last executing test programs:

2m35.136346172s ago: executing program 3 (id=4):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0xfffd}, 0x18)
r1 = syz_io_uring_setup(0x1104, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0xfffffffe, 0x21e}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x1fc, 0x0, 0x1})
io_uring_enter(r1, 0x47fa, 0x0, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff})
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r4, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x40032043, 0x1})

2m34.805348958s ago: executing program 3 (id=11):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x441, 0x0)
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)

2m33.882550566s ago: executing program 3 (id=30):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x9b301a, 0x0)
mount$bind(&(0x7f00000004c0)='./file0/file0\x00', &(0x7f0000000500)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

2m33.856139637s ago: executing program 3 (id=32):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000380)='kfree\x00', r0}, 0x18)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r2, {0x2, 0x0, @multicast2}, 0x2, 0x0, 0xffffffff}}, 0x2e)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000100)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x2, 0x5}}, 0x26)
close_range(r1, 0xffffffffffffffff, 0x0)

2m32.708374219s ago: executing program 3 (id=54):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000180a0500000000000000000002000000300003802c00038014000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a300000000014000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000)

2m32.68448593s ago: executing program 32 (id=54):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000180a0500000000000000000002000000300003802c00038014000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a300000000014000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000)

2m12.61505098s ago: executing program 4 (id=579):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x70, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x1e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x45, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r0, 0x0, 0x5)
fchdir(r2)

2m12.577162471s ago: executing program 4 (id=581):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
syz_io_uring_submit(0x0, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000005c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
close(r2)

2m12.478095862s ago: executing program 4 (id=584):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000240)='timer_start\x00', r2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

2m12.401952174s ago: executing program 4 (id=587):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000580)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1b5008, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2145499, 0x0)
mount$bind(0x0, &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x80000, 0x0)

2m12.374460464s ago: executing program 4 (id=589):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000000)=0xfffffffe, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000480)=0x17fe, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x2, @loopback, 0x2}, 0x1c)

2m12.164148819s ago: executing program 4 (id=595):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20040018}, 0x0)
sendmsg$inet(r3, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0)
recvmsg(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)

2m12.148219619s ago: executing program 33 (id=595):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20040018}, 0x0)
sendmsg$inet(r3, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0)
recvmsg(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)

1m51.00982553s ago: executing program 5 (id=1297):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
r3 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000540)={'syz', 0x0}, 0x0, 0x0, r2)
r4 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
r5 = add_key$keyring(&(0x7f0000000580), &(0x7f00000005c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_MOVE(0x1e, r4, r5, r3, 0x0)

1m50.980401081s ago: executing program 5 (id=1298):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)

1m50.877121103s ago: executing program 5 (id=1304):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
unshare(0x64000600)

1m50.562765419s ago: executing program 5 (id=1313):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x20, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x31, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x40)
io_setup(0x9, &(0x7f0000000300)=<r1=>0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x2, 0x1, 0x0, r0, &(0x7f0000000000), 0x100000}])
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x7, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})

1m49.686436986s ago: executing program 5 (id=1328):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x14927e, 0x20)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, 0x4002011, r2, 0x3000)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)

1m49.46413901s ago: executing program 5 (id=1331):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000140), &(0x7f0000000200)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x23)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
close(0xffffffffffffffff)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa19a, 0x1000}, 0x0, 0x0, 0xffffffff, 0x5, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')

1m49.463985231s ago: executing program 34 (id=1331):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000140), &(0x7f0000000200)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x23)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
close(0xffffffffffffffff)
r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xc3, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xa19a, 0x1000}, 0x0, 0x0, 0xffffffff, 0x5, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000340)='cpu\t&0&&\t')

1m15.06462775s ago: executing program 7 (id=2396):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000880)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0902000000000000000001000000050002000a00000014000700ff00000000000000000000000000000108000b00"], 0x38}}, 0x0)

1m14.826196274s ago: executing program 7 (id=2400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000070000002a00000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000940)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_kthread_work_queue_work\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r4}, 0x10)
close(r2)

1m14.787761215s ago: executing program 7 (id=2402):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r2, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r2, 0x540a, 0x2)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100))

1m14.636358078s ago: executing program 7 (id=2406):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000780)={0xfffffffe, 0x0, 0x0, 'queue0\x00', 0x48})
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x40000333}, &(0x7f00000006c0)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x847ba, 0x0, 0xe, 0x0, 0x0)
write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4)

1m14.54884858s ago: executing program 7 (id=2408):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mount$bpf(0x200000000000, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000140)='./file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0\x00', 0x0, 0x225451, 0x0)

1m14.502417481s ago: executing program 7 (id=2409):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5c, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

59.474808543s ago: executing program 35 (id=2409):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5c, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

2.181501058s ago: executing program 2 (id=4482):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000570000"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18010000200000000000000000000000850000006d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4005, &(0x7f0000000c00)=0xb, 0x6, 0x2)
mbind(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000c00)=0xc, 0x6, 0x2)

2.160838988s ago: executing program 2 (id=4483):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x100000000}, 0x18)
mlock(&(0x7f0000bff000/0x400000)=nil, 0x400000)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0x8, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = dup(r2)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

1.768032116s ago: executing program 2 (id=4492):
faccessat2(0xffffffffffffffff, &(0x7f0000000040)='\x00', 0x1, 0x1300)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='sched_switch\x00', r0, 0x0, 0x2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$UHID_CREATE(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r1}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x3}, 0x0, 0x0)

978.374741ms ago: executing program 1 (id=4501):
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = syz_io_uring_setup(0x44cd, &(0x7f00000004c0)={0x0, 0x5331, 0x10100, 0x1000006, 0xfffefffe}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x40, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x2d3e, 0xec84, 0x0, 0x0, 0x0)

956.775802ms ago: executing program 1 (id=4502):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = dup(r0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="640000000206030000000000fffff0000000000016000300686173683a6e65742c706f72742c6e6574000000050004000000000005000500020000000900020073797a3200000000050001000700000014000780080013400000000008001240"], 0x64}}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7fff}, 0x18)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000000306010200000000000000000200ef0a0500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x4)

894.638263ms ago: executing program 6 (id=4505):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = epoll_create1(0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/power/wakeup_count', 0x80800, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0)={0xe000001a})
read$char_usb(r2, &(0x7f0000001980)=""/179, 0xb3)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000000))

877.220103ms ago: executing program 2 (id=4506):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000001600)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adff012255f674412d02000000880b5f04596a5e99fce658be2f200c699223886d8be4b50000005ab527ee3697f98125f30e6326996a3cfee33025a30b45bdcf2c69d105e5e55a1d273683623f1a5dc6e3c7e20eb7a98ecf3bd2cf898e924abe26ac296f660e69ba982fd76e00dcff7f0000ca6b78ad833488cfe4109eaf009eddcf21f5c63cde2f00150200000001000000520a0000151d010000000100bf00000000cc587424363da52001a3cdf2000000db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de406e89dcbb7677e65a88a8407a9e7f9c0e91028b0856eb1ed9474480737a55ebb0bd701f7fb21135c6172eba7eb8a341f07e5a2d1e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d93a433f50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56dbe37551b870b2851c3f0a1a9ebfcba105a6ccdd01b0f04edb256c0200000073f6db43661bd7f0e2536ffbfe5ca31b4083145531458b7d1e341c6b351ebc5223f54d6bec93f4ef088e5d1be2515226988d664709ff03f1aa3dc7f1580ace9bf2afd28d0700000000000000d6eb372713255012e028cb2654d493a0b43bf21375709f348f5eda2967199cc936859a538100070000000000dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0c6ef9dd2b6bb700000000000000000c586272c3f4d79bc36315745cb149f3cb385e6add14652003c7cdd3324f07d134d3a6c718bbd1aafe1140cff0be4c6f8df084c5e9734ae30aa9af030025f01ab03a9b1074407136bc506031f0916a39d3057d55183612b39e73ae8e6dc30356886a831836469e2051d937eb85f3f2d5ae2c1dca476b97419a3b76ed62409d004d7fbe362145d19605d760df4c5124ca325d374b371867a79b35c6617fc3327191fbf514573f0e30d1d60be2168fffc2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257bc9110971b749ccd74089ed6b86f81ca3ba47d8f71d290ed1b1a11f7a67125170c88c3b6a50692cc0064fc6bbd312536ac15016c85c6332226401b110da9c786eeca22debc99335587b54c13c3107008fa069af8223b38ced735c2d906551004d8dc10d88738488da01ffa4add56474573c964a270000f2f16625c0c10200000000c7a5ca60fdad159f2e44171f39638410020000004825d081f2d987f05c534187738655d7dc958f2046fa0c1619a6554b82d9c162eb61ca74f1ffdaccf0ea5f06e0fca8b27ff3983ab74fd3d560700a1fab44e77e312b3b129e000302d613916c9bcf9f0000fac73a5b6bfb27f88dba816020be760f7b45e001efada8000000000000fdaf4660402f7b3b79a433e08074ea2462974a00040000eb01352638f56dae0249d15ba8767259658878b7492cfbacde9b57cf4de00788adce638190f3570e0b4c80ef682df22201270955afb6008846557ee3bc09fda6dbb6550d597300eb82a184c96ffde5a30e5433e866665b98ca2002c804c22ff2634b7bfbf5c0d586cda5b45fd00dede1e88a4d41dee7cc76d7a23d06acb1d2d4c58faea84158bb440df2a694f4cdcaa4f65c22efffffffffffdd00000000d503d79986958115ae07b70f991430b7fb475d77b869ee02000000000000000000001ffff0ef89b2a68d2b05c995445d8a7700bcdfbec74fb2dd163e863315e84498dfb52bb93f6c9084659ce777ddac563c8596c2b1d8180289a61faa95a82bf1cfb7f2fd7252e9322abe282c33445d443a67467893b9bf0d1c8130ae6b226900000635376413c29f7c6f7b7e29b9a0c64e68328661f0c06e21f7d7dc22174ea4447a6f60edef3a4168d40200fbc71104512efe8e5d7d934aa289b4bd2b870000000000000000000007000000002000000000009b777883a02f0593dfc4cb4114b9f9cf4ad155110cc6ace2b322ac31bfa27847c799c8009a1ea5b98e525e6383ad7fd9795170e7b11e247603c2ff49a11459c7f606d729d3979676bffb3049166bb84a0f061991bd57c2566c10c282352aba05b6164ef876915a3f2491e4793e590dcc71de10da96366c1e992c0068c940dd4422c9882d3aa0f8a797b8fea6efcfb5276b7679f15559edaa977504cc0b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd04000000de17e1e13b93669b79556abb722d9c085b189b5fd1f30e8dc813f608830b110001732135e8e7262f290000923bfb6b41ff3792cee2fc37eee739c3e36a4bc80112968ec0d8902eced1fe552018014a463abbbf7ccd6a92a5734e3ebfca9b6e88e031f31de2183652e77c164c646a1cfd3710aa4205d8d4d4f974133ccb1e49feb42664eccd809c0ba8917eda87489e8946d5c8156197bcb66fd5606c63e3389ee9e8552381646365066ef9a36a449c96485c22ad1aa423b7b89efbc6cd54000bb0ea5f4f1e8773144fb6ac9a44d43593d77e66aa7ed7f3d4e7b211590c738888d02b2dbb0b2ba73ec72e1d8d7360a128499dd19e1e7b9b0671f4f58515b45ecb9964f3c4ddb8234391d514f8d996d8d6dd7f8fadfee2d7a0035638ce27c2936cb04b30a0eb0cde0000000000000040000000ec3c12ecee8fc3a40000000000000000e215b00ce2570b930723cbadb4033d1b8aaa2cfb3fb89e4a6e89737fd6232218a9e0c099d1eb59d60b3cca089785642f327139bc4394fb6d547a9b3c22599e780c1da7433fb47615d372e3fffe9703e37d5c87d513165278650738efcc04d27b766cf7f60066edd292f6c8a2174f391ed164bb1816819ceb3e378e776d422bc946cd9501accebeac3a5b31d8abc68ae537cd44a04e6bc21c35a7beab2610c51e593676bf635a20f597f4631b91454d182f826071f5210bd6d93173589929b23801e63c2266fde13b5a04b8d48be057c752bc415a756ea9b4d34156c4f73dd5e5924ef101a5fcdaf37c7ba2c4a9de9b000000000000000000000000000000a73b862e4b63c245616b522345587d0ee65a6902bdd0abd941e8aba37510b222ae544f395edd1b92ad53fc68f08ea00edc5e10d768836169dd296d56b306e8b75778c37571792a6c3d8b02ef378ebd59422cdd008bef6f80a80a68641ea5ed4f1126bb676098c10bf663eb3fb8c839364d28fd046dc64b35f9c3397ce6f4ad357b0000000000090000000088c7a8e2638f650a6f04a6f33a090f59414d6ebcbc687e66d600000000bd0a58ea6d36fc2cf9b9a71c137a2a22adb1006f371d4faf47285fd66fe0389afb96854bb360edcdf11b4ff6dd578bba93e949d240cde9b5836cb46032484dc19c93db7b6e5afa10547c78e76a3111557346e52566df196fd630561bb908fff4d2e19562aabd43742a26a43799f8636fa04ceb40c9e4ca1cfbbc7b949cd245a3ee118fd0d4f639444539af8766028d4ac4d4c548e290199e0dacbb4f6796b39bf32934d941ba2f88e3ebd0cf8e24f99eca86e4ca9b2cd2b54044a7fc4631572a6378a32df288785f146275c1f548e2a0c1016744e05f9de5044373d7650125027547eefe7b2d8c8871bb65395fae99d8456883705bfdfb00001854b2e5efa8aaf25827d659f592b1575281ec125de7fb91cd81d91dcb19f5cdf1e1e2b4a8a1389753a09110538689e38e07fb2dc72bd4fd11d7bc16aac5d85c6101bb722895248e463a5fb45ce0e564e90cb19d5993b471687ae4165e29cf2f58082115f5f8569896eedfd798733223e6d6584997510c374912ab798bd4af4654c01bb2c411bc36468ddd62b4eba5cfc8953526e0e5b1359797956152d0098ce47c62c3fe5a23219389622b7f65bf03527d25c3941b9cf1ffeedf6d99082bb57ea871c12213cc40900f83033bc18c529171fae324c315bc6ce358831d0230412212acfd5fc8d5cb0d028cf568e8bb40e27befe2ff01f7c6674a4d86d900633ea36641e0a781ea0ea7f2d928b8b22e2f97dd13348927375baea6863bef4acf4299096ada5cdd2a0eaafaa760a79d102d1e0c0000000000000000007926653b8d79ce16a432f124786a0bc3c5b7d196822492ae1ccf91aeac16406ad6f9cd3d96d57fceba8360ae49f73351814c9c2972f11064aaf3739d9100f9c0e4d0cb17d50c82e305ba7d62cf1cc6da26e34982a8c74dd8122cf5b5e7c34fd2712a0cef05e4d8ec7dd363219676bd9b19943185b132eb35a695e208dfa5cecdb1d6425c8879063c0f11bd64291a4209ee6dc1d9e9010013f6148c603e6a335e298efd6ab5cccc47a2c568c6afec54f8251bd840752addf200371361c9eedf05ed98585cf6d99e9e56055064bda2d373369761238c278147cd0eb7799f6b9c9fcaa3fd282154994f5b25420c86db9b6401e885de1c615a719a1c83e8fbbb181282dbaf3313a4e4a4877e9f37607e2cd6da0cf6371ec06a75f5a4206b2418ad8897ae149085d63f01f22eca44033234b3930b4d5da756669a1d59d69e7de54abf439988ed7ec33c2d0a901bb0985a24878984d8a4340fa9a356d100926fb5f2ef9976366a61b8cc2bcb1c072b0e9c564852388e1edff10d75b3832792e471cc15b40380f94d834243080158603fbc9134d6983c540525447478984611c0d9666941bfc0a30db47a8828b6e5c51aee2094599b4ce52795750e1764f1657ca8c5633c71287239dddf5c651496f7bbd148c937f083d2e4e0197dbc6ff0649c749707b17399b1d7efad23abb8b40b38704737e15662ae4913a4a001cd3b71c7af75b5ffad9780650c800a40ca80ddc41987919142fd28dbf22db5f4c435415a03455e1d55d1783ccef97d7e4655cf839d06f06e137bbe462a03b3100231914b19739dd57b4f12d026ad0c7fd3"], &(0x7f00002bf000)='GPL\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffc95, 0x10, 0x0, 0xffffffffffffff0f}, 0x48)
r2 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000180)={r0, r1})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000001380)={<r3=>0xffffffffffffffff})
sendmsg$nl_route_sched(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000980)=@newtclass={0x24, 0x28, 0x4, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xb, 0xa}, {0x5, 0xa}, {0xe, 0xffe0}}}, 0xfdef}, 0x1, 0x0, 0x0, 0x40d1}, 0x40d8)
syz_genetlink_get_family_id$fou(&(0x7f0000000400), r3)

