last executing test programs:

1.956676004s ago: executing program 0 (id=463):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0000000065000000f8ff", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@newqdisc={0xb8, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x88, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x19, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8001]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x24, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}, {0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_CMD={0x5, 0x2, 0xeb}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x2c2a1f44}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x7}]}}]}, 0xb8}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000540)='fib6_table_lookup\x00', r4}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000016c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x840e, &(0x7f0000001080)={[{@discard}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@bsdgroups}, {@quota}]}, 0x3, 0x43a, &(0x7f0000001100)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x21, 0x0, 0x0)
time(0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r6], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x18)
unshare(0xa000200)
semtimedop(0x0, &(0x7f0000000040)=[{0x4, 0x6, 0x1000}], 0x1, 0x0)
write$binfmt_script(r7, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r7, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x1, 0x0, 0x0)

1.412424298s ago: executing program 0 (id=474):
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x36e, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105142, 0x2c)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000008, 0x20010, r0, 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000100)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}, @void, {@ipv6={0x86dd, @icmpv6={0x1, 0x6, '\x00\'$', 0x30, 0x3a, 0xff, @empty, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x500, {0x6, 0x6, ':yE', 0x2, 0x3a, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast2}}}}}}}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600)

1.323101967s ago: executing program 0 (id=475):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sched_switch\x00'}, 0x18)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{0x0, 0x0, 0x0, 0x8400}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)

1.304883459s ago: executing program 3 (id=477):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r2, &(0x7f0000000080)={@val={0x8, 0x800}, @val={0x2, 0x3, 0x9, 0x68, 0x3, 0x9}, @ipv4=@udp={{0x5, 0x4, 0x3, 0x1b, 0x7d, 0x66, 0x0, 0x40, 0x11, 0x0, @private=0xa010102, @broadcast}, {0x4f20, 0x4e22, 0x69, 0x0, @gue={{0x1, 0x0, 0x3, 0x2, 0x0, @void}, "6279cb22459ff50866ff829694a603d3c443eead410baf7b350c12fa15932138ee8f6a6d2afdde33d5a4298b32860f7d3d68030697e95d9cff97f976b3ac6d8c10e10601a959b4bf18b7d52cd3b5a4c19759c5eb55c033fbf5a6b311de"}}}}, 0x8b)

1.204869989s ago: executing program 0 (id=480):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@getqdisc={0x24, 0x26, 0x400, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x44c7bf23f558fe5d, 0xc}, {0xf, 0x9}, {0xf, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x4014}, 0x20000001)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = msgget$private(0x0, 0x0)
r1 = syz_open_dev$evdev(0x0, 0x8d, 0x40)
ioctl$EVIOCRMFF(r1, 0x40044581, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000f000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r2}, 0x18)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)={0x2, 0x400000000000003, 0x20, 0x0, 0x17, 0x0, 0x0, 0x0, [@sadb_lifetime={0x4, 0x3, 0x0, 0x0, 0x100000000000000}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e20, @loopback}}, @sadb_lifetime={0x4, 0x4, 0x0, 0xfffffffffffffffe}, @sadb_sa={0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @broadcast}}, @sadb_address={0x5, 0x7, 0x3c, 0x0, 0x0, @in6={0xa, 0x4e22, 0x5, @private1}}]}, 0xb8}}, 0x0)
msgsnd(r0, &(0x7f0000000340)=ANY=[@ANYRES16], 0x2000, 0x0)
inotify_init()
msgrcv(r0, &(0x7f0000000200)={0x0, ""/1}, 0x9, 0x1, 0x3000)
msgctl$IPC_SET(r0, 0x1, &(0x7f00000004c0)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xe, 0x6f76, 0x7, 0xb1, 0x1, 0x8, 0x7f, 0x3})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
ptrace$ARCH_SET_CPUID(0x1e, 0xffffffffffffffff, 0x1, 0x1012)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x22000406, &(0x7f0000000840)={[{@dioread_lock}, {@noblock_validity}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x100000001}}, {@jqfmt_vfsold}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@usrjquota}, {@jqfmt_vfsv0}, {@nobh}, {@grpid}], [], 0x2c}, 0x84, 0x4d9, &(0x7f0000000900)="$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")
syz_pidfd_open(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0xb, &(0x7f00000000c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x1f00, 0x2, '\x00', 0x0, 0x2}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000000180)=<r4=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2)
timer_settime(r4, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)

1.149470085s ago: executing program 1 (id=481):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001340)={&(0x7f0000000900)='kfree\x00', r1}, 0x18)
syz_emit_ethernet(0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f00000005c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4}, 0x18)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r5, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r5, &(0x7f0000000280)="b5", 0x1, 0x20000880, &(0x7f0000000240)={0xa, 0x4e24, 0xfffffffc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3}, 0x1c)
r6 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000180)={'bond0\x00', <r7=>0x0})
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x15c, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in=@multicast1, @in6=@mcast2, 0x4, 0x0, 0x4e21, 0x2, 0x0, 0x0, 0x0, 0x21, 0x0, 0xee00}, {@in6=@private1, 0x4d6, 0x32}, @in=@multicast2, {0x0, 0x0, 0x0, 0x9, 0xffffffff00000001, 0x0, 0x80000001, 0x543}, {0x4, 0x7fffffffffffffff, 0x0, 0x1}, {}, 0x70bd2c, 0x3500, 0x2, 0x0, 0x0, 0x50}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "210466d38547aa140db9a200000000c538c7cb7a"}}, @offload={0xc, 0x1c, {r7, 0x3}}]}, 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2014)

