4a8089bc1", 0x12, 0x9, &(0x7f00000000c0)={0x0, 0x3938700})
syz_read_part_table(0x1062, &(0x7f0000000000)="$eJzszzEuRlEQBeBz730vrs4OLEckWh2VgtgEtmMZSp3ECqxCN/IST6yAv/i+aubMZJIJ/+q4z2S0LHtwcpSkXb1sdftOz08z83qRz6q1t+vbkVFVD2npv2/VW5aznqzv60/W7m/mtlW1NY8fd/1pzH04Lp//5ksAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOGxfAQAA//8M+xNQ")

91.069281ms ago: executing program 4 (id=1359):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000b8e98500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='cpuset\x00')
preadv(r2, &(0x7f0000000840)=[{&(0x7f0000001dc0)=""/4088, 0xff8}], 0x1, 0x0, 0x0)

74.427792ms ago: executing program 4 (id=1360):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f00000003c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
r1 = io_uring_setup(0x7975, &(0x7f00000002c0)={0x0, 0x659, 0x40, 0x1, 0x328})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r1, 0xb, &(0x7f0000000380)=[@ioring_restriction_register_op={0x0, 0x3}], 0x1)

11.759528ms ago: executing program 4 (id=1361):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f00000003c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000009c0)='kfree\x00', r1}, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000000), 0xffffffffffffffff)
r2 = io_uring_setup(0x7975, &(0x7f00000002c0)={0x0, 0x659, 0x40, 0x1, 0x328})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, &(0x7f0000000380)=[@ioring_restriction_register_op={0x0, 0x3}], 0x1)

7.426238ms ago: executing program 4 (id=1362):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = io_uring_setup(0x7975, &(0x7f00000002c0)={0x0, 0x659, 0x40, 0x1, 0x328})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
io_uring_register$IORING_REGISTER_RESTRICTIONS(r2, 0xb, &(0x7f0000000380)=[@ioring_restriction_register_op={0x0, 0x3}], 0x1)

0s ago: executing program 0 (id=1363):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r0)
open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$int_in(r1, 0x5452, &(0x7f0000000280)=0xffffffffffffffff)
sendto$inet6(r1, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

kernel console output (not intermixed with test programs):

ver after parsing attributes in process `syz.0.646'.
[   70.114967][ T5324] netlink: 68 bytes leftover after parsing attributes in process `syz.0.646'.
[   70.418808][ T5344] IPv4: Oversized IP packet from 172.20.20.24
[   70.425130][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   70.431319][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   70.525753][ T5355] loop4: detected capacity change from 0 to 512
[   70.532932][ T5355] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   70.551270][ T5355] EXT4-fs (loop4): 1 truncate cleaned up
[   70.561716][ T5355] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   70.584912][ T4398] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.670673][ T5366] 9pnet_fd: Insufficient options for proto=fd
[   70.855676][ T5379] capability: warning: `syz.4.670' uses 32-bit capabilities (legacy support in use)
[   70.906173][ T5382] sd 0:0:1:0: device reset
[   70.920294][ T5134] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.934652][ T5134] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.951653][ T5134] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.965019][ T5134] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.057660][ T5395] FAULT_INJECTION: forcing a failure.
[   71.057660][ T5395] name failslab, interval 1, probability 0, space 0, times 0
[   71.070514][ T5395] CPU: 1 UID: 0 PID: 5395 Comm: syz.4.675 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   71.080866][ T5395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   71.090966][ T5395] Call Trace:
[   71.094256][ T5395]  <TASK>
[   71.097322][ T5395]  dump_stack_lvl+0xf2/0x150
[   71.101959][ T5395]  dump_stack+0x15/0x20
[   71.106170][ T5395]  should_fail_ex+0x229/0x230
[   71.110873][ T5395]  ? __alloc_skb+0x10b/0x310
[   71.115512][ T5395]  should_failslab+0x8f/0xb0
[   71.120220][ T5395]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   71.126053][ T5395]  __alloc_skb+0x10b/0x310
[   71.130585][ T5395]  sock_omalloc+0x7e/0xe0
[   71.135073][ T5395]  msg_zerocopy_realloc+0x83/0x3c0
[   71.140264][ T5395]  ? cgroup_rstat_updated+0x99/0x550
[   71.145574][ T5395]  tcp_sendmsg_locked+0x232e/0x2700
[   71.150868][ T5395]  ? page_counter_charge+0x1a8/0x1d0
[   71.156199][ T5395]  ? mod_objcg_state+0x2ea/0x4f0
[   71.161164][ T5395]  ? __rcu_read_unlock+0x4e/0x70
[   71.166162][ T5395]  ? __rcu_read_unlock+0x4e/0x70
[   71.171195][ T5395]  ? avc_has_perm_noaudit+0x1cc/0x210
[   71.176694][ T5395]  ? avc_has_perm+0xd4/0x160
[   71.181343][ T5395]  ? _raw_spin_unlock_bh+0x36/0x40
[   71.186552][ T5395]  ? __pfx_tcp_sendmsg+0x10/0x10
[   71.191523][ T5395]  tcp_sendmsg+0x30/0x50
[   71.195860][ T5395]  inet_sendmsg+0x77/0xd0
[   71.200341][ T5395]  __sock_sendmsg+0x102/0x180
[   71.205040][ T5395]  ____sys_sendmsg+0x312/0x410
[   71.209927][ T5395]  __sys_sendmmsg+0x25d/0x500
[   71.214832][ T5395]  __x64_sys_sendmmsg+0x57/0x70
[   71.219789][ T5395]  x64_sys_call+0xa49/0x2d60
[   71.224457][ T5395]  do_syscall_64+0xc9/0x1c0
[   71.228976][ T5395]  ? clear_bhb_loop+0x55/0xb0
[   71.233688][ T5395]  ? clear_bhb_loop+0x55/0xb0
[   71.238411][ T5395]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.244376][ T5395] RIP: 0033:0x7f8147fadef9
[   71.249070][ T5395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.270966][ T5395] RSP: 002b:00007f8146c27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   71.279482][ T5395] RAX: ffffffffffffffda RBX: 00007f8148165f80 RCX: 00007f8147fadef9
[   71.287481][ T5395] RDX: 0000000000000002 RSI: 0000000020000440 RDI: 0000000000000003
[   71.296450][ T5395] RBP: 00007f8146c27090 R08: 0000000000000000 R09: 0000000000000000
[   71.304622][ T5395] R10: 000000000f000000 R11: 0000000000000246 R12: 0000000000000001
[   71.312634][ T5395] R13: 0000000000000000 R14: 00007f8148165f80 R15: 00007ffe61e2a458
[   71.320666][ T5395]  </TASK>
[   71.494118][ T5410] bond1: entered promiscuous mode
[   71.499323][ T5410] bond1: entered allmulticast mode
[   71.505685][ T5410] 8021q: adding VLAN 0 to HW filter on device bond1
[   71.538620][ T5410] bond1 (unregistering): Released all slaves
[   71.561414][ T5417] loop4: detected capacity change from 0 to 256
[   71.620339][ T5420] loop3: detected capacity change from 0 to 2048
[   71.666403][ T5420]  loop3: p1 < > p4
[   71.678282][ T5420] loop3: p4 size 8388608 extends beyond EOD, truncated
[   71.722360][ T5424] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   71.732269][ T5424] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.773610][ T5424] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   71.783508][ T5424] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   71.797847][ T5433] FAULT_INJECTION: forcing a failure.
[   71.797847][ T5433] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   71.811247][ T5433] CPU: 0 UID: 0 PID: 5433 Comm: syz.2.690 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   71.821587][ T5433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   71.831693][ T5433] Call Trace:
[   71.834973][ T5433]  <TASK>
[   71.837978][ T5433]  dump_stack_lvl+0xf2/0x150
[   71.842611][ T5433]  dump_stack+0x15/0x20
[   71.846968][ T5433]  should_fail_ex+0x229/0x230
[   71.851716][ T5433]  should_fail+0xb/0x10
[   71.855899][ T5433]  should_fail_usercopy+0x1a/0x20
[   71.860952][ T5433]  _copy_from_user+0x1e/0xd0
[   71.865564][ T5433]  copy_msghdr_from_user+0x54/0x2a0
[   71.870802][ T5433]  __sys_sendmsg+0x171/0x270
[   71.875575][ T5433]  __x64_sys_sendmsg+0x46/0x50
[   71.880465][ T5433]  x64_sys_call+0x2689/0x2d60
[   71.885166][ T5433]  do_syscall_64+0xc9/0x1c0
[   71.889753][ T5433]  ? clear_bhb_loop+0x55/0xb0
[   71.894469][ T5433]  ? clear_bhb_loop+0x55/0xb0
[   71.899276][ T5433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   71.905219][ T5433] RIP: 0033:0x7fc6f7eadef9
[   71.909697][ T5433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   71.929408][ T5433] RSP: 002b:00007fc6f6b27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   71.938005][ T5433] RAX: ffffffffffffffda RBX: 00007fc6f8065f80 RCX: 00007fc6f7eadef9
[   71.945999][ T5433] RDX: 0000000000000000 RSI: 0000000020001200 RDI: 0000000000000004
[   71.954196][ T5433] RBP: 00007fc6f6b27090 R08: 0000000000000000 R09: 0000000000000000
[   71.962273][ T5433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   71.970260][ T5433] R13: 0000000000000000 R14: 00007fc6f8065f80 R15: 00007ffd2f5e0f78
[   71.978241][ T5433]  </TASK>
[   72.008764][ T5424] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   72.018686][ T5424] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.071151][ T5424] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   72.081053][ T5424] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   72.093768][ T2967]  loop3: p4
[   72.099362][ T2967] loop3: p4 size 8388608 extends beyond EOD, truncated
[   72.100300][ T5445] loop2: detected capacity change from 0 to 2048
[   72.128125][ T5447] __nla_validate_parse: 2 callbacks suppressed
[   72.128138][ T5447] netlink: 8 bytes leftover after parsing attributes in process `syz.3.695'.
[   72.151774][ T2967]  loop2: p1 < > p4
[   72.156860][ T5424] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   72.165171][ T5424] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.169752][ T2967] loop2: p4 size 8388608 extends beyond EOD, truncated
[   72.176856][ T5424] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   72.188509][ T5424] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.200183][ T2967]  loop2: p1 < > p4
[   72.204774][ T2967] loop2: p4 size 8388608 extends beyond EOD, truncated
[   72.207257][ T5424] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   72.220020][ T5424] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.231138][ T5445]  loop2: p1 < > p4
[   72.231785][ T5424] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   72.240712][ T5445] loop2: p4 size 8388608 extends beyond EOD, truncated
[   72.243301][ T5424] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.292776][ T2967]  loop2: p1 < > p4
[   72.297402][ T2967] loop2: p4 size 8388608 extends beyond EOD, truncated
[   72.333002][ T5459] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[   72.342264][ T5460] netlink: 4 bytes leftover after parsing attributes in process `syz.0.701'.
[   72.387269][ T5460] loop0: detected capacity change from 0 to 512
[   72.398636][ T5460] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   72.411086][ T5460] EXT4-fs (loop0): 1 truncate cleaned up
[   72.425357][ T3549] udevd[3549]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   72.441684][ T5460] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.469266][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.515302][ T3252] udevd[3252]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   72.526728][ T3549] udevd[3549]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   72.559978][ T3549] udevd[3549]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   72.562473][ T3258] udevd[3258]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   72.633949][ T3549] udevd[3549]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   72.657423][ T3252] udevd[3252]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   72.672714][ T3252] udevd[3252]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[   72.683085][ T3549] udevd[3549]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[   72.743836][ T5499] netlink: 16 bytes leftover after parsing attributes in process `syz.4.716'.
[   72.803769][ T5507] netlink: 4 bytes leftover after parsing attributes in process `syz.0.720'.
[   72.824887][ T5507] loop0: detected capacity change from 0 to 512
[   72.834115][ T5507] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   72.845583][ T5507] EXT4-fs (loop0): 1 truncate cleaned up
[   72.851696][ T5507] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.889864][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.172561][ T5534] loop4: detected capacity change from 0 to 764
[   73.180760][ T5534] FAULT_INJECTION: forcing a failure.