877.108974ms ago: executing program 1 (id=4507):
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140))
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x3, 0x34f}, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000240)=0xffffffff, 0x0, 0x4)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x58}}, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}], 0x2}}], 0x1, 0x48041)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x30, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

860.678964ms ago: executing program 1 (id=4509):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r2, &(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
accept(r3, 0x0, 0x0)

846.494534ms ago: executing program 1 (id=4510):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = gettid()
syz_clone(0xb44040, 0x0, 0x0, 0x0, 0x0, 0x0)
rt_sigaction(0x1b, &(0x7f0000000040)={0xfffffffffffffffc, 0x4c000000, 0x0, {[0x8000000000005a]}}, 0x0, 0x8, &(0x7f00000001c0))
tkill(r2, 0x1b)

804.345675ms ago: executing program 6 (id=4513):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x12, 0x0, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xf}, 0x94)
r0 = syz_io_uring_setup(0x53f, &(0x7f0000000440)={0x0, 0xf05e, 0x400, 0xfffffff8, 0xfe}, &(0x7f0000000300)=<r1=>0x0, &(0x7f00000002c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
unshare(0x2c020400)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

732.600236ms ago: executing program 6 (id=4515):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e27f00000100000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000001000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000080), &(0x7f0000000180)=r1}, 0x20)

567.230659ms ago: executing program 6 (id=4516):
r0 = epoll_create1(0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = epoll_create1(0x0)
r3 = fcntl$dupfd(r1, 0x406, r2)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r2, &(0x7f00000000c0)={0x20000002})
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000040)={0x20000001})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)={0x90000014})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000000580)={0xa0000000})

549.389619ms ago: executing program 6 (id=4517):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
syz_open_dev$tty1(0xc, 0x4, 0x4)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r1, &(0x7f0000000f00)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000100)='k', 0x1}], 0x1}}], 0x1, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x100010, r2, 0x100000000)
shutdown(r1, 0x1)
setsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000001c0), 0x4)

511.65877ms ago: executing program 6 (id=4518):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0xf3a, 0x0)
write(r1, &(0x7f0000000240)="94", 0x1)
vmsplice(r4, &(0x7f0000000380)=[{&(0x7f0000013580)="0dd2e7c8926dc6acd0ae6c178054e95986faff9544de5fc4c30adf404da41181a77466ac5075905ea5f50134fdd517a957fe2ee59b61f9fe8d7aabe595ea23de2723e437af0423a56686a4c2d957be1a0ab922fbbd3cb1d8c6ab0d58440a327c8eb05d445b4ac5f20abe449e4084f8b996268d0564f67980d3ed3479e0edfe5cec7b4f89bface391c9c4c58ad123b91c33173c72326d1df18804a9ea20f9ece48f784d8ca2318e3d2b316666b5dfb7295c4915989d5bcb120e8fedaa97b93a137c256ce4", 0x20013644}, {&(0x7f0000013680)="c578381bf5113dad8319d9ea5294285ae9a90384ce23866477bef9de4399237d8b3522c9c194e71edaf3332a2f169682f9d8fa271683d4d441b710409e506333e0c3b64e52e8720734b6787f4a84f5bebb046649c6c697d978affd349031b2cd874c7a8961a586a9f2d62f945e7a5bf2f5f7a31684c0503704881d2578a2a98ac3ef4e4a4b0dcdb70db735d5c1652eed3848b2dd4131bb0eb7cfadfaf5", 0x9d}], 0x2, 0x0)
tee(r0, r4, 0x8f5, 0x0)
write$binfmt_script(r4, 0x0, 0xd9)
write(r2, 0x0, 0x0)

307.745164ms ago: executing program 0 (id=4531):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, &(0x7f0000000180), 0x10)
close_range(r2, 0xffffffffffffffff, 0x0)

286.105564ms ago: executing program 8 (id=4533):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r2 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r2, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

267.917195ms ago: executing program 8 (id=4534):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$tmpfs(0x0, &(0x7f0000000580)='./file0\x00', &(0x7f0000000540), 0x0, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x0)

250.935205ms ago: executing program 8 (id=4535):
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000000005000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x8000010}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="662700000000000024001280090001007866726d0000000014000280040003"], 0x44}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

177.636427ms ago: executing program 8 (id=4536):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x320, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x640100fe, @local}, {{0x3, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xfffe}}}}}}, 0x0)

128.184618ms ago: executing program 0 (id=4537):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000360155380000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x36)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
unshare(0x20060400)

128.043158ms ago: executing program 8 (id=4538):
socket$inet6_sctp(0xa, 0x1, 0x84)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000005c0), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f0000000000010000000000", @ANYRES64=0x0, @ANYRES64=0x2710], 0x48}}, 0x0)
r1 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xe9e2, 0x800, 0x1, 0x40000330}, &(0x7f0000000dc0)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1, 0x8})
io_uring_enter(r1, 0x2ffb, 0x0, 0x0, 0x0, 0x0)

127.883448ms ago: executing program 0 (id=4539):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000840)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={r2, 0x31, &(0x7f0000000240)={0x0, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4e, 0x0, 0x0, 0xfffffffffffffe9a, 0x0, 0x0, 0x0, 0x0}}, 0x10)
r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000004c0)={r3}, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f13df33c9f7b986", 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

97.626608ms ago: executing program 8 (id=4540):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendmmsg$inet(r0, &(0x7f0000000d80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000640)="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", 0x28f}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000000140)="404e8269db2bfd39d0df9eda352d1073bcd2aef6ccf89d0bde3c37e135354087093ddb9990700c33fd72ed12fef37764532d4662b4151b3d39f8b94d1c851c7635f40eaea8a126fb03d000011c8ff51ff2034a22482a412d6f7ef3579d710df850c4a8d1230dd75f0c3e01adbd4d7423fc7fccd81a14e0f27c173247707a3b8a5867aad17ed86e9fe8688aa1b726518f3c76231f3ca18b64bbe383b56ae9b11d2aee5022a27c5f22d6f6caef3bfaa6dabad21c0a5a5d", 0xb6}, {&(0x7f00000002c0)="a644436d07214f1640fa2ebf0cf31abf010854f9b04422775df039843c98b72f45eb1ae73fb46faabcd035bb8935081048b14818c9ebeb373096688ecc57aa9ce63df5e02b1f9f9f5729c28055161b838106db86294803367740d3947f50b86ccad7", 0x62}, {&(0x7f0000000340)="130a58f0018f50eb4ab714b4822919907e05589e33a4cb71bce227c47eed28f531014e0c9b17bfea4ebc097e280fa5447cd8bec23a29eb0680b0e0bf798e17ab67483c094eecf232f7f81c947cc23a039543c5d40ec5a591b6cc33eeedba96f26cca56e0adc77b7edd224144ee9d841d5381889e043fe53091326a89d56baf77d977170355d3453f8132", 0x8a}, {&(0x7f0000000440)="eaacec91f29886681996de91a10d6e03c0a696be4db24ff167daaba1d3df8c28507d4d35eea7c81736d23733f03d8f0c100b715d06e61f57138654d8307416dd532c35", 0x43}], 0x4}}], 0x2, 0x480e0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

63.229299ms ago: executing program 0 (id=4541):
syz_genetlink_get_family_id$tipc(&(0x7f0000000400), 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000000c0)={r1, &(0x7f0000000080), 0x0}, 0x20)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendto$llc(r3, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x9, 0xfd}, 0x10)
close_range(r2, 0xffffffffffffffff, 0x200000000000000)

44.63979ms ago: executing program 0 (id=4542):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0x2}, 0x18)
r2 = socket(0x11, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'gre0\x00', <r4=>0x0})
bind$packet(r2, &(0x7f0000000200)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @random="9020f2f9924c"}, 0x14)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r2, &(0x7f0000002ac0)={0x0, 0xb, &(0x7f0000000540)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="02017d29012918000e3580009f0001140000002f0600ac141414e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0aba61f6304a80500ffffca88faca"], 0xdd12}], 0x1}, 0x0)

44.383159ms ago: executing program 2 (id=4543):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18"], 0x0}, 0x94)
unshare(0x2c020400)
r0 = msgget$private(0x0, 0x0)
msgsnd(r0, &(0x7f0000000480)=ANY=[], 0x2000, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
msgrcv(r0, &(0x7f0000001080)={0x0, ""/1}, 0x2000, 0x2, 0x3000)

27.29113ms ago: executing program 0 (id=4544):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
getpid()
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000740)={<r2=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f00000000c0)={r2})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000002780)={<r3=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000080)={r3, 0x3, r1, 0x5})
connect$inet6(0xffffffffffffffff, 0x0, 0x0)

26.92551ms ago: executing program 2 (id=4545):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = eventfd2(0x0, 0x0)
io_setup(0x81, &(0x7f0000000400)=<r1=>0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000004"], 0x50)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f0000000440)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1fd, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r0}])

0s ago: executing program 1 (id=4546):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r0}, 0x18)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file1\x00', 0x800004, &(0x7f00000005c0)=ANY=[], 0x1, 0x371, &(0x7f0000000f80)="$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")
r1 = creat(&(0x7f00000007c0)='./file1\x00', 0x18)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r2 = open(&(0x7f0000000280)='./file1\x00', 0x14dc7e, 0x1)
fallocate(r1, 0x0, 0x0, 0x1000f4)
io_setup(0x5ff, &(0x7f0000000400)=<r3=>0x0)
io_submit(r3, 0x1ffffff0, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000000000)="96", 0xffffff20}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r1, 0x0, 0x0, 0xffffffffffffffff}])

kernel console output (not intermixed with test programs):