1.148391465s ago: executing program 2 (id=482):
socket$inet6(0xa, 0x80000, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x800000, &(0x7f00000002c0)={[{@noauto_da_alloc}, {@jqfmt_vfsold}, {@noquota}, {@norecovery}, {}]}, 0x1, 0x4be, &(0x7f0000000540)="$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")
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x220000, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@nombcache}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x12}}]}, 0x64, 0x50a, &(0x7f0000000940)="$eJzs3VFrHFsdAPD/bHZr06Y3ueqDXvB6tZW0aHeTxrbBh1pB9Kmg1vcak00I2WRDdtM2oWiKH0AQUcEnffFF8AMIUvDFRxEK+qyoKKKtPvigncvuTtI03U227TabZn8/mMw5Z2b2f86GmZ0zc5gJYGC9FxHXI+JJmqYXImI0K89lU2y1psZ6jx/dm21MSaTpzX8mkWRl25+VZPPT2WYnI+JrX474ZvJ83NrG5tJMpVJey/Kl+vJqqbaxeXFxeWahvFBemZqavDJ9dfry9ERP2nkmIq598a8/+O7PvnTtV5+586dbfz//rUa1RrLlu9vxgvL7LWw1vdD8LnZvsPaSwY6ifLOFmeF2aww9V3L/NdcJAID2Guf4H4yIT0bEhRiNof1PZwEAAIA3UPr5kfhfEpG2d6JDOQAAAPAGyTXHwCa5YjYWYCRyuWKxNYb3w3EqV6nW6p+er66vzLXGyo5FITe/WClPZGOFx6KQNPKTzfTT/KU9+amIeDsivj863MwXZ6uVuX5f/AAAAIABcXpP//8/o63+PwAAAHDMjPW7AgAAAMBrp/8PAAAAx5/+PwAAABxrX7lxozGl2++/nru9sb5UvX1xrlxbKi6vzxZnq2urxYVqdaH5zL7lgz6vUq2ufjZW1u+W6uVavVTb2Ly1XF1fqd9afOYV2AAAAMAhevvjD/6QRMTW54abU8OJ7jbtcjXgqMrvpJJs3ma3/uNbrflfDqlSwKEY6ncFgL7J97sCQN8U+l0BoO+SA5Z3HLzz22z+id7WBwAA6L3xj3a+/5/bd8ut/RcDR56dGAaX+/8wuJr3/7sdyetkAY6VgjMAGHivfP//QGn6QhUCAAB6bqQ5JblidnlvJHK5YjHiTPO1AIVkfrFSnoiItyLi96OFDzTyk80tkwP7DAAAAAAAAAAAAAAAAAAAAAAAAABAS5omkQIAAADHWkTub8mvW8/yHx89N7L3+sCJ5L+jkb0i9M6Pb/7w7ky9vjbZKP/XTnn9R1n5pX5cwQAAAICB8EIv8N/up2/34wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACglx4/uje7PR1m3H98ISLG2sXPx8nm/GQUIuLUv5PI79ouiYihHsQfbvz5SLv4SaNaOyHbxR/uQfyt+/vGj7HsW2gX/3QP4sMge9A4/lxvt//l4r3mvP3+l494Jv+yOh//Yuf4N9Rh/z/TZYx3Hv6i1DH+/Yh38u2PP9vxkw7xz3YZ/xtf39zstCz9ScR429+f5JlYpfryaqm2sXlxcXlmobxQXpmamrwyfXX68vREaX6xUs7+to3xvY/98sl+7T/VIf7YAe0/12X7///w7qMPtZKFdvHPn20T/zc/zdZ4Pn4u++37VJZuLB/fTm+10ru9+/Pfvbtf++c6tP+g///5Ltt/4avf+XOXqwIAh6C2sbk0U6mU145totFLPwLVkDiCiW/39APTNE0b+9QrfE4SR+FraSb6fWQCAAB67elJf79rAgAAAAAAAAAAAAAAAAAAAIPrMB4ntjfm1k4q6cUjtAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuL9AAAA//+GAdlV")
socket$inet6(0xa, 0x5, 0x0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b0000"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e20}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x40800)

1.147938605s ago: executing program 3 (id=483):
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc094, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x3ee53089, 0x10003, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[], &(0x7f0000000c00)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000002c0)={r0, 0x4, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x81, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f00000001c0)={'bond_slave_0\x00'})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454da, &(0x7f0000000140)={'bond0\x00'})
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000100)={'nicvf0\x00', 0x1432})