[   73.180760][ T5534] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   73.194091][ T5534] CPU: 1 UID: 0 PID: 5534 Comm: syz.4.731 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   73.204408][ T5534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   73.214553][ T5534] Call Trace:
[   73.217851][ T5534]  <TASK>
[   73.220779][ T5534]  dump_stack_lvl+0xf2/0x150
[   73.225398][ T5534]  dump_stack+0x15/0x20
[   73.229576][ T5534]  should_fail_ex+0x229/0x230
[   73.234300][ T5534]  should_fail+0xb/0x10
[   73.238485][ T5534]  should_fail_usercopy+0x1a/0x20
[   73.243596][ T5534]  strncpy_from_user+0x25/0x270
[   73.248527][ T5534]  ? kmem_cache_alloc_noprof+0x10c/0x290
[   73.254170][ T5534]  getname_flags+0xb0/0x3b0
[   73.258777][ T5534]  getname+0x17/0x20
[   73.262752][ T5534]  do_sys_openat2+0x67/0x120
[   73.267383][ T5534]  __x64_sys_open+0xe6/0x110
[   73.272108][ T5534]  x64_sys_call+0x1321/0x2d60
[   73.276907][ T5534]  do_syscall_64+0xc9/0x1c0
[   73.281494][ T5534]  ? clear_bhb_loop+0x55/0xb0
[   73.286210][ T5534]  ? clear_bhb_loop+0x55/0xb0
[   73.290924][ T5534]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.296921][ T5534] RIP: 0033:0x7f8147fadef9
[   73.301374][ T5534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.321073][ T5534] RSP: 002b:00007f8146c27038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   73.329721][ T5534] RAX: ffffffffffffffda RBX: 00007f8148165f80 RCX: 00007f8147fadef9
[   73.337749][ T5534] RDX: 0000000000000000 RSI: 0000000000161b42 RDI: 0000000020000200
[   73.345754][ T5534] RBP: 00007f8146c27090 R08: 0000000000000000 R09: 0000000000000000
[   73.345868][ T5538] netlink: 4 bytes leftover after parsing attributes in process `syz.3.733'.
[   73.353731][ T5534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   73.353750][ T5534] R13: 0000000000000000 R14: 00007f8148165f80 R15: 00007ffe61e2a458
[   73.353775][ T5534]  </TASK>
[   73.420308][ T5538] loop3: detected capacity change from 0 to 512
[   73.426315][ T5545] tc_dump_action: action bad kind
[   73.435636][ T5538] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   73.460827][ T5538] EXT4-fs (loop3): 1 truncate cleaned up
[   73.467165][ T5538] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.487630][ T5552] netlink: 60 bytes leftover after parsing attributes in process `syz.1.739'.
[   73.496912][ T5552] netlink: 60 bytes leftover after parsing attributes in process `syz.1.739'.
[   73.497452][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.544488][ T5556] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5556 comm=syz.3.740
[   73.599917][ T5562] loop1: detected capacity change from 0 to 164
[   73.631730][ T5562] process 'syz.1.744' launched './file0' with NULL argv: empty string added
[   73.652777][ T5562] syz.1.744: attempt to access beyond end of device
[   73.652777][ T5562] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164
[   73.670355][ T5562] syz.1.744: attempt to access beyond end of device
[   73.670355][ T5562] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164
[   73.782985][ T5585] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5585 comm=syz.4.754
[   73.819501][ T5584] loop1: detected capacity change from 0 to 2048
[   73.838812][ T5587] loop3: detected capacity change from 0 to 512
[   73.846244][ T5589] netlink: 60 bytes leftover after parsing attributes in process `syz.4.756'.
[   73.855363][ T5587] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   73.855983][ T5584]  loop1: p1 < > p4
[   73.867382][ T5589] netlink: 60 bytes leftover after parsing attributes in process `syz.4.756'.
[   73.875951][ T5584] loop1: p4 size 8388608 extends beyond EOD, truncated
[   73.886511][ T5587] EXT4-fs (loop3): 1 truncate cleaned up
[   73.902665][ T2967]  loop1: p1 < > p4
[   73.910148][ T5587] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   73.923471][ T2967] loop1: p4 size 8388608 extends beyond EOD, truncated
[   73.927533][ T5589] netlink: 60 bytes leftover after parsing attributes in process `syz.4.756'.
[   74.067027][ T5613] loop0: detected capacity change from 0 to 1024
[   74.077696][ T5613] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.098434][ T5613] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[   74.111757][ T5613] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   74.185266][ T5622] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5622 comm=syz.4.766
[   74.237903][ T5627] syz.4.768[5627] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.237983][ T5627] syz.4.768[5627] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   74.308995][ T5628] loop4: detected capacity change from 0 to 1024
[   74.660886][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.689448][ T5646] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5646 comm=syz.2.778
[   74.813103][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.822155][   T29] kauditd_printk_skb: 673 callbacks suppressed
[   74.822172][   T29] audit: type=1326 audit(1726802409.817:4792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   74.822204][   T29] audit: type=1326 audit(1726802409.817:4793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   74.876347][   T29] audit: type=1326 audit(1726802409.847:4794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   74.876716][ T5661] 9pnet_fd: Insufficient options for proto=fd
[   74.899818][   T29] audit: type=1326 audit(1726802409.847:4795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   74.929420][   T29] audit: type=1326 audit(1726802409.847:4796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   74.952823][   T29] audit: type=1326 audit(1726802409.847:4797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   74.976240][   T29] audit: type=1326 audit(1726802409.847:4798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   74.999907][   T29] audit: type=1326 audit(1726802409.847:4799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   75.023178][   T29] audit: type=1326 audit(1726802409.847:4800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   75.027922][ T5670] FAULT_INJECTION: forcing a failure.
[   75.027922][ T5670] name failslab, interval 1, probability 0, space 0, times 0
[   75.046707][   T29] audit: type=1326 audit(1726802409.847:4801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5656 comm="syz.3.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   75.059223][ T5670] CPU: 1 UID: 0 PID: 5670 Comm: syz.3.786 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   75.059255][ T5670] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   75.059270][ T5670] Call Trace:
[   75.106220][ T5670]  <TASK>
[   75.109187][ T5670]  dump_stack_lvl+0xf2/0x150
[   75.113878][ T5670]  dump_stack+0x15/0x20
[   75.118078][ T5670]  should_fail_ex+0x229/0x230
[   75.122842][ T5670]  ? __alloc_skb+0x10b/0x310
[   75.127449][ T5670]  should_failslab+0x8f/0xb0
[   75.132073][ T5670]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   75.137994][ T5670]  __alloc_skb+0x10b/0x310
[   75.142478][ T5670]  netlink_alloc_large_skb+0xad/0xe0
[   75.147826][ T5670]  netlink_sendmsg+0x3b4/0x6e0
[   75.152690][ T5670]  ? __pfx_netlink_sendmsg+0x10/0x10
[   75.158211][ T5670]  __sock_sendmsg+0x140/0x180
[   75.162899][ T5670]  ____sys_sendmsg+0x312/0x410
[   75.167727][ T5670]  __sys_sendmsg+0x1dd/0x270
[   75.172362][ T5670]  __x64_sys_sendmsg+0x46/0x50
[   75.177232][ T5670]  x64_sys_call+0x2689/0x2d60
[   75.181967][ T5670]  do_syscall_64+0xc9/0x1c0
[   75.186477][ T5670]  ? clear_bhb_loop+0x55/0xb0
[   75.191176][ T5670]  ? clear_bhb_loop+0x55/0xb0
[   75.196065][ T5670]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.201973][ T5670] RIP: 0033:0x7fc686bcdef9
[   75.206396][ T5670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.226019][ T5670] RSP: 002b:00007fc685847038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   75.234438][ T5670] RAX: ffffffffffffffda RBX: 00007fc686d85f80 RCX: 00007fc686bcdef9
[   75.242498][ T5670] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000003
[   75.250503][ T5670] RBP: 00007fc685847090 R08: 0000000000000000 R09: 0000000000000000
[   75.258550][ T5670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   75.266525][ T5670] R13: 0000000000000000 R14: 00007fc686d85f80 R15: 00007ffdb58b52e8
[   75.274514][ T5670]  </TASK>
[   75.292158][ T5673] hub 6-0:1.0: USB hub found
[   75.296975][ T5673] hub 6-0:1.0: 8 ports detected
[   75.318152][ T5675] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5675 comm=syz.4.789
[   75.351202][ T5677] loop3: detected capacity change from 0 to 512
[   75.369140][ T5677] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   75.394010][ T5677] EXT4-fs (loop3): 1 truncate cleaned up
[   75.414751][ T5677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.448505][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.543432][   T24] kernel write not supported for file /snd/seq (pid: 24 comm: kworker/1:0)
[   75.617806][ T5706] loop0: detected capacity change from 0 to 1024
[   75.640841][ T5706] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.666404][ T5706] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.673639][ T5706] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.681504][ T5706] bridge0: entered allmulticast mode
[   75.713739][ T5706] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.720888][ T5706] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.728358][ T5706] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.735408][ T5706] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.773637][ T5706] bridge0: entered promiscuous mode
[   75.895509][ T5720] loop2: detected capacity change from 0 to 164
[   75.902666][ T5720] Unable to read rock-ridge attributes
[   75.912011][ T5720] Unable to read rock-ridge attributes
[   75.924917][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.337233][ T5739] FAULT_INJECTION: forcing a failure.
[   76.337233][ T5739] name failslab, interval 1, probability 0, space 0, times 0
[   76.349978][ T5739] CPU: 1 UID: 0 PID: 5739 Comm: +}[@ Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   76.359825][ T5739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   76.369906][ T5739] Call Trace:
[   76.373246][ T5739]  <TASK>
[   76.376187][ T5739]  dump_stack_lvl+0xf2/0x150
[   76.380896][ T5739]  dump_stack+0x15/0x20
[   76.385207][ T5739]  should_fail_ex+0x229/0x230
[   76.389936][ T5739]  ? __alloc_skb+0x10b/0x310
[   76.394588][ T5739]  should_failslab+0x8f/0xb0
[   76.399217][ T5739]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   76.405064][ T5739]  __alloc_skb+0x10b/0x310
[   76.409669][ T5739]  audit_log_start+0x368/0x6b0
[   76.414470][ T5739]  audit_seccomp+0x4b/0x130
[   76.419015][ T5739]  __seccomp_filter+0x6fa/0x1180
[   76.423987][ T5739]  ? proc_fail_nth_write+0x12a/0x150
[   76.429383][ T5739]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   76.435203][ T5739]  ? vfs_write+0x580/0x910
[   76.439645][ T5739]  ? __fget_files+0x1d4/0x210
[   76.444390][ T5739]  __secure_computing+0x9f/0x1c0
[   76.449380][ T5739]  syscall_trace_enter+0xd1/0x1f0
[   76.454442][ T5739]  ? fpregs_assert_state_consistent+0x83/0xa0
[   76.460633][ T5739]  do_syscall_64+0xaa/0x1c0
[   76.465175][ T5739]  ? clear_bhb_loop+0x55/0xb0
[   76.469885][ T5739]  ? clear_bhb_loop+0x55/0xb0
[   76.474610][ T5739]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   76.480544][ T5739] RIP: 0033:0x7fc686bcdef9
[   76.485020][ T5739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   76.504713][ T5739] RSP: 002b:00007fc685847038 EFLAGS: 00000246 ORIG_RAX: 000000000000008b
[   76.513160][ T5739] RAX: ffffffffffffffda RBX: 00007fc686d85f80 RCX: 00007fc686bcdef9
[   76.521161][ T5739] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[   76.529177][ T5739] RBP: 00007fc685847090 R08: 0000000000000000 R09: 0000000000000000
[   76.537221][ T5739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   76.545367][ T5739] R13: 0000000000000000 R14: 00007fc686d85f80 R15: 00007ffdb58b52e8
[   76.553371][ T5739]  </TASK>
[   76.636179][ T5746] infiniband syz0: set active
[   76.641094][ T5746] infiniband syz0: added team0
[   76.662707][ T5746] RDS/IB: syz0: added
[   76.668200][ T5746] smc: adding ib device syz0 with port count 1
[   76.674511][ T5746] smc:    ib device syz0 port 1 has pnetid 
[   77.000408][ T2967]  loop1: p4
[   77.003751][ T2967] loop1: p4 size 8388608 extends beyond EOD, truncated
[   77.095790][ T3549] udevd[3549]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   77.140006][ T5781] __nla_validate_parse: 7 callbacks suppressed
[   77.140025][ T5781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.832'.
[   77.172581][ T5783] netlink: 4 bytes leftover after parsing attributes in process `syz.1.833'.