xe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5cc5c0d710 code=0x7ffc0000
[  121.583154][T10356] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2701'.
[  121.616345][T10358] $H�: renamed from bond0
[  121.623616][T10358] $H�: entered promiscuous mode
[  121.628721][T10358] bond_slave_0: entered promiscuous mode
[  121.634756][T10358] bond_slave_1: entered promiscuous mode
[  121.669784][T10358] dummy0: entered promiscuous mode
[  122.804224][T10373] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[  122.882482][T10397] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2716'.
[  122.910786][T10397] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2716'.
[  123.081286][T10373] chnl_net:caif_netlink_parms(): no params data found
[  123.157645][T10426] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2727'.
[  123.166841][T10426] netlink: 212 bytes leftover after parsing attributes in process `syz.1.2727'.
[  123.200530][T10373] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.207611][T10373] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.223140][T10373] bridge_slave_0: entered allmulticast mode
[  123.234990][T10373] bridge_slave_0: entered promiscuous mode
[  123.258816][T10373] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.265946][T10373] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.279908][T10373] bridge_slave_1: entered allmulticast mode
[  123.286451][T10373] bridge_slave_1: entered promiscuous mode
[  123.316610][ T5265] bridge_slave_1: left allmulticast mode
[  123.322365][ T5265] bridge_slave_1: left promiscuous mode
[  123.328078][ T5265] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.337951][ T5265] bridge_slave_0: left allmulticast mode
[  123.343729][ T5265] bridge_slave_0: left promiscuous mode
[  123.349405][ T5265] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.481869][ T5265] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  123.491417][ T5265] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  123.500503][ T5265] bond0 (unregistering): Released all slaves
[  123.509233][T10373] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  123.521903][T10373] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  123.553944][T10456] netlink: 'syz.6.2740': attribute type 7 has an invalid length.
[  123.561729][T10456] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2740'.
[  123.570742][ T5265] tipc: Left network mode
[  123.583099][T10373] team0: Port device team_slave_0 added
[  123.592293][T10373] team0: Port device team_slave_1 added
[  123.642862][T10373] batman_adv: batadv0: Adding interface: batadv_slave_0
[  123.649849][T10373] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  123.675824][T10373] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  123.713049][ T5265] hsr_slave_0: left promiscuous mode
[  123.722594][ T5265] hsr_slave_1: left promiscuous mode
[  123.735934][ T5265] batman_adv: batadv0: Removing interface: batadv_slave_0
[  123.743787][ T5265] batman_adv: batadv0: Removing interface: batadv_slave_1
[  123.797158][T10373] batman_adv: batadv0: Adding interface: batadv_slave_1
[  123.804346][T10373] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  123.830287][T10373] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  123.874825][T10373] hsr_slave_0: entered promiscuous mode
[  123.881931][T10373] hsr_slave_1: entered promiscuous mode
[  123.930969][T10490] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2752'.
[  123.961564][T10490] macsec1: entered promiscuous mode
[  123.966819][T10490] bridge0: entered promiscuous mode
[  124.020511][T10373] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  124.030592][T10373] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  124.040474][T10373] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  124.057471][T10373] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  124.127878][T10373] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.142509][T10373] 8021q: adding VLAN 0 to HW filter on device team0
[  124.157902][ T5265] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.165023][ T5265] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.192335][ T5265] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.199494][ T5265] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.291831][T10373] 8021q: adding VLAN 0 to HW filter on device batadv0
[  124.431026][T10373] veth0_vlan: entered promiscuous mode
[  124.440165][T10373] veth1_vlan: entered promiscuous mode
[  124.458332][T10373] veth0_macvtap: entered promiscuous mode
[  124.467750][T10373] veth1_macvtap: entered promiscuous mode
[  124.483503][T10373] batman_adv: batadv0: Interface activated: batadv_slave_0
[  124.494959][T10373] batman_adv: batadv0: Interface activated: batadv_slave_1
[  124.507158][ T5239] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.521814][ T5239] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.530915][ T5239] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.560431][ T5239] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.610850][T10573] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2779'.
[  124.652754][T10573] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.673945][T10578] macvlan2: entered promiscuous mode
[  124.679274][T10578] macvlan2: entered allmulticast mode
[  124.706899][T10578] bond0: (slave macvlan2): Opening slave failed
[  125.133621][T10632] lo speed is unknown, defaulting to 1000
[  125.139420][T10632] lo speed is unknown, defaulting to 1000
[  125.145752][T10632] lo speed is unknown, defaulting to 1000
[  125.153773][T10632] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  125.162228][T10632] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  125.174222][T10632] lo speed is unknown, defaulting to 1000
[  125.190717][T10632] lo speed is unknown, defaulting to 1000
[  125.196911][T10632] lo speed is unknown, defaulting to 1000
[  125.203165][T10632] lo speed is unknown, defaulting to 1000
[  125.209279][T10632] lo speed is unknown, defaulting to 1000
[  125.215436][T10632] lo speed is unknown, defaulting to 1000
[  126.038888][T10666] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2818'.
[  126.047947][T10666] netlink: 212 bytes leftover after parsing attributes in process `syz.6.2818'.
[  126.479828][   T29] kauditd_printk_skb: 160 callbacks suppressed
[  126.479861][   T29] audit: type=1326 audit(1758795222.584:3317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.509616][   T29] audit: type=1326 audit(1758795222.584:3318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.533257][   T29] audit: type=1326 audit(1758795222.584:3319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.556733][   T29] audit: type=1326 audit(1758795222.584:3320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.580210][   T29] audit: type=1326 audit(1758795222.584:3321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.603718][   T29] audit: type=1326 audit(1758795222.584:3322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.627331][   T29] audit: type=1326 audit(1758795222.584:3323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.650805][   T29] audit: type=1326 audit(1758795222.584:3324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.674270][   T29] audit: type=1326 audit(1758795222.584:3325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=192 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  126.697797][   T29] audit: type=1326 audit(1758795222.584:3326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10689 comm="syz.6.2822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  127.088161][T10625] syz.8.2801 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  127.099210][T10625] CPU: 0 UID: 0 PID: 10625 Comm: syz.8.2801 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  127.099286][T10625] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  127.099411][T10625] Call Trace:
[  127.099418][T10625]  <TASK>
[  127.099427][T10625]  __dump_stack+0x1d/0x30
[  127.099454][T10625]  dump_stack_lvl+0xe8/0x140
[  127.099472][T10625]  dump_stack+0x15/0x1b
[  127.099489][T10625]  dump_header+0x81/0x220
[  127.099518][T10625]  oom_kill_process+0x342/0x400
[  127.099556][T10625]  out_of_memory+0x979/0xb80
[  127.099644][T10625]  try_charge_memcg+0x5e6/0x9e0
[  127.099674][T10625]  charge_memcg+0x51/0xc0
[  127.099693][T10625]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  127.099762][T10625]  __read_swap_cache_async+0x1df/0x350
[  127.099795][T10625]  swap_cluster_readahead+0x376/0x3e0
[  127.099827][T10625]  swapin_readahead+0xde/0x6f0
[  127.099858][T10625]  ? __filemap_get_folio+0x4f7/0x6b0
[  127.099877][T10625]  ? __rcu_read_unlock+0x34/0x70
[  127.099909][T10625]  ? swap_cache_get_folio+0x77/0x200
[  127.100110][T10625]  do_swap_page+0x301/0x2430
[  127.100134][T10625]  ? css_rstat_updated+0xb7/0x240
[  127.100188][T10625]  ? __pfx_default_wake_function+0x10/0x10
[  127.100208][T10625]  handle_mm_fault+0x9a5/0x2c20
[  127.100236][T10625]  do_user_addr_fault+0x636/0x1090
[  127.100290][T10625]  exc_page_fault+0x62/0xa0
[  127.100316][T10625]  asm_exc_page_fault+0x26/0x30
[  127.100337][T10625] RIP: 0033:0x7fe0e678ef8b
[  127.100368][T10625] Code: 06 20 20 00 00 40 0f 95 c6 40 08 74 24 1e 80 7c 24 1e 00 0f 84 72 fe ff ff 40 88 74 24 1e e9 e1 fe ff ff 0f 1f 40 00 48 89 df <4c> 89 44 24 28 48 89 44 24 20 4c 89 54 24 10 48 89 74 24 08 e8 8c
[  127.100382][T10625] RSP: 002b:00007fff6a7214d0 EFLAGS: 00010202
[  127.100399][T10625] RAX: ffffffffffff882c RBX: 00007fe0e7635720 RCX: ffffffff844aa3bf
[  127.100410][T10625] RDX: 00000000000003bf RSI: 0000000000000004 RDI: 00007fe0e7635720
[  127.100420][T10625] RBP: ffffffff844aa3bf R08: 00007fe0e6b06038 R09: 00007fe0e6af2000
[  127.100432][T10625] R10: 00007fe0e631f008 R11: 0000000000000006 R12: 0000000000000006
[  127.100445][T10625] R13: 0000000000000000 R14: ffffffff844aaad5 R15: 0000000000000000
[  127.100457][T10625]  ? __x64_sys_sendmsg+0x25/0x160
[  127.100553][T10625]  ? ____sys_sendmsg+0x13f/0x4e0
[  127.100578][T10625]  ? ____sys_sendmsg+0x13f/0x4e0
[  127.100604][T10625]  </TASK>
[  127.321734][T10625] memory: usage 307200kB, limit 307200kB, failcnt 116
[  127.328486][T10625] memory+swap: usage 307380kB, limit 9007199254740988kB, failcnt 0
[  127.336402][T10625] kmem: usage 295716kB, limit 9007199254740988kB, failcnt 0
[  127.343690][T10625] Memory cgroup stats for /syz8:
[  127.465303][T10625] cache 0
[  127.473216][T10625] rss 11759616
[  127.476613][T10625] shmem 0
[  127.479547][T10625] mapped_file 0
[  127.483034][T10625] dirty 0
[  127.485966][T10625] writeback 0
[  127.489309][T10625] workingset_refault_anon 10
[  127.493904][T10625] workingset_refault_file 0
[  127.498394][T10625] swap 184320
[  127.501693][T10625] swapcached 4096
[  127.505388][T10625] pgpgin 10036
[  127.508752][T10625] pgpgout 7165
[  127.512132][T10625] pgfault 6279
[  127.515500][T10625] pgmajfault 9
[  127.518955][T10625] inactive_anon 4096
[  127.522867][T10625] active_anon 0
[  127.526340][T10625] inactive_file 11755520
[  127.530854][T10625] active_file 0
[  127.534299][T10625] unevictable 0
[  127.537802][T10625] hierarchical_memory_limit 314572800
[  127.543184][T10625] hierarchical_memsw_limit 9223372036854771712
[  127.549336][T10625] total_cache 0
[  127.552804][T10625] total_rss 11759616
[  127.556750][T10625] total_shmem 0
[  127.560297][T10625] total_mapped_file 0
[  127.564303][T10625] total_dirty 0
[  127.567765][T10625] total_writeback 0
[  127.571655][T10625] total_workingset_refault_anon 10
[  127.576767][T10625] total_workingset_refault_file 0
[  127.581793][T10625] total_swap 184320
[  127.585654][T10625] total_swapcached 4096
[  127.589895][T10625] total_pgpgin 10036
[  127.593833][T10625] total_pgpgout 7165
[  127.597716][T10625] total_pgfault 6279
[  127.601650][T10625] total_pgmajfault 9
[  127.605607][T10625] total_inactive_anon 4096
[  127.610025][T10625] total_active_anon 0
[  127.613991][T10625] total_inactive_file 11755520
[  127.618805][T10625] total_active_file 0
[  127.622792][T10625] total_unevictable 0
[  127.626760][T10625] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz8,task_memcg=/syz8,task=syz.8.2801,pid=10625,uid=0
[  127.641704][T10625] Memory cgroup out of memory: Killed process 10625 (syz.8.2801) total-vm:95932kB, anon-rss:12524kB, file-rss:22316kB, shmem-rss:0kB, UID:0 pgtables:144kB oom_score_adj:1000
[  127.871545][T10762] netlink: 'syz.2.2832': attribute type 25 has an invalid length.
[  128.312048][T10787] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10787 comm=syz.6.2840
[  128.568306][ T3373] IPVS: starting estimator thread 0...
[  128.585267][T10824] netlink: 'syz.6.2848': attribute type 7 has an invalid length.
[  128.593079][T10824] __nla_validate_parse: 1 callbacks suppressed
[  128.593094][T10824] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2848'.
[  128.671118][T10843] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2853'.
[  128.680059][T10822] IPVS: using max 2640 ests per chain, 132000 per kthread
[  128.751955][T10858] netlink: 96 bytes leftover after parsing attributes in process `syz.6.2859'.
[  128.828649][T10873] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2862'.
[  128.843586][T10876] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  129.016859][T10913] ref_ctr_offset mismatch. inode: 0xb87 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x200000000400
[  129.655221][T10932] vlan2: entered allmulticast mode
[  129.667200][T10932] dummy0: entered allmulticast mode
[  129.791357][T10938] loop8: detected capacity change from 0 to 1024
[  129.811228][T10938] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.862598][T10373] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.921208][T10953] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2888'.
[  129.975559][T10964] block device autoloading is deprecated and will be removed.
[  130.408980][T11004] loop8: detected capacity change from 0 to 256
[  130.421972][T11004] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000001)
[  130.432229][T11006] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11006 comm=syz.0.2909
[  130.447694][T11004] syz.8.2908: attempt to access beyond end of device
[  130.447694][T11004] loop8: rw=2049, sector=256, nr_sectors = 32 limit=256
[  130.462425][T11004] syz.8.2908: attempt to access beyond end of device
[  130.462425][T11004] loop8: rw=2049, sector=320, nr_sectors = 32 limit=256
[  130.485366][T11010] bridge: RTM_NEWNEIGH with invalid ether address
[  130.492072][T11004] syz.8.2908: attempt to access beyond end of device
[  130.492072][T11004] loop8: rw=2049, sector=384, nr_sectors = 32 limit=256
[  130.515676][T11009] team_slave_0: entered promiscuous mode
[  130.521708][T11004] syz.8.2908: attempt to access beyond end of device
[  130.521708][T11004] loop8: rw=2049, sector=448, nr_sectors = 40 limit=256
[  130.522514][T11009] team_slave_0: left promiscuous mode
[  130.578663][T11018] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11018 comm=syz.2.2915
[  130.610723][T11020] rdma_op ffff88811c866d80 conn xmit_rdma 0000000000000000
[  130.837916][T11052] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  130.869920][T11054] ref_ctr increment failed for inode: 0xb9 offset: 0xf ref_ctr_offset: 0x82 of mm: 0xffff88810ad2c500
[  130.896969][T11053] uprobe: syz.8.2932:11053 failed to unregister, leaking uprobe
[  130.925880][T11058] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2934'.
[  131.071314][T11084] netlink: 12 bytes leftover after parsing attributes in process `+}[@'.
[  131.123978][T11078] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[  131.200965][T11102] loop8: detected capacity change from 0 to 512
[  131.212826][T11078] lo speed is unknown, defaulting to 1000
[  131.221712][T11102] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.246598][T11104] syzkaller0: entered promiscuous mode
[  131.252134][T11104] syzkaller0: entered allmulticast mode
[  131.279614][T10373] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.421091][T11124] loop8: detected capacity change from 0 to 128
[  131.479746][T11126] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2973'.
[  131.499109][T11126] batman_adv: batadv0: Removing interface: batadv_slave_0
[  131.524702][T11126] batman_adv: batadv0: Removing interface: batadv_slave_1
[  131.536404][T11126] batman_adv: batadv0: Removing interface: dummy0
[  131.571162][T11134] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2964'.
[  131.660378][   T29] kauditd_printk_skb: 110 callbacks suppressed
[  131.660392][   T29] audit: type=1326 audit(1758795227.784:3437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.690206][   T29] audit: type=1326 audit(1758795227.784:3438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.713752][   T29] audit: type=1326 audit(1758795227.784:3439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.737506][   T29] audit: type=1326 audit(1758795227.784:3440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.761028][   T29] audit: type=1326 audit(1758795227.784:3441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.784599][   T29] audit: type=1326 audit(1758795227.784:3442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.808338][   T29] audit: type=1326 audit(1758795227.784:3443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.832004][   T29] audit: type=1326 audit(1758795227.784:3444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.855728][   T29] audit: type=1326 audit(1758795227.784:3445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.879335][   T29] audit: type=1326 audit(1758795227.784:3446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11145 comm="syz.1.2971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  131.903837][T11153] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  131.946304][T11159] loop1: detected capacity change from 0 to 1024
[  131.953902][T11159] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  131.964223][T11159] C: renamed from team_slave_0 (while UP)
[  132.130473][T11177] wg2: left promiscuous mode
[  132.135189][T11177] wg2: left allmulticast mode
[  132.144909][T11177] wg2: entered promiscuous mode
[  132.149853][T11177] wg2: entered allmulticast mode
[  132.213913][ T5253] kworker/u8:42: attempt to access beyond end of device
[  132.213913][ T5253] loop8: rw=1, sector=145, nr_sectors = 8 limit=128
[  132.230930][ T5253] kworker/u8:42: attempt to access beyond end of device