1.081013571s ago: executing program 1 (id=484):
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0xe3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x528, 0x0, @perf_bp={0x0, 0x1}, 0x1e08, 0x40000000, 0x0, 0x8, 0x103fb, 0x1fb, 0x1ff, 0x0, 0x0, 0x0, 0x400000000000007}, 0x0, 0x5, 0xffffffffffffffff, 0xa)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_TIME_STAMP(r0, 0x0, 0x3, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000000f8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000030000008500000043000000950273ab263cb1ae9aa0a25a84dd364c451fd3c6d92f79d01419bfe233bc736c"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x24, r4, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x8, 0x2a, [@perr={0x84, 0xffffffffffffff21}]}]}, 0x24}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000060000000000001811000000009bf8e7dc9059329ba11f68edec31c8bd05bca16252cf25cb117fb70bc2a3db0d8a5f1c32fda9eefc6454e2c37a24e9e6f4a42cf8e5c21d647639eaa35a98494980b601e6f2379a51e374fdc5cc", @ANYRES32=r2, @ANYBLOB], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
kexec_load(0x3e00, 0x0, &(0x7f00000002c0), 0x0)
rseq(&(0x7f0000000300), 0x20, 0x0, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r5, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
openat(0xffffffffffffffff, 0x0, 0x0, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = dup(r6)
write$UHID_INPUT(r7, &(0x7f0000001040)={0x8, {"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", 0x1000}}, 0x1006)
fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file0\x00', 0x8, 0x3)

966.979733ms ago: executing program 3 (id=485):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
utimes(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240)={{}, {0x77359400}})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x46, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0, r2}, 0x18)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, 0x0, 0x40010)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01063d0000000000000028000000280000000200000000000000000000030000020000000200000000000000010000000000000104"], 0x0, 0x42}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, 0x0, &(0x7f0000000180)='syzkaller\x00'}, 0x94)
socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="01000000800000001c001a8018000a8014000700fc0200000000000000000000000000011400350073797a5f74756e000000000000000000"], 0x50}, 0x1, 0x0, 0x0, 0x58840}, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, 0x0, 0x0)

909.572959ms ago: executing program 3 (id=486):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000c80)={'batadv_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000000)=@ipv4_newaddr={0x38, 0x14, 0x509, 0x70bd27, 0x25dfdbfd, {0x2, 0x20, 0x0, 0xcb, r2}, [@IFA_BROADCAST={0x8, 0x4, @rand_addr=0x64010102}, @IFA_ADDRESS={0x8, 0x1, @private=0xa010101}, @IFA_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3d}}, @IFA_LOCAL={0x8, 0x2, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040014}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="180000"], 0x18}}, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

836.647946ms ago: executing program 3 (id=488):
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='fd/3\x00')
io_submit(0x0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}])
syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0), &(0x7f0000000580))
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000400000000000000fd0020851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000016608fffffff30000180000000000000000000000001000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x1e}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='xprtrdma_dma_maperr\x00', r0, 0x0, 0x40000a}, 0x18)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x4010, 0xffffffffffffffff, 0x0)
syz_io_uring_complete(r1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x44040)
sendmsg$NFT_BATCH(r2, 0x0, 0x20000000)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000100)='cdg', 0x3)
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000440)='kmem_cache_free\x00'}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r7, 0x0, 0x10, 0x38, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x1f00)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)

831.236147ms ago: executing program 2 (id=489):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400000008020000d9"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7030000003e7400850000001b000000b700000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r2}, 0x18)
ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f0000000ac0)={0xfb, "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"})

796.56658ms ago: executing program 4 (id=490):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socket$igmp(0x2, 0x3, 0x2)
gettid()
socket$igmp(0x2, 0x3, 0x2)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in6=@dev={0xfe, 0x80, '\x00', 0x27}, 0x0, 0x0, 0x0, 0xfffd, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x4, 0x4d35a72f, 0x0, 0x0, 0x0, 0xfffff7ffffffffff, 0x0, 0x40}, {0x2cf, 0xa00, 0x40800000000000}, 0x0, 0x6e6bc0, 0x0, 0x1}}, 0xb8}}, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kfree\x00', r3}, 0xf)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r5, 0x0, 0x100000000}, 0x18)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2, 0x0, @rand_addr, @multicast1}, @address_request}}}}, 0x0)