[   77.232989][ T5783] loop1: detected capacity change from 0 to 512
[   77.258102][ T5783] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   77.304718][ T5783] EXT4-fs (loop1): 1 truncate cleaned up
[   77.312252][ T5783] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.334887][ T4680] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.507640][ T5818] netlink: 68 bytes leftover after parsing attributes in process `syz.1.848'.
[   77.538798][ T5823] netlink: 4 bytes leftover after parsing attributes in process `syz.0.850'.
[   77.559102][ T5823] loop0: detected capacity change from 0 to 512
[   77.567948][ T5823] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   77.580581][ T5823] EXT4-fs (loop0): 1 truncate cleaned up
[   77.590027][ T5823] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   77.603495][ T5827] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.623571][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.663787][ T5833] FAULT_INJECTION: forcing a failure.
[   77.663787][ T5833] name failslab, interval 1, probability 0, space 0, times 0
[   77.676527][ T5833] CPU: 1 UID: 0 PID: 5833 Comm: syz.0.853 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   77.686889][ T5833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   77.695101][ T5835] loop4: detected capacity change from 0 to 164
[   77.696957][ T5833] Call Trace:
[   77.696967][ T5833]  <TASK>
[   77.709584][ T5833]  dump_stack_lvl+0xf2/0x150
[   77.714211][ T5833]  dump_stack+0x15/0x20
[   77.718397][ T5833]  should_fail_ex+0x229/0x230
[   77.723198][ T5833]  ? __alloc_skb+0x10b/0x310
[   77.727805][ T5833]  should_failslab+0x8f/0xb0
[   77.732420][ T5833]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[   77.738267][ T5833]  __alloc_skb+0x10b/0x310
[   77.742699][ T5833]  alloc_uevent_skb+0x5b/0x120
[   77.747485][ T5833]  kobject_uevent_net_broadcast+0x242/0x420
[   77.753404][ T5833]  kobject_uevent_env+0x415/0x550
[   77.758574][ T5833]  kobject_uevent+0x1c/0x30
[   77.763094][ T5833]  device_del+0x6fa/0x780
[   77.767437][ T5833]  ? __try_to_del_timer_sync+0x14c/0x170
[   77.773129][ T5833]  device_unregister+0x15/0x40
[   77.777904][ T5833]  wakeup_source_sysfs_remove+0x25/0x30
[   77.783462][ T5833]  wakeup_source_unregister+0xee/0x110
[   77.788948][ T5833]  ep_destroy_wakeup_source+0x3a/0x50
[   77.794369][ T5833]  ep_modify+0xa9/0x470
[   77.798608][ T5833]  do_epoll_ctl+0x4dc/0x940
[   77.803122][ T5833]  __x64_sys_epoll_ctl+0xc6/0xf0
[   77.808113][ T5833]  x64_sys_call+0x27c9/0x2d60
[   77.812892][ T5833]  do_syscall_64+0xc9/0x1c0
[   77.817476][ T5833]  ? clear_bhb_loop+0x55/0xb0
[   77.822224][ T5833]  ? clear_bhb_loop+0x55/0xb0
[   77.826929][ T5833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   77.832905][ T5833] RIP: 0033:0x7f202c99def9
[   77.837330][ T5833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   77.857153][ T5833] RSP: 002b:00007f202b611038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[   77.865590][ T5833] RAX: ffffffffffffffda RBX: 00007f202cb55f80 RCX: 00007f202c99def9
[   77.873588][ T5833] RDX: 0000000000000003 RSI: 0000000000000003 RDI: 0000000000000004
[   77.881565][ T5833] RBP: 00007f202b611090 R08: 0000000000000000 R09: 0000000000000000
[   77.890063][ T5833] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000001
[   77.898303][ T5833] R13: 0000000000000000 R14: 00007f202cb55f80 R15: 00007ffd09019668
[   77.906286][ T5833]  </TASK>
[   77.914135][ T5835] Unable to read rock-ridge attributes
[   77.945699][ T5838] netlink: 68 bytes leftover after parsing attributes in process `syz.0.856'.
[   77.951576][ T5827] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.968677][ T5835] Unable to read rock-ridge attributes
[   78.040404][ T5848] syz.3.861[5848] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   78.040558][ T5848] syz.3.861[5848] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   78.053695][ T5827] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.113693][ T5855] netlink: 60 bytes leftover after parsing attributes in process `syz.4.864'.
[   78.122868][ T5855] netlink: 60 bytes leftover after parsing attributes in process `syz.4.864'.
[   78.138627][ T5827] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.149887][ T5855] netlink: 60 bytes leftover after parsing attributes in process `syz.4.864'.
[   78.159039][ T5855] netlink: 60 bytes leftover after parsing attributes in process `syz.4.864'.
[   78.181235][ T5858] loop3: detected capacity change from 0 to 1024
[   78.202845][ T5855] netlink: 60 bytes leftover after parsing attributes in process `syz.4.864'.
[   78.225023][ T5827] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.238631][ T5827] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.252805][ T5827] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.264620][ T5827] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.323040][ T5873] loop2: detected capacity change from 0 to 164
[   78.330515][ T5873] Unable to read rock-ridge attributes
[   78.338807][ T5873] Unable to read rock-ridge attributes
[   78.351484][ T5871] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   78.361419][ T5871] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.407789][ T5871] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   78.409003][ T5877] loop2: detected capacity change from 0 to 512
[   78.417590][ T5871] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.453555][ T5879] loop1: detected capacity change from 0 to 512
[   78.460487][ T5879] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   78.471322][ T5877] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.481980][ T5879] EXT4-fs (loop1): 1 truncate cleaned up
[   78.486798][ T5877] ext4 filesystem being mounted at /223/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.490143][ T5879] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.510591][ T5877] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5877 comm=syz.2.873
[   78.525993][ T5871] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   78.535979][ T5871] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.547163][ T4680] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.561812][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.577173][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.590803][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.606774][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.621661][ T5871] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   78.631629][ T5871] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.637861][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.655002][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.668796][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.682882][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.697963][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.713813][ T3273] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz-executor: Directory hole found for htree leaf block 0
[   78.718616][ T5893] FAULT_INJECTION: forcing a failure.
[   78.718616][ T5893] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.733146][ T5871] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   78.740114][ T5893] CPU: 1 UID: 0 PID: 5893 Comm: syz.1.878 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   78.748249][ T5871] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.758535][ T5893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   78.770083][ T5871] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   78.776743][ T5893] Call Trace:
[   78.776752][ T5893]  <TASK>
[   78.776761][ T5893]  dump_stack_lvl+0xf2/0x150
[   78.784942][ T5871] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.788253][ T5893]  dump_stack+0x15/0x20
[   78.795082][ T5871] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   78.795809][ T5893]  should_fail_ex+0x229/0x230
[   78.795842][ T5893]  should_fail+0xb/0x10
[   78.795865][ T5893]  should_fail_usercopy+0x1a/0x20
[   78.795960][ T5893]  _copy_from_user+0x1e/0xd0
[   78.804308][ T5871] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.808430][ T5893]  kstrtouint_from_user+0x76/0xe0
[   78.820153][ T5871] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   78.821238][ T5893]  ? 0xffffffff81000000
[   78.825401][ T5871] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.830394][ T5893]  proc_fail_nth_write+0x4f/0x150
[   78.873891][ T5893]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   78.879706][ T5893]  vfs_write+0x26c/0x910
[   78.884075][ T5893]  ? __fget_files+0x1d4/0x210
[   78.888773][ T5893]  ksys_write+0xeb/0x1b0
[   78.893025][ T5893]  __x64_sys_write+0x42/0x50
[   78.897643][ T5893]  x64_sys_call+0x27dd/0x2d60
[   78.902486][ T5893]  do_syscall_64+0xc9/0x1c0
[   78.907029][ T5893]  ? clear_bhb_loop+0x55/0xb0
[   78.911839][ T5893]  ? clear_bhb_loop+0x55/0xb0
[   78.916531][ T5893]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.922473][ T5893] RIP: 0033:0x7f4fbfe8c9df
[   78.926891][ T5893] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[   78.946547][ T5893] RSP: 002b:00007f4fbeb07030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   78.954981][ T5893] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4fbfe8c9df
[   78.963025][ T5893] RDX: 0000000000000001 RSI: 00007f4fbeb070a0 RDI: 0000000000000004
[   78.971000][ T5893] RBP: 00007f4fbeb07090 R08: 0000000000000000 R09: 0000000000000000
[   78.978976][ T5893] R10: 0000000020000180 R11: 0000000000000293 R12: 0000000000000001
[   78.987003][ T5893] R13: 0000000000000000 R14: 00007f4fc0045f80 R15: 00007ffcdf856e38
[   78.994985][ T5893]  </TASK>
[   79.050769][ T5899] loop4: detected capacity change from 0 to 164
[   79.093268][ T5899] Unable to read rock-ridge attributes
[   79.105720][ T5899] Unable to read rock-ridge attributes
[   79.178942][ T5918] syz.0.889[5918] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.179012][ T5918] syz.0.889[5918] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.253262][ T5922] loop0: detected capacity change from 0 to 1024
[   79.297718][ T5924] 9pnet_fd: Insufficient options for proto=fd
[   79.303973][ T5926] loop1: detected capacity change from 0 to 164
[   79.313750][ T5926] Unable to read rock-ridge attributes
[   79.320948][ T5926] Unable to read rock-ridge attributes
[   79.369627][ T5928] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   79.379494][ T5928] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.418238][ T5928] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   79.428132][ T5928] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.497625][ T5928] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   79.507559][ T5928] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.567317][ T5928] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[   79.577150][ T5928] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   79.865161][ T5951] FAULT_INJECTION: forcing a failure.
[   79.865161][ T5951] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.878473][ T5951] CPU: 0 UID: 0 PID: 5951 Comm: syz.3.904 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   79.888876][ T5951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   79.898985][ T5951] Call Trace:
[   79.902300][ T5951]  <TASK>
[   79.905268][ T5951]  dump_stack_lvl+0xf2/0x150
[   79.909879][ T5951]  dump_stack+0x15/0x20
[   79.914106][ T5951]  should_fail_ex+0x229/0x230
[   79.918871][ T5951]  should_fail+0xb/0x10
[   79.923062][ T5951]  should_fail_usercopy+0x1a/0x20
[   79.928123][ T5951]  _copy_from_iter+0xd3/0xd20
[   79.932803][ T5951]  ? kmalloc_reserve+0x16e/0x190
[   79.937815][ T5951]  ? __build_skb_around+0x196/0x1f0
[   79.943033][ T5951]  ? __alloc_skb+0x21f/0x310
[   79.947697][ T5951]  ? __virt_addr_valid+0x1ed/0x250
[   79.952811][ T5951]  ? __check_object_size+0x35b/0x510
[   79.958208][ T5951]  netlink_sendmsg+0x460/0x6e0
[   79.963100][ T5951]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.968443][ T5951]  __sock_sendmsg+0x140/0x180
[   79.973151][ T5951]  ____sys_sendmsg+0x312/0x410
[   79.977932][ T5951]  __sys_sendmsg+0x1dd/0x270
[   79.982640][ T5951]  __x64_sys_sendmsg+0x46/0x50
[   79.987446][ T5951]  x64_sys_call+0x2689/0x2d60
[   79.992187][ T5951]  do_syscall_64+0xc9/0x1c0
[   79.996698][ T5951]  ? clear_bhb_loop+0x55/0xb0
[   80.001412][ T5951]  ? clear_bhb_loop+0x55/0xb0
[   80.006108][ T5951]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.012054][ T5951] RIP: 0033:0x7fc686bcdef9
[   80.016472][ T5951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.036098][ T5951] RSP: 002b:00007fc685847038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   80.044586][ T5951] RAX: ffffffffffffffda RBX: 00007fc686d85f80 RCX: 00007fc686bcdef9
[   80.052563][ T5951] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000007
[   80.060538][ T5951] RBP: 00007fc685847090 R08: 0000000000000000 R09: 0000000000000000
[   80.068600][ T5951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   80.076614][ T5951] R13: 0000000000000000 R14: 00007fc686d85f80 R15: 00007ffdb58b52e8
[   80.084646][ T5951]  </TASK>
[   80.119260][ T5953] loop0: detected capacity change from 0 to 164
[   80.127790][ T5953] Unable to read rock-ridge attributes
[   80.133836][ T5953] Unable to read rock-ridge attributes
[   80.215406][   T29] kauditd_printk_skb: 564 callbacks suppressed
[   80.215435][   T29] audit: type=1326 audit(1726802415.217:5364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5967 comm="syz.3.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   80.247176][   T29] audit: type=1326 audit(1726802415.217:5365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5967 comm="syz.3.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   80.247692][ T5968] FAULT_INJECTION: forcing a failure.