[  132.230930][ T5253] loop8: rw=1, sector=161, nr_sectors = 8 limit=128
[  132.245778][ T5253] kworker/u8:42: attempt to access beyond end of device
[  132.245778][ T5253] loop8: rw=1, sector=177, nr_sectors = 8 limit=128
[  132.259539][ T5253] kworker/u8:42: attempt to access beyond end of device
[  132.259539][ T5253] loop8: rw=1, sector=193, nr_sectors = 8 limit=128
[  132.274471][ T5253] kworker/u8:42: attempt to access beyond end of device
[  132.274471][ T5253] loop8: rw=1, sector=209, nr_sectors = 8 limit=128
[  132.288884][ T5253] kworker/u8:42: attempt to access beyond end of device
[  132.288884][ T5253] loop8: rw=1, sector=225, nr_sectors = 8 limit=128
[  132.391595][T11196] loop8: detected capacity change from 0 to 512
[  132.425444][T11196] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.462125][T11196] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.634292][T10373] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.961940][T11240] loop1: detected capacity change from 0 to 1024
[  132.987131][T11240] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.028171][T11240] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.3011: Allocating blocks 449-513 which overlap fs metadata
[  133.052179][T11239] EXT4-fs (loop1): pa ffff88810721e4d0: logic 48, phys. 177, len 21
[  133.060258][T11239] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  133.082839][ T8476] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.309183][T11266] syzkaller0: entered promiscuous mode
[  133.314759][T11266] syzkaller0: entered allmulticast mode
[  133.461904][T11273] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[  133.489825][T11273] lo speed is unknown, defaulting to 1000
[  133.729674][T11308] loop6: detected capacity change from 0 to 512
[  133.742856][T11308] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.766113][T11310] loop1: detected capacity change from 0 to 2048
[  133.769945][T11308] ext4 filesystem being mounted at /522/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.831908][T11310]  loop1: p1 < > p4
[  133.842822][T11310] loop1: p4 size 8388608 extends beyond EOD, truncated
[  133.866934][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.990640][T11331] loop8: detected capacity change from 0 to 2048
[  134.020701][T11331]  loop8: p1 < > p4
[  134.030705][T11331] loop8: p4 size 8388608 extends beyond EOD, truncated
[  134.157097][T11355] geneve2: entered promiscuous mode
[  134.162363][T11355] geneve2: entered allmulticast mode
[  134.239046][T11363] SELinux: security policydb version 16 (MLS) not backwards compatible
[  134.257941][T11363] SELinux: failed to load policy
[  134.289077][T11369] loop6: detected capacity change from 0 to 2048
[  134.321445][T11369]  loop6: p1 < > p4
[  134.328002][T11369] loop6: p4 size 8388608 extends beyond EOD, truncated
[  134.564153][T11395] netlink: 'syz.8.3075': attribute type 1 has an invalid length.
[  134.576255][T11395] 8021q: adding VLAN 0 to HW filter on device bond1
[  134.585081][T11395] __nla_validate_parse: 5 callbacks suppressed
[  134.585091][T11395] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3075'.
[  134.608680][T11395] bond1 (unregistering): Released all slaves
[  135.189494][T11435] SELinux: ebitmap: truncated map
[  135.197499][T11435] SELinux: failed to load policy
[  135.230890][T11440] tipc: Started in network mode
[  135.235805][T11440] tipc: Node identity ac14140f, cluster identity 4711
[  135.244796][T11440] tipc: New replicast peer: 255.255.255.83
[  135.250841][T11440] tipc: Enabled bearer <udp:�>, priority 10
[  135.534729][T11469] geneve3: entered promiscuous mode
[  135.540024][T11469] geneve3: entered allmulticast mode
[  135.620380][T11484] netlink: 96 bytes leftover after parsing attributes in process `syz.6.3116'.
[  135.814797][T11500] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[  135.874257][T11500] lo speed is unknown, defaulting to 1000
[  135.999122][T11512] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[  136.030833][T11520] pim6reg1: entered promiscuous mode
[  136.036217][T11520] pim6reg1: entered allmulticast mode
[  136.085456][T11512] lo speed is unknown, defaulting to 1000
[  136.251107][T11535] SELinux: ebitmap: truncated map
[  136.257651][T11535] SELinux: failed to load policy
[  136.262719][ T3423] tipc: Node number set to 2886997007
[  136.320150][T11545] netlink: 'syz.6.3142': attribute type 4 has an invalid length.
[  136.327917][T11545] netlink: 152 bytes leftover after parsing attributes in process `syz.6.3142'.
[  136.387933][T11545] .`: renamed from $H�
[  136.433997][T11554] team_slave_0: entered promiscuous mode
[  136.453092][T11554] team_slave_0: left promiscuous mode
[  136.706599][T11585] loop1: detected capacity change from 0 to 1024
[  136.731648][T11585] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.749711][T11585] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.3158: Allocating blocks 385-513 which overlap fs metadata
[  136.767030][T11585] EXT4-fs (loop1): pa ffff88810723d8c0: logic 16, phys. 129, len 24
[  136.775105][T11585] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  136.808306][ T8476] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.826204][T11593] netlink: 'syz.0.3170': attribute type 7 has an invalid length.
[  136.834070][T11593] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3170'.
[  136.893285][   T29] kauditd_printk_skb: 208 callbacks suppressed
[  136.893298][   T29] audit: type=1326 audit(1758795233.014:3655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11597 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  136.925795][   T29] audit: type=1326 audit(1758795233.014:3656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11597 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  136.952295][   T29] audit: type=1326 audit(1758795233.044:3657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11597 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  136.975919][   T29] audit: type=1326 audit(1758795233.044:3658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11597 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  136.999432][   T29] audit: type=1326 audit(1758795233.044:3659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11597 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  137.022945][   T29] audit: type=1326 audit(1758795233.044:3660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11597 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  137.046521][   T29] audit: type=1326 audit(1758795233.044:3661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11597 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  137.070081][   T29] audit: type=1326 audit(1758795233.044:3662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11597 comm="syz.2.3162" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  137.818828][T11652] loop1: detected capacity change from 0 to 128
[  137.902431][T11661] bio_check_eod: 86 callbacks suppressed
[  137.902446][T11661] syz.1.3187: attempt to access beyond end of device
[  137.902446][T11661] loop1: rw=2049, sector=145, nr_sectors = 8 limit=128
[  137.990938][T11668] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=36 sclass=netlink_audit_socket pid=11668 comm=syz.8.3194
[  138.006016][T11661] syz.1.3187: attempt to access beyond end of device
[  138.006016][T11661] loop1: rw=2049, sector=161, nr_sectors = 8 limit=128
[  138.040806][T11661] syz.1.3187: attempt to access beyond end of device
[  138.040806][T11661] loop1: rw=2049, sector=177, nr_sectors = 8 limit=128
[  138.120360][T11661] syz.1.3187: attempt to access beyond end of device
[  138.120360][T11661] loop1: rw=2049, sector=193, nr_sectors = 8 limit=128
[  138.227308][T11661] syz.1.3187: attempt to access beyond end of device
[  138.227308][T11661] loop1: rw=2049, sector=209, nr_sectors = 8 limit=128
[  138.262101][T11661] syz.1.3187: attempt to access beyond end of device
[  138.262101][T11661] loop1: rw=2049, sector=225, nr_sectors = 8 limit=128
[  138.292498][T11661] syz.1.3187: attempt to access beyond end of device
[  138.292498][T11661] loop1: rw=2049, sector=241, nr_sectors = 8 limit=128
[  138.334476][T11661] syz.1.3187: attempt to access beyond end of device
[  138.334476][T11661] loop1: rw=2049, sector=257, nr_sectors = 8 limit=128
[  138.358545][T11661] syz.1.3187: attempt to access beyond end of device
[  138.358545][T11661] loop1: rw=2049, sector=273, nr_sectors = 8 limit=128
[  138.376217][T11661] syz.1.3187: attempt to access beyond end of device
[  138.376217][T11661] loop1: rw=2049, sector=289, nr_sectors = 8 limit=128
[  138.415832][T11688] netlink: 52 bytes leftover after parsing attributes in process `syz.8.3202'.
[  138.459413][T11697] netlink: 'syz.0.3206': attribute type 13 has an invalid length.
[  138.469492][   T29] audit: type=1400 audit(1758795234.594:3663): avc:  denied  { create } for  pid=11693 comm="syz.1.3205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  138.491208][   T29] audit: type=1400 audit(1758795234.594:3664): avc:  denied  { write } for  pid=11693 comm="syz.1.3205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  138.530648][T11697] bridge0: port 3(dummy0) entered blocking state
[  138.537039][T11697] bridge0: port 3(dummy0) entered forwarding state
[  138.545624][T11697] 8021q: adding VLAN 0 to HW filter on device bond0
[  138.595137][T11697] 8021q: adding VLAN 0 to HW filter on device team0
[  138.605040][T11697] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  138.620508][ T3373] lo speed is unknown, defaulting to 1000
[  138.626273][ T3373] syz0: Port: 1 Link ACTIVE
[  138.689630][T11694] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[  138.764318][T11694] lo speed is unknown, defaulting to 1000
[  138.805103][T11715] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3214'.
[  138.819839][T11715] team1: entered promiscuous mode
[  138.824899][T11715] team1: entered allmulticast mode
[  139.032954][T11738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3224'.
[  139.069200][T11738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3224'.
[  139.688703][T11789] tipc: New replicast peer: 255.255.255.83
[  139.694662][T11789] tipc: Enabled bearer <udp:ree>, priority 10
[  140.271888][T11835] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.335123][T11835] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.397148][T11835] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.461359][T11835] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.527809][ T5233] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.549009][ T5233] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.568566][ T5233] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.587828][ T5233] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  140.702062][T11844] loop6: detected capacity change from 0 to 1024
[  140.725414][T11847] netlink: 'syz.1.3271': attribute type 13 has an invalid length.
[  140.741381][T11844] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.764506][T11844] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  140.803343][T11847] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  140.826926][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.624911][T11987] loop1: detected capacity change from 0 to 512
[  141.754362][T12002] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3288'.
[  141.758174][T12006] bridge: RTM_NEWNEIGH with invalid ether address
[  141.832699][T12021] macvlan1: entered promiscuous mode
[  141.848907][T12021] ipvlan0: entered promiscuous mode
[  141.859218][T12021] ipvlan0: left promiscuous mode
[  141.869425][T12021] macvlan1: left promiscuous mode
[  142.119544][T12054] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3285'.
[  142.138138][T12054] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3285'.
[  142.195783][T12068] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3321'.
[  142.542924][   T29] kauditd_printk_skb: 373 callbacks suppressed
[  142.542939][   T29] audit: type=1326 audit(1758795238.664:4038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.572707][   T29] audit: type=1326 audit(1758795238.664:4039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.596258][   T29] audit: type=1326 audit(1758795238.664:4040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.619892][   T29] audit: type=1326 audit(1758795238.664:4041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.643736][   T29] audit: type=1326 audit(1758795238.664:4042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.667429][   T29] audit: type=1326 audit(1758795238.664:4043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.691021][   T29] audit: type=1326 audit(1758795238.664:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.723885][   T29] audit: type=1326 audit(1758795238.764:4045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.747403][   T29] audit: type=1326 audit(1758795238.764:4046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  142.770903][   T29] audit: type=1326 audit(1758795238.774:4047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12093 comm="syz.2.3322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7a81230de7 code=0x7ffc0000
[  142.799878][T12098] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3324'.
[  142.815752][T12098] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3324'.
[  142.852135][T12104] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.867291][T12106] bridge: RTM_NEWNEIGH with invalid ether address
[  142.941717][T12104] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.011453][T12104] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.046490][T12131] bridge: RTM_NEWNEIGH with invalid ether address
[  143.083879][T12136] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3342'.
[  143.101925][T12104] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.112312][T12136] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3342'.
[  143.198729][ T5242] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.217701][ T5242] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.235144][ T5242] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.243921][ T5242] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  143.294615][T12160] pimreg: entered allmulticast mode
[  143.301071][T12160] pimreg: left allmulticast mode
[  143.825725][T12217] loop6: detected capacity change from 0 to 1024
[  143.844601][T12217] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.886653][T12217] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4183: comm syz.6.3375: Allocating blocks 449-513 which overlap fs metadata
[  143.903953][T12216] EXT4-fs (loop6): pa ffff88810723d8c0: logic 48, phys. 177, len 21
[  143.912055][T12216] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[  143.934546][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.154411][T12244] ip6gre2: entered allmulticast mode
[  144.178972][T12249] bridge: RTM_NEWNEIGH with invalid ether address
[  144.239974][T12260] loop6: detected capacity change from 0 to 512
[  144.246487][T12260] EXT4-fs: quotafile must be on filesystem root
[  144.259123][T12261] macvlan1: entered promiscuous mode
[  144.266401][T12261] ipvlan0: entered promiscuous mode
[  144.272634][T12261] ipvlan0: left promiscuous mode
[  144.290728][T12261] macvlan1: left promiscuous mode
[  144.607410][T12260] Set syz1 is full, maxelem 65536 reached
[  144.781843][T12284] netlink: 44 bytes leftover after parsing attributes in process `syz.6.3402'.
[  145.223654][T12312] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12312 comm=syz.1.3417
[  145.583714][T12359] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3436'.
[  145.598263][T12359] 8021q: adding VLAN 0 to HW filter on device bond1
[  145.620836][T12359] bond1 (unregistering): Released all slaves
[  145.706147][T12369] @: renamed from vlan0 (while UP)
[  145.715678][T12371] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.761085][T12371] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.830854][T12371] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.881016][T12371] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.947584][ T5252] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.958777][ T5252] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.970447][  T371] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.981494][ T5252] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.018935][T12383] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.061108][T12383] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.111153][T12383] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.134569][T12396] netlink: 'syz.1.3450': attribute type 7 has an invalid length.
[  146.161140][T12383] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.171451][T12398] loop1: detected capacity change from 0 to 512
[  146.178315][T12398] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  146.187915][T12398] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.3451: bg 0: block 104: invalid block bitmap
[  146.201029][T12398] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  146.210300][T12398] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.3451: invalid indirect mapped block 1 (level 1)
[  146.223870][T12398] EXT4-fs (loop1): 1 truncate cleaned up
[  146.229914][T12398] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.254045][ T8476] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.285927][T12403] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.301948][T12403] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.351481][T12403] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.413573][T12403] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.451112][T12414] Invalid ELF header magic: != ELF
[  146.471967][T12417] loop6: detected capacity change from 0 to 512
[  146.480979][T12417] EXT4-fs (loop6): orphan cleanup on readonly fs
[  146.487819][T12417] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.3461: bad orphan inode 13
[  146.498580][T12417] ext4_test_bit(bit=12, block=18) = 1
[  146.504087][T12417] is_bad_inode(inode)=0
[  146.508240][T12417] NEXT_ORPHAN(inode)=2130706432
[  146.513125][T12417] max_ino=32
[  146.516312][T12417] i_nlink=1
[  146.521593][T12417] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  146.538778][T12417] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  146.556452][T12417] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3461: bg 0: block 248: padding at end of block bitmap is not set
