last executing test programs:

2m14.59167114s ago: executing program 0 (id=1977):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
process_vm_writev(0x0, &(0x7f0000000000)=[{&(0x7f0000000780)=""/247, 0xf7}], 0x1, &(0x7f0000000d00)=[{&(0x7f0000000440)=""/29, 0x1d}, {&(0x7f00000005c0)=""/57, 0x39}, {&(0x7f0000000880)=""/16, 0xffffffffffffff2f}, {&(0x7f00000008c0)=""/32, 0x20}, {&(0x7f0000000900)=""/123, 0x7b}, {&(0x7f0000000400)=""/13, 0xc}, {&(0x7f0000000a00)=""/41, 0x29}, {&(0x7f0000000bc0)=""/141, 0xffffffffffffffcf}, {&(0x7f0000000e80)=""/157, 0x9d}, {&(0x7f0000000540)=""/111, 0x65}], 0xa, 0x0)

2m14.545439261s ago: executing program 0 (id=1978):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

2m13.615780235s ago: executing program 0 (id=1994):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="240000001a0001000000ff7f000000008020", @ANYBLOB='\x00\x00\x00\x00\b'], 0x24}}, 0xa7773880dd25f30)

2m13.587500286s ago: executing program 0 (id=1996):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000480)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

2m13.460816218s ago: executing program 0 (id=2000):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x20402, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x2)
ioctl$FIONREAD(r0, 0x541b, 0x0)

2m13.063849464s ago: executing program 0 (id=2009):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nogrpid}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000200)={0x0, 0x6, 0x800077, 0x412, 0x6, 0x6, 0x1000, 0xf67, 0xf})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)

2m13.040435804s ago: executing program 32 (id=2009):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nogrpid}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000200)={0x0, 0x6, 0x800077, 0x412, 0x6, 0x6, 0x1000, 0xf67, 0xf})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)

1m14.41203523s ago: executing program 1 (id=3296):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0xa1a6, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r0}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r1, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d424", 0x21)

1m14.363348851s ago: executing program 1 (id=3298):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="640000000206010200000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a32000000000500040000000000140007800800124000000000050015002200000005000500020000000500010006"], 0x64}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000640)={0x1c, 0x3, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x10)

1m14.316929782s ago: executing program 1 (id=3299):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)={0x2000})
setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000ec0)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

1m14.233669623s ago: executing program 1 (id=3301):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b105f, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80, 0x9)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x201)

1m14.217670413s ago: executing program 1 (id=3304):
r0 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
mq_timedsend(r0, 0x0, 0x0, 0x6, 0x0)
mq_timedreceive(r0, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0)

1m13.960297237s ago: executing program 1 (id=3313):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f00000004c0))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000380), &(0x7f0000000800)=r3}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000540)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setrlimit(0x40000000000008, &(0x7f0000000000)={0x4848, 0xfffffffffffff006})
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x13, 0xc, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000100000000000000fe001811", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000500)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
umount2(&(0x7f00000002c0)='./file0\x00', 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2cf6937c172e6fe22385fbdbd5b10d92122823f25eedbf90f56532fa3db39305373d1be4eb6add1213f4bccbda000000", @ANYRES16=r5, @ANYBLOB="010300000000fbdbdf251c0000001800018014000200626f6e643000"/38], 0x2c}}, 0x40006)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000740)='mm_page_alloc\x00', r6, 0x0, 0xd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10220, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0x1ff}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, &(0x7f0000000180), &(0x7f00000001c0)=r7}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r9}, 0x10)
setuid(0x0)
syz_clone(0xe50c1700, 0x0, 0x0, 0x0, 0x0, 0x0)

1m13.938847648s ago: executing program 33 (id=3313):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f00000004c0))
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000380), &(0x7f0000000800)=r3}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000540)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setrlimit(0x40000000000008, &(0x7f0000000000)={0x4848, 0xfffffffffffff006})
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x13, 0xc, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000000000100000000000000fe001811", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000500)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
umount2(&(0x7f00000002c0)='./file0\x00', 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2cf6937c172e6fe22385fbdbd5b10d92122823f25eedbf90f56532fa3db39305373d1be4eb6add1213f4bccbda000000", @ANYRES16=r5, @ANYBLOB="010300000000fbdbdf251c0000001800018014000200626f6e643000"/38], 0x2c}}, 0x40006)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000740)='mm_page_alloc\x00', r6, 0x0, 0xd}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r7 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10220, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0x1ff}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, &(0x7f0000000180), &(0x7f00000001c0)=r7}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r9}, 0x10)
setuid(0x0)
syz_clone(0xe50c1700, 0x0, 0x0, 0x0, 0x0, 0x0)

1m11.082632062s ago: executing program 6 (id=3314):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b105f, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80, 0x9)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x201)

1m11.059314602s ago: executing program 6 (id=3344):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x2, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x40000000, 0x1000, 0x2, 0x0, 0x0, 0x8000002, 0x0, 0x7e150a0b, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x100000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x10000, 0x5d2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x1007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x3, 0x0, 0x1, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x2, 0x9, 0x0, 0x0, 0x7, 0xfbfffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x4fd, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x7e98263b, 0x9, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2d1, 0x0, 0x0, 0xb2e, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0xff, 0x1000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x6, 0xc3f3, 0x1, 0x0, 0x800, 0x9, 0x800, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0xfffffffe, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0xfffffffd, 0x0, 0x0, 0xd819ac9, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffff, 0x0, 0x0, 0x80000001, 0x0, 0x10, 0x20, 0x4, 0x400000b2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1000, 0x100, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x1, 0x4, 0xfffffffe, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x0, 0x0, 0x20000040, 0xffffffff, 0x400, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0xaaf0]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x3, 0x0, 0x0, 0x0, 0xc0000001}, {0x3, 0x0, 0xb, 0x0, 0x0, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x45c}}, 0x0)

1m9.373793478s ago: executing program 6 (id=3383):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100001f00702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r1, 0x1)
flock(r1, 0x2)

1m9.350728428s ago: executing program 34 (id=3383):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100001f00702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
flock(r1, 0x1)
flock(r1, 0x2)

6.016786987s ago: executing program 2 (id=4776):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
connect$inet6(r0, &(0x7f0000000e40)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
dup3(r0, r2, 0x0)
sendmsg$OSF_MSG_REMOVE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000003fc0)=ANY=[], 0x1060}, 0x1, 0x0, 0x0, 0x4805}, 0x20000000)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000001f00)=""/4106, 0xfffffffffffffccb, 0x0, 0x0}, &(0x7f0000000080)=0x40)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x48}, &(0x7f00000004c0)=0x40)

5.983622877s ago: executing program 2 (id=4777):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x2}, 0x18)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
write$rfkill(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0)
finit_module(r2, 0x0, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000007c0), 0x1, 0x50d, &(0x7f0000000200)="$eJzs3VFrHFsdAPD/bHZj06Y3ueqDXvB69V5Ji3Y3aWwbfKgVRJ8Kan2vMdmEkE02ZDdtE4qm+AEEERV80hdfBD+AIAVffBShoM+KiiLa6oMP2rns7iRN091k226zafb3g8mcc2Zm/+dsmNk5M4eZAAbWOxFxLSIep2l6PiLGsvJcNsV2a2qs9+jh3bnGlESa3vhnEklWtvNZSTY/k212KiK+9uWIbybPxq1tbi3PVirl9Sxfqq+slWqbWxeWVmYXy4vl1enpqcszV2YuzUz2pJ1nI+LqF//6g+/+7EtXf/WZ23+6+fdz32pUazRbvrcdzyl/0MJW0wvN72LvBusvGOw4yjdbmBlpt8bQMyX3XnGdAABor3GO/8GI+GREnI+xGDr4dBYAAAB4DaWfH43/JRFpe8MdygEAAIDXSK45BjbJFbOxAKORyxWLrTG8H47TuUq1Vv/0QnVjdb41VnY8CrmFpUp5MhsrPB6FpJGfaqaf5C/uy09HxJsR8f2xkWa+OFetzPf74gcAAAAMiDP7+v//GWv1/wEAAIATZrzfFQAAAABeOf1/AAAAOPn0/wEAAOBE+8r1640p3Xn/9fytzY3l6q0L8+XacnFlY644V11fKy5Wq4vNZ/atHPZ5lWp17bOxunGnVC/X6qXa5tbNlerGav3m0lOvwAYAAACO0Jsfv/+HJCK2PzfSnBqGu9u0y9WA4yq/m0qyeZvd+o9vtOZ/OaJKAUdiqN8VAPom3+8KAH1T6HcFgL5LDlnecfDOb7P5J3pbHwAAoPcmPtr5/n/uwC23D14MHHt2Yhhc7v/D4Gre/+92JK+TBThRCs4AYOC99P3/Q6Xpc1UIAADoudHmlOSK2eW90cjlisWIs83XAhSShaVKeTIi3oiI348VPtDITzW3TA7tMwAAAAAAAAAAAAAAAAAAAAAAAAAALWmaRAoAAACcaBG5vyW/bj3Lf2LsvdH91weGk/+ORfaK0Ns/vvHDO7P1+vpUo/xfu+X1H2XlF/txBQMAAAAGwnO9wH+nn77TjwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAXnr08O7cznSUcf/xhYgYbxc/H6ea81NRiIjT/04iv2e7JCKGehB/pPHnI+3iJ41q7YZsF3+kB/G37x0YP8azb2F//OGIONOD+DDI7jeOP9fa7X+5eKc5b7//5SOeyr+ozse/2D3+DXU4/pztMsZbD35R6hj/XsRb+fbHn534SYf473YZ/xtf39rqtCz9ScRE29+f5KlYpfrKWqm2uXVhaWV2sbxYXp2enro8c2Xm0sxkaWGpUs7+to3xvY/98vFB7T/dIf74Ie1/r8v2///BnYcfaiUL7eKfe7dN/N/8NFvj2fi57LfvU1m6sXxiJ73dSu/19s9/9/ZB7Z/v0P7D/v/numz/+a9+589drgoAHIHa5tbybKVSXj+xiUYv/RhUQ+IYJr7d0w9M0zRt7FMv8TlJHIevpZno95EJAADotScn/f2uCQAAAAAAAAAAAAAAAAAAAAyuo3ic2P6Y27uppBeP0AYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6In3AwAA///d8Nla")

5.898582679s ago: executing program 2 (id=4779):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)

3.577015755s ago: executing program 5 (id=4799):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r1, 0x6)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = accept(r0, 0x0, 0x0)
shutdown(r1, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0xfffffdef}}, 0x0)
sendmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0)
recvfrom(r2, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x3e8, 0x0, 0x0)

3.344761578s ago: executing program 2 (id=4803):
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x2, 0x0, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000feffffff850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000080)='pids.max\x00', 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[@ANYBLOB='-0'], 0x9)
syz_clone(0x4001000, 0x0, 0x408, &(0x7f0000000140), 0x0, 0x0)

3.177279061s ago: executing program 2 (id=4805):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000100)=0x100000001, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
connect$inet6(r1, &(0x7f0000000340)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x303}, "fbffffffffffffff", "1fd33c81cf7995313c09de00fd6ded74", '\x00', "1e00040000000100"}, 0x28)
write$binfmt_script(r1, &(0x7f0000000500)={'#! ', './file0'}, 0xb)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000280)={&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd87}, &(0x7f0000000240)=0x40)
writev(r1, &(0x7f00000030c0)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1)
close_range(r0, r1, 0x0)

2.886427285s ago: executing program 7 (id=4807):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
socket$kcm(0x29, 0x2, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
socketpair(0xa, 0x800, 0x7, 0x0)
setsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r1)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xb, 0xd}, {0x9}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r4, &(0x7f0000005140)=[{{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f0000000640)=""/216, 0xd8}, {&(0x7f0000003080)=""/4085, 0xff5}], 0x2}, 0x3}], 0x1, 0x0, 0x0)

2.643362399s ago: executing program 7 (id=4810):
socket$inet6(0xa, 0x3, 0x8000000003c)
socket$inet6(0xa, 0x3, 0x8000000003c)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_udp(0x2, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000040)={r5, r2, 0x25, 0x0, @val=@tcx={@void, @value=r5}}, 0x1c)
syz_emit_ethernet(0x82, &(0x7f0000000640)={@random='\x00\a\x00', @multicast, @val={@val={0x88a8, 0x1, 0x1, 0x2}, {0x8100, 0x2, 0x0, 0x4}}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "2f23aa", 0x44, 0x2f, 0x0, @empty, @mcast2, {[], {{0x0, 0x0, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}, {0x1, 0x0, 0x1}, {0x8, 0x88be, 0x0, {{0x1, 0x1, 0x10, 0x0, 0x0, 0x1, 0x0, 0x5}, 0x1, {0x6}}}, {0x8, 0x22eb, 0x1, {{0x8, 0x2, 0x3, 0x3, 0x1, 0x1, 0x6, 0x3}, 0x2, {0x7, 0x6, 0x1, 0x7, 0x0, 0x0, 0x2, 0x0, 0x1}}}, {0x8, 0x6558, 0x2}}}}}}}, 0x0)

2.642408949s ago: executing program 5 (id=4811):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket(0xa, 0x3, 0x3a)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000001c0)={0x0, 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0xc)
mount$9p_fd(0x0, 0x0, &(0x7f0000000000), 0x0, 0x0)
r6 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r6, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e20, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000"], 0x18}, 0x0)
getsockopt$inet_mptcp_buf(0xffffffffffffffff, 0x11c, 0x2, 0x0, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x800000009)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0xcc, 0x0, 0x0)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x1)

2.60767002s ago: executing program 7 (id=4813):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0xa, 0x801, 0x84)
sendto$inet(r3, &(0x7f0000000080)='w', 0x34000, 0x0, &(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010102}, 0x10)
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)

2.471685122s ago: executing program 2 (id=4814):
bpf$ENABLE_STATS(0x20, &(0x7f0000000040)={0x2}, 0x75)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
read$msr(0xffffffffffffffff, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f00000007c0)={0x400000000000000, 0x0, 0x0}, 0x40080)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x50)
creat(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000400)='./file0\x00', 0x8a, &(0x7f00000001c0)={[{@usrjquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@stripe={'stripe', 0x3d, 0xf8}}, {@minixdf}, {@grpjquota}, {@noinit_itable}]}, 0x1, 0x463, &(0x7f0000001040)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='.\x00', 0xe0, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))
socket(0x80000000000000a, 0x2, 0x0)