[   80.247692][ T5968] name failslab, interval 1, probability 0, space 0, times 0
[   80.270549][   T29] audit: type=1326 audit(1726802415.257:5366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5967 comm="syz.3.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   80.283121][ T5968] CPU: 0 UID: 0 PID: 5968 Comm: syz.3.912 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   80.306475][   T29] audit: type=1326 audit(1726802415.257:5367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5967 comm="syz.3.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   80.316654][ T5968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   80.316672][ T5968] Call Trace:
[   80.316680][ T5968]  <TASK>
[   80.316691][ T5968]  dump_stack_lvl+0xf2/0x150
[   80.339971][   T29] audit: type=1326 audit(1726802415.257:5368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5967 comm="syz.3.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc686bcc890 code=0x7ffc0000
[   80.349978][ T5968]  dump_stack+0x15/0x20
[   80.353275][   T29] audit: type=1326 audit(1726802415.257:5369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5967 comm="syz.3.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc686bcc9df code=0x7ffc0000
[   80.356191][ T5968]  should_fail_ex+0x229/0x230
[   80.356222][ T5968]  ? audit_log_start+0x34c/0x6b0
[   80.421081][ T5968]  should_failslab+0x8f/0xb0
[   80.421127][ T5968]  kmem_cache_alloc_noprof+0x4c/0x290
[   80.421155][ T5968]  audit_log_start+0x34c/0x6b0
[   80.421189][ T5968]  audit_seccomp+0x4b/0x130
[   80.421291][ T5968]  __seccomp_filter+0x6fa/0x1180
[   80.421328][ T5968]  ? proc_fail_nth_write+0x12a/0x150
[   80.421369][ T5968]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   80.421481][ T5968]  ? vfs_write+0x580/0x910
[   80.421518][ T5968]  __secure_computing+0x9f/0x1c0
[   80.421622][ T5968]  syscall_trace_enter+0xd1/0x1f0
[   80.421676][ T5968]  do_syscall_64+0xaa/0x1c0
[   80.421699][ T5968]  ? clear_bhb_loop+0x55/0xb0
[   80.421737][ T5968]  ? clear_bhb_loop+0x55/0xb0
[   80.421773][ T5968]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.421855][ T5968] RIP: 0033:0x7fc686bcdef9
[   80.421874][ T5968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.421960][ T5968] RSP: 002b:00007fc685847038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[   80.421987][ T5968] RAX: ffffffffffffffda RBX: 00007fc686d85f80 RCX: 00007fc686bcdef9
[   80.422004][ T5968] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffffffffffff
[   80.422021][ T5968] RBP: 00007fc685847090 R08: 0000000000000000 R09: 0000000000000000
[   80.422038][ T5968] R10: 000000000000fe44 R11: 0000000000000246 R12: 0000000000000001
[   80.422129][ T5968] R13: 0000000000000000 R14: 00007fc686d85f80 R15: 00007ffdb58b52e8
[   80.422149][ T5968]  </TASK>
[   80.422412][ T5968] audit: audit_lost=4 audit_rate_limit=0 audit_backlog_limit=64
[   80.422430][ T5968] audit: out of memory in audit_log_start
[   80.424143][   T29] audit: type=1326 audit(1726802415.427:5370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5967 comm="syz.3.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fc686bcc93c code=0x7ffc0000
[   80.424173][   T29] audit: type=1326 audit(1726802415.427:5371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5967 comm="syz.3.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc686bcc9df code=0x7ffc0000
[   80.456752][ T5976] syz.3.915[5976] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.456888][ T5976] syz.3.915[5976] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   80.541876][ T5981] loop3: detected capacity change from 0 to 1024
[   80.595341][ T5985] syz.0.919[5985] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.181404][ T6005] FAULT_INJECTION: forcing a failure.
[   82.181404][ T6005] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.205811][ T6005] CPU: 1 UID: 0 PID: 6005 Comm: syz.3.926 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   82.216098][ T6005] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   82.226263][ T6005] Call Trace:
[   82.229538][ T6005]  <TASK>
[   82.232473][ T6005]  dump_stack_lvl+0xf2/0x150
[   82.237130][ T6005]  dump_stack+0x15/0x20
[   82.241317][ T6005]  should_fail_ex+0x229/0x230
[   82.245998][ T6005]  should_fail+0xb/0x10
[   82.250233][ T6005]  should_fail_usercopy+0x1a/0x20
[   82.255334][ T6005]  strncpy_from_user+0x25/0x270
[   82.260207][ T6005]  ? kmem_cache_alloc_noprof+0x10c/0x290
[   82.265904][ T6005]  getname_flags+0xb0/0x3b0
[   82.270510][ T6005]  __x64_sys_unlink+0x21/0x40
[   82.275283][ T6005]  x64_sys_call+0x280f/0x2d60
[   82.280015][ T6005]  do_syscall_64+0xc9/0x1c0
[   82.284561][ T6005]  ? clear_bhb_loop+0x55/0xb0
[   82.289377][ T6005]  ? clear_bhb_loop+0x55/0xb0
[   82.294082][ T6005]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.299993][ T6005] RIP: 0033:0x7fc686bcdef9
[   82.304424][ T6005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.324062][ T6005] RSP: 002b:00007fc685847038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[   82.332485][ T6005] RAX: ffffffffffffffda RBX: 00007fc686d85f80 RCX: 00007fc686bcdef9
[   82.340521][ T6005] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200003c0
[   82.348495][ T6005] RBP: 00007fc685847090 R08: 0000000000000000 R09: 0000000000000000
[   82.356466][ T6005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.364530][ T6005] R13: 0000000000000000 R14: 00007fc686d85f80 R15: 00007ffdb58b52e8
[   82.372516][ T6005]  </TASK>
[   82.395814][   T24] kernel write not supported for file task/382/attr/fscreate (pid: 24 comm: kworker/1:0)
[   82.428629][ T6009] syz.3.928[6009] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.428792][ T6009] syz.3.928[6009] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.436737][ T6011] FAULT_INJECTION: forcing a failure.
[   82.436737][ T6011] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   82.464553][ T6011] CPU: 1 UID: 0 PID: 6011 Comm: syz.1.929 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   82.474820][ T6011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   82.484956][ T6011] Call Trace:
[   82.488300][ T6011]  <TASK>
[   82.491234][ T6011]  dump_stack_lvl+0xf2/0x150
[   82.495879][ T6011]  dump_stack+0x15/0x20
[   82.500129][ T6011]  should_fail_ex+0x229/0x230
[   82.504823][ T6011]  should_fail+0xb/0x10
[   82.509071][ T6011]  should_fail_usercopy+0x1a/0x20
[   82.514139][ T6011]  _copy_from_iter+0xd3/0xd20
[   82.518912][ T6011]  ? kmalloc_reserve+0x16e/0x190
[   82.523902][ T6011]  ? __build_skb_around+0x196/0x1f0
[   82.529143][ T6011]  ? __alloc_skb+0x21f/0x310
[   82.533745][ T6011]  ? __virt_addr_valid+0x1ed/0x250
[   82.538874][ T6011]  ? __check_object_size+0x35b/0x510
[   82.544170][ T6011]  netlink_sendmsg+0x460/0x6e0
[   82.548970][ T6011]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.554335][ T6011]  __sock_sendmsg+0x140/0x180
[   82.559091][ T6011]  ____sys_sendmsg+0x312/0x410
[   82.563911][ T6011]  __sys_sendmsg+0x1dd/0x270
[   82.568536][ T6011]  __x64_sys_sendmsg+0x46/0x50
[   82.573325][ T6011]  x64_sys_call+0x2689/0x2d60
[   82.578029][ T6011]  do_syscall_64+0xc9/0x1c0
[   82.582535][ T6011]  ? clear_bhb_loop+0x55/0xb0
[   82.587236][ T6011]  ? clear_bhb_loop+0x55/0xb0
[   82.591929][ T6011]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.597884][ T6011] RIP: 0033:0x7f4fbfe8def9
[   82.602330][ T6011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.621944][ T6011] RSP: 002b:00007f4fbeb07038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   82.630364][ T6011] RAX: ffffffffffffffda RBX: 00007f4fc0045f80 RCX: 00007f4fbfe8def9
[   82.638842][ T6011] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[   82.646816][ T6011] RBP: 00007f4fbeb07090 R08: 0000000000000000 R09: 0000000000000000
[   82.654864][ T6011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.662895][ T6011] R13: 0000000000000000 R14: 00007f4fc0045f80 R15: 00007ffcdf856e38
[   82.670902][ T6011]  </TASK>
[   82.731245][ T6016] bond1: entered promiscuous mode
[   82.736436][ T6016] bond1: entered allmulticast mode
[   82.741784][ T6016] 8021q: adding VLAN 0 to HW filter on device bond1
[   82.752558][ T6016] bond1 (unregistering): Released all slaves
[   82.812098][ T6022] loop3: detected capacity change from 0 to 2048
[   82.831010][ T6024] syz.1.933[6024] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.831061][ T6024] syz.1.933[6024] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.856245][ T6022]  loop3: p1 < > p4
[   82.872525][ T6022] loop3: p4 size 8388608 extends beyond EOD, truncated
[   82.911343][ T6026] loop1: detected capacity change from 0 to 1024
[   83.058212][ T2967]  loop3: p4
[   83.061767][ T2967] loop3: p4 size 8388608 extends beyond EOD, truncated
[   83.082456][ T3549] udevd[3549]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   83.695330][ T6039] 9pnet_fd: Insufficient options for proto=fd
[   83.721916][ T6041] loop1: detected capacity change from 0 to 512
[   83.748626][ T6041] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.762284][ T6041] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.820814][ T4680] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.846494][ T3273] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.870905][ T1708] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.938224][ T1708] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.954663][ T6056] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   83.963767][ T6056] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   84.007378][ T1708] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.031740][ T5928] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[   84.040109][ T5928] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.056396][ T6067] netlink: 'syz.1.946': attribute type 3 has an invalid length.
[   84.058023][ T5928] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[   84.072380][ T5928] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.098030][ T1708] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.112041][ T5928] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[   84.120358][ T5928] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.131753][ T5928] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[   84.140012][ T5928] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.208946][ T6052] chnl_net:caif_netlink_parms(): no params data found
[   84.241074][ T6077] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.303283][ T6077] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.316994][ T1708] bond0: left allmulticast mode
[   84.322016][ T1708] bond_slave_0: left allmulticast mode
[   84.327639][ T1708] bond_slave_1: left allmulticast mode
[   84.333158][ T1708] team0: left allmulticast mode
[   84.338031][ T1708] team_slave_0: left allmulticast mode
[   84.343503][ T1708] team_slave_1: left allmulticast mode
[   84.349005][ T1708] geneve0: left allmulticast mode
[   84.354076][ T1708] batadv0: left allmulticast mode
[   84.359236][ T1708] bond0: left promiscuous mode
[   84.364142][ T1708] bond_slave_0: left promiscuous mode
[   84.369607][ T1708] bond_slave_1: left promiscuous mode
[   84.375045][ T1708] team0: left promiscuous mode
[   84.379860][ T1708] team_slave_0: left promiscuous mode
[   84.385293][ T1708] team_slave_1: left promiscuous mode
[   84.390763][ T1708] geneve0: left promiscuous mode
[   84.396036][ T1708] batadv0: left promiscuous mode
[   84.401254][ T1708] bridge0: port 3(bond0) entered disabled state
[   84.409177][ T1708] bridge_slave_1: left allmulticast mode
[   84.414843][ T1708] bridge_slave_1: left promiscuous mode
[   84.420645][ T1708] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.428984][ T1708] bridge_slave_0: left allmulticast mode
[   84.434666][ T1708] bridge_slave_0: left promiscuous mode
[   84.440468][ T1708] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.473647][ T6084] syz.0.950[6084] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.473732][ T6084] syz.0.950[6084] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.558824][ T1708] team0: Port device geneve0 removed
[   84.619132][ T1708] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   84.634572][ T1708] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   84.646006][ T1708] bond0 (unregistering): (slave team0): Releasing backup interface
[   84.649923][ T6097] 9pnet_fd: Insufficient options for proto=fd
[   84.662592][ T1708] bond0 (unregistering): (slave batadv0): Releasing backup interface
[   84.678880][ T1708] bond0 (unregistering): Released all slaves
[   84.704333][ T6077] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.715491][ T6095] __nla_validate_parse: 4 callbacks suppressed
[   84.721832][ T6095] netlink: 8 bytes leftover after parsing attributes in process `syz.4.955'.