[  146.571195][T12417] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm syz.6.3461: Failed to acquire dquot type 1
[  146.583490][T12417] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  146.611898][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.712987][T12433] macvtap1: entered allmulticast mode
[  146.718365][T12433] bridge0: entered allmulticast mode
[  146.724191][T12433] bridge0: port 3(macvtap1) entered blocking state
[  146.730783][T12433] bridge0: port 3(macvtap1) entered disabled state
[  146.737962][T12433] bridge0: left allmulticast mode
[  147.010917][T12453] loop6: detected capacity change from 0 to 128
[  147.134346][T12469] __nla_validate_parse: 2 callbacks suppressed
[  147.134385][T12469] netlink: 96 bytes leftover after parsing attributes in process `syz.8.3483'.
[  147.474304][ T5252] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  147.485588][ T5252] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  147.496300][ T5218] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  147.507132][ T5218] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  147.554066][T12513] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3502'.
[  147.556152][   T29] kauditd_printk_skb: 819 callbacks suppressed
[  147.556164][   T29] audit: type=1326 audit(1758795243.674:4865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.593172][   T29] audit: type=1326 audit(1758795243.714:4866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.617019][   T29] audit: type=1326 audit(1758795243.744:4867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.641097][   T29] audit: type=1326 audit(1758795243.764:4868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.665755][   T29] audit: type=1326 audit(1758795243.784:4869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.689310][   T29] audit: type=1326 audit(1758795243.794:4870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.712798][   T29] audit: type=1326 audit(1758795243.804:4871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.738103][   T29] audit: type=1326 audit(1758795243.864:4872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.762658][   T29] audit: type=1326 audit(1758795243.884:4873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.786634][   T29] audit: type=1326 audit(1758795243.914:4874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12483 comm="syz.6.3491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  147.831630][T12522] wireguard0: entered promiscuous mode
[  147.837144][T12522] wireguard0: entered allmulticast mode
[  147.856507][T12527] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3507'.
[  148.290494][T12593] dvmrp1: entered allmulticast mode
[  148.353327][ T5242] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.370989][ T5242] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.389474][ T5242] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.410503][ T5242] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.718738][T12596] Set syz1 is full, maxelem 65536 reached
[  148.895357][T12691] bridge0: entered promiscuous mode
[  148.901101][T12691] macvtap1: entered allmulticast mode
[  148.906577][T12691] bridge0: entered allmulticast mode
[  148.914813][T12691] bridge0: port 3(macvtap1) entered blocking state
[  148.921442][T12691] bridge0: port 3(macvtap1) entered disabled state
[  148.929254][T12691] bridge0: left allmulticast mode
[  148.934373][T12691] bridge0: left promiscuous mode
[  149.063110][T12719] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3538'.
[  149.075969][T12719] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3538'.
[  149.096177][T12723] syz_tun: entered allmulticast mode
[  149.105669][T12723] dvmrp1: entered allmulticast mode
[  149.120788][T12721] syz_tun: left allmulticast mode
[  149.140508][T12728] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12728 comm=syz.8.3542
[  149.154211][T12728] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3542'.
[  149.304810][T12753] netlink: 'syz.6.3551': attribute type 1 has an invalid length.
[  149.310215][T12751] macvlan1: entered promiscuous mode
[  149.319080][T12751] ipvlan0: entered promiscuous mode
[  149.326126][T12751] ipvlan0: left promiscuous mode
[  149.333577][T12751] macvlan1: left promiscuous mode
[  149.364029][T12754] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3551'.
[  149.385970][T12753] 8021q: adding VLAN 0 to HW filter on device bond4
[  149.404928][T12754] bond4 (unregistering): Released all slaves
[  149.473746][T12758] loop1: detected capacity change from 0 to 512
[  149.531900][T12758] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.544721][T12758] ext4 filesystem being mounted at /297/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  149.572395][ T8476] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.647248][T12787] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3565'.
[  149.699605][T12791] netlink: 'syz.8.3566': attribute type 1 has an invalid length.
[  149.732338][T12791] 8021q: adding VLAN 0 to HW filter on device bond2
[  149.754870][T12791] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3566'.
[  149.791821][T12791] bond2 (unregistering): Released all slaves
[  149.891542][T12815] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3574'.
[  149.923731][T12817] netlink: 'syz.8.3573': attribute type 13 has an invalid length.
[  149.984104][T12817] gretap0: refused to change device tx_queue_len
[  150.000697][T12833] netlink: 'syz.0.3578': attribute type 13 has an invalid length.
[  150.003379][T12817] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  150.113135][T12853] netlink: 'syz.1.3584': attribute type 1 has an invalid length.
[  150.128044][T12853] 8021q: adding VLAN 0 to HW filter on device bond3
[  150.137696][T12855] netlink: 'syz.8.3586': attribute type 30 has an invalid length.
[  150.151068][T12853] bond3 (unregistering): Released all slaves
[  150.288399][T12871] 8021q: adding VLAN 0 to HW filter on device bond1
[  150.329720][T12871] bond1 (unregistering): Released all slaves
[  150.332671][T12880] netlink: 'syz.1.3597': attribute type 1 has an invalid length.
[  150.427045][T12880] 8021q: adding VLAN 0 to HW filter on device bond3
[  150.438075][T12885] macvlan2: entered promiscuous mode
[  150.443576][T12885] macvlan2: entered allmulticast mode
[  150.451900][T12885] bond3: entered promiscuous mode
[  150.458901][T12885] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  150.518867][T12885] bond3: left promiscuous mode
[  151.165251][T12914] loop1: detected capacity change from 0 to 1024
[  151.177074][T12914] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  151.187984][T12914] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  151.200390][T12914] JBD2: no valid journal superblock found
[  151.206163][T12914] EXT4-fs (loop1): Could not load journal inode
[  151.262940][T12919] loop6: detected capacity change from 0 to 512
[  151.281802][T12919] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  151.300592][T12919] EXT4-fs (loop6): orphan cleanup on readonly fs
[  151.315387][T12919] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:517: comm syz.6.3610: Block bitmap for bg 0 marked uninitialized
[  151.339877][T12919] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  151.379129][T12919] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:517: comm syz.6.3610: Block bitmap for bg 0 marked uninitialized
[  151.433459][T12919] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  151.456287][T12919] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:517: comm syz.6.3610: Block bitmap for bg 0 marked uninitialized
[  151.480564][T12919] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  151.508561][T12919] EXT4-fs (loop6): 1 orphan inode deleted
[  151.521655][T12919] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  151.577261][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.695907][T12948] bridge: RTM_NEWNEIGH with invalid ether address
[  151.939592][T12975] loop6: detected capacity change from 0 to 2048
[  151.980751][T12975]  loop6: p1 < > p4
[  151.986696][T12975] loop6: p4 size 8388608 extends beyond EOD, truncated
[  152.042172][T12980] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.101957][T12980] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.123074][ T3391] lo speed is unknown, defaulting to 1000
[  152.128315][T12987] netlink: 'syz.0.3641': attribute type 13 has an invalid length.
[  152.128832][ T3391] syz0: Port: 1 Link DOWN
[  152.144220][T12987] gretap0: refused to change device tx_queue_len
[  152.151456][T12987] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  152.167180][   T10] lo speed is unknown, defaulting to 1000
[  152.173097][   T10] syz0: Port: 1 Link ACTIVE
[  152.178813][T12980] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.221467][T12980] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.275257][ T5275] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  152.291380][ T5275] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  152.299617][ T5275] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  152.308191][ T5275] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  152.328833][T12990] netlink: 'syz.8.3642': attribute type 13 has an invalid length.
[  152.456660][T13001] __nla_validate_parse: 5 callbacks suppressed
[  152.456675][T13001] netlink: 27 bytes leftover after parsing attributes in process `syz.8.3645'.
[  152.815143][T13026] netlink: 'syz.6.3655': attribute type 1 has an invalid length.
[  152.837645][T13026] 8021q: adding VLAN 0 to HW filter on device bond4
[  152.883186][T13030] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3657'.
[  152.897686][T13029] macvlan2: entered promiscuous mode
[  152.903133][T13029] macvlan2: entered allmulticast mode
[  152.909492][T13029] bond4: entered promiscuous mode
[  152.914829][T13029] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  152.925388][T13029] bond4: left promiscuous mode
[  152.991001][T13036] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3659'.
[  152.998568][   T29] kauditd_printk_skb: 393 callbacks suppressed
[  152.998584][   T29] audit: type=1400 audit(1758795249.114:5268): avc:  denied  { ioctl } for  pid=13035 comm="syz.1.3659" path="socket:[40956]" dev="sockfs" ino=40956 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  153.000155][T13036] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.044334][T13036] batman_adv: batadv0: Removing interface: batadv_slave_1
[  153.601040][T13065] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.608333][T13065] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.661053][T13072] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13072 comm=syz.1.3676
[  153.718408][T13076] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3678'.
[  153.727568][T13076] netlink: 'syz.6.3678': attribute type 7 has an invalid length.
[  153.735324][T13076] netlink: 'syz.6.3678': attribute type 8 has an invalid length.
[  153.743071][T13076] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3678'.
[  153.746842][T13065] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  153.792174][T13074] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3677'.
[  153.813025][T13065] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  153.906893][T13065] team1: left promiscuous mode
[  153.911905][T13065] team1: left allmulticast mode
[  153.932439][ T5252] netdevsim netdevsim8 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.953948][ T5252] netdevsim netdevsim8 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.998096][ T5252] netdevsim netdevsim8 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  154.036843][ T5252] netdevsim netdevsim8 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  154.087045][T13085] infiniband syz!: set down
[  154.091704][T13085] infiniband syz!: added team_slave_0
[  154.117690][T13085] RDS/IB: syz!: added
[  154.127527][T13085] smc: adding ib device syz! with port count 1
[  154.134937][T13085] smc:    ib device syz! port 1 has pnetid 
[  154.503152][T13104] netdevsim netdevsim6 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  154.513052][T13104] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.582389][T13104] netdevsim netdevsim6 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  154.592340][T13104] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.690851][T13119] ip6gre3: entered allmulticast mode
[  154.732429][T13124] siw: device registration error -23
[  154.739032][T13104] netdevsim netdevsim6 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  154.749259][T13104] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.780739][T13127] netlink: 16 bytes leftover after parsing attributes in process `syz.8.3698'.
[  154.803234][T13131] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  154.846750][   T29] audit: type=1326 audit(1758795250.964:5269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13128 comm="syz.1.3700" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc90a28eec9 code=0x0
[  154.871669][T13104] netdevsim netdevsim6 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  154.881698][T13104] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.896321][T13133] wg2: left promiscuous mode
[  154.900973][T13133] wg2: left allmulticast mode
[  154.913622][T13133] geneve2: left promiscuous mode
[  154.920464][T13133] ip6gre2: left allmulticast mode
[  154.926526][T13133] ip6gre3: left allmulticast mode
[  154.935930][ T5218] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  154.953613][ T5218] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  154.969547][ T5218] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  155.025805][ T5218] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  155.052141][ T5218] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  155.060456][ T5218] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.089432][T13139] netlink: 264 bytes leftover after parsing attributes in process `syz.6.3705'.
[  155.102254][ T5218] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  155.110572][ T5218] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.124743][ T5218] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  155.133117][ T5218] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.177590][ T5218] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  155.185838][ T5218] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.212345][   T29] audit: type=1400 audit(1758795251.334:5270): avc:  denied  { ioctl } for  pid=13147 comm="syz.6.3709" path="socket:[42503]" dev="sockfs" ino=42503 ioctlcmd=0x2100 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  155.238709][T13148] siw: device registration error -23
[  155.246208][T13148] smc: removing ib device syz1
[  155.407228][T13156] siw: device registration error -23
[  155.599432][   T29] audit: type=1326 audit(1758795251.714:5271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13165 comm="syz.8.3715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  155.623117][   T29] audit: type=1326 audit(1758795251.714:5272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13165 comm="syz.8.3715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  155.647017][   T29] audit: type=1326 audit(1758795251.724:5273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13165 comm="syz.8.3715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  155.670573][   T29] audit: type=1326 audit(1758795251.724:5274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13165 comm="syz.8.3715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  155.694210][   T29] audit: type=1326 audit(1758795251.724:5275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13165 comm="syz.8.3715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  155.717934][   T29] audit: type=1326 audit(1758795251.764:5276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13165 comm="syz.8.3715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  155.741452][   T29] audit: type=1326 audit(1758795251.764:5277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13165 comm="syz.8.3715" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  155.900471][T13187] loop6: detected capacity change from 0 to 4096
[  155.910981][T13187] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.931959][T13195] netlink: 96 bytes leftover after parsing attributes in process `syz.0.3729'.
[  155.971165][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.022236][T13213] loop1: detected capacity change from 0 to 512
[  156.036303][T13213] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  156.049064][T13213] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.3736: invalid indirect mapped block 4294967295 (level 0)
[  156.064147][T13213] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.3736: invalid indirect mapped block 4294967295 (level 1)
[  156.079099][T13213] EXT4-fs (loop1): 1 orphan inode deleted
[  156.084920][T13213] EXT4-fs (loop1): 1 truncate cleaned up
[  156.091474][T13213] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.111087][T13213] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  156.128518][ T8476] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.214596][T13237] 9pnet: p9_errstr2errno: server reported unknown error 
[  156.389315][T13248] loop6: detected capacity change from 0 to 512
[  156.404856][T13248] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  156.416105][T13248] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #16: comm syz.6.3750: invalid indirect mapped block 4294967295 (level 0)
[  156.430579][T13248] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #16: comm syz.6.3750: invalid indirect mapped block 4294967295 (level 1)
[  156.445186][T13248] EXT4-fs (loop6): 1 orphan inode deleted
[  156.451027][T13248] EXT4-fs (loop6): 1 truncate cleaned up
[  156.457430][T13248] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.475328][T13248] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  156.496832][T13260] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[  156.506065][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.564033][T13260] lo speed is unknown, defaulting to 1000
[  156.974055][T13260] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3752'.
[  156.979376][T13289] tipc: Started in network mode
[  156.988147][T13289] tipc: Node identity ac14140f, cluster identity 4711