1.658910074s ago: executing program 5 (id=4816):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000ac0)=@newtfilter={0x480, 0x2c, 0xd27, 0x70bd26, 0x8000002, {0x0, 0x0, 0x0, r5, {0x93c8370a5c98cbcf, 0x3}, {}, {0x7, 0xd}}, [@filter_kind_options=@f_flow={{0x9}, {0x450, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0x7}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0x80000001}, @TCA_FLOW_ADDEND={0x8, 0x5, 0x7ff}, @TCA_FLOW_EMATCHES={0x16c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xe}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x73f1}}, @TCA_EMATCH_TREE_LIST={0x158, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0xffff}, {{0x0, 0x1, 0x1, 0x1}, {0x0, 0x0, 0x1, 0x1}}}}, @TCF_EM_META={0x18, 0x3, 0x0, 0x0, {{0xc7, 0x4, 0x7}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x2, 0x81, 0x2}, {0x1, 0x1, 0x3}}}]}}, @TCF_EM_META={0x50, 0x2, 0x0, 0x0, {{0x7, 0x4, 0xf}, [@TCA_EM_META_RVALUE={0x14, 0x3, [@TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0xa]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x10, 0x3}, {0x101, 0xfb, 0x1}}}, @TCA_EM_META_LVALUE={0x24, 0x2, [@TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_INT=0x9, @TCF_META_TYPE_VAR="833be4546e28aba732", @TCF_META_TYPE_VAR="da78c47284", @TCF_META_TYPE_VAR="b1bf", @TCF_META_TYPE_INT=0x6, @TCF_META_TYPE_INT=0xa]}]}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0xda98, 0x1, 0x2}, {0x8, 0x86, 0x101, 0x1, 0xf, 0x2, 0x1}}}, @TCF_EM_CONTAINER={0xc0, 0x3, 0x0, 0x0, {{0x9, 0x0, 0x3}, "040ebcf78cb0b11d24e61255fcb3e9ad1cff388699b683b62460a2dc4e217011393ed5dd7bee36e512ef514e87ed6be20748d85cac159e12b06c562f4abe318bbc941bf264089d53c037edf34b742acdba5674f06c84f4b72caeea8683dd9e8176d051976297dfa18f57c7e524b354b37426454c85ce1ae30d80a585b929d076241ac84e501cda851bb3723d32ded38c861e346fff56df094e92c9bfaece8f0fcdf1592b3e6bcefbeaa8bf94600f868531"}}]}]}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0xa, 0x6}}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0xf}, @TCA_FLOW_BASECLASS={0x0, 0x3, {0x6, 0x7}}, @TCA_FLOW_KEYS={0x8, 0x1, 0x16b7b}, @TCA_FLOW_RSHIFT={0x8, 0x4, 0x2}]}}]}, 0x480}, 0x1, 0x0, 0x0, 0x24008004}, 0x0)

1.495433377s ago: executing program 7 (id=4819):
r0 = bpf$ITER_CREATE(0xb, 0x0, 0x0)
close(0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000004c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ff8}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
ppoll(0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
personality(0x5000004)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/net\x00')
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000680)=ANY=[@ANYBLOB="fd71e502c6c5d0f7be16ac21832ea623923958f16e01a1a1bd81b11d8bb8ffa2e7068c11799473c35802cbba576dfe09e50b92f58748925f32df4970905898cdd6a8a5950257f4ec1fe03c561eb5a53c2ab152932f0a594cbf5d806afc8c40", @ANYRES32, @ANYRES16=r1], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
unshare(0x26000400)
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
accept$nfc_llcp(r3, &(0x7f0000000340), &(0x7f0000000400)=0x60)
setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000200)={'syztnl2\x00', &(0x7f0000000140)={'sit0\x00', <r4=>0x0, 0x755ecc7f7c55598d, 0x7800, 0x7, 0x1000, {{0x10, 0x4, 0x0, 0x6, 0x40, 0x67, 0x0, 0xe, 0x2d, 0x0, @broadcast, @loopback, {[@ssrr={0x89, 0x2b, 0x44, [@multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, @private=0xa010102, @remote, @rand_addr=0x64010101, @empty, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}]}]}}}}})
bind$packet(r0, &(0x7f0000000240)={0x11, 0x8, r4, 0x1, 0xa2, 0x6, @broadcast}, 0x14)
r5 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$UHID_CREATE2(r5, 0x0, 0x8)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000003c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
unshare(0x4000000)
pipe(&(0x7f00000002c0)={<r7=>0xffffffffffffffff})
vmsplice(r7, &(0x7f0000000080)=[{&(0x7f00000004c0)='|', 0x1}], 0x1, 0x0)

1.471086997s ago: executing program 5 (id=4820):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x8)
ioperm(0x5, 0x1000, 0x7)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r4, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001cc0)=ANY=[@ANYBLOB="3c0000001000030500000000fcffffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001400128009000100626f6e64000000000400028008000a00", @ANYRES32=r4], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x60, &(0x7f0000000300)={&(0x7f0000000900)=ANY=[@ANYBLOB="5c00000010001ffffcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800b0001006772657461700000240002800800070064010100060003001008000008001500700f0d0008000700ac1414bb08000a00", @ANYRES32=r5], 0x5c}}, 0x40)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4], 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x0)

1.136521622s ago: executing program 5 (id=4821):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000280)=ANY=[], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = eventfd(0x0)
read$eventfd(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x9}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x34000811)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000640)=ANY=[@ANYRES32=r1, @ANYRES8=r1], 0x1000f)

659.97227ms ago: executing program 4 (id=4824):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
close(0xffffffffffffffff)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x15, 0x0, 0x0, &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x9b}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6tnl0\x00', 0x200})
perf_event_open(0x0, 0x0, 0x5, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x89f1, &(0x7f0000000080))
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1, 0x40040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x7}, 0x22c0, 0x6, 0x0, 0x0, 0x1ff, 0x100, 0x0, 0x0, 0x5ff}, 0x0, 0x4, 0xffffffffffffffff, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f1, &(0x7f0000000080))

659.31421ms ago: executing program 7 (id=4825):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = dup2(r0, r1)
sendmmsg$inet(r2, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000500)="fff5", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000180)="d0", 0x1}], 0x1}}], 0x2, 0x0)
sendmsg$TIPC_NL_SOCK_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[], 0x240}}, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='dctcp\x00', 0x6)
setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000001600)="09268a927f1f6588b967481241ba7860fcfaf65ac635ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcec8044ab4ea6f7ae55d88fecf90b1a7511bf746b152124eb38d6c7a207112eb1bf554bc070626792d394df5adf7355fa5f8deb9db3da042d8803f5c0ca3642f22e4c896b5f1d4e16556e57cc2f36b50a00000063cf9528e90000000000581c7eeb130aac1cfd109c3e794fe91b5b473f244eeac47acbd809ca44d2ec59bfd29d8284c110c12383451ca080f21202c313d9e1433001c37c", 0xc5, 0x11, 0x0, 0x0)

617.06399ms ago: executing program 7 (id=4827):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000840)=ANY=[], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000640)=ANY=[@ANYRESDEC, @ANYRES16, @ANYBLOB="000426bd7000fbdbdf25100000000c000280060002004e22000008000500060000004400018008000b00736970000c0007002200000000000000080005000000000008000b00736970000c0007003c000000000000000700060073680000080009000a0000000800060066680000080005000700000008000400ff03000030000280080003000100000014000100e000000100000000000000000000000006000b0002000000080008000200000008000600040000000800040008000000080005000d0000003000038008000100010000001400060000000000000000000000ffffe00000010800010002"], 0xfc}, 0x1, 0x0, 0x0, 0x20040041}, 0x40000000)
readlinkat(0xffffffffffffffff, &(0x7f0000000140)='./mnt\x00', &(0x7f0000000180)=""/10, 0xa)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
pipe(&(0x7f0000000300))
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

609.935621ms ago: executing program 4 (id=4828):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x3, 0xfe, "0062ba7d9dd00014fbb36d9df98c4038096304"})
r1 = syz_open_pts(r0, 0x900)
r2 = dup3(r1, r0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
read$watch_queue(r2, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000a00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r4}, 0x18)
semop(0x0, &(0x7f00000000c0)=[{}], 0x1)
semctl$IPC_RMID(0x0, 0x0, 0x0)

541.892531ms ago: executing program 5 (id=4829):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@window, @window={0x3, 0x564, 0x1}, @window={0x3, 0x3, 0x4}, @window={0x3, 0x8, 0x6}, @sack_perm, @timestamp, @mss={0x2, 0x1}, @sack_perm], 0x8)
write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0x40)
sendto$inet(r0, &(0x7f0000000380)='M', 0x1, 0x60004410, 0x0, 0x2b)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000100)="14", 0x126c, 0x241, 0x0, 0x0)

449.952163ms ago: executing program 3 (id=4830):
openat$selinux_attr(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1b, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x28f72148a2f889f6, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
creat(&(0x7f00000000c0)='./file0\x00', 0x48)
pipe2$9p(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r4 = dup(r3)
write$P9_RLERRORu(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r4, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r4])
newfstatat(0xffffffffffffff9c, &(0x7f0000003200)='./file0\x00', 0x0, 0x0)

425.384023ms ago: executing program 3 (id=4831):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
setsockopt$inet_MCAST_MSFILTER(0xffffffffffffffff, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r2)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0xfffffffd, 0x0, {0x0, 0x0, 0x0, r4, {0x7, 0xfff2}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)
recvmmsg(r5, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f00000021c0)=[{&(0x7f0000003140)=""/4104, 0x1008}, {&(0x7f0000002f40)=""/196, 0xc4}, {&(0x7f0000001e00)=""/208, 0xd0}, {&(0x7f0000001fc0)=""/197, 0xc5}], 0x4}, 0x3}], 0x1b00, 0x0, 0x0)

347.178274ms ago: executing program 4 (id=4832):
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100202, 0x0, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0xff, 0x0, 0x0, 0x0, 0x1888d07e92b1e73e}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r4 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="380000000314010000000000000008000900020073797a310000000008004100736977001400330073797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

204.121627ms ago: executing program 3 (id=4833):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000240)=0x100000001, 0x59)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0xffff, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040), 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x41000}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000000c0)=@gcm_256={{0x304}, '\x00', "07f217bd74511e465bbbd5de01000000f9044677d4d588363d63af84db44be59", "00f8ff00", "8ce63ecbc640735f"}, 0x38)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000b80)=@gcm_256={{0x304}, "0000004a650600", "af193cff4810ba5ac120d096eb00000052095b4285514ca312c52e3a08756735", '8\x00', "bc3a20b10f4ad11e"}, 0x38)
sendto$inet6(r0, &(0x7f0000000280)='S', 0x1, 0x8000, 0x0, 0x0)
close(r0)

155.588927ms ago: executing program 3 (id=4834):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000002140)=""/4044, &(0x7f0000000180)=0xfd0)
socket$key(0xf, 0x3, 0x2)
syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0x8042)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000000)={'gretap0\x00', &(0x7f0000000200)={'gretap0\x00', <r2=>0x0, 0x7, 0x20, 0xfffffffa, 0x9, {{0xe, 0x4, 0x2, 0x25, 0x38, 0x66, 0x0, 0x4, 0x2f, 0x0, @rand_addr=0x64010101, @private=0xa010101, {[@noop, @timestamp_addr={0x44, 0xc, 0xfd, 0x1, 0x5, [{@empty, 0x9}]}, @ra={0x94, 0x4, 0x1}, @lsrr={0x83, 0x13, 0xcb, [@multicast1, @empty, @remote, @dev={0xac, 0x14, 0x14, 0x23}]}]}}}}})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', r2, 0xffffffffffffffff, 0x0, 0x2}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xf, 0x5, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x4}, [@map_idx={0x18, 0x0, 0x5, 0x0, 0xe}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3, 0x0, 0x5}, 0x18)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/timers\x00', 0x0, 0x0)
close(r4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'ipvlan0\x00', <r5=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="680000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800c0001006d6163766c616e00300002800800010010000000100005800a000400aaaaaaaaaabb000008000300030000000a000400aaaaaaaab1aa000008000500", @ANYRES32=r5], 0x68}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

152.871227ms ago: executing program 4 (id=4835):
socket$netlink(0x10, 0x3, 0x0)
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="a75674abf3616484272f9eaf3fa30eea845551bdaf467250030eb3d407e34dbd970f133129f6a7255146f1f3f9bb8027df7604f4738daff5ea7bbd3567a583955c04338acb5c50ca403217757b33269cb77f34a7753bff6f7d4a7b9f7bd5e82e8ef2e7494fa10ab11b85de84a57720d5901edd1818135ee53d79b75eea6b9cac2d89bcded07c13900422ba7e81e68952f65af727b675ad8148d20dc7ba87810808e8aab83d5a9145b28d3ce76414736b3fec6ac83dd8aa39c7d1e15815dc4d3f2c2d371ecacb023bcb4e"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', 0xffffffffffffffff, 0x0, 0x9135}, 0x18)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x80400)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
eventfd(0x7)
recvfrom$packet(0xffffffffffffffff, &(0x7f00000002c0), 0x0, 0x40010022, &(0x7f0000000580)={0x11, 0x3, 0x0, 0x1, 0xf, 0x6, @random="42a27904e833"}, 0x14)
unshare(0xc000000)
r0 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a320000000008004100727865001400330076657468305f746f5f626f6e64"], 0x38}, 0x1, 0x0, 0x0, 0x20000854}, 0x4008004)
accept(0xffffffffffffffff, 0x0, &(0x7f0000000240))
lsm_get_self_attr(0x67, &(0x7f0000000400)={0x0, 0x0, 0xad, 0x8d, ""/141}, &(0x7f0000000080)=0xad, 0x0)

107.766948ms ago: executing program 3 (id=4836):
r0 = socket(0x2b, 0x2, 0x10000000000002)
r1 = socket$kcm(0x21, 0x2, 0x2)
recvmsg$kcm(r1, &(0x7f0000000540)={&(0x7f0000000b00)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000000940)=[{&(0x7f0000000340)=""/13, 0xd}, {&(0x7f0000000440)=""/152, 0x98}, {&(0x7f0000000600)=""/232, 0xe8}, {&(0x7f0000000700)=""/191, 0xbf}, {&(0x7f0000000500)=""/58, 0x3a}, {&(0x7f00000007c0)=""/175, 0xaf}, {&(0x7f0000000880)=""/152, 0x98}], 0x7, &(0x7f00000009c0)=""/214, 0xd6}, 0x2003)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private=0x4000000}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x4004040)
r2 = socket$kcm(0x2, 0x7, 0x84)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x109)
bpf$MAP_CREATE(0x0, &(0x7f0000000bc0)=ANY=[@ANYRES16=r0, @ANYRESDEC=r2], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x27, &(0x7f0000000180)={@multicast1, @loopback}, 0xc)
r4 = socket$netlink(0x10, 0x3, 0x0)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

90.457399ms ago: executing program 4 (id=4837):
r0 = socket(0x40000000015, 0x5, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'dummy0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x503, 0x0, 0x25dfdbfe, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0xb9, @local, 0x6, 0x2}, 0x20)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x10001, @local, 0x8}, 0x1c)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000040000000c00"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_genetlink_get_family_id$nl80211(0x0, r0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='mm_page_alloc\x00', r5}, 0x10)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)

1.00375ms ago: executing program 4 (id=4838):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = dup2(r0, r1)
sendmmsg$inet(r2, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000500)="fff5", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000180)="d0", 0x1}], 0x1}}], 0x2, 0x0)
sendmsg$TIPC_NL_SOCK_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001840)=ANY=[], 0x240}}, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='dctcp\x00', 0x6)
setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000001600)="09268a927f1f6588b967481241ba7860fcfaf65ac635ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcec8044ab4ea6f7ae55d88fecf90b1a7511bf746b152124eb38d6c7a207112eb1bf554bc070626792d394df5adf7355fa5f8deb9db3da042d8803f5c0ca3642f22e4c896b5f1d4e16556e57cc2f36b50a00000063cf9528e90000000000581c7eeb130aac1cfd109c3e794fe91b5b473f244eeac47acbd809ca44d2ec59bfd29d8284c110c12383451ca080f21202c313d9e1433001c37c", 0xc5, 0x11, 0x0, 0x0)

0s ago: executing program 3 (id=4839):
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=<r0=>0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x3, 0x6}, 0x4c58, 0x7, 0x20000, 0x6, 0x3, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x833}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setreuid(0xffffffffffffffff, 0xee00)
r3 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000280)}], 0x1}, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000002340)=[{{0x0, 0x0, &(0x7f00000009c0)=[{0x0}], 0x1}}], 0x1, 0xc0)
sendto$inet(r2, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0xfe8e, 0x12)

kernel console output (not intermixed with test programs):