[   84.732027][ T6101] netlink: 8 bytes leftover after parsing attributes in process `syz.3.958'.
[   84.741173][ T6052] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.748513][ T6052] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.761165][ T6052] bridge_slave_0: entered allmulticast mode
[   84.768350][ T6052] bridge_slave_0: entered promiscuous mode
[   84.771026][ T6105] loop4: detected capacity change from 0 to 1024
[   84.801956][ T6052] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.809275][ T6052] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.816737][ T6105] EXT4-fs: Ignoring removed orlov option
[   84.825673][ T6105] EXT4-fs: Ignoring removed nomblk_io_submit option
[   84.837991][ T6112] 9pnet_fd: Insufficient options for proto=fd
[   84.847837][ T6052] bridge_slave_1: entered allmulticast mode
[   84.862044][ T6052] bridge_slave_1: entered promiscuous mode
[   84.873129][ T6105] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842e018, mo2=0002]
[   84.883668][ T6077] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.884216][ T6105] System zones: 0-1, 3-12
[   84.898530][ T6105] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   84.933106][ T6105] netlink: 100 bytes leftover after parsing attributes in process `syz.4.959'.
[   84.979656][ T6077] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.995202][ T6105] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2792: inode #14: comm syz.4.959: corrupted in-inode xattr: bad magic number in in-inode xattr
[   85.028267][ T6077] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.039209][ T6105] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #14: comm syz.4.959: attempt to clear invalid blocks 1886221359 len 1
[   85.058444][ T6052] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.070420][ T6052] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.084155][ T6077] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.094457][ T4398] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.102367][ T6077] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.157017][ T6052] team0: Port device team_slave_0 added
[   85.171520][ T6052] team0: Port device team_slave_1 added
[   85.213627][ T6052] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.220748][ T6052] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.247043][ T6052] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.309364][ T6052] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.316709][ T6052] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.342827][ T6052] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.391931][ T6142] loop3: detected capacity change from 0 to 164
[   85.407325][ T6142] Unable to read rock-ridge attributes
[   85.412906][   T29] kauditd_printk_skb: 499 callbacks suppressed
[   85.412919][   T29] audit: type=1326 audit(1726802420.417:5871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.1.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[   85.442946][   T29] audit: type=1326 audit(1726802420.417:5872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.1.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[   85.466450][   T29] audit: type=1326 audit(1726802420.417:5873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.1.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[   85.493368][ T6052] hsr_slave_0: entered promiscuous mode
[   85.501416][ T6052] hsr_slave_1: entered promiscuous mode
[   85.502414][ T6142] Unable to read rock-ridge attributes
[   85.549096][   T29] audit: type=1400 audit(1726802420.477:5874): avc:  denied  { write } for  pid=6136 comm="syz.1.967" path="socket:[15934]" dev="sockfs" ino=15934 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   85.572475][   T29] audit: type=1400 audit(1726802420.477:5875): avc:  denied  { read } for  pid=6136 comm="syz.1.967" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   85.591689][   T29] audit: type=1400 audit(1726802420.527:5876): avc:  denied  { ioctl } for  pid=6136 comm="syz.1.967" path="socket:[15934]" dev="sockfs" ino=15934 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[   85.616605][   T29] audit: type=1400 audit(1726802420.527:5877): avc:  denied  { name_bind } for  pid=6136 comm="syz.1.967" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[   85.638379][   T29] audit: type=1326 audit(1726802420.547:5878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.1.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[   85.661807][   T29] audit: type=1326 audit(1726802420.547:5879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6136 comm="syz.1.967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[   85.742735][   T29] audit: type=1326 audit(1726802420.747:5880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6179 comm="syz.3.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc686bcdef9 code=0x7ffc0000
[   85.940378][ T6052] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   85.949798][ T6052] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   85.965218][ T6052] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   85.978658][ T6052] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   86.000069][ T6204] 9pnet_fd: Insufficient options for proto=fd
[   86.077810][ T6052] 8021q: adding VLAN 0 to HW filter on device bond0
[   86.106615][ T6052] 8021q: adding VLAN 0 to HW filter on device team0
[   86.122272][ T2127] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.123805][ T6217] loop3: detected capacity change from 0 to 2048
[   86.129474][ T2127] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.159802][ T6217] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.161468][ T2127] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.179042][ T2127] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.264477][ T6217] netlink: 8 bytes leftover after parsing attributes in process `syz.3.979'.
[   86.273457][ T6237] netlink: 8 bytes leftover after parsing attributes in process `syz.3.979'.
[   86.285028][ T6243] netlink: 76 bytes leftover after parsing attributes in process `syz.1.982'.
[   86.426354][ T6255] 9pnet_fd: Insufficient options for proto=fd
[   86.482462][ T1708] hsr_slave_0: left promiscuous mode
[   86.491731][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.515773][ T1708] hsr_slave_1: left promiscuous mode
[   86.527304][ T1708] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.534802][ T1708] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.609234][ T6279] netlink: 'syz.0.990': attribute type 3 has an invalid length.
[   86.619836][ T1708] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.627339][ T1708] batman_adv: batadv0: Removing interface: batadv_slave_1
[   86.690438][ T1708] veth1_macvtap: left promiscuous mode
[   86.696098][ T1708] veth0_macvtap: left promiscuous mode
[   86.701763][ T1708] veth1_vlan: left promiscuous mode
[   86.707103][ T1708] veth0_vlan: left promiscuous mode
[   86.849943][ T6300] loop4: detected capacity change from 0 to 512
[   86.897226][ T6300] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.927973][ T6300] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.131184][ T1708] team0 (unregistering): Port device team_slave_1 removed
[   87.154492][ T1708] team0 (unregistering): Port device team_slave_0 removed
[   87.228172][ T6299] netlink: 8 bytes leftover after parsing attributes in process `syz.1.992'.
[   87.311213][ T6299] netlink: 24 bytes leftover after parsing attributes in process `syz.1.992'.
[   87.406406][ T6052] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.608036][ T4398] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.734474][ T3336] kernel write not supported for file task/186/attr/fscreate (pid: 3336 comm: kworker/1:2)
[   87.811461][ T6052] veth0_vlan: entered promiscuous mode
[   87.846875][ T6052] veth1_vlan: entered promiscuous mode
[   87.859758][ T6052] veth0_macvtap: entered promiscuous mode
[   87.867072][ T6052] veth1_macvtap: entered promiscuous mode
[   87.878056][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.882345][ T6347] loop1: detected capacity change from 0 to 512
[   87.888852][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.903856][ T6352] loop4: detected capacity change from 0 to 512
[   87.904897][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.921610][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.931701][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.942197][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.952065][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.962603][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.972443][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   87.982969][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.993483][ T6052] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.002538][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.013056][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.022940][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.033428][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.043384][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.053864][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.063812][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.065596][ T6347] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   88.074309][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.094240][ T6052] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   88.104762][ T6052] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   88.115329][ T6052] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.141608][ T6347] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.1004: bad orphan inode 131083
[   88.148990][ T6052] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.160734][ T6052] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.162317][ T6352] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.169675][ T6052] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.191575][ T6052] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.200780][ T6347] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.221738][ T6352] ext4 filesystem being mounted at /162/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.237355][ T6347] futex_wake_op: syz.1.1004 tries to shift op by 144; fix this program
[   88.265477][ T6368] loop0: detected capacity change from 0 to 164
[   88.286288][ T6352] mmap: syz.4.1007 (6352) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   88.313641][ T6368] Unable to read rock-ridge attributes
[   88.347871][ T6368] Unable to read rock-ridge attributes
[   88.399749][ T6379] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[   88.399749][ T6379]    program syz.0.1012 not setting count and/or reply_len properly
[   88.430777][ T4680] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.444827][ T6379] loop0: detected capacity change from 0 to 128
[   88.471675][ T6379] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   88.486129][ T4398] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.528221][ T6395] loop1: detected capacity change from 0 to 164
[   88.528780][ T6379] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1012'.
[   88.582305][ T6395] Unable to read rock-ridge attributes
[   88.620078][ T6395] Unable to read rock-ridge attributes
[   88.648909][ T6379] FAT-fs (loop0): FAT read failed (blocknr 128)
[   88.691342][ T6412] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1017'.
[   88.708470][ T6413] 9pnet_fd: Insufficient options for proto=fd
[   88.721804][   T36] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[   88.758075][ T6418] loop0: detected capacity change from 0 to 164
[   88.779347][ T6418] Unable to read rock-ridge attributes
[   88.797430][ T6418] Unable to read rock-ridge attributes
[   88.851598][ T6422] netlink: 'syz.2.1023': attribute type 3 has an invalid length.
[   88.887200][ T6432] loop0: detected capacity change from 0 to 164
[   88.906175][ T6432] Unable to read rock-ridge attributes
[   88.915909][ T6432] Unable to read rock-ridge attributes
[   88.992871][ T6447] 9pnet_fd: Insufficient options for proto=fd
[   89.006607][ T6449] 9pnet_fd: Insufficient options for proto=fd
[   89.037626][ T6454] loop1: detected capacity change from 0 to 164
[   89.045192][ T6454] Unable to read rock-ridge attributes
[   89.052389][ T6454] Unable to read rock-ridge attributes
[   89.073678][ T3342] kernel write not supported for file /snd/seq (pid: 3342 comm: kworker/0:4)
[   89.218374][ T6474] loop2: detected capacity change from 0 to 512
[   89.231015][ T6474] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   89.249616][ T6474] EXT4-fs (loop2): 1 truncate cleaned up
[   89.252775][ T6480] 9pnet_fd: Insufficient options for proto=fd
[   89.262742][ T6474] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.286327][ T6483] loop4: detected capacity change from 0 to 164
[   89.294886][ T6483] Unable to read rock-ridge attributes
[   89.302472][ T6483] Unable to read rock-ridge attributes
[   89.326402][ T6052] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.341446][ T6486] loop4: detected capacity change from 0 to 164
[   89.352136][ T6488] loop1: detected capacity change from 0 to 164
[   89.360543][ T6488] Unable to read rock-ridge attributes
[   89.361650][ T6486] Unable to read rock-ridge attributes
[   89.368100][ T6488] Unable to read rock-ridge attributes
[   89.383436][ T3342] kernel write not supported for file task/26/attr/fscreate (pid: 3342 comm: kworker/0:4)
[   89.392612][ T6486] Unable to read rock-ridge attributes
[   89.543935][ T6505] syzkaller0: entered promiscuous mode
[   89.549548][ T6505] syzkaller0: entered allmulticast mode
[   89.598639][ T6510] loop1: detected capacity change from 0 to 512
[   89.609003][ T6510] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   89.630009][ T6510] EXT4-fs (loop1): 1 truncate cleaned up
[   89.636255][ T6510] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.658434][ T4680] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.729482][ T6519] syz.4.1063[6519] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.729677][ T6519] syz.4.1063[6519] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   89.738013][ T6522] loop3: detected capacity change from 0 to 164
[   89.761870][ T6522] Unable to read rock-ridge attributes
[   89.775301][ T6522] Unable to read rock-ridge attributes
[   89.827872][ T6530] loop4: detected capacity change from 0 to 1024
[   89.851747][ T6534] __nla_validate_parse: 4 callbacks suppressed
[   89.851767][ T6534] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1070'.
[   89.964096][ T6541] loop1: detected capacity change from 0 to 164
[   89.974682][ T6541] Unable to read rock-ridge attributes
[   89.985002][ T6541] Unable to read rock-ridge attributes
[   90.005340][ T6543] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1072'.
[   90.030691][ T6543] loop0: detected capacity change from 0 to 512
[   90.041317][ T6543] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   90.065000][ T6543] EXT4-fs (loop0): 1 truncate cleaned up
[   90.072732][ T6543] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.103811][    T9] kernel write not supported for file task/465/attr/fscreate (pid: 9 comm: kworker/0:1)
[   90.116474][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.177122][ T6565] FAULT_INJECTION: forcing a failure.