[  157.005180][T13289] tipc: New replicast peer: 255.255.255.255
[  157.011457][T13289] tipc: Enabled bearer <udp:s>, priority 10
[  157.123290][T13299] ip6gre1: entered allmulticast mode
[  157.586066][T13331] ip6gre1: entered allmulticast mode
[  158.000887][   T29] kauditd_printk_skb: 213 callbacks suppressed
[  158.000901][   T29] audit: type=1326 audit(1758795254.124:5491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13309 comm="syz.1.3772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  158.031002][   T29] audit: type=1326 audit(1758795254.154:5492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13309 comm="syz.1.3772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  158.055991][   T29] audit: type=1326 audit(1758795254.184:5493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13309 comm="syz.1.3772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  158.080850][   T29] audit: type=1326 audit(1758795254.204:5494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13309 comm="syz.1.3772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  158.105102][   T29] audit: type=1326 audit(1758795254.234:5495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13309 comm="syz.1.3772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fc90a28eec9 code=0x7ffc0000
[  158.153870][ T1048] tipc: Node number set to 2886997007
[  158.220651][   T29] audit: type=1326 audit(1758795254.344:5496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13357 comm="syz.8.3794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  158.244213][   T29] audit: type=1326 audit(1758795254.344:5497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13357 comm="syz.8.3794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  158.328110][T13366] __nla_validate_parse: 2 callbacks suppressed
[  158.328126][T13366] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  158.343817][   T29] audit: type=1326 audit(1758795254.384:5498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13357 comm="syz.8.3794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  158.367649][   T29] audit: type=1326 audit(1758795254.384:5499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13357 comm="syz.8.3794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  158.391125][   T29] audit: type=1326 audit(1758795254.384:5500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13357 comm="syz.8.3794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0e68aeec9 code=0x7ffc0000
[  158.503580][T13374] bridge0: port 3(dummy0) entered disabled state
[  158.515900][T13374] wg2: left promiscuous mode
[  158.521015][T13374] wg2: left allmulticast mode
[  158.543967][T13374] gtp0: left promiscuous mode
[  158.549231][T13374] team1: left promiscuous mode
[  158.554046][T13374] team1: left allmulticast mode
[  158.561729][T13374] macsec1: left promiscuous mode
[  158.569724][T13374] ip6gre1: left allmulticast mode
[  158.575918][ T3373] lo speed is unknown, defaulting to 1000
[  158.581762][ T3373] syz0: Port: 1 Link DOWN
[  158.726946][T13404] syzkaller0: entered allmulticast mode
[  158.737242][T13407] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3812'.
[  158.746239][T13407] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3812'.
[  158.755291][T13407] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3812'.
[  158.783571][T13407] netlink: 28 bytes leftover after parsing attributes in process `syz.8.3812'.
[  158.792583][T13407] netlink: 'syz.8.3812': attribute type 6 has an invalid length.
[  158.802025][T13404] syzkaller0: entered promiscuous mode
[  158.841266][T13404] syzkaller0 (unregistering): left allmulticast mode
[  158.848013][T13404] syzkaller0 (unregistering): left promiscuous mode
[  158.928566][T13416] veth1_virt_wifi: Caught tx_queue_len zero misconfig
[  159.114585][T13441] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13441 comm=syz.2.3827
[  159.150559][T13443] syzkaller0: entered allmulticast mode
[  159.156442][T13443] syzkaller0: entered promiscuous mode
[  159.181997][T13443] syzkaller0 (unregistering): left allmulticast mode
[  159.188737][T13443] syzkaller0 (unregistering): left promiscuous mode
[  159.274339][T13467] loop6: detected capacity change from 0 to 1024
[  159.292187][T13467] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  159.306666][T13467] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4183: comm syz.6.3838: Allocating blocks 385-513 which overlap fs metadata
[  159.323390][T13467] EXT4-fs (loop6): pa ffff88810721e460: logic 16, phys. 129, len 24
[  159.331487][T13467] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  159.361097][T13476] loop1: detected capacity change from 0 to 1024
[  159.367912][T13476] EXT4-fs: Ignoring removed bh option
[  159.374451][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.403125][T13476] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.457647][T13485] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3842'.
[  159.468446][T13476] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.475610][T13476] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.515852][T13476] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  159.567706][T13485] batman_adv: batadv0: Removing interface: batadv_slave_1
[  159.584187][ T5275] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  159.592917][ T5275] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  159.602194][ T5275] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  159.610925][ T5275] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  159.620400][ T8476] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.870459][T13498] loop6: detected capacity change from 0 to 256
[  159.892027][T13498] FAT-fs (loop6): Directory bread(block 64) failed
[  159.899879][T13498] FAT-fs (loop6): Directory bread(block 65) failed
[  159.907238][T13498] FAT-fs (loop6): Directory bread(block 66) failed
[  159.913875][T13498] FAT-fs (loop6): Directory bread(block 67) failed
[  159.922096][T13498] FAT-fs (loop6): Directory bread(block 68) failed
[  159.939631][T13498] FAT-fs (loop6): Directory bread(block 69) failed
[  159.946381][T13498] FAT-fs (loop6): Directory bread(block 70) failed
[  159.953179][T13498] FAT-fs (loop6): Directory bread(block 71) failed
[  159.961035][T13498] FAT-fs (loop6): Directory bread(block 72) failed
[  159.967619][T13498] FAT-fs (loop6): Directory bread(block 73) failed
[  160.017405][T13511] loop6: detected capacity change from 0 to 1024
[  160.028584][T13511] EXT4-fs: Ignoring removed bh option
[  160.033059][T13515] syzkaller0: entered allmulticast mode
[  160.036330][T13517] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3859'.
[  160.052471][T13515] syzkaller0: entered promiscuous mode
[  160.064621][T13515] syzkaller0 (unregistering): left allmulticast mode
[  160.071475][T13515] syzkaller0 (unregistering): left promiscuous mode
[  160.073174][T13511] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.176310][T13511] .`: left promiscuous mode
[  160.180885][T13511] bond_slave_0: left promiscuous mode
[  160.186328][T13511] bond_slave_1: left promiscuous mode
[  160.192430][T13511] dummy0: left promiscuous mode
[  160.206660][T13511] vxlan0: left promiscuous mode
[  160.222820][T13511] geneve2: left promiscuous mode
[  160.261279][T13511] ip6gre1: left allmulticast mode
[  160.283574][T13526] wireguard0: entered promiscuous mode
[  160.289098][T13526] wireguard0: entered allmulticast mode
[  160.300910][ T5252] netdevsim netdevsim6 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  160.309333][ T5252] netdevsim netdevsim6 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.318580][ T5252] netdevsim netdevsim6 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  160.327079][ T5252] netdevsim netdevsim6 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.328460][ T5104] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.336643][ T5252] netdevsim netdevsim6 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  160.352998][ T5252] netdevsim netdevsim6 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.365377][T13534] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3865'.
[  160.374492][T13534] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3865'.
[  160.384302][ T5252] netdevsim netdevsim6 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  160.392691][ T5252] netdevsim netdevsim6 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.396769][T13541] netlink: 'syz.8.3869': attribute type 1 has an invalid length.
[  160.401233][T13539] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3865'.
[  160.438446][T13541] bond2: entered promiscuous mode
[  160.446529][T13541] 8021q: adding VLAN 0 to HW filter on device bond2
[  160.463268][T13541] batadv1: entered promiscuous mode
[  160.468519][T13541] batadv1: entered allmulticast mode
[  160.476921][T13541] 8021q: adding VLAN 0 to HW filter on device batadv1
[  160.485204][T13541] bond2: (slave batadv1): making interface the new active one
[  160.493667][T13541] bond2: (slave batadv1): Enslaving as an active interface with an up link
[  160.510848][T13541] batadv2: entered promiscuous mode
[  160.516104][T13541] batadv2: entered allmulticast mode
[  160.522188][T13541] 8021q: adding VLAN 0 to HW filter on device batadv2
[  160.530518][T13541] bond2: (slave batadv2): Enslaving as an active interface with an up link
[  160.755456][T13083] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=13083 comm=kworker/0:7
[  160.844059][T13595] lo: entered allmulticast mode
[  160.849088][T13595] tunl0: entered allmulticast mode
[  160.854849][T13595] gre0: entered allmulticast mode
[  160.860006][T13595] gretap0: entered allmulticast mode
[  160.865354][T13595] erspan0: entered allmulticast mode
[  160.870720][T13595] ip_vti0: entered allmulticast mode
[  160.876194][T13595] ip6_vti0: entered allmulticast mode
[  160.881735][T13595] sit0: entered allmulticast mode
[  160.886845][T13595] ip6tnl0: entered allmulticast mode
[  160.892382][T13595] ip6gre0: entered allmulticast mode
[  160.897715][T13595] bridge0: entered allmulticast mode
[  160.903238][T13595] vcan0: entered allmulticast mode
[  160.908438][T13595] .`: entered allmulticast mode
[  160.913288][T13595] bond_slave_0: entered allmulticast mode
[  160.918983][T13595] bond_slave_1: entered allmulticast mode
[  160.925084][T13595] dummy0: entered allmulticast mode
[  160.930496][T13595] team0: entered allmulticast mode
[  160.935612][T13595] team_slave_0: entered allmulticast mode
[  160.941547][T13595] team_slave_1: entered allmulticast mode
[  160.947738][T13595] nlmon0: entered allmulticast mode
[  160.953194][T13595] caif0: entered allmulticast mode
[  160.958431][T13595] batadv0: entered allmulticast mode
[  160.964332][T13595] veth0: entered allmulticast mode
[  160.969593][T13595] veth1: entered allmulticast mode
[  160.974853][T13595] wg0: entered allmulticast mode
[  160.979887][T13595] wg1: entered allmulticast mode
[  160.984900][T13595] wg2: entered allmulticast mode
[  160.989982][T13595] veth0_to_bridge: entered allmulticast mode
[  160.996203][T13595] veth1_to_bridge: entered allmulticast mode
[  161.002518][T13595] veth0_to_bond: entered allmulticast mode
[  161.008476][T13595] veth1_to_bond: entered allmulticast mode
[  161.014502][T13595] veth0_to_team: entered allmulticast mode
[  161.020643][T13595] veth1_to_team: entered allmulticast mode
[  161.026653][T13595] veth0_to_batadv: entered allmulticast mode
[  161.032879][T13595] batadv_slave_0: entered allmulticast mode
[  161.038944][T13595] xfrm0: entered allmulticast mode
[  161.044178][T13595] veth0_to_hsr: entered allmulticast mode
[  161.050054][T13595] hsr_slave_0: entered allmulticast mode
[  161.055753][T13595] veth1_to_hsr: entered allmulticast mode
[  161.061659][T13595] hsr_slave_1: entered allmulticast mode
[  161.067379][T13595] hsr0: entered allmulticast mode
[  161.072497][T13595] veth1_virt_wifi: entered allmulticast mode
[  161.078598][T13595] veth0_virt_wifi: entered allmulticast mode
[  161.084718][T13595] veth1_vlan: entered allmulticast mode
[  161.090358][T13595] veth0_vlan: entered allmulticast mode
[  161.095913][T13595] vlan0: entered allmulticast mode
[  161.101112][T13595] vlan1: entered allmulticast mode
[  161.106334][T13595] macvlan0: entered allmulticast mode
[  161.111785][T13595] macvlan1: entered allmulticast mode
[  161.117219][T13595] ipvlan0: entered allmulticast mode
[  161.122591][T13595] ipvlan1: entered allmulticast mode
[  161.127900][T13595] veth1_macvtap: entered allmulticast mode
[  161.133828][T13595] veth0_macvtap: entered allmulticast mode
[  161.139885][T13595] macvtap0: entered allmulticast mode
[  161.145290][T13595] macsec0: entered allmulticast mode
[  161.150708][T13595] geneve0: entered allmulticast mode
[  161.156046][T13595] geneve1: entered allmulticast mode
[  161.161671][T13595] vxlan0: entered allmulticast mode
[  161.167077][T13595] bridge1: entered allmulticast mode
[  161.172424][T13595] ip6tnl1: entered allmulticast mode
[  161.177813][T13595] bond3: entered allmulticast mode
[  161.183066][T13595] veth2: entered allmulticast mode
[  161.188220][T13595] veth3: entered allmulticast mode
[  161.193487][T13595] geneve2: entered allmulticast mode
[  161.198890][T13595] bridge2: entered allmulticast mode
[  161.204219][T13595] bond0: entered allmulticast mode
[  161.209447][T13595] bridge3: entered allmulticast mode
[  161.214791][T13595] bridge4: entered allmulticast mode
[  161.220142][T13595] gre1: entered allmulticast mode
[  161.225343][T13595] ip6tnl2: entered allmulticast mode
[  161.230753][T13595] syztnl0: entered allmulticast mode
[  161.236107][T13595] gre2: entered allmulticast mode
[  161.241210][T13595] bond4: entered allmulticast mode
[  161.248610][T13595] netdevsim netdevsim6 eth0: entered allmulticast mode
[  161.255612][T13595] netdevsim netdevsim6 eth1: entered allmulticast mode
[  161.262592][T13595] netdevsim netdevsim6 eth2: entered allmulticast mode
[  161.269653][T13595] netdevsim netdevsim6 eth3: entered allmulticast mode
[  161.276583][T13595] ip6gre1: entered allmulticast mode
[  161.684166][T13656] wg2: entered promiscuous mode
[  161.689071][T13656] wg2: entered allmulticast mode
[  162.297007][T13713] netlink: 'syz.2.3940': attribute type 4 has an invalid length.
[  163.572613][T13811] syz.2.3976 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=0
[  163.586627][T13811] CPU: 0 UID: 0 PID: 13811 Comm: syz.2.3976 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  163.586713][T13811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  163.586726][T13811] Call Trace:
[  163.586735][T13811]  <TASK>
[  163.586758][T13811]  __dump_stack+0x1d/0x30
[  163.586779][T13811]  dump_stack_lvl+0xe8/0x140
[  163.586799][T13811]  dump_stack+0x15/0x1b
[  163.586814][T13811]  dump_header+0x81/0x220
[  163.586916][T13811]  oom_kill_process+0x342/0x400
[  163.586952][T13811]  out_of_memory+0x979/0xb80
[  163.587035][T13811]  try_charge_memcg+0x5e6/0x9e0
[  163.587066][T13811]  obj_cgroup_charge_pages+0xa6/0x150
[  163.587095][T13811]  __memcg_kmem_charge_page+0x9f/0x170
[  163.587150][T13811]  __alloc_frozen_pages_noprof+0x188/0x360
[  163.587179][T13811]  alloc_pages_mpol+0xb3/0x250
[  163.587247][T13811]  alloc_pages_noprof+0x90/0x130
[  163.587281][T13811]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  163.587321][T13811]  __kvmalloc_node_noprof+0x30f/0x4e0
[  163.587398][T13811]  ? ip_set_alloc+0x1f/0x30
[  163.587416][T13811]  ? ip_set_alloc+0x1f/0x30
[  163.587433][T13811]  ? __kmalloc_cache_noprof+0x189/0x320
[  163.587462][T13811]  ip_set_alloc+0x1f/0x30
[  163.587565][T13811]  hash_netiface_create+0x282/0x740
[  163.587590][T13811]  ? __pfx_hash_netiface_create+0x10/0x10
[  163.587611][T13811]  ip_set_create+0x3cc/0x960
[  163.587691][T13811]  ? __nla_parse+0x40/0x60
[  163.587718][T13811]  nfnetlink_rcv_msg+0x4c6/0x590
[  163.587749][T13811]  netlink_rcv_skb+0x120/0x220
[  163.587769][T13811]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  163.587844][T13811]  nfnetlink_rcv+0x16b/0x1690
[  163.587867][T13811]  ? mas_destroy+0x1f39/0x2090
[  163.587892][T13811]  ? mas_wr_walk_descend+0x36e/0x470
[  163.587921][T13811]  ? mas_wr_store_type+0x8b7/0xd30
[  163.588009][T13811]  ? mas_prealloc_calc+0x1b6/0x260
[  163.588041][T13811]  ? mas_wr_preallocate+0x304/0x410
[  163.588074][T13811]  ? mas_insert+0x1ea/0x330
[  163.588170][T13811]  ? __rcu_read_unlock+0x4f/0x70
[  163.588224][T13811]  ? should_fail_ex+0x30/0x280
[  163.588247][T13811]  ? selinux_nlmsg_lookup+0x99/0x890
[  163.588337][T13811]  ? __rcu_read_unlock+0x34/0x70
[  163.588354][T13811]  ? __netlink_lookup+0x266/0x2a0
[  163.588377][T13811]  netlink_unicast+0x5c0/0x690
[  163.588399][T13811]  netlink_sendmsg+0x58b/0x6b0
[  163.588497][T13811]  ? __pfx_netlink_sendmsg+0x10/0x10
[  163.588523][T13811]  __sock_sendmsg+0x142/0x180
[  163.588607][T13811]  ____sys_sendmsg+0x31e/0x4e0
[  163.588685][T13811]  ___sys_sendmsg+0x17b/0x1d0
[  163.588716][T13811]  __x64_sys_sendmsg+0xd4/0x160
[  163.588741][T13811]  x64_sys_call+0x191e/0x2ff0
[  163.588762][T13811]  do_syscall_64+0xd2/0x200
[  163.588812][T13811]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  163.588838][T13811]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  163.588864][T13811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.588898][T13811] RIP: 0033:0x7f7a8122eec9
[  163.588915][T13811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.588929][T13811] RSP: 002b:00007f7a7fc8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  163.588946][T13811] RAX: ffffffffffffffda RBX: 00007f7a81485fa0 RCX: 00007f7a8122eec9
[  163.588957][T13811] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000005
[  163.589049][T13811] RBP: 00007f7a812b1f91 R08: 0000000000000000 R09: 0000000000000000
[  163.589061][T13811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.589071][T13811] R13: 00007f7a81486038 R14: 00007f7a81485fa0 R15: 00007ffe09625468
[  163.589087][T13811]  </TASK>
[  163.589094][T13811] memory: usage 307200kB, limit 307200kB, failcnt 1419
[  163.940041][T13811] memory+swap: usage 307580kB, limit 9007199254740988kB, failcnt 0
[  163.947938][T13811] kmem: usage 307148kB, limit 9007199254740988kB, failcnt 0
[  163.955214][T13811] Memory cgroup stats for /syz2:
[  163.955509][T13811] cache 0
[  163.963421][T13811] rss 12288
[  163.966501][T13811] shmem 0
[  163.969408][T13811] mapped_file 0
[  163.972865][T13811] dirty 0