758.569694ms ago: executing program 3 (id=491):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/devices\x00', 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000400), r0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000540)={'syztnl2\x00', &(0x7f00000004c0)={'syztnl1\x00', <r4=>0x0, 0x4, 0x3, 0x4, 0x800, 0x23, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast2, 0x40, 0x7800, 0x401, 0x2}})
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000840)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000680)={&(0x7f00000007c0)={0x60, r3, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @remote}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e23}, @FOU_ATTR_PEER_V4={0x8, 0x8, @local}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x87}, @FOU_ATTR_IFINDEX={0x8, 0xb, r4}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x3c}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e21}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}]}, 0x60}, 0x1, 0x0, 0x0, 0x4051}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2000000, &(0x7f0000000080), 0x3, 0x44d, &(0x7f0000000a40)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000ec0)={0x3, 0x8, &(0x7f00000000c0)=@raw=[@map_idx={0x18, 0x1, 0x5, 0x0, 0xe}, @map_idx={0x18, 0x0, 0x5, 0x0, 0x9}, @call={0x85, 0x0, 0x0, 0x87}, @map_fd={0x18, 0x4, 0x1, 0x0, r5}, @alu={0x4, 0x0, 0xa672492ac37d98b5, 0x1c, 0x4, 0x100, 0xfffffffffffffffc}], &(0x7f0000000140)='GPL\x00', 0x4, 0xbe, &(0x7f0000000880)=""/190, 0x40f00, 0x0, '\x00', r4, @fallback=0x1a, r0, 0x8, &(0x7f0000000200)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000940)={0x5, 0xe, 0x6, 0x4}, 0x10, 0x0, r0, 0x3, &(0x7f0000000980)=[r2], &(0x7f0000000a00)=[{0x2, 0x1, 0xa, 0xb}, {0x2, 0x5, 0x4, 0x9}, {0x3, 0x3, 0xb, 0xb}], 0x10, 0xde}, 0x94)
r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r8, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)
readv(r8, &(0x7f0000000100)=[{&(0x7f00000002c0)=""/215, 0xd7}], 0x1)
link(0x0, 0x0)

698.46252ms ago: executing program 2 (id=492):
unshare(0x62040200)
r0 = getpid()
syz_pidfd_open(r0, 0x0)
fsopen(&(0x7f0000000080)='mqueue\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='kfree\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r2, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
bpf$LINK_DETACH(0x22, &(0x7f0000000100)=r3, 0x4)

697.23771ms ago: executing program 4 (id=493):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0)
write$selinux_attr(r1, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48)
ioctl$AUTOFS_IOC_ASKUMOUNT(r2, 0x80049370, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
openat$selinux_policy(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20081e, &(0x7f0000000880)={[{@i_version}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa30}}, {@grpquota}]}, 0x1, 0x51d, &(0x7f0000000200)="$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")
r4 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r5 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r5, &(0x7f0000000000)=ANY=[], 0xffa8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00'}, 0x41)
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200006, 0x0, 0x6, 0x7})
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x10}, 0x8000)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x80642, 0x150)
pwrite64(r6, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
fallocate(r4, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000040)={0xc, r4, 0x0, 0x0, 0x0, 0xfffffffffdffffff})
write$selinux_load(r3, &(0x7f0000000000)=ANY=[], 0x190da)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_pidfd_open(r0, 0x0)

662.928174ms ago: executing program 1 (id=494):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000c80)={'batadv_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000000)=@ipv4_newaddr={0x38, 0x14, 0x509, 0x70bd27, 0x25dfdbfd, {0x2, 0x20, 0x0, 0xcb, r2}, [@IFA_BROADCAST={0x8, 0x4, @rand_addr=0x64010102}, @IFA_ADDRESS={0x8, 0x1, @private=0xa010101}, @IFA_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3d}}, @IFA_LOCAL={0x8, 0x2, @loopback}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040014}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="180000"], 0x18}}, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

597.67005ms ago: executing program 1 (id=495):
r0 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

575.956792ms ago: executing program 2 (id=496):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r1, &(0x7f0000000f40)=[{{&(0x7f0000001140)={0xa, 0x4e23, 0x10, @private2, 0x8}, 0x1c, &(0x7f00000013c0)=[{&(0x7f00000016c0)="99", 0x1}], 0x1}}], 0x1, 0x4000090)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r3, &(0x7f0000000a40)=[{{&(0x7f00000001c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a90500040000746400009e150451160200000064c6", 0x15}, {&(0x7f00000007c0)="174640b6d80fb2ee", 0x8}], 0x2}}], 0x1, 0x4004040)