[   90.177122][ T6565] name fail_futex, interval 1, probability 0, space 0, times 1
[   90.190131][ T6565] CPU: 0 UID: 0 PID: 6565 Comm: syz.3.1083 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   90.200491][ T6565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   90.210661][ T6565] Call Trace:
[   90.213989][ T6565]  <TASK>
[   90.216945][ T6565]  dump_stack_lvl+0xf2/0x150
[   90.221691][ T6565]  dump_stack+0x15/0x20
[   90.225887][ T6565]  should_fail_ex+0x229/0x230
[   90.230588][ T6565]  should_fail+0xb/0x10
[   90.234894][ T6565]  get_futex_key+0xf4/0x710
[   90.239419][ T6565]  futex_wait_requeue_pi+0x16d/0x6d0
[   90.244768][ T6565]  ? __pfx_futex_wake_mark+0x10/0x10
[   90.250113][ T6565]  do_futex+0x146/0x370
[   90.254338][ T6565]  __se_sys_futex+0x25d/0x3a0
[   90.259044][ T6565]  ? fput+0x14e/0x190
[   90.263055][ T6565]  __x64_sys_futex+0x78/0x90
[   90.267757][ T6565]  x64_sys_call+0x23c4/0x2d60
[   90.272491][ T6565]  do_syscall_64+0xc9/0x1c0
[   90.277112][ T6565]  ? clear_bhb_loop+0x55/0xb0
[   90.281806][ T6565]  ? clear_bhb_loop+0x55/0xb0
[   90.286501][ T6565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.292485][ T6565] RIP: 0033:0x7fc686bcdef9
[   90.296979][ T6565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.317389][ T6565] RSP: 002b:00007fc685847038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   90.325819][ T6565] RAX: ffffffffffffffda RBX: 00007fc686d85f80 RCX: 00007fc686bcdef9
[   90.333803][ T6565] RDX: 0000000000000000 RSI: 000080000000000b RDI: 000000002000cffc
[   90.341886][ T6565] RBP: 00007fc685847090 R08: 0000000020048000 R09: 0000000000000000
[   90.349868][ T6565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   90.357848][ T6565] R13: 0000000000000000 R14: 00007fc686d85f80 R15: 00007ffdb58b52e8
[   90.365884][ T6565]  </TASK>
[   90.399742][ T6574] loop3: detected capacity change from 0 to 164
[   90.413306][ T6574] Unable to read rock-ridge attributes
[   90.436200][ T6574] Unable to read rock-ridge attributes
[   90.500150][   T29] kauditd_printk_skb: 485 callbacks suppressed
[   90.500165][   T29] audit: type=1400 audit(1726802425.507:6366): avc:  denied  { getattr } for  pid=6579 comm="syz.2.1089" name="/" dev="iomem" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   90.538980][ T6580] loop2: detected capacity change from 0 to 1024
[   90.548062][ T6580] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   90.559205][ T6580] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   90.586405][ T6582] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1090'.
[   90.606238][ T6580] JBD2: no valid journal superblock found
[   90.609192][ T6582] loop3: detected capacity change from 0 to 512
[   90.612000][ T6580] EXT4-fs (loop2): Could not load journal inode
[   90.749272][   T29] audit: type=1400 audit(1726802425.747:6367): avc:  denied  { setcurrent } for  pid=6588 comm="syz.4.1093" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   90.751585][ T6582] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   90.791193][ T6582] EXT4-fs (loop3): 1 truncate cleaned up
[   90.797700][ T6582] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.948572][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.957999][   T29] audit: type=1400 audit(1726802425.867:6368): avc:  denied  { read } for  pid=6579 comm="syz.2.1089" name="event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   90.981213][   T29] audit: type=1400 audit(1726802425.867:6369): avc:  denied  { open } for  pid=6579 comm="syz.2.1089" path="/dev/input/event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   91.005316][   T29] audit: type=1400 audit(1726802425.867:6370): avc:  denied  { write } for  pid=6579 comm="syz.2.1089" name="event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[   91.068910][ T6597] loop4: detected capacity change from 0 to 164
[   91.107990][ T6597] Unable to read rock-ridge attributes
[   91.130673][ T6597] Unable to read rock-ridge attributes
[   91.186395][ T6600] loop1: detected capacity change from 0 to 164
[   91.247717][ T6600] Unable to read rock-ridge attributes
[   91.262874][ T6604] loop4: detected capacity change from 0 to 164
[   91.268200][ T6600] Unable to read rock-ridge attributes
[   91.278638][ T6604] Unable to read rock-ridge attributes
[   91.287109][ T6604] Unable to read rock-ridge attributes
[   91.324791][   T29] audit: type=1400 audit(1726802426.327:6371): avc:  denied  { module_load } for  pid=6607 comm="syz.1.1101" path="/sys/power/wakeup_count" dev="sysfs" ino=193 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[   91.360195][ T6608] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.368917][   T29] audit: type=1400 audit(1726802426.367:6372): avc:  denied  { ioctl } for  pid=6607 comm="syz.1.1101" path="/dev/raw-gadget" dev="devtmpfs" ino=118 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   91.402330][ T6608] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.460846][ T6622] loop4: detected capacity change from 0 to 164
[   91.471364][ T6622] Unable to read rock-ridge attributes
[   91.480788][ T6622] Unable to read rock-ridge attributes
[   91.498933][ T6625] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1107'.
[   91.511646][   T29] audit: type=1400 audit(1726802426.517:6373): avc:  denied  { create } for  pid=6627 comm="syz.3.1111" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   91.541056][ T6628] loop3: detected capacity change from 0 to 1024
[   91.549983][ T6625] loop0: detected capacity change from 0 to 512
[   91.557405][ T6628] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.565092][ T6625] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   91.566016][ T6631] loop4: detected capacity change from 0 to 164
[   91.584395][ T6625] EXT4-fs (loop0): 1 truncate cleaned up
[   91.591333][ T6628] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   91.601845][ T6625] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.604311][ T6631] Unable to read rock-ridge attributes
[   91.627597][ T6628] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.628648][ T6631] Unable to read rock-ridge attributes
[   91.644037][   T29] audit: type=1400 audit(1726802426.657:6374): avc:  denied  { remount } for  pid=6627 comm="syz.3.1111" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   91.658436][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.674413][ T6628] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   91.697339][   T29] audit: type=1400 audit(1726802426.707:6375): avc:  denied  { create } for  pid=6637 comm="syz.0.1113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   91.729844][ T6628] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[   91.760893][ T3270] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.797928][ T6638] vlan1: entered allmulticast mode
[   91.878614][ T6644] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.953185][  T999] kernel write not supported for file task/356/attr/fscreate (pid: 999 comm: kworker/0:2)
[   91.968934][ T6644] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.003457][ T6643] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1114'.
[   92.015280][ T6643] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1114'.
[   92.031820][ T6644] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.048495][ T6652] loop0: detected capacity change from 0 to 512
[   92.075181][ T6652] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.119928][ T6644] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.155848][ T6652] ext4 filesystem being mounted at /150/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   92.181652][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.205053][ T6662] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[   92.243201][ T6666] FAULT_INJECTION: forcing a failure.
[   92.243201][ T6666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.247408][ T6644] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.256417][ T6666] CPU: 1 UID: 0 PID: 6666 Comm: syz.1.1125 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   92.275012][ T6666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   92.285084][ T6666] Call Trace:
[   92.285710][ T6644] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.288360][ T6666]  <TASK>
[   92.288371][ T6666]  dump_stack_lvl+0xf2/0x150
[   92.304080][ T6666]  dump_stack+0x15/0x20
[   92.308345][ T6666]  should_fail_ex+0x229/0x230
[   92.313044][ T6666]  should_fail+0xb/0x10
[   92.317210][ T6666]  should_fail_usercopy+0x1a/0x20
[   92.322324][ T6666]  _copy_from_user+0x1e/0xd0
[   92.326343][ T6644] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.326932][ T6666]  kvmemdup_bpfptr_noprof+0x7d/0xf0
[   92.340353][ T6666]  map_delete_elem+0x187/0x340
[   92.345145][ T6666]  __sys_bpf+0x514/0x7a0
[   92.349511][ T6666]  __x64_sys_bpf+0x43/0x50
[   92.350025][ T6644] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.353994][ T6666]  x64_sys_call+0x2625/0x2d60
[   92.366946][ T6666]  do_syscall_64+0xc9/0x1c0
[   92.371540][ T6666]  ? clear_bhb_loop+0x55/0xb0
[   92.376326][ T6666]  ? clear_bhb_loop+0x55/0xb0
[   92.381066][ T6666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.387037][ T6666] RIP: 0033:0x7f4fbfe8def9
[   92.391490][ T6666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.411142][ T6666] RSP: 002b:00007f4fbeb07038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   92.419620][ T6666] RAX: ffffffffffffffda RBX: 00007f4fc0045f80 RCX: 00007f4fbfe8def9
[   92.427650][ T6666] RDX: 0000000000000020 RSI: 0000000020000080 RDI: 0000000000000003
[   92.435628][ T6666] RBP: 00007f4fbeb07090 R08: 0000000000000000 R09: 0000000000000000
[   92.443622][ T6666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.451611][ T6666] R13: 0000000000000000 R14: 00007f4fc0045f80 R15: 00007ffcdf856e38
[   92.459630][ T6666]  </TASK>
[   92.486448][ T6664] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.528637][ T6674] syz.2.1127[6674] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.528714][ T6674] syz.2.1127[6674] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.543594][ T6664] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.558119][ T6666] loop1: detected capacity change from 0 to 2048
[   92.629185][ T6679] loop3: detected capacity change from 0 to 164
[   92.638046][ T6679] Unable to read rock-ridge attributes
[   92.641350][ T6666]  loop1: p3 < > p4 < >
[   92.646204][ T6679] Unable to read rock-ridge attributes
[   92.647914][ T6666] loop1: partition table partially beyond EOD, truncated
[   92.664184][ T6664] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.684821][ T6666] loop1: p3 start 4284289 is beyond EOD, truncated
[   92.692456][ T6675] loop2: detected capacity change from 0 to 1024
[   92.720862][ T2967]  loop1: p3 < > p4 < >
[   92.725074][ T2967] loop1: partition table partially beyond EOD, truncated
[   92.734106][ T6664] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.750492][ T2967] loop1: p3 start 4284289 is beyond EOD, truncated
[   92.799423][ T3549] udevd[3549]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   92.804537][ T6664] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.823760][ T6664] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.853232][ T6664] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.858232][ T5483] udevd[5483]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[   92.871036][ T6664] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.904652][ T6693] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.978764][ T6693] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.018003][ T6693] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.068919][ T6693] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.131724][ T6693] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.142811][ T6693] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.154669][ T6693] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.175329][ T6693] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.309154][ T6709] loop1: detected capacity change from 0 to 164
[   93.317896][ T6709] Unable to read rock-ridge attributes
[   93.329334][ T6709] Unable to read rock-ridge attributes
[   93.357085][  T999] kernel write not supported for file /snd/seq (pid: 999 comm: kworker/0:2)
[   93.383387][ T6713] loop1: detected capacity change from 0 to 164
[   93.391111][ T6713] Unable to read rock-ridge attributes
[   93.399675][ T6713] Unable to read rock-ridge attributes
[   93.424385][ T6716] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1146'.
[   93.435164][ T6716] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.477392][ T6716] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.518093][ T6714] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1140'.
[   93.531351][ T6716] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   93.590079][ T6716] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.028894][ T3343] kernel write not supported for file /snd/seq (pid: 3343 comm: kworker/0:5)
[   94.090953][ T6750] loop4: detected capacity change from 0 to 512
[   94.098169][ T6750] ext4: Bad value for 'barrier'
[   94.859811][ T6766] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.907536][ T6766] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.957739][ T6766] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.017525][ T6766] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.157338][   T24] kernel write not supported for file /snd/seq (pid: 24 comm: kworker/1:0)
[   95.264835][ T6785] FAULT_INJECTION: forcing a failure.