XT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.588726][T12231] lo speed is unknown, defaulting to 1000
[  190.595237][T12231] lo speed is unknown, defaulting to 1000
[  190.601940][T12227] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.853893][T12246] SELinux: ebitmap start bit (2147483904) is beyond the end of the bitmap (1472)
[  190.863384][T12246] SELinux: failed to load policy
[  190.883005][ T3866] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.953702][T12257] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3388'.
[  190.971742][T12257] loop5: detected capacity change from 0 to 512
[  190.979147][T12257] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  190.991152][T12257] EXT4-fs (loop5): 1 truncate cleaned up
[  190.999956][T12257] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.013416][T12257] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.055780][T12252] lo speed is unknown, defaulting to 1000
[  191.062524][T12252] lo speed is unknown, defaulting to 1000
[  191.153474][T12279] loop5: detected capacity change from 0 to 512
[  191.163096][T12279] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  191.181121][T12279] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.195278][T12252] chnl_net:caif_netlink_parms(): no params data found
[  191.196310][T12279] ext4 filesystem being mounted at /288/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.227364][T12279] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  191.245707][T12287] loop2: detected capacity change from 0 to 164
[  191.252987][T12287] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  191.253707][T12279] EXT4-fs (loop5): Delayed block allocation failed for inode 16 at logical offset 5 with max blocks 12 with error 28
[  191.273727][T12279] EXT4-fs (loop5): This should not happen!! Data will be lost
[  191.273727][T12279] 
[  191.283481][T12279] EXT4-fs (loop5): Total free blocks count 0
[  191.289532][T12279] EXT4-fs (loop5): Free/Dirty block details
[  191.295466][T12279] EXT4-fs (loop5): free_blocks=39626
[  191.300935][T12279] EXT4-fs (loop5): dirty_blocks=14
[  191.306186][T12279] EXT4-fs (loop5): Block reservation details
[  191.312281][T12279] EXT4-fs (loop5): i_reserved_data_blocks=14
[  191.320670][T12290] EXT4-fs (loop5): Delayed block allocation failed for inode 16 at logical offset 3 with max blocks 13 with error 28
[  191.334261][T12252] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.341540][T12252] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.349298][T12252] bridge_slave_0: entered allmulticast mode
[  191.362145][T12252] bridge_slave_0: entered promiscuous mode
[  191.371370][T12252] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.378727][T12252] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.389395][T12252] bridge_slave_1: entered allmulticast mode
[  191.396512][T12252] bridge_slave_1: entered promiscuous mode
[  191.423014][T12252] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  191.433808][T12252] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  191.473012][T12252] team0: Port device team_slave_0 added
[  191.484734][T12252] team0: Port device team_slave_1 added
[  191.517316][T12252] batman_adv: batadv0: Adding interface: batadv_slave_0
[  191.524327][T12252] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.550398][T12252] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  191.562177][T12252] batman_adv: batadv0: Adding interface: batadv_slave_1
[  191.569252][T12252] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.595444][T12252] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.637459][T12252] hsr_slave_0: entered promiscuous mode
[  191.644445][T12252] hsr_slave_1: entered promiscuous mode
[  191.655694][T12252] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  191.665979][T12311] loop2: detected capacity change from 0 to 1024
[  191.675401][T12252] Cannot create hsr debugfs directory
[  191.683433][T12311] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.718471][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.742210][T12316] loop2: detected capacity change from 0 to 512
[  191.752239][T12316] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  191.764498][T12316] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.3407: invalid indirect mapped block 2683928664 (level 1)
[  191.781064][T12316] EXT4-fs (loop2): Remounting filesystem read-only
[  191.787921][T12316] EXT4-fs (loop2): 1 truncate cleaned up
[  191.794554][T12316] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.834939][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.845321][T12252] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  191.871534][T12252] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  191.890633][T12252] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  191.899844][   T29] kauditd_printk_skb: 1103 callbacks suppressed
[  191.899862][   T29] audit: type=1326 audit(1751252005.148:32731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  191.930221][   T29] audit: type=1326 audit(1751252005.148:32732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  191.953887][   T29] audit: type=1326 audit(1751252005.148:32733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  191.966249][T12252] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  191.977537][   T29] audit: type=1326 audit(1751252005.148:32734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  192.007881][   T29] audit: type=1326 audit(1751252005.148:32735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  192.031614][   T29] audit: type=1326 audit(1751252005.148:32736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  192.055284][   T29] audit: type=1326 audit(1751252005.148:32737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  192.079052][   T29] audit: type=1326 audit(1751252005.148:32738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  192.102930][   T29] audit: type=1326 audit(1751252005.148:32739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  192.126796][   T29] audit: type=1326 audit(1751252005.148:32740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12321 comm="syz.2.3408" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  192.171634][T12324] lo speed is unknown, defaulting to 1000
[  192.187357][T12324] lo speed is unknown, defaulting to 1000
[  192.246378][ T3528] usb usb8-port1: attempt power cycle
[  192.489985][T12252] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.507064][T12252] 8021q: adding VLAN 0 to HW filter on device team0
[  192.599884][T12252] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  192.610602][T12252] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  192.634035][ T3817] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.641271][ T3817] bridge0: port 1(bridge_slave_0) entered forwarding state
[  192.723446][ T3817] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.730841][ T3817] bridge0: port 2(bridge_slave_1) entered forwarding state
[  192.768361][T12344] lo speed is unknown, defaulting to 1000
[  192.775190][T12344] lo speed is unknown, defaulting to 1000
[  192.794814][T12252] 8021q: adding VLAN 0 to HW filter on device batadv0
[  192.848973][ T3866] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.903500][T12358] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3416'.
[  192.930082][ T3866] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.020989][T12252] veth0_vlan: entered promiscuous mode
[  193.029738][T12252] veth1_vlan: entered promiscuous mode
[  193.057539][ T3866] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.069697][T12377] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3429'.
[  193.081454][T12252] veth0_macvtap: entered promiscuous mode
[  193.096514][T12252] veth1_macvtap: entered promiscuous mode
[  193.102720][T12377] loop2: detected capacity change from 0 to 512
[  193.110165][T12377] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  193.114236][T12252] batman_adv: batadv0: Interface activated: batadv_slave_0
[  193.133417][T12252] batman_adv: batadv0: Interface activated: batadv_slave_1
[  193.137052][T12377] EXT4-fs (loop2): 1 truncate cleaned up
[  193.143855][T12252] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  193.155140][T12252] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  193.156543][T12377] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.163963][T12252] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  193.184868][T12252] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  193.187123][T12377] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.229967][ T3866] bridge_slave_1: left allmulticast mode
[  193.235722][ T3866] bridge_slave_1: left promiscuous mode
[  193.241517][ T3866] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.267796][ T3866] bridge_slave_0: left allmulticast mode
[  193.273529][ T3866] bridge_slave_0: left promiscuous mode
[  193.279474][ T3866] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.282654][T12383] loop5: detected capacity change from 0 to 1024
[  193.312555][T12383] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.367973][T12383] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4113: comm syz.5.3423: Allocating blocks 449-513 which overlap fs metadata
[  193.390021][ T3866] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  193.401643][ T3866] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  193.406453][T12381] EXT4-fs (loop5): pa ffff888106ad9230: logic 48, phys. 177, len 21
[  193.418365][T12381] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4
[  193.429474][ T3866] bond0 (unregistering): Released all slaves
[  193.451222][ T8808] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.502683][T12397] netlink: 'syz.2.3428': attribute type 13 has an invalid length.
[  193.526013][T12397] gretap0: refused to change device tx_queue_len
[  193.608309][T12397] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  193.650835][   T10] lo speed is unknown, defaulting to 1000
[  193.659954][ T3866] hsr_slave_0: left promiscuous mode
[  193.670574][ T3866] hsr_slave_1: left promiscuous mode
[  193.678693][ T3866] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  193.686196][ T3866] batman_adv: batadv0: Removing interface: batadv_slave_0
[  193.695236][ T3866] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  193.702716][ T3866] batman_adv: batadv0: Removing interface: batadv_slave_1
[  193.711132][T12402] loop2: detected capacity change from 0 to 2048
[  193.723483][ T3866] veth1_macvtap: left promiscuous mode
[  193.729278][ T3866] veth0_macvtap: left promiscuous mode
[  193.734989][ T3866] veth1_vlan: left promiscuous mode
[  193.741143][ T3866] veth0_vlan: left promiscuous mode
[  194.060096][ T3866] team0 (unregistering): Port device team_slave_1 removed
[  194.119020][ T3866] team0 (unregistering): Port device team_slave_0 removed
[  194.148542][T12410] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  194.158672][T12410] SELinux: failed to load policy
[  194.195733][T12412] netlink: 180 bytes leftover after parsing attributes in process `syz.7.3385'.
[  194.247166][T12422] netlink: 40 bytes leftover after parsing attributes in process `syz.7.3438'.
[  194.278081][T12422] loop7: detected capacity change from 0 to 512
[  194.285459][T12422] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  194.308384][T12422] EXT4-fs (loop7): 1 truncate cleaned up
[  194.314679][T12422] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.331963][T12422] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.381086][T12433] loop2: detected capacity change from 0 to 2048
[  194.462690][T12433] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.780436][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.796135][ T3528] usb usb8-port1: unable to enumerate USB device
[  194.833267][T12459] netlink: 180 bytes leftover after parsing attributes in process `syz.3.3449'.
[  194.894911][T12465] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3454'.
[  194.900858][T12461] lo speed is unknown, defaulting to 1000
[  194.911770][T12461] lo speed is unknown, defaulting to 1000
[  194.928528][T12469] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3455'.
[  194.937733][T12469] netlink: 32 bytes leftover after parsing attributes in process `syz.7.3455'.
[  194.946823][T12469] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3455'.
[  194.962326][T12471] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12471 comm=syz.2.3456
[  194.975243][T12465] loop5: detected capacity change from 0 to 512
[  194.983516][T12465] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  195.004422][T12465] EXT4-fs (loop5): 1 truncate cleaned up
[  195.017874][T12465] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.081564][T12465] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.233548][T12502] loop3: detected capacity change from 0 to 2048
[  195.302251][T12514] loop4: detected capacity change from 0 to 512
[  195.317752][T12502]  loop3: p4 < >
[  195.324188][T12514] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  195.370919][T12518] loop2: detected capacity change from 0 to 512
[  195.382266][T12518] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  195.393650][T12514] EXT4-fs (loop4): 1 truncate cleaned up
[  195.404075][T12514] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.432737][T12514] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.447544][T12518] EXT4-fs (loop2): 1 truncate cleaned up
[  195.464259][T12518] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.544840][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.558357][T12535] xt_hashlimit: max too large, truncated to 1048576
[  195.586444][T12539] usb usb1: usbfs: interface 0 claimed by hub while 'syz.7.3490' sets config #1
[  195.596411][T12540] loop3: detected capacity change from 0 to 2048
[  195.612301][T12540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.809100][T12561] netlink: 'syz.4.3498': attribute type 3 has an invalid length.
[  195.866498][T12564] netlink: 'syz.7.3493': attribute type 1 has an invalid length.
[  195.885459][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.971216][T12579] binfmt_misc: register: failed to install interpreter file ./file0
[  196.623985][T12618] IPv6: Can't replace route, no match found
[  196.638384][T12616] usb usb1: usbfs: process 12616 (syz.5.3520) did not claim interface 0 before use
[  196.709264][T12625] lo speed is unknown, defaulting to 1000
[  196.715698][T12625] lo speed is unknown, defaulting to 1000
[  196.891867][T12636] loop3: detected capacity change from 0 to 2048
[  196.907787][T12636] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.920106][   T29] kauditd_printk_skb: 917 callbacks suppressed
[  196.920127][   T29] audit: type=1400 audit(1751252010.168:33658): avc:  denied  { mount } for  pid=12634 comm="syz.3.3529" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  196.949284][   T29] audit: type=1326 audit(1751252010.198:33659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.7.3530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  196.973078][   T29] audit: type=1326 audit(1751252010.198:33660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.7.3530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  196.982034][T12640] lo speed is unknown, defaulting to 1000
[  197.004025][   T29] audit: type=1400 audit(1751252010.248:33661): avc:  denied  { add_name } for  pid=12634 comm="syz.3.3529" name="cpuset.effective_mems" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  197.005798][T12636] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.3529: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  197.026417][   T29] audit: type=1400 audit(1751252010.248:33662): avc:  denied  { create } for  pid=12634 comm="syz.3.3529" name="cpuset.effective_mems" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  197.026525][   T29] audit: type=1326 audit(1751252010.248:33663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.7.3530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  197.026572][   T29] audit: type=1326 audit(1751252010.248:33664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.7.3530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  197.026614][   T29] audit: type=1326 audit(1751252010.248:33665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.7.3530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  197.026655][   T29] audit: type=1326 audit(1751252010.248:33666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.7.3530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  197.087041][T12640] lo speed is unknown, defaulting to 1000
[  197.088795][   T29] audit: type=1326 audit(1751252010.248:33667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12635 comm="syz.7.3530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc504b3d290 code=0x7ffc0000
[  197.114241][T12636] EXT4-fs (loop3): Remounting filesystem read-only
[  197.203261][T12643] loop2: detected capacity change from 0 to 256
[  197.220369][T12643] FAT-fs (loop2): Directory bread(block 64) failed
[  197.228345][T12643] FAT-fs (loop2): Directory bread(block 65) failed
[  197.235008][T12643] FAT-fs (loop2): Directory bread(block 66) failed
[  197.235427][ T3303] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.252069][T12643] FAT-fs (loop2): Directory bread(block 67) failed
[  197.259211][T12643] FAT-fs (loop2): Directory bread(block 68) failed
[  197.266336][T12643] FAT-fs (loop2): Directory bread(block 69) failed
[  197.273181][T12643] FAT-fs (loop2): Directory bread(block 70) failed
[  197.283540][T12643] FAT-fs (loop2): Directory bread(block 71) failed
[  197.291512][T12643] FAT-fs (loop2): Directory bread(block 72) failed
[  197.298224][T12643] FAT-fs (loop2): Directory bread(block 73) failed
[  197.320650][T12643] syz.2.3531: attempt to access beyond end of device
[  197.320650][T12643] loop2: rw=2051, sector=1224, nr_sectors = 608 limit=256
[  197.380363][T12649] loop2: detected capacity change from 0 to 2048
[  197.416625][T12649]  loop2: p4 < >