[  163.975818][T13811] writeback 0
[  163.979074][T13811] workingset_refault_anon 210
[  163.983831][T13811] workingset_refault_file 3704
[  163.988576][T13811] swap 389120
[  163.991888][T13811] swapcached 53248
[  163.995576][T13811] pgpgin 313052
[  163.999017][T13811] pgpgout 313039
[  164.002553][T13811] pgfault 242129
[  164.006069][T13811] pgmajfault 125
[  164.009585][T13811] inactive_anon 20480
[  164.013580][T13811] active_anon 32768
[  164.017360][T13811] inactive_file 0
[  164.020976][T13811] active_file 0
[  164.024407][T13811] unevictable 0
[  164.027837][T13811] hierarchical_memory_limit 314572800
[  164.033194][T13811] hierarchical_memsw_limit 9223372036854771712
[  164.039316][T13811] total_cache 0
[  164.042760][T13811] total_rss 12288
[  164.046434][T13811] total_shmem 0
[  164.049885][T13811] total_mapped_file 0
[  164.053909][T13811] total_dirty 0
[  164.057362][T13811] total_writeback 0
[  164.061158][T13811] total_workingset_refault_anon 210
[  164.066325][T13811] total_workingset_refault_file 3704
[  164.071592][T13811] total_swap 389120
[  164.075370][T13811] total_swapcached 53248
[  164.079586][T13811] total_pgpgin 313052
[  164.083649][T13811] total_pgpgout 313039
[  164.087760][T13811] total_pgfault 242129
[  164.091817][T13811] total_pgmajfault 125
[  164.095862][T13811] total_inactive_anon 20480
[  164.100361][T13811] total_active_anon 32768
[  164.104678][T13811] total_inactive_file 0
[  164.108899][T13811] total_active_file 0
[  164.112863][T13811] total_unevictable 0
[  164.116846][T13811] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3976,pid=13810,uid=0
[  164.131546][T13811] Memory cgroup out of memory: Killed process 13810 (syz.2.3976) total-vm:93956kB, anon-rss:1264kB, file-rss:22180kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:0
[  164.271662][   T29] kauditd_printk_skb: 443 callbacks suppressed
[  164.271700][   T29] audit: type=1326 audit(1758795260.394:5944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.301388][   T29] audit: type=1326 audit(1758795260.394:5945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.351482][T13083] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=13083 comm=kworker/0:7
[  164.399465][   T29] audit: type=1326 audit(1758795260.454:5946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.423014][   T29] audit: type=1326 audit(1758795260.464:5947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.446800][   T29] audit: type=1326 audit(1758795260.464:5948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.470317][   T29] audit: type=1326 audit(1758795260.464:5949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.494154][   T29] audit: type=1326 audit(1758795260.464:5950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.517666][   T29] audit: type=1326 audit(1758795260.464:5951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.541320][   T29] audit: type=1326 audit(1758795260.494:5952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  164.564865][   T29] audit: type=1326 audit(1758795260.494:5953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13824 comm="syz.2.3984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7a8122ef03 code=0x7ffc0000
[  164.583211][T13834] __nla_validate_parse: 13 callbacks suppressed
[  164.583274][T13834] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3988'.
[  164.625490][T13840] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3991'.
[  164.634401][T13840] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3991'.
[  164.644923][T13840] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3991'.
[  164.685679][T13844] SELinux: ebitmap: truncated map
[  164.692522][T13844] SELinux: failed to load policy
[  164.714810][T13844] loop1: detected capacity change from 0 to 2048
[  164.726557][T13844] EXT4-fs: inline encryption not supported
[  164.751220][T13844] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.813505][ T8476] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.888090][T13862] wg2: entered promiscuous mode
[  164.893054][T13862] wg2: entered allmulticast mode
[  164.960430][T13865] loop1: detected capacity change from 0 to 2048
[  164.982472][T13865] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a842c018, mo2=0002]
[  164.991283][T13865] System zones: 0-7
[  165.011812][T13865] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  165.055588][ T8476] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  165.166992][T13873] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4007'.
[  165.436543][T13909] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4023'.
[  165.477505][T13917] random: crng reseeded on system resumption
[  165.582584][T13927] lo: entered allmulticast mode
[  165.587508][T13927] tunl0: entered allmulticast mode
[  165.592702][T13927] gre0: entered allmulticast mode
[  165.597772][T13927] gretap0: entered allmulticast mode
[  165.603357][T13927] erspan0: entered allmulticast mode
[  165.608792][T13927] ip_vti0: entered allmulticast mode
[  165.614230][T13927] ip6_vti0: entered allmulticast mode
[  165.619868][T13927] sit0: entered allmulticast mode
[  165.625099][T13927] ip6tnl0: entered allmulticast mode
[  165.630524][T13927] ip6gre0: entered allmulticast mode
[  165.635885][T13927] syz_tun: entered allmulticast mode
[  165.641279][T13927] ip6gretap0: entered allmulticast mode
[  165.646859][T13927] bridge0: entered allmulticast mode
[  165.652250][T13927] vcan0: entered allmulticast mode
[  165.657358][T13927] bond0: entered allmulticast mode
[  165.662459][T13927] bond_slave_0: entered allmulticast mode
[  165.668154][T13927] bond_slave_1: entered allmulticast mode
[  165.674026][T13927] team0: entered allmulticast mode
[  165.679128][T13927] team_slave_0: entered allmulticast mode
[  165.684843][T13927] team_slave_1: entered allmulticast mode
[  165.690673][T13927] dummy0: entered allmulticast mode
[  165.695890][T13927] nlmon0: entered allmulticast mode
[  165.701226][T13927] caif0: entered allmulticast mode
[  165.706414][T13927] batadv0: entered allmulticast mode
[  165.711966][T13927] vxcan0: entered allmulticast mode
[  165.717241][T13927] vxcan1: entered allmulticast mode
[  165.722500][T13927] veth0: entered allmulticast mode
[  165.727713][T13927] veth1: entered allmulticast mode
[  165.732930][T13927] wg0: entered allmulticast mode
[  165.737908][T13927] wg1: entered allmulticast mode
[  165.742909][T13927] wg2: entered allmulticast mode
[  165.747958][T13927] veth0_to_bridge: entered allmulticast mode
[  165.754056][T13927] veth1_to_bridge: entered allmulticast mode
[  165.760140][T13927] veth0_to_bond: entered allmulticast mode
[  165.766025][T13927] veth1_to_bond: entered allmulticast mode
[  165.772031][T13927] veth0_to_team: entered allmulticast mode
[  165.777895][T13927] veth1_to_team: entered allmulticast mode
[  165.783773][T13927] veth0_to_batadv: entered allmulticast mode
[  165.789939][T13927] batadv_slave_0: entered allmulticast mode
[  165.795888][T13927] veth1_to_batadv: entered allmulticast mode
[  165.802004][T13927] batadv_slave_1: entered allmulticast mode
[  165.807994][T13927] xfrm0: entered allmulticast mode
[  165.813186][T13927] veth0_to_hsr: entered allmulticast mode
[  165.819000][T13927] hsr_slave_0: entered allmulticast mode
[  165.824728][T13927] veth1_to_hsr: entered allmulticast mode
[  165.830600][T13927] hsr_slave_1: entered allmulticast mode
[  165.836295][T13927] hsr0: entered allmulticast mode
[  165.841495][T13927] veth1_virt_wifi: entered allmulticast mode
[  165.847841][T13927] veth0_virt_wifi: entered allmulticast mode
[  165.853887][T13927] veth1_vlan: entered allmulticast mode
[  165.859440][T13927] veth0_vlan: entered allmulticast mode
[  165.865081][T13927] vlan0: entered allmulticast mode
[  165.870221][T13927] vlan1: entered allmulticast mode
[  165.875455][T13927] macvlan0: entered allmulticast mode
[  165.880914][T13927] macvlan1: entered allmulticast mode
[  165.886413][T13927] ipvlan0: entered allmulticast mode
[  165.891816][T13927] ipvlan1: entered allmulticast mode
[  165.897135][T13927] veth1_macvtap: entered allmulticast mode
[  165.903004][T13927] veth0_macvtap: entered allmulticast mode
[  165.908880][T13927] macvtap0: entered allmulticast mode
[  165.914411][T13927] macsec0: entered allmulticast mode
[  165.919819][T13927] geneve0: entered allmulticast mode
[  165.925377][T13927] geneve1: entered allmulticast mode
[  165.930799][T13927] team1: entered allmulticast mode
[  165.935998][T13927] bond1: entered allmulticast mode
[  165.941148][T13927] vxlan0: entered allmulticast mode
[  165.946666][T13927] bond2: left promiscuous mode
[  165.951485][T13927] bond2: entered allmulticast mode
[  165.965025][T13927] batadv1: left promiscuous mode
[  165.974716][T13927] batadv2: left promiscuous mode
[  165.984390][T13927] netdevsim netdevsim8 eth0: entered allmulticast mode
[  165.984524][T13927] netdevsim netdevsim8 eth1: entered allmulticast mode
[  165.984671][T13927] netdevsim netdevsim8 eth2: entered allmulticast mode
[  165.984785][T13927] netdevsim netdevsim8 eth3: entered allmulticast mode
[  166.266545][T13970] loop6: detected capacity change from 0 to 1024
[  166.274469][T13970] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869)
[  166.290756][T13970] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002]
[  166.298948][T13970] EXT4-fs (loop6): failed to initialize system zone (-117)
[  166.307327][T13970] EXT4-fs (loop6): mount failed
[  166.341089][T13981] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  166.382851][T13990] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4060'.
[  166.416376][T13994] wg2: left promiscuous mode
[  166.427066][T13994] wg2: left allmulticast mode
[  166.447558][T13998] 9p: Unknown access argument �z%*�0��18�!A�͏���AQåH�]�00000000000000000000: -22
[  166.512757][T14003] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4066'.
[  166.855097][T14020] netlink: 'syz.0.4073': attribute type 10 has an invalid length.
[  166.863765][T14020] team0: Device hsr_slave_0 failed to register rx_handler
[  167.570146][T14073] smc: net device bond0 applied user defined pnetid SYZ0
[  167.585612][T14073] smc: net device bond0 erased user defined pnetid SYZ0
[  168.088220][T14117] lo: entered allmulticast mode
[  168.093233][T14117] tunl0: entered allmulticast mode
[  168.098424][T14117] gre0: entered allmulticast mode
[  168.103591][T14117] gretap0: entered allmulticast mode
[  168.108964][T14117] erspan0: entered allmulticast mode
[  168.114330][T14117] ip_vti0: entered allmulticast mode
[  168.119773][T14117] ip6_vti0: entered allmulticast mode
[  168.125261][T14117] sit0: entered allmulticast mode
[  168.130532][T14117] ip6tnl0: entered allmulticast mode
[  168.136143][T14117] ip6gre0: entered allmulticast mode
[  168.141608][T14117] syz_tun: entered allmulticast mode
[  168.146940][T14117] ip6gretap0: entered allmulticast mode
[  168.152570][T14117] bridge0: entered allmulticast mode
[  168.157996][T14117] vcan0: entered allmulticast mode
[  168.163232][T14117] bond0: entered allmulticast mode
[  168.168346][T14117] bond_slave_0: entered allmulticast mode
[  168.174098][T14117] bond_slave_1: entered allmulticast mode
[  168.180003][T14117] team0: entered allmulticast mode
[  168.185104][T14117] team_slave_0: entered allmulticast mode
[  168.190889][T14117] team_slave_1: entered allmulticast mode
[  168.199897][T14117] nlmon0: entered allmulticast mode
[  168.205235][T14117] caif0: entered allmulticast mode
[  168.210442][T14117] batadv0: entered allmulticast mode
[  168.215804][T14117] vxcan0: entered allmulticast mode
[  168.221113][T14117] vxcan1: entered allmulticast mode
[  168.226388][T14117] wg0: entered allmulticast mode
[  168.231621][T14117] wg1: entered allmulticast mode
[  168.236685][T14117] wg2: entered allmulticast mode
[  168.241760][T14117] veth0_to_bridge: entered allmulticast mode
[  168.247963][T14117] veth1_to_bridge: entered allmulticast mode
[  168.254205][T14117] veth0_to_bond: entered allmulticast mode
[  168.260252][T14117] veth1_to_bond: entered allmulticast mode
[  168.266324][T14117] veth0_to_team: entered allmulticast mode
[  168.272396][T14117] veth1_to_team: entered allmulticast mode
[  168.278465][T14117] veth0_to_batadv: entered allmulticast mode
[  168.284594][T14117] batadv_slave_0: entered allmulticast mode
[  168.290680][T14117] veth1_to_batadv: entered allmulticast mode
[  168.296731][T14117] batadv_slave_1: entered allmulticast mode
[  168.302813][T14117] xfrm0: entered allmulticast mode
[  168.307986][T14117] veth0_to_hsr: entered allmulticast mode
[  168.313821][T14117] hsr_slave_0: entered allmulticast mode
[  168.319590][T14117] veth1_to_hsr: entered allmulticast mode
[  168.325418][T14117] hsr_slave_1: entered allmulticast mode
[  168.331185][T14117] hsr0: entered allmulticast mode
[  168.336270][T14117] veth1_virt_wifi: entered allmulticast mode
[  168.342421][T14117] veth0_virt_wifi: entered allmulticast mode
[  168.348456][T14117] veth1_vlan: entered allmulticast mode
[  168.354099][T14117] veth0_vlan: entered allmulticast mode
[  168.359799][T14117] vlan0: entered allmulticast mode
[  168.364970][T14117] vlan1: entered allmulticast mode
[  168.370180][T14117] �: entered allmulticast mode
[  168.374996][T14117] macvlan1: entered allmulticast mode
[  168.380554][T14117] ipvlan0: entered allmulticast mode
[  168.385875][T14117] ipvlan1: entered allmulticast mode
[  168.391238][T14117] veth1_macvtap: entered allmulticast mode
[  168.397113][T14117] veth0_macvtap: entered allmulticast mode
[  168.403123][T14117] macvtap0: entered allmulticast mode
[  168.408640][T14117] macsec0: entered allmulticast mode
[  168.414033][T14117] geneve0: entered allmulticast mode
[  168.419521][T14117] geneve1: entered allmulticast mode
[  168.424908][T14117] @: entered allmulticast mode
[  168.429762][T14117] veth0: entered allmulticast mode
[  168.435050][T14117] veth1: entered allmulticast mode
[  168.440425][T14117] bridge1: entered allmulticast mode
[  168.445902][T14117] gre1: entered allmulticast mode
[  168.451077][T14117] gtp0: entered allmulticast mode
[  168.456276][T14117] veth2: entered allmulticast mode
[  168.461578][T14117] veth3: entered allmulticast mode
[  168.466799][T14117] team1: entered allmulticast mode
[  168.472067][T14117] veth4: entered allmulticast mode
[  168.477254][T14117] veth5: entered allmulticast mode
[  168.482528][T14117] bridge2: entered allmulticast mode
[  168.487880][T14117] bond1: entered allmulticast mode
[  168.493092][T14117] bridge3: entered allmulticast mode
[  168.498586][T14117] macsec1: entered allmulticast mode
[  168.504076][T14117] : entered allmulticast mode
[  168.508978][T14117] gre2: entered allmulticast mode
[  168.514192][T14117] bridge4: entered allmulticast mode
[  168.519631][T14117] ip6tnl1: entered allmulticast mode
[  168.525026][T14117] ip6gre1: entered allmulticast mode
[  168.609832][T14117] netdevsim netdevsim0 eth0: entered allmulticast mode
[  168.616941][T14117] netdevsim netdevsim0 eth1: entered allmulticast mode
[  168.625223][T14117] netdevsim netdevsim0 eth2: entered allmulticast mode
[  168.637286][T14117] netdevsim netdevsim0 eth3: entered allmulticast mode
[  168.712181][T14140] netlink: 20 bytes leftover after parsing attributes in process `syz.8.4101'.
[  168.794015][T14144] netlink: 'syz.1.4099': attribute type 10 has an invalid length.
[  168.803270][T14144] team0: Port device dummy0 added
[  168.811110][T14144] netlink: 'syz.1.4099': attribute type 10 has an invalid length.
[  168.822354][T14144] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  168.850673][T14144] team0: Failed to send options change via netlink (err -105)
[  168.868506][T14144] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  168.890981][T14144] team0: Port device dummy0 removed
[  168.920786][T14144] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  169.142972][T14161] netlink: 96 bytes leftover after parsing attributes in process `syz.1.4109'.
[  169.346452][   T29] kauditd_printk_skb: 399 callbacks suppressed
[  169.346465][   T29] audit: type=1326 audit(1758795265.464:6353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14166 comm="syz.2.4110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  169.379639][   T29] audit: type=1326 audit(1758795265.494:6354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14164 comm="syz.2.4110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7a811caf79 code=0x7ffc0000
[  169.403236][   T29] audit: type=1326 audit(1758795265.494:6355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14164 comm="syz.2.4110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  169.426852][   T29] audit: type=1326 audit(1758795265.494:6356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14164 comm="syz.2.4110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  169.579714][   T29] audit: type=1326 audit(1758795265.694:6357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14212 comm="syz.2.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  169.603517][   T29] audit: type=1326 audit(1758795265.694:6358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14212 comm="syz.2.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  169.627100][   T29] audit: type=1326 audit(1758795265.694:6359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14212 comm="syz.2.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  169.650680][   T29] audit: type=1326 audit(1758795265.694:6360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14212 comm="syz.2.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  169.674209][   T29] audit: type=1326 audit(1758795265.694:6361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14212 comm="syz.2.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  169.727315][   T29] audit: type=1326 audit(1758795265.724:6362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14212 comm="syz.2.4125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  170.013570][T14271] netlink: 'syz.2.4141': attribute type 1 has an invalid length.
[  170.038127][T14271] 8021q: adding VLAN 0 to HW filter on device bond1
[  170.080241][T14271] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4141'.
[  170.096158][T14271] bond1 (unregistering): Released all slaves
[  170.228592][T14312] 8021q: adding VLAN 0 to HW filter on device bond1
[  170.251371][T14312] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  170.987416][T14389] loop6: detected capacity change from 0 to 128