506.885829ms ago: executing program 2 (id=497):
pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
write$P9_RMKNOD(r0, &(0x7f0000000040)={0x14, 0x13, 0x2, {0x15, 0x1, 0x5}}, 0x14)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x89001)
getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f00000000c0), &(0x7f0000000100)=0x4)
lstat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
quotactl$Q_GETINFO(0xffffffff80000501, &(0x7f0000000140)=@filename='./file0\x00', r2, &(0x7f0000000240))
gettid()
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='virtio_transport_alloc_pkt\x00', r1, 0x0, 0x9}, 0x18)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=@delqdisc={0x24, 0x25, 0x100, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x4, 0xc}, {0x1c83cffa2b1e6a5, 0xfff1}, {0x1c}}}, 0x24}, 0x1, 0x0, 0x0, 0x40044}, 0x24008884)
write$qrtrtun(r1, &(0x7f0000000400)="be349fb69b94f15ab94f08b4e3c8faf84c81c4a98cc5236101c9227489a804910ff08d3acb230610f5eee8455cfb208789e267d347c972965b76e11f95ec0285704aa4a4612946ff6bb7c2fbe6b1b5ee7278903eb910bd87ee825cb58a72d5902491c01abf19cac39fa2fccd31e84991819a8121b2725496f9dcce7f51ff327cf2378d45a15c3c041a25e47b1a1d24570331743485bcdb0f4e9fa58ab9d338", 0x9f)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000004c0)={0x80000000})
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@bloom_filter={0x1e, 0x8, 0x4f7, 0x7, 0x38042, r1, 0x3, '\x00', 0x0, r1, 0x4, 0x1, 0x2, 0x5, @value, @void, @value=r1}, 0x50)
r3 = mmap$binder(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1, 0x11, r1, 0x3)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000c80)={0x140, 0x0, &(0x7f0000000a80)=[@free_buffer={0x40086303, r3}, @reply={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000680)={@fd, @ptr={0x70742a85, 0x0, &(0x7f0000000580)=""/116, 0x74, 0x1, 0x2a}, @ptr={0x70742a85, 0x0, &(0x7f0000000600)=""/105, 0x69, 0x2, 0x1f}}, &(0x7f0000000700)={0x0, 0x18, 0x40}}}, @transaction_sg={0x40486311, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000780)={@flat=@weak_handle={0x77682a85, 0x100, 0x1}, @ptr={0x70742a85, 0x0, &(0x7f0000000740)=""/3, 0x3, 0x0, 0x7}, @flat=@weak_handle={0x77682a85, 0x8b, 0x1}}, &(0x7f0000000800)={0x0, 0x18, 0x40}}}, @reply={0x40406301, {0x1, 0x0, 0x0, 0x0, 0x6ec83142298d8403, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000900)={@flat=@binder={0x73622a85, 0x101, 0x3}, @ptr={0x70742a85, 0x0, &(0x7f0000000840)=""/70, 0x46, 0x1, 0x2e}, @ptr={0x70742a85, 0x1, &(0x7f00000008c0)=""/23, 0x17, 0x0, 0x3a}}, &(0x7f0000000980)={0x0, 0x18, 0x40}}}, @transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50, 0x18, &(0x7f00000009c0)={@flat=@binder={0x73622a85, 0x1, 0x2}, @flat=@weak_binder={0x77622a85, 0x1, 0x1}, @fda={0x66646185, 0x9, 0x0, 0x2e}}, &(0x7f0000000a40)={0x0, 0x18, 0x30}}}, @acquire={0x40046305, 0x2}, @increfs_done={0x40106308, 0x1}], 0xa1, 0x0, &(0x7f0000000bc0)="ce13d35f7cfa12bf751396cd45edde27e6a51335cf8fa1b23f9ce6a2a346f8671e60607d9c558e2a8502134aeca798ca0d155d911cf39f9ce76c457c71303e3aa74dc2caacd50ae36ea143b6d3159cd10f87a5fc6658e2eeb4020e30e0636ea98230398d7672738a7d98acd96c25e4063e9a46f3c5ea73b1b0a91b874d396c5c4f7ae68df3b58e88850375521df61a0a432e93322baf3cd9f14b9dea588f556878"})
openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000cc0), 0x2, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000d00), 0x22880, 0x0)
ioctl$SNAPSHOT_CREATE_IMAGE(r4, 0x40043311, &(0x7f0000000d40))

501.13593ms ago: executing program 1 (id=498):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, 0x0, 0x0}, 0x20)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f0000001480)='GPL\x00', 0x5, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000380)='kfree\x00', r3, 0x0, 0x39d}, 0x18)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x1503, 0x12001}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000891}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040), 0xfe, 0x4f2, &(0x7f0000000b00)="$eJzs3d9rHFsdAPDvTHbvbdpcN1d9uF6wLbaSFO0maWwbfKgKok8Ftb7XmGxDyCZbkk3bhKIp/gGCiAq+6JMvgn+AIP0TRCjou6gooq0++FAd2d3ZmKa7+UE3u97s5wMnc8782O85GebsnJlhJ4ChdTEiJiMiy7LsSkSU8vlpnmKnlRrrvXj+eKGRksiyO39LIsnntT/r7Xx6Lt/sTER87csR30xej7uxtb0yX61W1vPyVH01eZll21eXV+eXKkuVtdnZmRtzN+euz033pJ3jEXHri3/6wXd/9qVbv/r0w9/f/cvkt1oNbNnbjl5qNb3Y/F+0FSJi/SSCDUih2cKW6wOuCwAAB2uc7384Ij4REVeiFCPNszkAAADgNMk+NxYvk9b9PwAAAOB0SiNiLJK0nD/vOxZpWi63nuH9aJxNq7WN+qey0u71gvEopveWq5Xp/NmB8SgmjfJM/oxtu3xtX3k2It6NiO+XRpvl8kKtujjQKx8AAAAwPM7tG///s9Qa/wMAAACnzPigKwAAAACcOON/AAAAOP2M/wEAAOBU+8rt242Utd9/vfhga3Ol9uDqYmVjpby6uVBeqK3fLy/VakvN3+xbPezzqrXa/c/E2uajqXploz61sbV9d7W2uVa/u/zKK7ABAACAPnr3wtPfJRGx89nRNCKyZM+yYkQ2snflQv/rB5yc9Dgr//Hk6gH038igKwAMjFN6GF7FQVcAGLjD+oGuD+/8uvd1AQAATsbEx3bv/zdTw1v5smSgNQNOWn7/P3Gsw/Bx/x+Gl/t/MLyKB50BGBTAqZce4VB/8/v/WXasSgEAAD031kxJWs7HAWORpuVyxDvN1wIUk3vL1cp0RHwoIn5bKr7dKM80t0xcHgAAAAAAAAAAAAAAAAAAAAAAAACAI8qyJLIuRnfXAQAAAD7IItI/J/n7vyZKl8f2Xx94K/lXqTmNiIc/vvPDR/P1+vpMY/7fd+fXf5TPv9bvqxcAAABAJ+1xenscDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC99OL544V26mfcv34hIsY7xS/Emeb0TBQj4uw/kijs2S6JiJEexN95EhHvdYqfNKoV43kt9sdPI2J0wPHP9SA+DLOnjf7n852OvzQuNqedj79Cnt5U9/4v3e3/Rrr0f+90+sD09VnvP/vFVNf4TyLeL3Tuf9rxky7xLx2xjd/4+vZ2t2XZTyMmOn7/JK/EmkoK96c2travLq/OL1WWKmuzszM35m7OXZ+bnrq3XK3kfzvG+N7Hf/mfg9p/tkv88UPaf/mI7f/3s0fPP9LKFvctKsZPsmzyUuf9/16X+O3vvk/mu7tRnmjnd1r5vc7//DfnLxzQ/sUu7T9s/08esf1XvvqdPxxxVQCgDza2tlfmq9XK+vEyScTOG2wuM1yZ0ehj0Pk4aJ32SWwf6vPtPNT/xS44dmZwfRIAAHAy/nfSP+iaAAAAAAAAAAAAAAAAAAAAwPA67GfAogc/J7Y/5s5gmgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcKD/BgAA//+6ychX")