[  197.559607][T12675] openvswitch: netlink: Message has 6 unknown bytes.
[  197.662348][T12689] xt_hashlimit: max too large, truncated to 1048576
[  197.693019][T12692] lo speed is unknown, defaulting to 1000
[  197.699623][T12692] lo speed is unknown, defaulting to 1000
[  197.848785][T12704] loop5: detected capacity change from 0 to 512
[  197.895971][T12706] openvswitch: netlink: Message has 6 unknown bytes.
[  197.919810][T12704] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.950194][T12704] ext4 filesystem being mounted at /316/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  197.998109][T12704] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.3558: corrupted inode contents
[  198.011716][T12704] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm syz.5.3558: mark_inode_dirty error
[  198.030118][T12704] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.3558: corrupted inode contents
[  198.046580][T12704] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm +}[@: corrupted inode contents
[  198.059921][T12704] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm +}[@: mark_inode_dirty error
[  198.071313][T12704] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm +}[@: corrupted inode contents
[  198.086536][T12704] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm +}[@: mark_inode_dirty error
[  198.101710][T12704] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm +}[@: corrupted inode contents
[  198.114436][T12704] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm +}[@: mark_inode_dirty error
[  198.160793][ T8808] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.233670][T12727] __nla_validate_parse: 3 callbacks suppressed
[  198.233689][T12727] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3567'.
[  198.264040][T12727] loop4: detected capacity change from 0 to 512
[  198.272665][T12727] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  198.284353][T12727] EXT4-fs (loop4): 1 truncate cleaned up
[  198.292091][T12727] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.331625][T12727] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.454804][T12681] syz.2.3547 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  198.469063][T12681] CPU: 1 UID: 0 PID: 12681 Comm: syz.2.3547 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
[  198.469098][T12681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.469131][T12681] Call Trace:
[  198.469138][T12681]  <TASK>
[  198.469146][T12681]  __dump_stack+0x1d/0x30
[  198.469172][T12681]  dump_stack_lvl+0xe8/0x140
[  198.469274][T12681]  dump_stack+0x15/0x1b
[  198.469290][T12681]  dump_header+0x81/0x220
[  198.469384][T12681]  oom_kill_process+0x334/0x3f0
[  198.469434][T12681]  out_of_memory+0x979/0xb80
[  198.469474][T12681]  try_charge_memcg+0x5e6/0x9e0
[  198.469511][T12681]  obj_cgroup_charge_pages+0xa6/0x150
[  198.469553][T12681]  __memcg_kmem_charge_page+0x9f/0x170
[  198.469588][T12681]  __alloc_frozen_pages_noprof+0x188/0x360
[  198.469687][T12681]  alloc_pages_mpol+0xb3/0x250
[  198.469730][T12681]  alloc_pages_noprof+0x90/0x130
[  198.469848][T12681]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  198.469903][T12681]  __kvmalloc_node_noprof+0x30f/0x4e0
[  198.469942][T12681]  ? ip_set_alloc+0x1f/0x30
[  198.470065][T12681]  ? ip_set_alloc+0x1f/0x30
[  198.470106][T12681]  ip_set_alloc+0x1f/0x30
[  198.470149][T12681]  hash_netiface_create+0x282/0x740
[  198.470203][T12681]  ? __pfx_hash_netiface_create+0x10/0x10
[  198.470240][T12681]  ip_set_create+0x3c9/0x960
[  198.470286][T12681]  ? __nla_parse+0x40/0x60
[  198.470351][T12681]  nfnetlink_rcv_msg+0x4c3/0x590
[  198.470382][T12681]  ? perf_swevent_event+0x1e8/0x450
[  198.470433][T12681]  ? selinux_capable+0x1f9/0x270
[  198.470543][T12681]  netlink_rcv_skb+0x120/0x220
[  198.470598][T12681]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  198.470810][T12681]  nfnetlink_rcv+0x16b/0x1690
[  198.470839][T12681]  ? __kfree_skb+0x109/0x150
[  198.470879][T12681]  ? nlmon_xmit+0x4f/0x60
[  198.470900][T12681]  ? consume_skb+0x49/0x150
[  198.471015][T12681]  ? nlmon_xmit+0x4f/0x60
[  198.471042][T12681]  ? dev_hard_start_xmit+0x3b0/0x3e0
[  198.471121][T12681]  ? __dev_queue_xmit+0x11c0/0x1fb0
[  198.471157][T12681]  ? __dev_queue_xmit+0x182/0x1fb0
[  198.471232][T12681]  ? ref_tracker_free+0x37d/0x3e0
[  198.471269][T12681]  ? __netlink_deliver_tap+0x4dc/0x500
[  198.471311][T12681]  netlink_unicast+0x59e/0x670
[  198.471378][T12681]  netlink_sendmsg+0x58b/0x6b0
[  198.471443][T12681]  ? __pfx_netlink_sendmsg+0x10/0x10
[  198.471468][T12681]  __sock_sendmsg+0x145/0x180
[  198.471494][T12681]  ____sys_sendmsg+0x31e/0x4e0
[  198.471543][T12681]  ___sys_sendmsg+0x17b/0x1d0
[  198.471616][T12681]  __x64_sys_sendmsg+0xd4/0x160
[  198.471667][T12681]  x64_sys_call+0x2999/0x2fb0
[  198.471739][T12681]  do_syscall_64+0xd2/0x200
[  198.471821][T12681]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  198.471849][T12681]  ? clear_bhb_loop+0x40/0x90
[  198.471878][T12681]  ? clear_bhb_loop+0x40/0x90
[  198.471964][T12681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.471998][T12681] RIP: 0033:0x7ff7fe44e929
[  198.472019][T12681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.472043][T12681] RSP: 002b:00007ff7fcab7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  198.472067][T12681] RAX: ffffffffffffffda RBX: 00007ff7fe675fa0 RCX: 00007ff7fe44e929
[  198.472083][T12681] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000004
[  198.472105][T12681] RBP: 00007ff7fe4d0b39 R08: 0000000000000000 R09: 0000000000000000
[  198.472120][T12681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  198.472132][T12681] R13: 0000000000000000 R14: 00007ff7fe675fa0 R15: 00007ffc5d424628
[  198.472152][T12681]  </TASK>
[  198.472166][T12681] memory: usage 307200kB, limit 307200kB, failcnt 445
[  198.554626][T12742] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3573'.
[  198.557983][T12681] memory+swap: usage 307612kB, limit 9007199254740988kB, failcnt 0
[  198.563936][T12742] netlink: 'syz.3.3573': attribute type 1 has an invalid length.
[  198.569228][T12681] kmem: usage 307172kB, limit 9007199254740988kB, failcnt 0
[  198.573729][T12742] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3573'.
[  198.578240][T12681] Memory cgroup stats for /syz2:
[  198.865400][T12681] cache 4096
[  198.873557][T12681] rss 0
[  198.876435][T12681] shmem 0
[  198.879459][T12681] mapped_file 0
[  198.882920][T12681] dirty 0
[  198.885894][T12681] writeback 0
[  198.889189][T12681] workingset_refault_anon 96
[  198.893804][T12681] workingset_refault_file 159
[  198.898539][T12681] swap 421888
[  198.901845][T12681] swapcached 16384
[  198.905656][T12681] pgpgin 138146
[  198.909154][T12681] pgpgout 138139
[  198.912712][T12681] pgfault 197787
[  198.916376][T12681] pgmajfault 59
[  198.919836][T12681] inactive_anon 8192
[  198.923876][T12681] active_anon 8192
[  198.927859][T12681] inactive_file 0
[  198.931503][T12681] active_file 12288
[  198.935344][T12681] unevictable 0
[  198.938827][T12681] hierarchical_memory_limit 314572800
[  198.944205][T12681] hierarchical_memsw_limit 9223372036854771712
[  198.950385][T12681] total_cache 4096
[  198.954194][T12681] total_rss 0
[  198.957491][T12681] total_shmem 0
[  198.960948][T12681] total_mapped_file 0
[  198.964929][T12681] total_dirty 0
[  198.968501][T12681] total_writeback 0
[  198.972326][T12681] total_workingset_refault_anon 96
[  198.977455][T12681] total_workingset_refault_file 159
[  198.982650][T12681] total_swap 421888
[  198.986491][T12681] total_swapcached 16384
[  198.990738][T12681] total_pgpgin 138146
[  198.994773][T12681] total_pgpgout 138139
[  198.998855][T12681] total_pgfault 197787
[  199.002928][T12681] total_pgmajfault 59
[  199.007014][T12681] total_inactive_anon 8192
[  199.011764][T12681] total_active_anon 8192
[  199.016042][T12681] total_inactive_file 0
[  199.020233][T12681] total_active_file 12288
[  199.024562][T12681] total_unevictable 0
[  199.028564][T12681] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3547,pid=12678,uid=0
[  199.043580][T12681] Memory cgroup out of memory: Killed process 12678 (syz.2.3547) total-vm:93756kB, anon-rss:1064kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  199.201163][T12756] lo speed is unknown, defaulting to 1000
[  199.210904][T12756] lo speed is unknown, defaulting to 1000
[  199.217521][T12760] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3580'.
[  199.275980][T12760] loop5: detected capacity change from 0 to 512
[  199.283183][T12760] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  199.296929][T12760] EXT4-fs (loop5): 1 truncate cleaned up
[  199.313532][T12760] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.355891][T12760] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.457798][T12681] syz.2.3547 (12681) used greatest stack depth: 6840 bytes left
[  199.666078][T12814] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3605'.
[  199.702707][T12823] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition
[  199.713071][T12823] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0)
[  199.730663][T12814] loop2: detected capacity change from 0 to 512
[  199.740203][T12814] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  199.760692][T12825] raw_sendmsg: syz.3.3611 forgot to set AF_INET. Fix it!
[  199.791671][T12814] EXT4-fs (loop2): 1 truncate cleaned up
[  199.806459][T12814] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.853306][T12840] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12840 comm=syz.3.3618
[  199.880198][T12814] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.917317][T12850] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3623'.
[  199.981733][T12862] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3628'.
[  200.021945][T12866] loop7: detected capacity change from 0 to 164
[  200.034281][T12866] Unable to read rock-ridge attributes
[  200.076941][T12876] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3636'.
[  200.099917][T12876] loop2: detected capacity change from 0 to 512
[  200.109324][T12876] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  200.129531][T12876] EXT4-fs (loop2): 1 truncate cleaned up
[  200.136744][T12876] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.150172][T12876] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.261770][T12897] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  200.291630][T12899] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3645'.
[  200.292647][T12900] lo speed is unknown, defaulting to 1000
[  200.305597][T12899] netlink: 'syz.7.3645': attribute type 1 has an invalid length.
[  200.314229][T12899] netlink: 32 bytes leftover after parsing attributes in process `syz.7.3645'.
[  200.323854][T12900] lo speed is unknown, defaulting to 1000
[  200.390949][T12908] loop7: detected capacity change from 0 to 512
[  200.408918][T12908] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.422070][T12908] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  200.511489][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.573485][T12919] xt_hashlimit: max too large, truncated to 1048576
[  200.634943][T12923] loop7: detected capacity change from 0 to 512
[  200.642065][T12923] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  200.654267][T12923] EXT4-fs (loop7): 1 truncate cleaned up
[  200.660620][T12923] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.785117][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.810549][T12932] loop7: detected capacity change from 0 to 1024
[  200.828069][T12932] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.858773][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.900123][T12943] 9pnet: Could not find request transport: 0xffffffffffffffff
[  200.994800][T12956] lo speed is unknown, defaulting to 1000
[  201.002093][T12956] lo speed is unknown, defaulting to 1000
[  201.082849][T12962] lo speed is unknown, defaulting to 1000
[  201.089514][T12962] lo speed is unknown, defaulting to 1000
[  201.235504][T12976] xt_hashlimit: max too large, truncated to 1048576
[  201.265032][T12982] loop7: detected capacity change from 0 to 512
[  201.272395][T12982] EXT4-fs: Ignoring removed nomblk_io_submit option
[  201.279905][T12982] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  201.294850][T12982] EXT4-fs (loop7): 1 truncate cleaned up
[  201.302352][T12982] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.356631][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.545391][T13009] loop7: detected capacity change from 0 to 512
[  201.552721][T13009] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  201.565330][T13009] EXT4-fs (loop7): 1 truncate cleaned up
[  201.571583][T13009] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.585937][T13009] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.631381][T13012] loop7: detected capacity change from 0 to 512
[  201.639196][T13012] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  201.651093][T13012] EXT4-fs (loop7): 1 truncate cleaned up
[  201.657901][T13012] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.671551][T13012] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.927289][   T29] kauditd_printk_skb: 2129 callbacks suppressed
[  201.927384][   T29] audit: type=1400 audit(1751252015.178:35797): avc:  denied  { recv } for  pid=13040 comm="syz.5.3700" saddr=10.128.0.163 src=30036 daddr=10.128.1.100 dest=55558 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1
[  202.296399][   T29] audit: type=1400 audit(1751252015.218:35798): avc:  denied  { append } for  pid=13040 comm="syz.5.3700" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  202.319792][   T29] audit: type=1400 audit(1751252015.238:35799): avc:  denied  { create } for  pid=13027 comm="syz.7.3695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  202.339717][   T29] audit: type=1400 audit(1751252015.238:35800): avc:  denied  { write } for  pid=13027 comm="syz.7.3695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  202.359520][   T29] audit: type=1400 audit(1751252015.258:35801): avc:  denied  { setopt } for  pid=13027 comm="syz.7.3695" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  202.380274][   T29] audit: type=1400 audit(1751252015.278:35802): avc:  denied  { create } for  pid=13044 comm="syz.3.3701" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  202.400064][   T29] audit: type=1400 audit(1751252015.278:35803): avc:  denied  { execmem } for  pid=13044 comm="syz.3.3701" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  202.419527][   T29] audit: type=1326 audit(1751252015.288:35804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13036 comm="syz.3.3697" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f73d527e929 code=0x7ffc0000
[  202.443102][   T29] audit: type=1400 audit(1751252015.378:35805): avc:  denied  { create } for  pid=13049 comm="syz.5.3703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  202.462788][   T29] audit: type=1400 audit(1751252015.378:35806): avc:  denied  { write } for  pid=13049 comm="syz.5.3703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  202.526554][T13067] loop4: detected capacity change from 0 to 128
[  202.535821][T13067] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  202.550715][T13067] ext4 filesystem being mounted at /753/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.646496][ T3310] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  202.810683][T13080] xt_hashlimit: max too large, truncated to 1048576
[  202.977875][T13098] loop4: detected capacity change from 0 to 2048
[  202.984603][T13098] EXT4-fs: Ignoring removed nobh option
[  202.994609][T13097] lo speed is unknown, defaulting to 1000
[  203.002681][T13097] lo speed is unknown, defaulting to 1000
[  203.024074][T13098] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.227831][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.446772][T13125] lo speed is unknown, defaulting to 1000
[  203.461749][T13125] lo speed is unknown, defaulting to 1000
[  203.493108][T13129] __nla_validate_parse: 7 callbacks suppressed
[  203.493158][T13129] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3736'.
[  203.604113][T13136] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=13136 comm=syz.7.3738
[  203.616746][T13136] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=13136 comm=syz.7.3738
[  203.765311][T13152] loop4: detected capacity change from 0 to 1024
[  203.782383][T13152] EXT4-fs: Ignoring removed orlov option
[  203.788222][T13152] EXT4-fs: Ignoring removed nomblk_io_submit option
[  203.799583][T13155] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3748'.
[  203.810381][T13156] loop7: detected capacity change from 0 to 2048
[  203.818922][T13152] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.819197][T13155] loop2: detected capacity change from 0 to 512
[  203.839467][T13155] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  203.851628][T13155] EXT4-fs (loop2): 1 truncate cleaned up
[  203.857792][T13155] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.870976][T13155] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.875833][T13156]  loop7: p1 < > p4
[  203.887002][T13156] loop7: p4 size 8388608 extends beyond EOD, truncated
[  203.897362][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.117213][T13194] lo speed is unknown, defaulting to 1000
[  204.119918][T13198] loop7: detected capacity change from 0 to 1024
[  204.125292][T13194] lo speed is unknown, defaulting to 1000
[  204.148820][T13198] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  204.188609][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.267487][T13205] netlink: 228 bytes leftover after parsing attributes in process `syz.7.3764'.
[  204.316795][T13209] loop7: detected capacity change from 0 to 1024
[  204.323878][T13209] EXT4-fs: Ignoring removed nobh option
[  204.329635][T13209] EXT4-fs: Ignoring removed bh option
[  204.358582][T13209] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.390372][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.417802][T13214] loop7: detected capacity change from 0 to 1024