[  171.018309][T14389] bio_check_eod: 102 callbacks suppressed
[  171.018340][T14389] syz.6.4177: attempt to access beyond end of device
[  171.018340][T14389] loop6: rw=0, sector=121, nr_sectors = 920 limit=128
[  171.070933][T14398] sctp: [Deprecated]: syz.1.4180 (pid 14398) Use of int in maxseg socket option.
[  171.070933][T14398] Use struct sctp_assoc_value instead
[  171.238451][T14414] netlink: 'syz.6.4187': attribute type 1 has an invalid length.
[  171.253267][T14414] 8021q: adding VLAN 0 to HW filter on device bond5
[  171.266072][T14414] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4187'.
[  171.276633][T14414] bond5 (unregistering): Released all slaves
[  171.354642][T14421] ip6gre2: entered allmulticast mode
[  171.355398][T14423] 9pnet: p9_errstr2errno: server reported unknown error �0x000000000000000a
[  171.393425][T14429] geneve3: entered promiscuous mode
[  171.398648][T14429] geneve3: entered allmulticast mode
[  171.599823][T14463] veth0: entered promiscuous mode
[  171.606065][T14463] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4209'.
[  171.615883][T14463] veth0 (unregistering): left promiscuous mode
[  171.806805][T14480] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4216'.
[  171.825661][T14480] xfrm1: entered promiscuous mode
[  171.830737][T14480] xfrm1: entered allmulticast mode
[  171.839806][T14480] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4216'.
[  172.032525][T14497] bridge_slave_0: left promiscuous mode
[  172.038286][T14497] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.057352][T14497] bridge_slave_1: left allmulticast mode
[  172.063098][T14497] bridge_slave_1: left promiscuous mode
[  172.063486][T14499] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4225'.
[  172.068851][T14497] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.087967][T14497] bond0: (slave bond_slave_0): Releasing backup interface
[  172.096558][T14497] bond0: (slave bond_slave_1): Releasing backup interface
[  172.106114][T14497] bond1: (slave ip6gretap1): Releasing backup interface
[  172.170858][T14507] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4228'.
[  172.180944][T14497] netlink: 'syz.2.4220': attribute type 10 has an invalid length.
[  172.189481][T14497] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4220'.
[  172.233708][T14507] 8021q: adding VLAN 0 to HW filter on device bond4
[  172.251631][T14507] vlan0: entered allmulticast mode
[  172.256764][T14507] bond4: entered allmulticast mode
[  172.474332][T14529] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4233'.
[  172.483438][T14529] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4233'.
[  172.538320][T14542] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: -256, delta: 1
[  172.547033][T14542] ref_ctr increment failed for inode: 0x904 offset: 0x4 ref_ctr_offset: 0x2 of mm: 0xffff88812c6178c0
[  172.701983][T14564] netlink: 'syz.1.4251': attribute type 16 has an invalid length.
[  172.709884][T14564] netlink: 'syz.1.4251': attribute type 17 has an invalid length.
[  172.714142][T14568] vlan2: entered allmulticast mode
[  172.752215][T14564] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.762289][T14564] 8021q: adding VLAN 0 to HW filter on device team0
[  172.776660][T14564] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  173.033481][T14606] netlink: 'syz.1.4268': attribute type 4 has an invalid length.
[  174.034224][T14672] loop1: detected capacity change from 0 to 164
[  174.086820][T14677] IPVS: Error connecting to the multicast addr
[  174.225245][T14703] ip6gre2: entered allmulticast mode
[  174.409796][   T29] kauditd_printk_skb: 451 callbacks suppressed
[  174.409885][   T29] audit: type=1400 audit(1758795270.514:6814): avc:  denied  { setopt } for  pid=14725 comm="syz.1.4319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  174.599793][   T29] audit: type=1326 audit(1758795270.714:6815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14735 comm="syz.2.4322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  174.653292][   T29] audit: type=1326 audit(1758795270.744:6816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14735 comm="syz.2.4322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  174.676814][   T29] audit: type=1326 audit(1758795270.744:6817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14735 comm="syz.2.4322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  174.700577][   T29] audit: type=1326 audit(1758795270.744:6818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14735 comm="syz.2.4322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  174.723986][   T29] audit: type=1326 audit(1758795270.744:6819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14735 comm="syz.2.4322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  175.013237][   T29] audit: type=1326 audit(1758795271.134:6820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.6.4324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  175.036869][   T29] audit: type=1326 audit(1758795271.134:6821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.6.4324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  175.119799][   T29] audit: type=1326 audit(1758795271.184:6822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.6.4324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  175.143385][   T29] audit: type=1326 audit(1758795271.184:6823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14744 comm="syz.6.4324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91ec74eec9 code=0x7ffc0000
[  175.194572][T14751] __nla_validate_parse: 3 callbacks suppressed
[  175.194587][T14751] netlink: 20 bytes leftover after parsing attributes in process `syz.6.4329'.
[  175.216165][T14754] pim6reg: entered allmulticast mode
[  175.234738][T14760] loop6: detected capacity change from 0 to 512
[  175.251477][T14754] pim6reg: left allmulticast mode
[  175.257117][T14760] EXT4-fs: Ignoring removed nobh option
[  175.274626][T14760] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.4332: iget: bad i_size value: 38620345925642
[  175.295970][T14760] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.4332: couldn't read orphan inode 15 (err -117)
[  175.309011][T14760] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.443315][T14760] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.4332: bg 0: block 5: invalid block bitmap
[  175.458782][T14760] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 16 with error 28
[  175.471175][T14760] EXT4-fs (loop6): This should not happen!! Data will be lost
[  175.471175][T14760] 
[  175.481019][T14760] EXT4-fs (loop6): Total free blocks count 0
[  175.487007][T14760] EXT4-fs (loop6): Free/Dirty block details
[  175.492909][T14760] EXT4-fs (loop6): free_blocks=0
[  175.497936][T14760] EXT4-fs (loop6): dirty_blocks=2256
[  175.503293][T14760] EXT4-fs (loop6): Block reservation details
[  175.509283][T14760] EXT4-fs (loop6): i_reserved_data_blocks=2256
[  175.517003][ T5230] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 16 with max blocks 2048 with error 28
[  176.019374][T14867] pim6reg: entered allmulticast mode
[  176.027006][T14867] pim6reg: left allmulticast mode
[  176.161120][T14882] loop7: detected capacity change from 0 to 16384
[  176.224380][T14884] pim6reg: entered allmulticast mode
[  176.271668][T14882] pim6reg: left allmulticast mode
[  176.401229][T14903] wg2: left promiscuous mode
[  176.405880][T14903] wg2: left allmulticast mode
[  176.416303][T14903] wg2: entered promiscuous mode
[  176.421352][T14903] wg2: entered allmulticast mode
[  176.812607][T14944] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4400'.
[  178.239355][T15020] netlink: 'syz.2.4432': attribute type 1 has an invalid length.
[  178.284187][T15020] 8021q: adding VLAN 0 to HW filter on device bond2
[  178.294680][T15020] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4432'.
[  178.325954][T15020] bond2 (unregistering): Released all slaves
[  178.365005][T15075] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4439'.
[  178.445210][T15095] Q�6��\b��Y�4�� speed is unknown, defaulting to 1000
[  178.505630][T15095] lo speed is unknown, defaulting to 1000
[  178.529713][  T371] bridge_slave_1: left allmulticast mode
[  178.535436][  T371] bridge_slave_1: left promiscuous mode
[  178.541272][  T371] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.554245][  T371] bridge_slave_0: left allmulticast mode
[  178.560151][  T371] bridge_slave_0: left promiscuous mode
[  178.565809][  T371] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.781618][  T371] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  178.791043][  T371] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  178.800304][  T371] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  178.809179][  T371] bond0 (unregistering): Released all slaves
[  178.816970][  T371] bond1 (unregistering): Released all slaves
[  178.824881][  T371] bond2 (unregistering): Released all slaves
[  178.832901][  T371] bond3 (unregistering): Released all slaves
[  178.841240][  T371] bond4 (unregistering): Released all slaves
[  178.848439][T15152] @: renamed from vlan0
[  178.892056][  T371] tipc: Disabling bearer <udp:� >
[  178.897208][  T371] tipc: Left network mode
[  178.953889][T15095] chnl_net:caif_netlink_parms(): no params data found
[  179.043057][  T371] hsr_slave_0: left promiscuous mode
[  179.068168][  T371] hsr_slave_1: left promiscuous mode
[  179.080044][  T371] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.181399][  T371] team0 (unregistering): Port device team_slave_1 removed
[  179.191291][  T371] team0 (unregistering): Port device C removed
[  179.283462][T15095] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.290593][T15095] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.302865][T15095] bridge_slave_0: entered allmulticast mode
[  179.311499][T15095] bridge_slave_0: entered promiscuous mode
[  179.323383][T15095] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.330550][T15095] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.337822][T15095] bridge_slave_1: entered allmulticast mode
[  179.344696][T15095] bridge_slave_1: entered promiscuous mode
[  179.372411][T15095] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  179.383358][T15095] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  179.404255][T15095] team0: Port device team_slave_0 added
[  179.421215][T15095] team0: Port device team_slave_1 added
[  179.449253][T15095] batman_adv: batadv0: Adding interface: batadv_slave_0
[  179.456251][T15095] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  179.482361][T15095] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  179.504744][T15095] batman_adv: batadv0: Adding interface: batadv_slave_1
[  179.511753][T15095] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  179.538149][T15095] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  179.574791][T15095] hsr_slave_0: entered promiscuous mode
[  179.581480][T15095] hsr_slave_1: entered promiscuous mode
[  179.589097][T15095] debugfs: 'hsr0' already exists in 'hsr'
[  179.594982][T15095] Cannot create hsr debugfs directory
[  179.618889][   T29] kauditd_printk_skb: 130 callbacks suppressed
[  179.618904][   T29] audit: type=1400 audit(1758795275.734:6954): avc:  denied  { write } for  pid=15471 comm="syz.6.4478" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  179.666542][T15498] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4481'.
[  179.706980][   T29] audit: type=1326 audit(1758795275.824:6955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  179.730536][   T29] audit: type=1326 audit(1758795275.824:6956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  179.756803][   T29] audit: type=1326 audit(1758795275.874:6957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  179.780319][   T29] audit: type=1326 audit(1758795275.874:6958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  179.803920][   T29] audit: type=1326 audit(1758795275.874:6959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  179.827392][   T29] audit: type=1326 audit(1758795275.874:6960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  179.850996][   T29] audit: type=1326 audit(1758795275.874:6961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  179.874583][   T29] audit: type=1326 audit(1758795275.874:6962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  179.898196][   T29] audit: type=1326 audit(1758795275.874:6963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15525 comm="syz.2.4483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a8122eec9 code=0x7ffc0000
[  180.081875][T15095] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  180.104166][T15095] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  180.142131][T15587] loop6: detected capacity change from 0 to 8192
[  180.142324][T15095] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  180.149360][T15589] netlink: 'syz.0.4494': attribute type 10 has an invalid length.
[  180.185698][T15095] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  180.200074][T15591] netlink: 'syz.0.4494': attribute type 10 has an invalid length.
[  180.212744][T15589] dummy0: left allmulticast mode
[  180.217777][T15589] dummy0: left promiscuous mode
[  180.223105][T15589] bridge0: port 3(dummy0) entered disabled state
[  180.237187][T15589] dummy0: entered allmulticast mode
[  180.244687][T15589] team0: Port device dummy0 added
[  180.255727][T15591] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  180.283241][T15591] dummy0: left allmulticast mode
[  180.288799][T15591] team0: Failed to send options change via netlink (err -105)
[  180.299327][T15591] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  180.309675][T15591] team0: Port device dummy0 removed
[  180.317820][T15591] dummy0: entered allmulticast mode
[  180.324595][T15591] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  180.397521][T15095] 8021q: adding VLAN 0 to HW filter on device bond0
[  180.426009][T15095] 8021q: adding VLAN 0 to HW filter on device team0
[  180.457624][ T5222] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.464794][ T5222] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.484387][T15095] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  180.494811][T15095] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  180.511853][ T5258] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.518984][ T5258] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.583819][T15095] 8021q: adding VLAN 0 to HW filter on device batadv0
[  180.604563][T15612] netlink: 1284 bytes leftover after parsing attributes in process `syz.0.4498'.
[  180.685951][T15095] veth0_vlan: entered promiscuous mode
[  180.695306][T15095] veth1_vlan: entered promiscuous mode
[  180.713092][T15095] veth0_macvtap: entered promiscuous mode
[  180.720885][T15095] veth1_macvtap: entered promiscuous mode
[  180.736813][T15095] batman_adv: batadv0: Interface activated: batadv_slave_0
[  180.752609][T15095] batman_adv: batadv0: Interface activated: batadv_slave_1
[  180.766264][ T5227] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  180.783795][ T5227] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  180.802820][ T5227] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  180.833409][ T5227] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  181.321415][T15688] sctp: [Deprecated]: syz.6.4517 (pid 15688) Use of int in maxseg socket option.
[  181.321415][T15688] Use struct sctp_assoc_value instead
[  181.431979][T15699] ip6gre1: entered allmulticast mode
[  181.476662][T15709] bridge: RTM_NEWNEIGH with invalid ether address
[  181.613979][T15732] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4535'.
[  181.626136][T15732] xfrm1: entered promiscuous mode
[  181.631244][T15732] xfrm1: entered allmulticast mode
[  181.636709][T15732] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4535'.
[  181.863340][T15757] loop1: detected capacity change from 0 to 128
[  181.887178][T15757] ==================================================================
[  181.895269][T15757] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked
[  181.902633][T15757] 
[  181.904934][T15757] read-write to 0xffff888119edf228 of 8 bytes by interrupt on cpu 1:
[  181.913001][T15757]  __xa_clear_mark+0xf5/0x1e0
[  181.917671][T15757]  __folio_end_writeback+0x177/0x470
[  181.922953][T15757]  folio_end_writeback+0x71/0x3d0
[  181.927970][T15757]  mpage_write_end_io+0x274/0x390
[  181.933008][T15757]  bio_endio+0x37e/0x420
[  181.937235][T15757]  blk_update_request+0x336/0x730
[  181.942246][T15757]  blk_mq_end_request+0x26/0x50
[  181.947084][T15757]  lo_complete_rq+0x98/0x140
[  181.951678][T15757]  blk_done_softirq+0x74/0xb0
[  181.956342][T15757]  handle_softirqs+0xb7/0x290
[  181.961000][T15757]  run_ksoftirqd+0x1c/0x30
[  181.965502][T15757]  smpboot_thread_fn+0x32b/0x530
[  181.970428][T15757]  kthread+0x489/0x510
[  181.974492][T15757]  ret_from_fork+0x11f/0x1b0
[  181.979061][T15757]  ret_from_fork_asm+0x1a/0x30
[  181.983804][T15757] 
[  181.986112][T15757] read to 0xffff888119edf228 of 8 bytes by task 15757 on cpu 0:
[  181.993719][T15757]  xas_find_marked+0x218/0x620
[  181.998489][T15757]  find_get_entry+0x5d/0x380
[  182.003057][T15757]  filemap_get_folios_tag+0x13b/0x210
[  182.008407][T15757]  filemap_write_and_wait_range+0x1d3/0x340
[  182.014287][T15757]  generic_file_read_iter+0x101/0x330
[  182.019642][T15757]  aio_read+0x1da/0x2e0
[  182.023785][T15757]  io_submit_one+0xab2/0x11d0
[  182.028445][T15757]  __se_sys_io_submit+0xfb/0x280
[  182.033381][T15757]  __x64_sys_io_submit+0x43/0x50
[  182.038299][T15757]  x64_sys_call+0x2d5d/0x2ff0
[  182.042957][T15757]  do_syscall_64+0xd2/0x200
[  182.047445][T15757]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.053318][T15757] 
[  182.055623][T15757] value changed: 0x0007ffffffffffc0 -> 0x0007ffff80000000
[  182.062809][T15757] 
[  182.065115][T15757] Reported by Kernel Concurrency Sanitizer on:
[  182.071243][T15757] CPU: 0 UID: 0 PID: 15757 Comm: syz.1.4546 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  182.081073][T15757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  182.091137][T15757] ==================================================================
[  182.102498][T15757] syz.1.4546: attempt to access beyond end of device
[  182.102498][T15757] loop1: rw=0, sector=121, nr_sectors = 920 limit=128