425.343507ms ago: executing program 2 (id=499):
socket$nl_route(0x10, 0x3, 0x0)
socket(0x2b, 0x80801, 0x1)
pselect6(0x40, &(0x7f0000000100), &(0x7f0000000000)={0x1f, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
pselect6(0x40, &(0x7f0000000240)={0x9b, 0x9, 0x1000, 0x0, 0x7, 0x401, 0x2, 0x100000000}, &(0x7f0000000280)={0x0, 0x5, 0xfff, 0xd4bb, 0x401, 0x1, 0x26b, 0x3}, &(0x7f0000000300)={0xfffffffffffffffd, 0x5, 0xa7d, 0xa, 0x9, 0x42, 0x189, 0x4}, &(0x7f0000000340)={0x77359400}, &(0x7f0000000540)={&(0x7f0000000440)={[0x5]}, 0x8})
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x3a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004500002c0000ff"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x6}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x18)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000380), &(0x7f00000003c0)}, 0x20)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)={{0x14}, [@NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x1}}, @NFT_MSG_NEWSET={0x60, 0x9, 0xa, 0x401, 0x0, 0x20, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_EXPR={0x24, 0x11, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x16}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x22}]}}}]}], {0x14, 0x10}}, 0x9c}, 0x1, 0x0, 0x0, 0x44001}, 0x0)
rt_sigsuspend(&(0x7f0000000040)={[0x4]}, 0x8)

297.58327ms ago: executing program 1 (id=500):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
syz_open_dev$evdev(0x0, 0x1, 0x2002)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
write(r2, &(0x7f0000004200)='t', 0x1)
sendfile(r2, r1, 0x0, 0x3ffff)
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x0)
sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r3, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000)
sendfile(r2, r1, 0x0, 0x7ffff000)

266.831443ms ago: executing program 4 (id=501):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x4c, &(0x7f0000000000), 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x80)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x4000000)
recvmsg$unix(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffff64}, 0x40000040)

260.222494ms ago: executing program 0 (id=502):
socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='fd/3\x00')
io_submit(0x0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}])
syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0), &(0x7f0000000580))
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000400000000000000fd0020851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000016608fffffff30000180000000000000000000000001000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x1e}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='xprtrdma_dma_maperr\x00', r0, 0x0, 0x40000a}, 0x18)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x4010, 0xffffffffffffffff, 0x0)
syz_io_uring_complete(r1)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, 0x0, 0x44040)
sendmsg$NFT_BATCH(r2, 0x0, 0x20000000)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000100)='cdg', 0x3)
close_range(r4, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000440)='kmem_cache_free\x00'}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x6, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r7, 0x0, 0x10, 0x38, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x1f00)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)

221.246868ms ago: executing program 4 (id=503):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r2)
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x1c, r3, 0xb29, 0x0, 0x0, {{}, {@val={0x5}, @void}}}, 0x1c}}, 0x2404c044)