[  204.448721][T13214] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.477624][T13214] EXT4-fs error (device loop7): ext4_map_blocks:816: inode #15: block 3: comm syz.7.3768: lblock 3 mapped to illegal pblock 3 (length 1)
[  204.500398][T13214] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  204.512813][T13214] EXT4-fs (loop7): This should not happen!! Data will be lost
[  204.512813][T13214] 
[  204.536964][T13222] loop5: detected capacity change from 0 to 512
[  204.630138][T13231] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3775'.
[  204.649962][T13233] SELinux: failure in selinux_parse_skb(), unable to parse packet
[  204.687978][T13236] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3775'.
[  204.713131][T13238] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3778'.
[  204.748928][T13240] bridge1: entered allmulticast mode
[  204.926336][T13252] xt_hashlimit: max too large, truncated to 1048576
[  204.974744][T13264] netlink: 196 bytes leftover after parsing attributes in process `syz.5.3789'.
[  205.022725][T13266] sd 0:0:1:0: device reset
[  205.071327][T13282] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3799'.
[  205.764301][T13331] loop5: detected capacity change from 0 to 2048
[  205.791008][T13339] loop7: detected capacity change from 0 to 512
[  205.798346][T13331]  loop5: p1 < > p4
[  205.802680][T13331] loop5: p4 size 8388608 extends beyond EOD, truncated
[  205.819104][T13339] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  205.838492][T13339] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #2: comm syz.7.3821: corrupted inode contents
[  205.851050][T13339] EXT4-fs error (device loop7): ext4_dirty_inode:6459: inode #2: comm syz.7.3821: mark_inode_dirty error
[  205.864982][T13339] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #2: comm syz.7.3821: corrupted inode contents
[  205.899008][T13351] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3824'.
[  205.967403][T13358] xt_hashlimit: max too large, truncated to 1048576
[  205.985479][T13362] loop4: detected capacity change from 0 to 1024
[  205.992466][T13362] EXT4-fs: Ignoring removed nobh option
[  205.998233][T13362] EXT4-fs: Ignoring removed bh option
[  206.164036][T13388] loop9: detected capacity change from 0 to 7
[  206.182258][T13388] buffer_io_error: 2 callbacks suppressed
[  206.182275][T13388] Buffer I/O error on dev loop9, logical block 0, async page read
[  206.182559][T13391] SELinux:  policydb version 191 does not match my version range 15-34
[  206.189408][T13388] Buffer I/O error on dev loop9, logical block 0, async page read
[  206.199718][T13391] SELinux: failed to load policy
[  206.204402][T13388]  loop9: unable to read partition table
[  206.223486][T13388] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ �â·û
[  206.223486][T13388] 
) failed (rc=-5)
[  206.270749][T13396] xt_hashlimit: max too large, truncated to 1048576
[  206.440764][T13422] loop5: detected capacity change from 0 to 1024
[  206.477553][T13422] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  206.500515][T13422] EXT4-fs (loop5): shut down requested (2)
[  206.509216][T13429] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3859'.
[  206.568664][T13429] loop2: detected capacity change from 0 to 512
[  206.576233][T13429] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  206.609030][T13429] EXT4-fs (loop2): 1 truncate cleaned up
[  206.668075][T13448] random: crng reseeded on system resumption
[  206.777816][T13464] loop4: detected capacity change from 0 to 128
[  206.901407][T13475] lo speed is unknown, defaulting to 1000
[  206.929483][T13475] lo speed is unknown, defaulting to 1000
[  206.975240][   T29] kauditd_printk_skb: 1216 callbacks suppressed
[  206.975260][   T29] audit: type=1400 audit(1751252020.178:37023): avc:  granted  { setsecparam } for  pid=13467 comm="syz.5.3877" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  207.000950][   T29] audit: type=1326 audit(1751252020.178:37024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.024839][   T29] audit: type=1326 audit(1751252020.178:37025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.048466][   T29] audit: type=1326 audit(1751252020.178:37026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.072216][   T29] audit: type=1326 audit(1751252020.178:37027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.096899][   T29] audit: type=1326 audit(1751252020.178:37028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.121554][   T29] audit: type=1326 audit(1751252020.178:37029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.145230][   T29] audit: type=1326 audit(1751252020.178:37030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.168884][   T29] audit: type=1326 audit(1751252020.178:37031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.192553][   T29] audit: type=1326 audit(1751252020.178:37032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13467 comm="syz.5.3877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  207.360424][T13497] loop2: detected capacity change from 0 to 512
[  207.376906][T13497] ext4 filesystem being mounted at /839/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  207.977722][T13526] sd 0:0:1:0: device reset
[  208.157492][T13547] lo speed is unknown, defaulting to 1000
[  208.164209][T13547] lo speed is unknown, defaulting to 1000
[  208.320494][T13555] loop2: detected capacity change from 0 to 512
[  208.337854][T13555] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  208.361762][T13555] EXT4-fs (loop2): 1 truncate cleaned up
[  208.431416][T13567] loop7: detected capacity change from 0 to 512
[  208.498619][T13567] ext4 filesystem being mounted at /129/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  208.753148][T13578] loop7: detected capacity change from 0 to 512
[  208.798185][T13578] ext4 filesystem being mounted at /130/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  209.015430][T13588] lo speed is unknown, defaulting to 1000
[  209.036943][T13588] lo speed is unknown, defaulting to 1000
[  209.183880][T13605] lo speed is unknown, defaulting to 1000
[  209.210758][T13605] lo speed is unknown, defaulting to 1000
[  209.349490][T13621] __nla_validate_parse: 2 callbacks suppressed
[  209.349528][T13621] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3937'.
[  210.031129][T13641] lo speed is unknown, defaulting to 1000
[  210.044557][T13641] lo speed is unknown, defaulting to 1000
[  210.117719][T13649] xt_hashlimit: max too large, truncated to 1048576
[  210.232786][T13657] vcan0: tx drop: invalid sa for name 0x0000000000000002
[  210.389346][T13679] loop7: detected capacity change from 0 to 512
[  210.418190][T13679] EXT4-fs: Ignoring removed nobh option
[  210.434494][T13688] vcan0: tx drop: invalid sa for name 0x0000000000000002
[  210.444509][T13679] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #3: comm syz.7.3960: corrupted inode contents
[  210.456719][T13679] EXT4-fs error (device loop7): ext4_dirty_inode:6459: inode #3: comm syz.7.3960: mark_inode_dirty error
[  210.474658][T13679] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #3: comm syz.7.3960: corrupted inode contents
[  210.490886][T13679] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #3: comm syz.7.3960: mark_inode_dirty error
[  210.490910][T13694] SELinux:  Context system_u:object_r:syslogd_var_lib_t:s0 is not valid (left unmapped).
[  210.516096][T13679] EXT4-fs error (device loop7): ext4_acquire_dquot:6933: comm syz.7.3960: Failed to acquire dquot type 0
[  210.518172][T13692] lo speed is unknown, defaulting to 1000
[  210.536245][T13692] lo speed is unknown, defaulting to 1000
[  210.562315][T13679] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #16: comm syz.7.3960: corrupted inode contents
[  210.582893][T13679] EXT4-fs error (device loop7): ext4_dirty_inode:6459: inode #16: comm syz.7.3960: mark_inode_dirty error
[  210.598173][T13701] SELinux:  Context @ is not valid (left unmapped).
[  210.638393][T13679] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #16: comm syz.7.3960: corrupted inode contents
[  210.676347][T13679] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #16: comm syz.7.3960: mark_inode_dirty error
[  210.699377][T13710] lo speed is unknown, defaulting to 1000
[  210.705221][T13679] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #16: comm syz.7.3960: corrupted inode contents
[  210.731509][T13710] lo speed is unknown, defaulting to 1000
[  210.750256][T13679] EXT4-fs error (device loop7) in ext4_orphan_del:305: Corrupt filesystem
[  210.761552][T13716] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3975'.
[  210.779871][T13679] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #16: comm syz.7.3960: corrupted inode contents
[  210.803398][T13679] EXT4-fs error (device loop7): ext4_truncate:4597: inode #16: comm syz.7.3960: mark_inode_dirty error
[  210.816164][T13679] EXT4-fs error (device loop7) in ext4_process_orphan:347: Corrupt filesystem
[  210.841751][T13679] EXT4-fs (loop7): 1 truncate cleaned up
[  210.848387][T13679] ext4 filesystem being mounted at /141/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.383120][T13755] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3992'.
[  211.547138][T13763] xt_hashlimit: max too large, truncated to 1048576
[  211.930492][T13782] netlink: 'syz.5.4003': attribute type 10 has an invalid length.
[  211.938520][T13782] netlink: 40 bytes leftover after parsing attributes in process `syz.5.4003'.
[  211.989795][T13782] dummy0: entered promiscuous mode
[  211.996956][T13782] bridge0: port 3(dummy0) entered blocking state
[  212.003464][T13782] bridge0: port 3(dummy0) entered disabled state
[  212.195796][T13782] dummy0: entered allmulticast mode
[  212.202829][T13782] bridge0: port 3(dummy0) entered blocking state
[  212.209255][T13782] bridge0: port 3(dummy0) entered forwarding state
[  212.386249][T13798] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4008'.
[  212.507786][   T29] kauditd_printk_skb: 1002 callbacks suppressed
[  212.507815][   T29] audit: type=1326 audit(1751252025.749:38033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13801 comm="syz.4.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  212.538589][   T29] audit: type=1326 audit(1751252025.749:38034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13801 comm="syz.4.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  212.562174][   T29] audit: type=1400 audit(1751252025.749:38035): avc:  denied  { create } for  pid=13801 comm="syz.4.4011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  212.581998][   T29] audit: type=1326 audit(1751252025.749:38036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13801 comm="syz.4.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  212.605674][   T29] audit: type=1326 audit(1751252025.749:38037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13801 comm="syz.4.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  212.629229][   T29] audit: type=1400 audit(1751252025.749:38038): avc:  denied  { bind } for  pid=13801 comm="syz.4.4011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  212.648899][   T29] audit: type=1326 audit(1751252025.749:38039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13801 comm="syz.4.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  212.672625][   T29] audit: type=1326 audit(1751252025.749:38040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13801 comm="syz.4.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  212.696287][   T29] audit: type=1400 audit(1751252025.749:38041): avc:  denied  { connect } for  pid=13801 comm="syz.4.4011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  212.716164][   T29] audit: type=1326 audit(1751252025.749:38042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13801 comm="syz.4.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  212.826223][T13808] lo speed is unknown, defaulting to 1000
[  212.843643][T13808] lo speed is unknown, defaulting to 1000
[  212.958046][T13819] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  212.973735][T13818] serio: Serial port ptm0
[  213.088083][T13831] netlink: 'syz.3.4021': attribute type 10 has an invalid length.
[  213.096043][T13831] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4021'.
[  213.263923][T13848] loop7: detected capacity change from 0 to 512
[  213.286490][T13848] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  213.338027][T13848] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  213.480656][T13869] loop5: detected capacity change from 0 to 1024
[  213.487614][T13869] EXT4-fs: Ignoring removed nobh option
[  213.493222][T13869] EXT4-fs: Ignoring removed bh option
[  213.645421][T13887] netlink: 2564 bytes leftover after parsing attributes in process `syz.5.4044'.
[  213.811621][T13897] lo speed is unknown, defaulting to 1000
[  213.818227][T13897] lo speed is unknown, defaulting to 1000
[  214.393369][T13909] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4052'.
[  214.449005][T13909] bond0: entered promiscuous mode
[  214.454125][T13909] bond_slave_0: entered promiscuous mode
[  214.459959][T13909] bond_slave_1: entered promiscuous mode
[  214.478520][T13909] team_slave_1: entered promiscuous mode
[  214.486631][T13909] team_slave_1: left promiscuous mode
[  214.487539][T13915] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4054'.
[  214.501211][T13909] bond0: left promiscuous mode
[  214.506264][T13909] bond_slave_0: left promiscuous mode
[  214.511808][T13909] bond_slave_1: left promiscuous mode
[  214.527120][T13912] xt_hashlimit: max too large, truncated to 1048576
[  214.671663][T13928] lo speed is unknown, defaulting to 1000
[  214.678408][T13928] lo speed is unknown, defaulting to 1000
[  214.982975][T13950] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4066'.
[  215.313694][T13959] xt_hashlimit: max too large, truncated to 1048576
[  215.366367][T13964] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  215.509008][T13977] lo speed is unknown, defaulting to 1000
[  215.521345][T13979] lo speed is unknown, defaulting to 1000
[  215.527890][T13977] lo speed is unknown, defaulting to 1000
[  215.536800][T13979] lo speed is unknown, defaulting to 1000
[  215.860101][T13999] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  215.893009][T14003] xt_hashlimit: max too large, truncated to 1048576
[  216.035818][T14010] tipc: Started in network mode
[  216.040799][T14010] tipc: Node identity 0acaecb5caee, cluster identity 4711
[  216.048138][T14010] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  216.059275][T14010] tipc: Disabling bearer <eth:syzkaller0>
[  216.137039][T14013] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4092'.
[  216.637670][T14025] loop2: detected capacity change from 0 to 2048
[  216.678892][T14028] lo speed is unknown, defaulting to 1000
[  216.687431][T14028] lo speed is unknown, defaulting to 1000
[  216.811710][T14041] lo speed is unknown, defaulting to 1000
[  216.821384][T14041] lo speed is unknown, defaulting to 1000
[  217.006552][T14063] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.102063][T14071] lo speed is unknown, defaulting to 1000
[  217.121086][T14071] lo speed is unknown, defaulting to 1000
[  217.139520][T14063] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.303091][T14063] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.446849][T14081] lo speed is unknown, defaulting to 1000
[  217.479616][T14081] lo speed is unknown, defaulting to 1000
[  217.497367][T14063] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.530197][   T29] kauditd_printk_skb: 525 callbacks suppressed
[  217.530267][   T29] audit: type=1400 audit(1751252030.759:38568): avc:  granted  { setsecparam } for  pid=14080 comm="syz.3.4120" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security
[  217.555953][   T29] audit: type=1326 audit(1751252030.769:38569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73d527e929 code=0x7ffc0000
[  217.579699][   T29] audit: type=1326 audit(1751252030.769:38570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f73d527e929 code=0x7ffc0000
[  217.603743][   T29] audit: type=1326 audit(1751252030.769:38571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73d527e929 code=0x7ffc0000
[  217.627365][   T29] audit: type=1326 audit(1751252030.769:38572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f73d527e929 code=0x7ffc0000
[  217.726598][   T29] audit: type=1326 audit(1751252030.899:38573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f73d52758e7 code=0x7ffc0000
[  217.750232][   T29] audit: type=1326 audit(1751252030.899:38574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f73d521ab19 code=0x7ffc0000
[  217.773779][   T29] audit: type=1326 audit(1751252030.899:38575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73d527e929 code=0x7ffc0000
[  217.797503][   T29] audit: type=1326 audit(1751252030.899:38576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73d527e929 code=0x7ffc0000
[  217.821195][   T29] audit: type=1326 audit(1751252030.929:38577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14080 comm="syz.3.4120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f73d52758e7 code=0x7ffc0000
[  217.857857][T14063] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  217.869806][T14063] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  217.891150][T14063] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  217.908542][T14063] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  217.982780][T14095] lo speed is unknown, defaulting to 1000
[  218.048609][T14095] lo speed is unknown, defaulting to 1000
[  218.217904][T14113] xt_hashlimit: max too large, truncated to 1048576
[  218.249543][T14106] lo speed is unknown, defaulting to 1000
[  218.265176][T14106] lo speed is unknown, defaulting to 1000
[  218.480061][T14133] syzkaller0: tun_chr_ioctl cmd 35108
[  218.574669][T14140] tipc: Started in network mode