[   95.264835][ T6785] name failslab, interval 1, probability 0, space 0, times 0
[   95.277653][ T6785] CPU: 1 UID: 0 PID: 6785 Comm: syz.4.1172 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   95.288015][ T6785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   95.298240][ T6785] Call Trace:
[   95.301541][ T6785]  <TASK>
[   95.304489][ T6785]  dump_stack_lvl+0xf2/0x150
[   95.309135][ T6785]  dump_stack+0x15/0x20
[   95.313328][ T6785]  should_fail_ex+0x229/0x230
[   95.318031][ T6785]  ? audit_log_start+0x34c/0x6b0
[   95.323059][ T6785]  should_failslab+0x8f/0xb0
[   95.327694][ T6785]  kmem_cache_alloc_noprof+0x4c/0x290
[   95.333119][ T6785]  audit_log_start+0x34c/0x6b0
[   95.337978][ T6785]  ? kmem_cache_free+0xdd/0x2d0
[   95.342859][ T6785]  ? iovec_from_user+0x5e/0x210
[   95.347811][ T6785]  audit_seccomp+0x4b/0x130
[   95.352421][ T6785]  __seccomp_filter+0x6fa/0x1180
[   95.357392][ T6785]  ? __se_sys_process_madvise+0x38f/0x3e0
[   95.363285][ T6785]  ? vfs_write+0x580/0x910
[   95.367741][ T6785]  __secure_computing+0x9f/0x1c0
[   95.372744][ T6785]  syscall_trace_enter+0xd1/0x1f0
[   95.377912][ T6785]  ? fpregs_assert_state_consistent+0x83/0xa0
[   95.384058][ T6785]  do_syscall_64+0xaa/0x1c0
[   95.388611][ T6785]  ? clear_bhb_loop+0x55/0xb0
[   95.393314][ T6785]  ? clear_bhb_loop+0x55/0xb0
[   95.398146][ T6785]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.404076][ T6785] RIP: 0033:0x7f8147fac93c
[   95.408545][ T6785] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[   95.428193][ T6785] RSP: 002b:00007f8146c27030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   95.436675][ T6785] RAX: ffffffffffffffda RBX: 00007f8148165f80 RCX: 00007f8147fac93c
[   95.444744][ T6785] RDX: 000000000000000f RSI: 00007f8146c270a0 RDI: 0000000000000006
[   95.452740][ T6785] RBP: 00007f8146c27090 R08: 0000000000000000 R09: 0000000000000000
[   95.460736][ T6785] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   95.468721][ T6785] R13: 0000000000000000 R14: 00007f8148165f80 R15: 00007ffe61e2a458
[   95.476720][ T6785]  </TASK>
[   95.509566][   T29] kauditd_printk_skb: 559 callbacks suppressed
[   95.509581][   T29] audit: type=1400 audit(1726802430.517:6933): avc:  denied  { create } for  pid=6786 comm="syz.4.1173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   95.569037][   T29] audit: type=1400 audit(1726802430.537:6934): avc:  denied  { ioctl } for  pid=6786 comm="syz.4.1173" path="socket:[19032]" dev="sockfs" ino=19032 ioctlcmd=0x8955 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   95.581020][ T6783] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1168'.
[   95.594077][   T29] audit: type=1400 audit(1726802430.567:6935): avc:  denied  { create } for  pid=6789 comm="syz.2.1174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   95.622768][   T29] audit: type=1400 audit(1726802430.567:6936): avc:  denied  { bind } for  pid=6789 comm="syz.2.1174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   95.642423][   T29] audit: type=1400 audit(1726802430.567:6937): avc:  denied  { name_bind } for  pid=6789 comm="syz.2.1174" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   95.663311][   T29] audit: type=1400 audit(1726802430.567:6938): avc:  denied  { node_bind } for  pid=6789 comm="syz.2.1174" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[   95.684990][   T29] audit: type=1400 audit(1726802430.567:6939): avc:  denied  { listen } for  pid=6789 comm="syz.2.1174" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   95.705709][   T29] audit: type=1400 audit(1726802430.567:6940): avc:  denied  { connect } for  pid=6789 comm="syz.2.1174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   95.725307][   T29] audit: type=1400 audit(1726802430.567:6941): avc:  denied  { name_connect } for  pid=6789 comm="syz.2.1174" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[   95.746633][   T29] audit: type=1400 audit(1726802430.567:6942): avc:  denied  { shutdown } for  pid=6789 comm="syz.2.1174" laddr=::1 lport=57634 faddr=::1 fport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   96.047125][ T6799] xt_TCPMSS: Only works on TCP SYN packets
[   96.073473][ T6799] loop4: detected capacity change from 0 to 2048
[   96.270901][ T6802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1175'.
[   96.282183][ T6802] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1175'.
[   96.932789][ T6716] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.946140][ T6716] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.977189][ T6716] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.006153][ T6716] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.106875][ T3336] kernel write not supported for file task/533/attr/fscreate (pid: 3336 comm: kworker/1:2)
[   97.179845][ T6831] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.228230][ T6831] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.277723][ T6766] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.295066][ T6832] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1186'.
[   97.309313][ T6835] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[   97.322424][ T6831] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.364781][ T6766] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.383082][ T6831] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.399113][ T6766] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.416842][ T6766] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.454464][ T6839] netlink: 100 bytes leftover after parsing attributes in process `syz.4.1193'.
[   97.464864][ T6831] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.490355][ T6831] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.516244][ T6831] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.522694][ T6843] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1195'.
[   97.547155][ T6831] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.558904][ T6841] FAULT_INJECTION: forcing a failure.
[   97.558904][ T6841] name failslab, interval 1, probability 0, space 0, times 0
[   97.571630][ T6841] CPU: 0 UID: 0 PID: 6841 Comm: syz.0.1194 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   97.581978][ T6841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   97.592187][ T6841] Call Trace:
[   97.595475][ T6841]  <TASK>
[   97.598441][ T6841]  dump_stack_lvl+0xf2/0x150
[   97.603109][ T6841]  dump_stack+0x15/0x20
[   97.607299][ T6841]  should_fail_ex+0x229/0x230
[   97.611995][ T6841]  ? __inet_bhash2_update_saddr+0x158/0xd40
[   97.617926][ T6841]  should_failslab+0x8f/0xb0
[   97.622631][ T6841]  kmem_cache_alloc_noprof+0x4c/0x290
[   97.628028][ T6841]  __inet_bhash2_update_saddr+0x158/0xd40
[   97.633792][ T6841]  inet_bhash2_update_saddr+0x26/0x30
[   97.639190][ T6841]  tcp_v6_connect+0x746/0xc60
[   97.643909][ T6841]  ? mod_objcg_state+0x2ea/0x4f0
[   97.648933][ T6841]  __inet_stream_connect+0x162/0x790
[   97.654254][ T6841]  ? should_fail_ex+0xd7/0x230
[   97.659044][ T6841]  ? tcp_sendmsg_fastopen+0x163/0x4f0
[   97.664596][ T6841]  ? should_failslab+0x8f/0xb0
[   97.669436][ T6841]  ? __kmalloc_cache_noprof+0x10b/0x2a0
[   97.675021][ T6841]  tcp_sendmsg_fastopen+0x40e/0x4f0
[   97.680342][ T6841]  tcp_sendmsg_locked+0x2513/0x2700
[   97.685628][ T6841]  ? mntput+0x49/0x70
[   97.689650][ T6841]  ? __rcu_read_unlock+0x4e/0x70
[   97.694678][ T6841]  ? avc_has_perm_noaudit+0x1cc/0x210
[   97.700197][ T6841]  ? avc_has_perm+0xd4/0x160
[   97.704835][ T6841]  ? _raw_spin_unlock_bh+0x36/0x40
[   97.710039][ T6841]  ? __pfx_tcp_sendmsg+0x10/0x10
[   97.715004][ T6841]  tcp_sendmsg+0x30/0x50
[   97.719333][ T6841]  inet6_sendmsg+0x77/0xd0
[   97.723817][ T6841]  __sock_sendmsg+0x8b/0x180
[   97.728515][ T6841]  __sys_sendto+0x1d9/0x250
[   97.733090][ T6841]  __x64_sys_sendto+0x78/0x90
[   97.737801][ T6841]  x64_sys_call+0x2959/0x2d60
[   97.742563][ T6841]  do_syscall_64+0xc9/0x1c0
[   97.747090][ T6841]  ? clear_bhb_loop+0x55/0xb0
[   97.751898][ T6841]  ? clear_bhb_loop+0x55/0xb0
[   97.756645][ T6841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.762673][ T6841] RIP: 0033:0x7f202c99def9
[   97.767103][ T6841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.786777][ T6841] RSP: 002b:00007f202b611038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   97.795273][ T6841] RAX: ffffffffffffffda RBX: 00007f202cb55f80 RCX: 00007f202c99def9
[   97.803252][ T6841] RDX: 000000000000008d RSI: 0000000000000000 RDI: 0000000000000006
[   97.811317][ T6841] RBP: 00007f202b611090 R08: 0000000020b63fe4 R09: 000000000000001c
[   97.819370][ T6841] R10: 0000000022004001 R11: 0000000000000246 R12: 0000000000000001
[   97.827353][ T6841] R13: 0000000000000000 R14: 00007f202cb55f80 R15: 00007ffd09019668
[   97.835459][ T6841]  </TASK>
[   97.964199][ T6857] loop1: detected capacity change from 0 to 512
[   97.986662][ T6857] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   98.007396][ T6865] netlink: 100 bytes leftover after parsing attributes in process `syz.4.1205'.
[   98.031990][ T6857] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.051453][ T6857] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.065119][ T6872] FAULT_INJECTION: forcing a failure.
[   98.065119][ T6872] name failslab, interval 1, probability 0, space 0, times 0
[   98.077877][ T6872] CPU: 0 UID: 0 PID: 6872 Comm: syz.4.1207 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[   98.088285][ T6872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   98.098399][ T6872] Call Trace:
[   98.101693][ T6872]  <TASK>
[   98.104645][ T6872]  dump_stack_lvl+0xf2/0x150
[   98.109338][ T6872]  dump_stack+0x15/0x20
[   98.113570][ T6872]  should_fail_ex+0x229/0x230
[   98.118436][ T6872]  ? getname_flags+0x81/0x3b0
[   98.123151][ T6872]  should_failslab+0x8f/0xb0
[   98.127932][ T6872]  kmem_cache_alloc_noprof+0x4c/0x290
[   98.133412][ T6872]  getname_flags+0x81/0x3b0
[   98.137956][ T6872]  user_path_at+0x26/0x110
[   98.142391][ T6872]  __se_sys_quotactl+0xb2/0x660
[   98.147329][ T6872]  ? fput+0x14e/0x190
[   98.151387][ T6872]  __x64_sys_quotactl+0x55/0x70
[   98.156286][ T6872]  x64_sys_call+0x2b7f/0x2d60
[   98.161135][ T6872]  do_syscall_64+0xc9/0x1c0
[   98.165668][ T6872]  ? clear_bhb_loop+0x55/0xb0
[   98.170387][ T6872]  ? clear_bhb_loop+0x55/0xb0
[   98.175228][ T6872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.181192][ T6872] RIP: 0033:0x7f8147fadef9
[   98.185683][ T6872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.205405][ T6872] RSP: 002b:00007f8146c27038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[   98.214017][ T6872] RAX: ffffffffffffffda RBX: 00007f8148165f80 RCX: 00007f8147fadef9
[   98.222030][ T6872] RDX: 0000000000000000 RSI: 0000000020000380 RDI: ffffffff80000200
[   98.222751][ T6879] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, 
[   98.230046][ T6872] RBP: 00007f8146c27090 R08: 0000000000000000 R09: 0000000000000000
[   98.230066][ T6872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.230082][ T6872] R13: 0000000000000000 R14: 00007f8148165f80 R15: 00007ffe61e2a458
[   98.230106][ T6872]  </TASK>
[   98.269407][ T6879] block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   98.295640][ T6861] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.309212][ T6875] Illegal XDP return value 10027010 on prog  (id 864) dev N/A, expect packet loss!
[   98.339809][ T4680] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.360094][ T6861] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.400440][ T6876] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1208'.
[   98.469334][ T6861] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.549180][ T6861] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.608321][ T6861] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.633437][ T6861] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.658042][ T6861] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.682194][ T6861] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.884848][ T6901] loop3: detected capacity change from 0 to 128
[   98.945425][ T6901] netlink: 'syz.3.1218': attribute type 4 has an invalid length.
[   98.962964][ T6905] loop2: detected capacity change from 0 to 1024
[   98.974287][ T6901] netlink: 'syz.3.1218': attribute type 4 has an invalid length.
[   98.976133][ T6905] EXT4-fs: Ignoring removed orlov option
[   98.987823][ T6905] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.029650][ T6905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.050347][ T6913] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[   99.087783][ T6052] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.141010][ T6915] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.154628][ T6922] 9pnet_fd: Insufficient options for proto=fd
[   99.197764][ T6915] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.237851][ T6915] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.280212][ T6931] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.300382][ T6915] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.327719][ T6931] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.397834][ T6931] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.447498][ T6931] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.977717][ T6968] 9pnet_fd: Insufficient options for proto=fd
[  100.012892][ T6970] loop2: detected capacity change from 0 to 1024
[  100.022028][ T6970] EXT4-fs: Ignoring removed orlov option
[  100.027843][ T6970] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.061244][ T6970] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  100.080720][ T6970] EXT4-fs (loop2): shut down requested (0)
[  100.103166][ T6052] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.157714][ T6976] netlink: 'syz.1.1250': attribute type 39 has an invalid length.