174.284163ms ago: executing program 4 (id=504):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x4d, 0xfffffffb, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r5, {0x0, 0x1}, {}, {0x8, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x18ea1}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}]}}]}, 0x44}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001300)=@newqdisc={0x434, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r3, {0x10}, {}, {0x2, 0x3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x408, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x1, 0x1, 0x0, 0x8000, 0x3, 0x5, 0x5, 0xb762, 0x6, 0x7, 0x8, 0xf, 0x2, 0x80000001, 0x400, 0x800, 0xfffffffe, 0x6, 0x401, 0x9, 0xb89, 0xffffe4f5, 0x7, 0x4, 0xffff, 0x7, 0x0, 0x2, 0x101, 0x1, 0x9, 0x4, 0x1, 0x1, 0x9, 0xc, 0x1000, 0x2, 0x2, 0x7, 0x4, 0x99, 0x9, 0x5, 0x6, 0x7, 0xfffffff7, 0x1, 0x2, 0x5, 0x9, 0x44, 0x8, 0x8, 0x1, 0x4, 0x7ff, 0x8, 0x7, 0x80000001, 0x7, 0x8, 0xfffffa72, 0xcd, 0xffffff80, 0x80000000, 0xc, 0x4, 0x65, 0x91, 0x659, 0x9, 0xf, 0x7, 0xc28, 0x9, 0x7, 0x3, 0x401, 0x3, 0x2, 0xfffffffa, 0x5, 0x10001, 0x3, 0xffffffff, 0x4, 0x8, 0x8, 0x7, 0x1, 0x1, 0x1, 0x7, 0x7fffffff, 0x7, 0xe, 0x8000, 0x1, 0x45c, 0x80, 0x3, 0x7fffffff, 0xff, 0x9c, 0xa7, 0xf, 0x2, 0xfffffffd, 0x3, 0x1000, 0x4, 0x401, 0xf8a, 0x80000000, 0xffff, 0x6, 0x5, 0x4, 0x2, 0x80000000, 0x1966f9ab, 0x5, 0x20200, 0xed5, 0xfffffc00, 0x6, 0x4, 0x8, 0x485e, 0xa89, 0x40, 0x2, 0x7, 0x7, 0x101, 0x2d5421e8, 0x7, 0x10000, 0xffffffff, 0xed, 0x32, 0xf04, 0x0, 0x2, 0x5, 0xfffffc00, 0x5, 0x8d, 0x4, 0x401, 0x4, 0x9, 0x3, 0xfffffffb, 0x1, 0x0, 0x0, 0xfffffffe, 0x5, 0x8, 0x3, 0x4, 0x800, 0x2, 0x8, 0x7ff, 0x1, 0x9, 0x6, 0x5, 0x5, 0x4d15, 0x1ff, 0xfffff060, 0x3, 0x469, 0x3, 0x0, 0x200, 0x5, 0x7, 0x1, 0x8, 0x42ba, 0x4, 0x9, 0x3, 0x8, 0x8, 0x57, 0x6, 0x8, 0x400, 0x8000, 0x0, 0x2c310b18, 0xfff, 0x0, 0x3, 0xcd34, 0x9, 0x81, 0xdf3, 0x2, 0x7, 0x8, 0xfff, 0x1ff, 0x8000, 0x3, 0x8, 0x3, 0x9, 0x9a6, 0xe4cb, 0x402, 0x1, 0x1ff, 0x3e, 0x9b4, 0x1, 0x8, 0x0, 0x8, 0x0, 0x9, 0x0, 0x4, 0x10, 0x143, 0x5, 0x2, 0x7b, 0x6, 0x2, 0x6, 0xc, 0x1000, 0x9, 0x9, 0xe6, 0xab, 0x400, 0x7fffffff, 0xed, 0x7ff, 0xd83, 0x68, 0x80000001, 0x4, 0x1, 0x6, 0x200, 0x2]}]}}]}, 0x434}, 0x1, 0x0, 0x0, 0x40098}, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket(0x2, 0x5, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @dev={0xac, 0x14, 0x14, 0x41}, @empty}}}], 0x20}}], 0x27, 0x0)

169.443213ms ago: executing program 0 (id=505):
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd9)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000e6ffffff00000001"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1, 0x0, 0x81}, 0x18)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(r3, 0x10f, 0x81, &(0x7f0000000480), 0x4)
sendmsg$tipc(r3, &(0x7f0000000200)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x3, {0x1, 0x1, 0x1}}, 0x10, 0x0}, 0x4000001)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r5, 0x0, 0x10000001}, 0x18)
mkdir(&(0x7f0000000580)='./file0\x00', 0x92)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000400)='./file0\x00', &(0x7f0000000000), &(0x7f0000000340)='system_u:object_r:crypt_device_t:s0\x00', 0x24, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x9840)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYRES64], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x45, 0x1, 0x0, 0x0, 0x0, 0x5, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xff, 0x30000000000}, 0x0, 0x10000, 0xfffffffe, 0x7, 0x8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, r2, 0xa)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff08)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r7, &(0x7f0000000080)={0x2, 0x4e22, @loopback}, 0x10)
setsockopt$inet_tcp_int(r7, 0x6, 0x25, &(0x7f0000000000), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa120000000000007010000f8ffffffb702000008000000b703040000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
gettid()