[  218.579624][T14140] tipc: Node identity aea0ef600b06, cluster identity 4711
[  218.587064][T14140] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  218.608521][T14140] tipc: Disabling bearer <eth:syzkaller0>
[  218.630758][T14142] loop4: detected capacity change from 0 to 512
[  218.681605][T14142] ext4 filesystem being mounted at /831/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.716850][T14148] sctp: [Deprecated]: syz.2.4143 (pid 14148) Use of int in max_burst socket option deprecated.
[  218.716850][T14148] Use struct sctp_assoc_value instead
[  218.760831][T14142] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #18: comm syz.4.4141: corrupted inode contents
[  218.847083][T14142] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #18: comm syz.4.4141: mark_inode_dirty error
[  218.894600][T14142] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #18: comm syz.4.4141: corrupted inode contents
[  218.918257][T14142] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #18: comm syz.4.4141: mark_inode_dirty error
[  219.186335][T14142] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #18: comm syz.4.4141: mark inode dirty (error -117)
[  219.217007][T14142] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117)
[  219.588977][T14171] lo speed is unknown, defaulting to 1000
[  219.615231][T14171] lo speed is unknown, defaulting to 1000
[  219.867874][T14186] tipc: Cannot configure node identity twice
[  220.227363][T14213] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4167'.
[  220.393156][T14226] loop5: detected capacity change from 0 to 2048
[  220.400226][T14226] EXT4-fs: Ignoring removed mblk_io_submit option
[  221.387298][T14236] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.4173: bg 0: block 234: padding at end of block bitmap is not set
[  221.404511][T14236] EXT4-fs (loop5): Remounting filesystem read-only
[  221.525325][ T8808] EXT4-fs unmount: 31 callbacks suppressed
[  221.525346][ T8808] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.579510][T14250] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4177'.
[  221.617729][T14256] lo speed is unknown, defaulting to 1000
[  221.624293][T14256] lo speed is unknown, defaulting to 1000
[  221.910685][T14278] netlink: 65039 bytes leftover after parsing attributes in process `syz.2.4191'.
[  221.984328][T14284] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4194'.
[  221.993419][T14284] netlink: 'syz.2.4194': attribute type 7 has an invalid length.
[  222.001240][T14284] netlink: 'syz.2.4194': attribute type 8 has an invalid length.
[  222.009065][T14284] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4194'.
[  222.486572][T14296] netem: change failed
[  222.543281][   T29] kauditd_printk_skb: 828 callbacks suppressed
[  222.543297][   T29] audit: type=1326 audit(1751252035.779:39406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  222.573419][   T29] audit: type=1326 audit(1751252035.779:39407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  222.606705][T14299] lo speed is unknown, defaulting to 1000
[  222.613563][T14299] lo speed is unknown, defaulting to 1000
[  222.634709][   T29] audit: type=1326 audit(1751252035.849:39408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  222.658477][   T29] audit: type=1326 audit(1751252035.849:39409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  222.682146][   T29] audit: type=1326 audit(1751252035.849:39410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  222.705815][   T29] audit: type=1326 audit(1751252035.869:39411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  222.729516][   T29] audit: type=1326 audit(1751252035.869:39412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  222.753232][   T29] audit: type=1326 audit(1751252035.869:39413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7feefdb1d290 code=0x7ffc0000
[  222.776894][   T29] audit: type=1326 audit(1751252035.869:39414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7feefdb1d290 code=0x7ffc0000
[  222.800474][   T29] audit: type=1326 audit(1751252035.869:39415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14293 comm="syz.5.4198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  223.959830][T14341] smc: net device bond0 applied user defined pnetid SYZ2
[  224.662323][T14375] SELinux: syz.5.4228 (14375) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  224.937489][T14386] xt_hashlimit: max too large, truncated to 1048576
[  224.981458][T14389] lo speed is unknown, defaulting to 1000
[  225.002585][T14393] loop7: detected capacity change from 0 to 1024
[  225.019347][T14389] lo speed is unknown, defaulting to 1000
[  225.029231][T14393] EXT4-fs: Ignoring removed nobh option
[  225.035035][T14393] EXT4-fs: Ignoring removed bh option
[  225.074609][T14393] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.177803][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.271801][T14412] loop2: detected capacity change from 0 to 2048
[  225.296133][T14412] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  225.328162][T14414] lo speed is unknown, defaulting to 1000
[  225.340090][T14414] lo speed is unknown, defaulting to 1000
[  225.367934][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  226.143164][T14466] loop4: detected capacity change from 0 to 512
[  226.159820][T14466] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  226.181629][T14466] EXT4-fs (loop4): 1 truncate cleaned up
[  226.188027][T14466] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.263826][T14481] loop7: detected capacity change from 0 to 2048
[  226.283149][T14481] EXT4-fs (loop7): Invalid log block size: 524290
[  226.309738][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.500717][T14511] netlink: 'syz.7.4264': attribute type 4 has an invalid length.
[  226.508586][T14511] netlink: 3657 bytes leftover after parsing attributes in process `syz.7.4264'.
[  226.536874][T14516] xt_hashlimit: max too large, truncated to 1048576
[  226.806575][T14556] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4269'.
[  227.241896][T14556] 8021q: adding VLAN 0 to HW filter on device bond2
[  227.250559][T14556] bond1: (slave bond2): Enslaving as an active interface with an up link
[  227.262563][T14556] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4269'.
[  227.272918][T14556] 8021q: adding VLAN 0 to HW filter on device bond1
[  227.459653][T14591] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4280'.
[  227.544386][   T29] kauditd_printk_skb: 659 callbacks suppressed
[  227.544437][   T29] audit: type=1326 audit(1751252040.790:40075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.589288][   T29] audit: type=1326 audit(1751252040.790:40076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.613078][   T29] audit: type=1326 audit(1751252040.790:40077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.637344][   T29] audit: type=1326 audit(1751252040.790:40078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.661152][   T29] audit: type=1326 audit(1751252040.790:40079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.684963][   T29] audit: type=1326 audit(1751252040.790:40080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.708704][   T29] audit: type=1326 audit(1751252040.790:40081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.732659][   T29] audit: type=1326 audit(1751252040.790:40082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.756362][   T29] audit: type=1326 audit(1751252040.790:40083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.780037][   T29] audit: type=1326 audit(1751252040.790:40084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14594 comm="syz.2.4283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7fe44e929 code=0x7ffc0000
[  227.819362][T14602] lo speed is unknown, defaulting to 1000
[  227.826005][T14602] lo speed is unknown, defaulting to 1000
[  227.877274][T14607] netlink: 372 bytes leftover after parsing attributes in process `syz.2.4288'.
[  227.913294][T14608] netlink: 'syz.4.4285': attribute type 4 has an invalid length.
[  227.946539][ T3404] lo speed is unknown, defaulting to 1000
[  227.952348][ T3404] syz0: Port: 1 Link DOWN
[  227.982594][T14608] netlink: 'syz.4.4285': attribute type 4 has an invalid length.
[  228.034085][ T3404] lo speed is unknown, defaulting to 1000
[  228.039883][ T3404] syz0: Port: 1 Link ACTIVE
[  228.049800][T14619] lo speed is unknown, defaulting to 1000
[  228.056660][T14619] lo speed is unknown, defaulting to 1000
[  228.112161][T14624] bridge0: entered promiscuous mode
[  228.127704][T14624] macsec1: entered allmulticast mode
[  228.133079][T14624] bridge0: entered allmulticast mode
[  228.163503][T14624] bridge0: port 4(macsec1) entered blocking state
[  228.170131][T14624] bridge0: port 4(macsec1) entered disabled state
[  228.179417][T14624] bridge0: left allmulticast mode
[  228.184666][T14624] bridge0: left promiscuous mode
[  228.690294][T14642] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4299'.
[  228.750413][T14644] loop5: detected capacity change from 0 to 1024
[  228.757654][T14644] EXT4-fs: dax option not supported
[  228.775295][T14646] xt_hashlimit: max too large, truncated to 1048576
[  228.899182][T14652] lo speed is unknown, defaulting to 1000
[  228.905721][T14652] lo speed is unknown, defaulting to 1000
[  228.930792][T14655] xt_hashlimit: max too large, truncated to 1048576
[  228.978502][T14663] loop4: detected capacity change from 0 to 128
[  228.998637][T14663] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  229.016042][T14663] ext4 filesystem being mounted at /860/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  229.078969][ T3310] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  229.826400][T14705] loop5: detected capacity change from 0 to 1024
[  229.833421][T14705] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  229.844371][T14705] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  229.854619][T14705] JBD2: no valid journal superblock found
[  229.860410][T14705] EXT4-fs (loop5): Could not load journal inode
[  229.881782][T14708] lo speed is unknown, defaulting to 1000
[  229.890195][T14708] lo speed is unknown, defaulting to 1000
[  229.988342][T14721] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4331'.
[  230.081583][T14727] xt_hashlimit: max too large, truncated to 1048576
[  230.090618][T14727] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4334'.
[  230.099677][T14727] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4334'.
[  230.153996][T14736] loop2: detected capacity change from 0 to 1024
[  230.161420][T14736] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  230.172538][T14736] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  230.185458][T14736] JBD2: no valid journal superblock found
[  230.191243][T14736] EXT4-fs (loop2): Could not load journal inode
[  230.238496][T14738] lo speed is unknown, defaulting to 1000
[  230.246693][T14738] lo speed is unknown, defaulting to 1000
[  230.891369][T14781] loop7: detected capacity change from 0 to 1024
[  230.898992][T14781] EXT4-fs: Ignoring removed oldalloc option
[  230.905165][T14781] EXT4-fs: Ignoring removed bh option
[  230.917636][T14781] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.948645][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.034341][ T1036] usb usb8-port1: attempt power cycle
[  231.065628][T14796] loop7: detected capacity change from 0 to 1024
[  231.072561][T14796] EXT4-fs: Ignoring removed oldalloc option
[  231.085867][T14796] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.846131][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.865512][T14850] bond_slave_1: mtu less than device minimum
[  231.901902][T14854] loop2: detected capacity change from 0 to 512
[  231.911247][T14854] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  231.922950][T14854] EXT4-fs (loop2): 1 truncate cleaned up
[  231.929668][T14858] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4373'.
[  231.931310][T14854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  231.938798][T14858] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4373'.
[  232.048329][T14864] lo speed is unknown, defaulting to 1000
[  232.060936][T14864] lo speed is unknown, defaulting to 1000
[  232.069807][T14866] pim6reg1: entered promiscuous mode
[  232.075304][T14866] pim6reg1: entered allmulticast mode
[  232.102349][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.170615][T14874] netlink: 96 bytes leftover after parsing attributes in process `syz.3.4379'.
[  233.024077][ T1036] usb usb8-port1: unable to enumerate USB device
[  233.049593][T14904] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4390'.
[  233.111508][T14907] loop4: detected capacity change from 0 to 2048
[  233.189372][   T29] kauditd_printk_skb: 844 callbacks suppressed
[  233.189388][   T29] audit: type=1326 audit(1751252046.420:40929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14906 comm="syz.4.4391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  233.196949][T14909] loop5: detected capacity change from 0 to 2048
[  233.219325][   T29] audit: type=1326 audit(1751252046.420:40930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14906 comm="syz.4.4391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  233.249322][   T29] audit: type=1326 audit(1751252046.420:40931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14906 comm="syz.4.4391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  233.272990][   T29] audit: type=1326 audit(1751252046.420:40932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14906 comm="syz.4.4391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61720fe929 code=0x7ffc0000
[  233.316392][T14909] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  233.341997][   T29] audit: type=1400 audit(1751252046.580:40933): avc:  denied  { load_policy } for  pid=14911 comm="syz.4.4394" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  233.343020][T14912] SELinux:  policydb version 0 does not match my version range 15-34
[  233.379076][T14912] SELinux: failed to load policy
[  233.459515][T14909] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  233.476993][T14909] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 818 with error 28
[  233.489686][T14909] EXT4-fs (loop5): This should not happen!! Data will be lost
[  233.489686][T14909] 
[  233.499468][T14909] EXT4-fs (loop5): Total free blocks count 0
[  233.505606][T14909] EXT4-fs (loop5): Free/Dirty block details
[  233.511550][T14909] EXT4-fs (loop5): free_blocks=2415919104
[  233.517374][T14909] EXT4-fs (loop5): dirty_blocks=832
[  233.522666][T14909] EXT4-fs (loop5): Block reservation details
[  233.528772][T14909] EXT4-fs (loop5): i_reserved_data_blocks=52
[  233.537344][   T29] audit: type=1400 audit(1751252046.760:40934): avc:  denied  { create } for  pid=14919 comm="syz.4.4397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  233.557878][   T29] audit: type=1400 audit(1751252046.780:40935): avc:  denied  { write } for  pid=14921 comm="syz.3.4396" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  233.604524][   T29] audit: type=1400 audit(1751252046.830:40936): avc:  denied  { append } for  pid=14923 comm="syz.4.4398" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  233.628523][   T29] audit: type=1400 audit(1751252046.830:40937): avc:  denied  { open } for  pid=14923 comm="syz.4.4398" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  233.652831][   T29] audit: type=1400 audit(1751252046.830:40938): avc:  denied  { ioctl } for  pid=14923 comm="syz.4.4398" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  233.697776][ T3858] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28
[  233.879434][T14942] Cannot find add_set index 0 as target
[  233.892548][T14945] loop4: detected capacity change from 0 to 512
[  233.901370][T14945] EXT4-fs: Ignoring removed mblk_io_submit option
[  233.967634][T14945] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  234.041528][T14945] EXT4-fs (loop4): 1 truncate cleaned up
[  234.086014][T14952] lo speed is unknown, defaulting to 1000
[  234.099509][T14945] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.142580][T14952] lo speed is unknown, defaulting to 1000
[  234.278541][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.331762][T14959] netlink: 'syz.3.4413': attribute type 4 has an invalid length.
[  234.394470][T14967] 9pnet: p9_errstr2errno: server reported unknown error 
[  234.570296][T14973] lo speed is unknown, defaulting to 1000
[  234.577200][T14973] lo speed is unknown, defaulting to 1000
[  234.721776][T14980] netlink: 'syz.3.4420': attribute type 3 has an invalid length.
[  234.860529][T14987] xt_hashlimit: max too large, truncated to 1048576
[  234.872486][T14990] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.4424' sets config #0
[  234.881925][T14990] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.4424' sets config #1
[  234.923979][ T3404] usb usb2-port1: attempt power cycle
[  234.993009][T15006] loop7: detected capacity change from 0 to 1024
[  235.000002][T15006] EXT4-fs: Ignoring removed nobh option
[  235.005662][T15006] EXT4-fs: Ignoring removed bh option
[  235.015586][T15006] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.026584][T15008] lo speed is unknown, defaulting to 1000
[  235.035673][T15008] lo speed is unknown, defaulting to 1000
[  235.047231][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.138190][T15015] lo speed is unknown, defaulting to 1000
[  235.146166][T15015] lo speed is unknown, defaulting to 1000
[  235.316962][T15027] xt_hashlimit: max too large, truncated to 1048576
[  235.861466][T15039] sch_tbf: burst 3298 is lower than device lo mtu (11337746) !
[  235.949419][T15045] lo speed is unknown, defaulting to 1000
[  235.955776][T15051] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4448'.
[  235.957917][T15045] lo speed is unknown, defaulting to 1000
[  235.964787][T15051] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4448'.
[  235.964805][T15051] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4448'.