[  100.985904][ T6998] 9pnet_fd: Insufficient options for proto=fd
[  101.007397][   T29] kauditd_printk_skb: 626 callbacks suppressed
[  101.007415][   T29] audit: type=1326 audit(1726802436.017:7569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.037414][   T29] audit: type=1326 audit(1726802436.017:7570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.061490][   T29] audit: type=1326 audit(1726802436.017:7571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.085069][   T29] audit: type=1326 audit(1726802436.017:7572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.108570][   T29] audit: type=1326 audit(1726802436.017:7573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.132119][   T29] audit: type=1326 audit(1726802436.017:7574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.155718][   T29] audit: type=1326 audit(1726802436.017:7575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.179133][   T29] audit: type=1326 audit(1726802436.017:7576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.202651][   T29] audit: type=1326 audit(1726802436.017:7577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.226119][   T29] audit: type=1326 audit(1726802436.017:7578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6999 comm="syz.2.1260" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f850d06def9 code=0x7ffc0000
[  101.257680][ T6931] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.270769][ T6931] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.282000][ T6931] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.293082][ T6931] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.405960][ T7023] 9pnet_fd: Insufficient options for proto=fd
[  101.539569][ T7029] syz.0.1272[7029] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.539684][ T7029] syz.0.1272[7029] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.609935][ T7030] loop0: detected capacity change from 0 to 1024
[  101.911747][ T7038] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  101.921170][ T7038] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.305737][ T7042] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1277'.
[  102.309856][ T6915] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.330911][ T6915] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.343913][ T6915] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.355792][ T6915] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.411442][ T7049] pim6reg1: entered promiscuous mode
[  102.416904][ T7049] pim6reg1: entered allmulticast mode
[  102.600286][ T7063] loop4: detected capacity change from 0 to 164
[  102.607663][ T7063] Unable to read rock-ridge attributes
[  102.618176][ T7063] Unable to read rock-ridge attributes
[  102.647127][ T7068] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1289'.
[  102.659834][ T7068] loop0: detected capacity change from 0 to 512
[  102.670593][ T7068] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  102.683178][ T7068] EXT4-fs (loop0): 1 truncate cleaned up
[  102.690844][ T7068] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.713537][ T4542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.753085][ T7079] syz.0.1291[7079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.753177][ T7079] syz.0.1291[7079] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.772747][ T7081] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  102.793152][ T7081] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  102.826742][ T7082] loop0: detected capacity change from 0 to 1024
[  103.174216][ T7084] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.217298][ T7084] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.277417][ T7084] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.337512][ T7084] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.403624][ T7084] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.419292][ T7084] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.432161][ T7084] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.444456][ T7084] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.557221][ T7092] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.603774][ T7109] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  103.614486][ T7092] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.628353][ T7109] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  103.657777][ T7092] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.707405][ T7092] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.763824][ T7092] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  103.775793][ T7092] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  103.788181][ T7092] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  103.800439][ T7092] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  103.860751][ T7121] netlink: 100 bytes leftover after parsing attributes in process `syz.2.1310'.
[  104.073166][ T7133] syz.2.1315[7133] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.073246][ T7133] syz.2.1315[7133] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.144786][ T7134] loop2: detected capacity change from 0 to 1024
[  104.162950][ T7136] loop0: detected capacity change from 0 to 164
[  104.172850][ T7136] Unable to read rock-ridge attributes
[  104.324225][ T7147] syz.0.1321[7147] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.324278][ T7147] syz.0.1321[7147] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.336879][ T7147] FAULT_INJECTION: forcing a failure.
[  104.336879][ T7147] name failslab, interval 1, probability 0, space 0, times 0
[  104.360932][ T7147] CPU: 1 UID: 0 PID: 7147 Comm: syz.0.1321 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[  104.371300][ T7147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  104.381383][ T7147] Call Trace:
[  104.384671][ T7147]  <TASK>
[  104.387628][ T7147]  dump_stack_lvl+0xf2/0x150
[  104.392282][ T7147]  dump_stack+0x15/0x20
[  104.396482][ T7147]  should_fail_ex+0x229/0x230
[  104.401218][ T7147]  ? qdisc_alloc+0x65/0x450
[  104.405838][ T7147]  should_failslab+0x8f/0xb0
[  104.410536][ T7147]  __kmalloc_node_noprof+0xa8/0x380
[  104.416120][ T7147]  qdisc_alloc+0x65/0x450
[  104.420559][ T7147]  qdisc_create_dflt+0x4c/0x280
[  104.425553][ T7147]  mqprio_init+0x578/0xc30
[  104.429990][ T7147]  ? __pfx_mqprio_init+0x10/0x10
[  104.434968][ T7147]  qdisc_create+0x6c1/0xae0
[  104.439500][ T7147]  ? __nla_parse+0x40/0x60
[  104.444005][ T7147]  tc_modify_qdisc+0x65f/0x1050
[  104.448943][ T7147]  ? ns_capable+0x7d/0xb0
[  104.453360][ T7147]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  104.458793][ T7147]  rtnetlink_rcv_msg+0x6aa/0x710
[  104.463755][ T7147]  ? ref_tracker_free+0x3a5/0x410
[  104.468952][ T7147]  ? __dev_queue_xmit+0x161/0x1fe0
[  104.474103][ T7147]  netlink_rcv_skb+0x12c/0x230
[  104.478925][ T7147]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  104.484415][ T7147]  rtnetlink_rcv+0x1c/0x30
[  104.488850][ T7147]  netlink_unicast+0x599/0x670
[  104.493689][ T7147]  netlink_sendmsg+0x5cc/0x6e0
[  104.498504][ T7147]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.503808][ T7147]  __sock_sendmsg+0x140/0x180
[  104.508595][ T7147]  ____sys_sendmsg+0x312/0x410
[  104.513385][ T7147]  __sys_sendmsg+0x1dd/0x270
[  104.518032][ T7147]  __x64_sys_sendmsg+0x46/0x50
[  104.522902][ T7147]  x64_sys_call+0x2689/0x2d60
[  104.527710][ T7147]  do_syscall_64+0xc9/0x1c0
[  104.532275][ T7147]  ? clear_bhb_loop+0x55/0xb0
[  104.536972][ T7147]  ? clear_bhb_loop+0x55/0xb0
[  104.541760][ T7147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.547676][ T7147] RIP: 0033:0x7f202c99def9
[  104.552095][ T7147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.571752][ T7147] RSP: 002b:00007f202b5f0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  104.580172][ T7147] RAX: ffffffffffffffda RBX: 00007f202cb56058 RCX: 00007f202c99def9
[  104.588181][ T7147] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000007
[  104.596180][ T7147] RBP: 00007f202b5f0090 R08: 0000000000000000 R09: 0000000000000000
[  104.604157][ T7147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  104.612209][ T7147] R13: 0000000000000000 R14: 00007f202cb56058 R15: 00007ffd09019668
[  104.620193][ T7147]  </TASK>
[  104.710458][ T7154] loop4: detected capacity change from 0 to 512
[  104.717714][ T7154] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  104.730082][ T7154] EXT4-fs (loop4): 1 truncate cleaned up
[  104.736483][ T7154] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.954669][ T7164] loop2: detected capacity change from 0 to 164
[  104.962176][ T7164] Unable to read rock-ridge attributes
[  104.970235][ T7164] Unable to read rock-ridge attributes
[  105.010947][ T7168] loop2: detected capacity change from 0 to 164
[  105.018628][ T7168] Unable to read rock-ridge attributes
[  105.027413][ T7168] Unable to read rock-ridge attributes
[  105.181719][ T7177] loop0: detected capacity change from 0 to 256
[  105.305398][ T7177] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  105.557689][ T4398] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.582833][ T7183] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.608364][ T7189] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.627170][ T7189] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.658626][ T7183] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.661806][ T7173] coredump: 137(syz.2.1331): written to core: VMAs: 29, size 89030656; core: 60011182 bytes, pos 89038848
[  105.729701][ T7193] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  105.739658][ T7193] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.752710][ T7183] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.770691][ T7199] tipc: Started in network mode
[  105.775651][ T7199] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  105.785800][ T7199] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  105.794370][ T7199] tipc: Enabled bearer <udp:sy>, priority 10
[  105.803090][ T7193] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  105.813035][ T7193] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.825487][ T7199] can0: slcan on ttyS3.
[  105.837563][ T7183] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.889752][ T7193] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  105.899621][ T7193] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.946163][ T7198] can0 (unregistered): slcan off ttyS3.
[  106.075260][   T29] kauditd_printk_skb: 1280 callbacks suppressed
[  106.075279][   T29] audit: type=1326 audit(1726802441.077:8859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7200 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f202c994ea7 code=0x7ffc0000
[  106.105023][   T29] audit: type=1326 audit(1726802441.077:8860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7200 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f202c939879 code=0x7ffc0000
[  106.128772][   T29] audit: type=1326 audit(1726802441.077:8861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7200 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c99def9 code=0x7ffc0000
[  106.152246][   T29] audit: type=1326 audit(1726802441.077:8862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7200 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f202c99def9 code=0x7ffc0000
[  106.178982][ T7193] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  106.188882][ T7193] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.192903][   T29] audit: type=1326 audit(1726802441.197:8863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.1.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[  106.222160][   T29] audit: type=1326 audit(1726802441.197:8864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.1.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[  106.245721][   T29] audit: type=1326 audit(1726802441.197:8865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.1.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[  106.269350][   T29] audit: type=1326 audit(1726802441.197:8866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.1.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[  106.292901][   T29] audit: type=1326 audit(1726802441.197:8867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.1.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[  106.316365][   T29] audit: type=1326 audit(1726802441.197:8868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7203 comm="syz.1.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fbfe8def9 code=0x7ffc0000
[  106.369062][ T7211] loop1: detected capacity change from 0 to 164
[  106.378073][ T7211] Unable to read rock-ridge attributes
[  106.384794][ T7193] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  106.393268][ T7193] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.438079][ T7193] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  106.446638][ T7193] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.458366][ T7220] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1351'.
[  106.461642][ T7193] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  106.475718][ T7193] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.489107][ T7193] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  106.497703][ T7193] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.535707][ T7226] syz.4.1354[7226] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.535777][ T7226] syz.4.1354[7226] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  106.612033][ T7236] loop1: detected capacity change from 0 to 512
[  106.635207][ T7236] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.1358: casefold flag without casefold feature
[  106.656031][ T7236] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1358: couldn't read orphan inode 15 (err -117)
[  106.669973][ T7236] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.795564][  T999] tipc: Node number set to 1
[  106.803715][ T4680] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.823565][   T29] ==================================================================
[  106.831829][   T29] BUG: KCSAN: assert: race in dequeue_entities+0x6df/0x760
[  106.839035][   T29] 
[  106.841353][   T29] race at unknown origin, with assert no writes to 0xffff888108676368 of 4 bytes by task 29 on cpu 1:
[  106.852297][   T29]  dequeue_entities+0x6df/0x760
[  106.857154][   T29]  pick_next_task_fair+0x7d/0x410
[  106.862238][   T29]  __schedule+0x27c/0x940
[  106.866742][   T29]  schedule+0x55/0xc0
[  106.870736][   T29]  kauditd_thread+0x56b/0x650
[  106.875437][   T29]  kthread+0x1d1/0x210
[  106.879514][   T29]  ret_from_fork+0x4b/0x60
[  106.883959][   T29]  ret_from_fork_asm+0x1a/0x30
[  106.888738][   T29] 
[  106.891059][   T29] value changed: 0x00000000 -> 0x00000001
[  106.896773][   T29] 
[  106.899092][   T29] Reported by Kernel Concurrency Sanitizer on:
[  106.905238][   T29] CPU: 1 UID: 0 PID: 29 Comm: kauditd Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[  106.915143][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  106.925198][   T29] ==================================================================
[  106.939393][ T7253] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1364'.
[  106.996196][ T7251] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  107.006237][ T7251] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.057279][ T7251] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  107.067210][ T7251] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.117221][ T7251] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  107.127116][ T7251] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.157549][ T7251] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  107.167420][ T7251] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.100283][ T7183] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.111641][ T7183] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.122747][ T7183] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.133622][ T7183] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.491036][ T7251] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  110.499377][ T7251] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.510074][ T7251] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  110.518331][ T7251] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.529420][ T7251] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  110.537651][ T7251] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.548729][ T7251] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  110.557107][ T7251] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0