[  236.002649][T15051] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4448'.
[  236.011749][T15051] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4448'.
[  236.020815][T15051] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4448'.
[  236.031269][T15053] lo speed is unknown, defaulting to 1000
[  236.040509][T15053] lo speed is unknown, defaulting to 1000
[  236.141588][T15057] batadv2: entered promiscuous mode
[  236.234590][T15066] xt_hashlimit: max too large, truncated to 1048576
[  236.258920][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.266468][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.274119][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.283159][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.290821][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.298388][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.305886][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.313309][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.320785][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.328332][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.335811][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.343214][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.350647][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.358125][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.365563][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.373016][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.380476][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.387914][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.395368][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.402780][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.410377][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.417810][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.425264][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.432788][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.440253][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.447694][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.455389][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.462809][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.470301][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.478069][ T3530] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  236.490146][ T3530] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  236.753281][T15089] loop4: detected capacity change from 0 to 512
[  236.790689][T15089] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  236.907103][T15089] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.4463: bad orphan inode 131083
[  237.050108][T15089] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.101046][T15103] loop5: detected capacity change from 0 to 128
[  237.128959][T15105] loop7: detected capacity change from 0 to 1024
[  237.140182][T15105] EXT4-fs error (device loop7): ext4_acquire_dquot:6933: comm syz.7.4467: Failed to acquire dquot type 0
[  237.152656][T15105] EXT4-fs (loop7): 1 truncate cleaned up
[  237.159331][T15105] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.160574][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.195177][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.234697][T15108] lo speed is unknown, defaulting to 1000
[  237.241179][T15108] lo speed is unknown, defaulting to 1000
[  237.283692][T15116] loop7: detected capacity change from 0 to 128
[  237.306021][T15116] syz.7.4472: attempt to access beyond end of device
[  237.306021][T15116] loop7: rw=0, sector=2072, nr_sectors = 1 limit=128
[  237.333823][ T3404] usb usb2-port1: unable to enumerate USB device
[  237.340571][T14902] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  237.355346][T14902] vhci_hcd: default hub control req: 2314 v0008 i0002 l0
[  237.488027][T15129] loop5: detected capacity change from 0 to 256
[  237.496774][T15129] FAT-fs (loop5): bogus number of FAT sectors
[  237.502917][T15129] FAT-fs (loop5): Can't find a valid FAT filesystem
[  237.529808][T15125] lo speed is unknown, defaulting to 1000
[  237.537430][T15125] lo speed is unknown, defaulting to 1000
[  238.086286][T15143] pim6reg1: entered promiscuous mode
[  238.091675][T15143] pim6reg1: entered allmulticast mode
[  238.287314][   T29] kauditd_printk_skb: 1108 callbacks suppressed
[  238.287331][   T29] audit: type=1326 audit(1751252051.530:42045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  238.465840][   T29] audit: type=1326 audit(1751252051.560:42046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  238.489603][   T29] audit: type=1326 audit(1751252051.560:42047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  238.491606][T15164] lo speed is unknown, defaulting to 1000
[  238.513231][   T29] audit: type=1326 audit(1751252051.560:42048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  238.542835][   T29] audit: type=1326 audit(1751252051.560:42049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  238.564799][T15183] SELinux: failed to load policy
[  238.566495][   T29] audit: type=1326 audit(1751252051.560:42050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  238.594974][   T29] audit: type=1326 audit(1751252051.560:42051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  238.602829][T15164] lo speed is unknown, defaulting to 1000
[  238.618788][   T29] audit: type=1326 audit(1751252051.610:42052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  238.618831][   T29] audit: type=1326 audit(1751252051.620:42053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc504b40847 code=0x7ffc0000
[  238.618936][   T29] audit: type=1326 audit(1751252051.620:42054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15163 comm="syz.7.4486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fc504b407bc code=0x7ffc0000
[  239.080007][T15197] lo speed is unknown, defaulting to 1000
[  239.092788][T15197] lo speed is unknown, defaulting to 1000
[  239.211926][T15206] netlink: 'syz.4.4501': attribute type 7 has an invalid length.
[  239.219867][T15206] __nla_validate_parse: 3 callbacks suppressed
[  239.219882][T15206] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4501'.
[  239.525186][T15223] lo speed is unknown, defaulting to 1000
[  239.532212][T15223] lo speed is unknown, defaulting to 1000
[  239.808313][T15239] IPv4: Oversized IP packet from 127.202.26.0
[  239.839750][T15246] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4518'.
[  239.842478][T15246] macvtap0: entered promiscuous mode
[  239.843274][T15246] macvtap0: left promiscuous mode
[  239.881898][T15247] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4517'.
[  239.938846][T15243] loop4: detected capacity change from 0 to 512
[  239.968492][T15243] EXT4-fs: Ignoring removed i_version option
[  239.976940][T15243] EXT4-fs: Ignoring removed mblk_io_submit option
[  239.978471][T15251] lo speed is unknown, defaulting to 1000
[  239.995759][T15251] lo speed is unknown, defaulting to 1000
[  240.000946][T15243] journal_path: Lookup failure for './file2'
[  240.024105][T15243] EXT4-fs: error: could not find journal device path
[  240.131396][T15264] lo speed is unknown, defaulting to 1000
[  240.140450][T15264] lo speed is unknown, defaulting to 1000
[  240.500668][T15287] loop2: detected capacity change from 0 to 1764
[  240.543985][T15289] Falling back ldisc for ttyS3.
[  240.570793][T15291] lo speed is unknown, defaulting to 1000
[  240.578341][T15291] lo speed is unknown, defaulting to 1000
[  241.260335][T15324] loop5: detected capacity change from 0 to 512
[  241.410583][T15324] EXT4-fs: Ignoring removed i_version option
[  241.417091][T15324] EXT4-fs: Ignoring removed mblk_io_submit option
[  241.454535][T15324] journal_path: Lookup failure for './file2'
[  241.461392][T15324] EXT4-fs: error: could not find journal device path
[  241.544835][T15339] netlink: 'syz.5.4556': attribute type 1 has an invalid length.
[  241.584802][T15342] loop7: detected capacity change from 0 to 1024
[  241.595285][T15342] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.611040][T15342] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 15: block 433:freeing already freed block (bit 27); block bitmap corrupt.
[  241.654822][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.899593][T15367] lo speed is unknown, defaulting to 1000
[  241.907936][T15367] lo speed is unknown, defaulting to 1000
[  242.173035][T15376] netlink: 'syz.4.4567': attribute type 4 has an invalid length.
[  242.247834][T15378] netlink: 'syz.4.4567': attribute type 4 has an invalid length.
[  242.291239][ T3528] lo speed is unknown, defaulting to 1000
[  242.297201][ T3528] syz0: Port: 1 Link DOWN
[  242.356255][ T3528] lo speed is unknown, defaulting to 1000
[  242.362106][ T3528] syz0: Port: 1 Link ACTIVE
[  242.454919][T15381] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4569'.
[  242.891425][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  242.910298][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  242.927607][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  242.939864][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  242.946653][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  242.953301][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  242.962173][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  242.968793][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  242.977226][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  243.034792][T15415] Falling back ldisc for ttyS3.
[  243.337238][   T29] kauditd_printk_skb: 730 callbacks suppressed
[  243.337255][   T29] audit: type=1400 audit(1751252056.580:42785): avc:  denied  { map } for  pid=15426 comm="syz.2.4588" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  243.418288][   T29] audit: type=1326 audit(1751252056.660:42786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  243.442796][   T29] audit: type=1326 audit(1751252056.660:42787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  243.466647][   T29] audit: type=1326 audit(1751252056.660:42788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  243.490296][   T29] audit: type=1326 audit(1751252056.660:42789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  243.514007][   T29] audit: type=1326 audit(1751252056.660:42790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  243.537653][   T29] audit: type=1326 audit(1751252056.660:42791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  243.561358][   T29] audit: type=1326 audit(1751252056.660:42792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  243.579437][T15432] lo speed is unknown, defaulting to 1000
[  243.585007][   T29] audit: type=1326 audit(1751252056.660:42793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  243.597086][T15432] lo speed is unknown, defaulting to 1000
[  243.614285][   T29] audit: type=1326 audit(1751252056.660:42794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15428 comm="syz.7.4589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  244.214961][T15446] pim6reg1: entered promiscuous mode
[  244.220401][T15446] pim6reg1: entered allmulticast mode
[  244.396924][T15452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  244.407948][T15452] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  244.582270][T15477] lo speed is unknown, defaulting to 1000
[  244.590446][T15478] lo speed is unknown, defaulting to 1000
[  244.590583][T15477] lo speed is unknown, defaulting to 1000
[  244.602880][T15478] lo speed is unknown, defaulting to 1000
[  244.634205][T15481] loop5: detected capacity change from 0 to 2048
[  244.674410][T15481]  loop5: p1 < > p4
[  244.689315][T15481] loop5: p4 size 8388608 extends beyond EOD, truncated
[  244.807437][T15498] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  244.844012][T15503] usb usb9: usbfs: process 15503 (syz.5.4618) did not claim interface 0 before use
[  245.148737][T15519] lo speed is unknown, defaulting to 1000
[  245.155459][T15519] lo speed is unknown, defaulting to 1000
[  245.203299][ T2958] usb usb6-port1: attempt power cycle
[  245.866074][T15559] loop7: detected capacity change from 0 to 256
[  245.938362][T15562] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4642'.
[  245.954884][T15560] lo speed is unknown, defaulting to 1000
[  245.968398][T15560] lo speed is unknown, defaulting to 1000
[  246.288185][T15591] loop7: detected capacity change from 0 to 2048
[  246.313495][T15591]  loop7: p1 < > p4
[  246.317977][T15591] loop7: p4 size 8388608 extends beyond EOD, truncated
[  246.667929][T15601] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=15601 comm=syz.4.4654
[  246.729190][T15602] lo speed is unknown, defaulting to 1000
[  246.736790][T15602] lo speed is unknown, defaulting to 1000
[  247.043149][ T2958] usb usb6-port1: unable to enumerate USB device
[  247.069143][T15614] loop5: detected capacity change from 0 to 1764
[  247.077174][T15614] iso9660: Bad value for 'gid'
[  247.081996][T15614] iso9660: Bad value for 'gid'
[  247.140245][T15618] loop4: detected capacity change from 0 to 512
[  247.150606][T15618] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  247.164324][T15618] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  247.181141][T15618] EXT4-fs (loop4): 1 truncate cleaned up
[  247.187328][T15618] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  247.217251][T15622] syzkaller0: entered promiscuous mode
[  247.222783][T15622] syzkaller0: entered allmulticast mode
[  247.236948][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.349355][T15634] lo speed is unknown, defaulting to 1000
[  247.357194][T15634] lo speed is unknown, defaulting to 1000
[  247.378667][T15640] loop7: detected capacity change from 0 to 512
[  247.395317][T15640] EXT4-fs: Ignoring removed orlov option
[  247.424069][T15640] EXT4-fs: inline encryption not supported
[  247.448782][T15640] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  247.474795][T15640] EXT4-fs (loop7): 1 truncate cleaned up
[  247.480860][T15640] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.521744][T15655] netlink: 'syz.5.4675': attribute type 1 has an invalid length.
[  247.579348][T15631] EXT4-fs error (device loop7): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.7.4666: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  247.614234][T15631] EXT4-fs error (device loop7) in ext4_delete_entry:2739: Corrupt filesystem
[  247.631914][T15631] EXT4-fs warning (device loop7): ext4_rename_delete:3726: inode #2: comm syz.7.4666: Deleting old file: nlink 4, error=-117
[  247.649945][T15663] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4678'.
[  248.070538][T12252] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.697558][   T29] kauditd_printk_skb: 1067 callbacks suppressed
[  248.697573][   T29] audit: type=1400 audit(1751252061.941:43862): avc:  denied  { create } for  pid=15703 comm="syz.2.4695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  248.726333][   T29] audit: type=1400 audit(1751252061.941:43863): avc:  denied  { write } for  pid=15703 comm="syz.2.4695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1
[  248.862668][T15710] loop2: detected capacity change from 0 to 8192
[  248.903125][T15710]  loop2: p1 p2
[  248.906807][T15710] loop2: p1 start 50331648 is beyond EOD, truncated
[  248.917053][   T29] audit: type=1400 audit(1751252062.161:43864): avc:  denied  { append } for  pid=15709 comm="syz.2.4698" name="loop2p2" dev="devtmpfs" ino=1299 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  248.962068][   T29] audit: type=1400 audit(1751252062.161:43865): avc:  denied  { open } for  pid=15709 comm="syz.2.4698" path="/dev/loop2p2" dev="devtmpfs" ino=1299 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  248.987760][   T29] audit: type=1326 audit(1751252062.241:43866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15711 comm="syz.7.4700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  249.013520][   T29] audit: type=1326 audit(1751252062.261:43867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15711 comm="syz.7.4700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  249.037208][   T29] audit: type=1326 audit(1751252062.261:43868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15711 comm="syz.7.4700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  249.061010][   T29] audit: type=1326 audit(1751252062.261:43869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15711 comm="syz.7.4700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  249.084937][   T29] audit: type=1326 audit(1751252062.261:43870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15711 comm="syz.7.4700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  249.108700][   T29] audit: type=1326 audit(1751252062.261:43871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15711 comm="syz.7.4700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  249.144507][T15712] lo speed is unknown, defaulting to 1000
[  249.150988][T15712] lo speed is unknown, defaulting to 1000
[  249.151228][T15717] lo speed is unknown, defaulting to 1000
[  249.168605][T15717] lo speed is unknown, defaulting to 1000
[  249.251128][T15725] tls_set_device_offload_rx: netdev not found
[  249.437314][T15733] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4707'.
[  249.448244][T15733] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4707'.
[  249.522455][T15738] SELinux: failed to load policy
[  249.643108][ T3404] usb usb6-port1: attempt power cycle
[  249.676208][T15741] loop2: detected capacity change from 0 to 256
[  250.535959][T15755] loop2: detected capacity change from 0 to 1024
[  250.562912][T15755] EXT4-fs: Ignoring removed orlov option
[  250.577386][T15755] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.608463][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.676465][T15767] netlink: 'syz.4.4718': attribute type 3 has an invalid length.
[  250.685197][T15767] netlink: 'syz.4.4718': attribute type 3 has an invalid length.
[  250.703146][T15768] lo speed is unknown, defaulting to 1000
[  250.709932][T15768] lo speed is unknown, defaulting to 1000
[  250.968763][T15784] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4725'.
[  251.310095][T15802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4732'.
[  251.499652][T15829] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4737'.
[  251.516713][T15829] team0: Port device team_slave_1 removed
[  251.668211][T15856] serio: Serial port ptm0
[  251.762777][T15870] lo speed is unknown, defaulting to 1000
[  251.769373][T15870] lo speed is unknown, defaulting to 1000
[  251.924815][ T3404] usb usb6-port1: unable to enumerate USB device
[  251.947137][T15681] vhci_hcd: invalid port number 96
[  251.952320][T15681] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  252.041811][T15906] loop5: detected capacity change from 0 to 128
[  252.072871][T15906] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  252.107418][T15906] ext4 filesystem being mounted at /547/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  252.253657][ T8808] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  252.493371][T15936] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4748'.
[  252.502357][T15936] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4748'.
[  252.972210][T15975] loop4: detected capacity change from 0 to 128
[  253.022671][T15975] support for the xor transformation has been removed.
[  253.082747][ T3404] IPVS: starting estimator thread 0...
[  253.133054][T16002] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4759'.
[  253.192624][T15996] IPVS: using max 1920 ests per chain, 96000 per kthread
[  253.257469][T16012] lo speed is unknown, defaulting to 1000
[  253.275286][T16012] lo speed is unknown, defaulting to 1000
[  253.424330][T16016] loop4: detected capacity change from 0 to 512
[  253.484055][T16016] EXT4-fs (loop4): too many log groups per flexible block group
[  253.491880][T16016] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  253.501612][T16016] EXT4-fs (loop4): mount failed
[  253.512127][T16016] program syz.4.4764 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  253.706918][   T29] kauditd_printk_skb: 678 callbacks suppressed
[  253.706938][   T29] audit: type=1326 audit(1751252066.951:44550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feefdb158e7 code=0x7ffc0000
[  253.737124][   T29] audit: type=1326 audit(1751252066.951:44551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feefdabab19 code=0x7ffc0000
[  253.760775][   T29] audit: type=1326 audit(1751252066.951:44552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  253.784459][   T29] audit: type=1326 audit(1751252066.961:44553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feefdb158e7 code=0x7ffc0000
[  253.808012][   T29] audit: type=1326 audit(1751252066.961:44554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feefdabab19 code=0x7ffc0000
[  253.831541][   T29] audit: type=1326 audit(1751252066.961:44555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  253.855739][   T29] audit: type=1326 audit(1751252066.961:44556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feefdb158e7 code=0x7ffc0000
[  253.879757][   T29] audit: type=1326 audit(1751252066.961:44557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7feefdabab19 code=0x7ffc0000
[  253.903328][   T29] audit: type=1326 audit(1751252066.961:44558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7feefdb1e929 code=0x7ffc0000
[  253.927087][   T29] audit: type=1326 audit(1751252066.961:44559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16006 comm="syz.5.4760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7feefdb158e7 code=0x7ffc0000
[  254.269858][T16049] Invalid ELF header magic: != ELF
[  254.280448][T16049] loop2: detected capacity change from 0 to 512
[  254.288852][T16049] EXT4-fs (loop2): orphan cleanup on readonly fs
[  254.298703][T16049] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.4777: Failed to acquire dquot type 1
[  254.311329][T16049] EXT4-fs (loop2): 1 truncate cleaned up
[  254.318834][T16049] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  254.343924][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.565355][T16069] netlink: 696 bytes leftover after parsing attributes in process `syz.4.4785'.
[  255.140477][T16085] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=16085 comm=syz.7.4790
[  255.336849][T16087] bridge0: entered promiscuous mode
[  255.372595][T16087] bridge0: port 3(macvlan2) entered blocking state
[  255.379252][T16087] bridge0: port 3(macvlan2) entered disabled state
[  255.386039][T16087] macvlan2: entered allmulticast mode
[  255.391527][T16087] bridge0: entered allmulticast mode
[  255.405340][T16087] macvlan2: left allmulticast mode
[  255.410505][T16087] bridge0: left allmulticast mode
[  255.443602][T16087] bridge0: left promiscuous mode
[  255.964876][T16099] netlink: 'syz.7.4796': attribute type 4 has an invalid length.
[  256.769904][T16121] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[  256.947031][T16128] netlink: 'syz.4.4802': attribute type 39 has an invalid length.
[  256.954802][T16129] cgroup: fork rejected by pids controller in /syz2
[  257.193104][T16137] netlink: 'syz.7.4806': attribute type 1 has an invalid length.
[  257.220372][T16137] 8021q: adding VLAN 0 to HW filter on device bond1
[  257.399304][T16142] netlink: 'syz.4.4808': attribute type 1 has an invalid length.
[  257.422180][T16140] syzkaller0: entered promiscuous mode
[  257.427903][T16140] syzkaller0: entered allmulticast mode
[  257.496509][T16142] 8021q: adding VLAN 0 to HW filter on device bond1
[  257.505760][T16142] bond0: (slave bond1): making interface the new active one
[  257.513696][T16142] bond0: (slave bond1): Enslaving as an active interface with an up link
[  257.535459][T16142] bond0: (slave gretap1): Enslaving as a backup interface with an up link
[  257.548082][T16142] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4808'.
[  257.558178][T16142] 8021q: adding VLAN 0 to HW filter on device bond0
[  258.266964][T16167] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4812'.
[  258.340459][T16170] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4815'.
[  258.604517][T16177] netlink: 696 bytes leftover after parsing attributes in process `syz.5.4816'.
[  258.679059][T16181] net_ratelimit: 25 callbacks suppressed
[  258.679078][T16181] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  258.716800][   T29] kauditd_printk_skb: 139 callbacks suppressed
[  258.716820][   T29] audit: type=1326 audit(1751252071.961:44697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.746919][   T29] audit: type=1326 audit(1751252071.961:44698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.774605][   T29] audit: type=1326 audit(1751252072.011:44699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.798363][   T29] audit: type=1326 audit(1751252072.011:44700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.814445][T16189] netlink: 'syz.5.4820': attribute type 1 has an invalid length.
[  258.822024][   T29] audit: type=1326 audit(1751252072.011:44701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.853817][   T29] audit: type=1326 audit(1751252072.051:44702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.856024][T16189] 8021q: adding VLAN 0 to HW filter on device bond4
[  258.877426][   T29] audit: type=1326 audit(1751252072.051:44703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.877506][   T29] audit: type=1326 audit(1751252072.051:44704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.877549][   T29] audit: type=1326 audit(1751252072.051:44705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.888635][T16189] bond3: (slave bond4): making interface the new active one
[  258.907744][   T29] audit: type=1326 audit(1751252072.051:44706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16184 comm="syz.7.4819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc504b3e929 code=0x7ffc0000
[  258.956858][T16194] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4818'.
[  258.971943][T16189] bond3: (slave bond4): Enslaving as an active interface with an up link
[  258.986176][T16194] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4818'.
[  259.012916][T16194] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4818'.
[  259.025361][T16189] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4820'.
[  259.034818][T16194] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4818'.
[  259.039992][T16193] bond3: (slave gretap1): Enslaving as a backup interface with an up link
[  259.054063][T16192] lo speed is unknown, defaulting to 1000
[  259.061025][T16189] 8021q: adding VLAN 0 to HW filter on device bond3
[  259.072723][T16192] lo speed is unknown, defaulting to 1000
[  259.078763][T16160] lo speed is unknown, defaulting to 1000
[  259.093177][T16160] lo speed is unknown, defaulting to 1000
[  259.112406][T16196] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  259.122090][T16196] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  259.223824][T16160] chnl_net:caif_netlink_parms(): no params data found
[  259.267192][T16160] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.274692][T16160] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.281989][T16160] bridge_slave_0: entered allmulticast mode
[  259.288569][T16160] bridge_slave_0: entered promiscuous mode
[  259.295790][T16160] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.302941][T16160] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.310356][T16160] bridge_slave_1: entered allmulticast mode
[  259.317566][T16160] bridge_slave_1: entered promiscuous mode
[  259.335672][T16160] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  259.348014][T16160] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  259.369327][T16160] team0: Port device team_slave_0 added
[  259.376163][T16160] team0: Port device team_slave_1 added
[  259.392975][T16160] batman_adv: batadv0: Adding interface: batadv_slave_0
[  259.399943][T16160] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.426007][T16160] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.438771][T16160] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.445948][T16160] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.472237][T16160] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.504950][T16160] hsr_slave_0: entered promiscuous mode
[  259.511255][T16160] hsr_slave_1: entered promiscuous mode
[  259.517208][T16160] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  259.525309][T16160] Cannot create hsr debugfs directory
[  259.653437][T16160] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.703802][T16160] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.763601][T16160] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.823916][T16160] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.891073][T16225] syzkaller0: entered promiscuous mode
[  259.896650][T16225] syzkaller0: entered allmulticast mode
[  259.918015][T16227] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  259.928792][T16160] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  259.938798][T16160] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  259.948187][T16160] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  259.957941][T16160] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  260.010971][T16160] 8021q: adding VLAN 0 to HW filter on device bond0
[  260.028151][T16160] 8021q: adding VLAN 0 to HW filter on device team0
[  260.040739][ T3844] bridge0: port 1(bridge_slave_0) entered blocking state
[  260.047881][ T3844] bridge0: port 1(bridge_slave_0) entered forwarding state
[  260.073950][ T3844] bridge0: port 2(bridge_slave_1) entered blocking state
[  260.081080][ T3844] bridge0: port 2(bridge_slave_1) entered forwarding state
[  260.110944][T16237] rdma_rxe: rxe_newlink: failed to add veth0_to_bond
[  260.159368][T16160] 8021q: adding VLAN 0 to HW filter on device batadv0
[  260.197026][T16245] netlink: 'syz.3.4836': attribute type 4 has an invalid length.
[  260.248100][ T3872] ==================================================================
[  260.256261][ T3872] BUG: KCSAN: data-race in alloc_pid / copy_process
[  260.262873][ T3872] 
[  260.265206][ T3872] read-write to 0xffffffff86860860 of 4 bytes by task 16259 on cpu 0:
[  260.273369][ T3872]  alloc_pid+0x539/0x720
[  260.277623][ T3872]  copy_process+0xe0e/0x1fe0
[  260.282233][ T3872]  kernel_clone+0x16c/0x5b0
[  260.286755][ T3872]  __se_sys_clone3+0x1c2/0x200
[  260.291546][ T3872]  __x64_sys_clone3+0x31/0x40
[  260.296267][ T3872]  x64_sys_call+0x10c9/0x2fb0
[  260.300969][ T3872]  do_syscall_64+0xd2/0x200
[  260.305595][ T3872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.311515][ T3872] 
[  260.313858][ T3872] read to 0xffffffff86860860 of 4 bytes by task 3872 on cpu 1:
[  260.321416][ T3872]  copy_process+0x148f/0x1fe0
[  260.326123][ T3872]  kernel_clone+0x16c/0x5b0
[  260.330659][ T3872]  user_mode_thread+0x7d/0xb0
[  260.335361][ T3872]  call_usermodehelper_exec_work+0x7a/0x160
[  260.341295][ T3872]  process_scheduled_works+0x4cb/0x9d0
[  260.346780][ T3872]  worker_thread+0x582/0x770
[  260.351400][ T3872]  kthread+0x489/0x510
[  260.355481][ T3872]  ret_from_fork+0xda/0x150
[  260.359998][ T3872]  ret_from_fork_asm+0x1a/0x30
[  260.364780][ T3872] 
[  260.367130][ T3872] value changed: 0x80000129 -> 0x8000012a
[  260.372856][ T3872] 
[  260.375186][ T3872] Reported by Kernel Concurrency Sanitizer on:
[  260.381353][ T3872] CPU: 1 UID: 0 PID: 3872 Comm: kworker/u8:60 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(voluntary) 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  260.392305][ T3872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  260.402393][ T3872] Workqueue: events_unbound call_usermodehelper_exec_work
[  260.409537][ T3872] ==================================================================
[  260.787156][ T3872] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.895018][ T3872] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.935694][ T3872] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  260.984768][ T3872] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.057591][ T3872] dummy0: left allmulticast mode
[  261.062679][ T3872] bridge0: port 3(dummy0) entered disabled state
[  261.069705][ T3872] bridge_slave_1: left allmulticast mode
[  261.075871][ T3872] bridge_slave_1: left promiscuous mode
[  261.081716][ T3872] bridge0: port 2(bridge_slave_1) entered disabled state
[  261.089622][ T3872] bridge_slave_0: left allmulticast mode
[  261.095331][ T3872] bridge_slave_0: left promiscuous mode
[  261.101010][ T3872] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.144259][ T3872] bond3 (unregistering): (slave gretap1): Releasing backup interface
[  261.214153][ T3872] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  261.224209][ T3872] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  261.233928][ T3872] bond0 (unregistering): Released all slaves
[  261.242933][ T3872] bond1 (unregistering): (slave bond2): Releasing backup interface
[  261.251272][ T3872] bond1 (unregistering): Released all slaves
[  261.259948][ T3872] bond2 (unregistering): Released all slaves
[  261.269094][ T3872] bond3 (unregistering): (slave bond4): Releasing backup interface
[  261.277499][ T3872] bond3 (unregistering): Released all slaves
[  261.286153][ T3872] bond4 (unregistering): Released all slaves
[  261.370304][ T3872] hsr_slave_0: left promiscuous mode
[  261.376088][ T3872] hsr_slave_1: left promiscuous mode
[  261.384638][ T3872] veth1_macvtap: left promiscuous mode
[  261.390158][ T3872] veth0_macvtap: left promiscuous mode
[  261.395713][ T3872] veth1_vlan: left promiscuous mode
[  261.400942][ T3872] veth0_vlan: left promiscuous mode
[  261.926069][ T3872] bridge_slave_1: left allmulticast mode
[  261.931740][ T3872] bridge_slave_1: left promiscuous mode
[  261.937526][ T3872] bridge0: port 2(bridge_slave_1) entered disabled state
[  261.945227][ T3872] bridge_slave_0: left allmulticast mode
[  261.950898][ T3872] bridge_slave_0: left promiscuous mode
[  261.956676][ T3872] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.977340][ T3872] dvmrp1 (unregistering): left allmulticast mode
[  262.054568][ T3872] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  262.063882][ T3872] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  262.073251][ T3872] bond0 (unregistering): Released all slaves
[  262.103189][ T3872] tipc: Left network mode
[  262.126361][ T3872] hsr_slave_0: left promiscuous mode
[  262.132137][ T3872] hsr_slave_1: left promiscuous mode
[  262.137738][ T3872] batman_adv: batadv0: Removing interface: batadv_slave_0
[  262.147307][ T3872] batman_adv: batadv0: Removing interface: batadv_slave_1
[  262.157270][ T3872] pim6reg (unregistering): left allmulticast mode
[  262.187023][ T3872] team0 (unregistering): Port device team_slave_1 removed
[  262.196954][ T3872] team0 (unregistering): Port device team_slave_0 removed
[  262.205068][ T3877] smc: removing ib device syz!
[  263.465375][ T3872] bridge_slave_1: left allmulticast mode
[  263.471085][ T3872] bridge_slave_1: left promiscuous mode
[  263.476827][ T3872] bridge0: port 2(bridge_slave_1) entered disabled state
[  263.484701][ T3872] bridge_slave_0: left allmulticast mode
[  263.490426][ T3872] bridge_slave_0: left promiscuous mode
[  263.496098][ T3872] bridge0: port 1(bridge_slave_0) entered disabled state
[  263.564311][ T3872] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  263.574252][ T3872] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  263.584722][ T3872] bond0 (unregistering): Released all slaves
[  263.635988][ T3872] hsr_slave_0: left promiscuous mode
[  263.641606][ T3872] hsr_slave_1: left promiscuous mode
[  263.647473][ T3872] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.654961][ T3872] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.705372][ T3872] team0 (unregistering): Port device team_slave_1 removed
[  263.714904][ T3872] team0 (unregistering): Port device team_slave_0 removed