0s ago: executing program 4 (id=506):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000c80)={'batadv_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000000)=@ipv4_newaddr={0x38, 0x14, 0x509, 0x70bd27, 0x25dfdbfd, {0x2, 0x20, 0x0, 0xcb, r2}, [@IFA_BROADCAST={0x8, 0x4, @rand_addr=0x64010102}, @IFA_ADDRESS={0x8, 0x1, @private=0xa010101}, @IFA_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3d}}, @IFA_LOCAL={0x8, 0x2, @multicast2}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040014}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="180000"], 0x18}}, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.49' (ED25519) to the list of known hosts.
[   35.134055][   T29] audit: type=1400 audit(1763348329.128:62): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   35.157117][   T29] audit: type=1400 audit(1763348329.148:63): avc:  denied  { mount } for  pid=3304 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   35.158147][ T3304] cgroup: Unknown subsys name 'net'
[   35.184862][   T29] audit: type=1400 audit(1763348329.178:64): avc:  denied  { unmount } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   35.338822][ T3304] cgroup: Unknown subsys name 'cpuset'
[   35.345151][ T3304] cgroup: Unknown subsys name 'rlimit'
[   35.456821][   T29] audit: type=1400 audit(1763348329.448:65): avc:  denied  { setattr } for  pid=3304 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   35.480368][   T29] audit: type=1400 audit(1763348329.458:66): avc:  denied  { create } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   35.500877][   T29] audit: type=1400 audit(1763348329.458:67): avc:  denied  { write } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   35.518990][ T3307] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   35.521362][   T29] audit: type=1400 audit(1763348329.458:68): avc:  denied  { read } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   35.550275][   T29] audit: type=1400 audit(1763348329.458:69): avc:  denied  { mounton } for  pid=3304 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   35.571937][ T3304] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   35.575095][   T29] audit: type=1400 audit(1763348329.458:70): avc:  denied  { mount } for  pid=3304 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   35.607109][   T29] audit: type=1400 audit(1763348329.528:71): avc:  denied  { relabelto } for  pid=3307 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   37.775404][ T3318] chnl_net:caif_netlink_parms(): no params data found
[   37.879701][ T3324] chnl_net:caif_netlink_parms(): no params data found
[   37.896016][ T3315] chnl_net:caif_netlink_parms(): no params data found
[   37.938093][ T3318] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.945237][ T3318] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.952711][ T3318] bridge_slave_0: entered allmulticast mode
[   37.959227][ T3318] bridge_slave_0: entered promiscuous mode
[   37.965808][ T3322] chnl_net:caif_netlink_parms(): no params data found
[   37.985037][ T3318] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.992204][ T3318] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.999558][ T3318] bridge_slave_1: entered allmulticast mode
[   38.006083][ T3318] bridge_slave_1: entered promiscuous mode
[   38.035548][ T3314] chnl_net:caif_netlink_parms(): no params data found
[   38.062422][ T3318] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.082301][ T3318] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.097856][ T3324] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.105070][ T3324] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.112282][ T3324] bridge_slave_0: entered allmulticast mode
[   38.118838][ T3324] bridge_slave_0: entered promiscuous mode
[   38.150293][ T3324] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.157392][ T3324] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.164705][ T3324] bridge_slave_1: entered allmulticast mode
[   38.171097][ T3324] bridge_slave_1: entered promiscuous mode
[   38.177457][ T3315] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.184558][ T3315] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.191888][ T3315] bridge_slave_0: entered allmulticast mode
[   38.198458][ T3315] bridge_slave_0: entered promiscuous mode
[   38.212922][ T3318] team0: Port device team_slave_0 added
[   38.229235][ T3315] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.236333][ T3315] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.243534][ T3315] bridge_slave_1: entered allmulticast mode
[   38.250098][ T3315] bridge_slave_1: entered promiscuous mode
[   38.259811][ T3318] team0: Port device team_slave_1 added
[   38.265694][ T3322] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.272805][ T3322] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.280146][ T3322] bridge_slave_0: entered allmulticast mode
[   38.286600][ T3322] bridge_slave_0: entered promiscuous mode
[   38.310925][ T3322] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.318228][ T3322] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.325524][ T3322] bridge_slave_1: entered allmulticast mode
[   38.331953][ T3322] bridge_slave_1: entered promiscuous mode
[   38.344621][ T3324] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.374159][ T3324] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.384352][ T3322] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.394521][ T3315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.409243][ T3318] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.416203][ T3318] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.442119][ T3318] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.459208][ T3322] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.469368][ T3315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.478670][ T3314] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.485725][ T3314] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.493106][ T3314] bridge_slave_0: entered allmulticast mode
[   38.499847][ T3314] bridge_slave_0: entered promiscuous mode
[   38.506676][ T3318] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.513774][ T3318] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.539786][ T3318] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.567683][ T3314] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.574819][ T3314] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.582052][ T3314] bridge_slave_1: entered allmulticast mode
[   38.588535][ T3314] bridge_slave_1: entered promiscuous mode
[   38.601003][ T3324] team0: Port device team_slave_0 added
[   38.622738][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   38.632616][ T3324] team0: Port device team_slave_1 added
[   38.644331][ T3322] team0: Port device team_slave_0 added
[   38.650806][ T3315] team0: Port device team_slave_0 added
[   38.657166][ T3322] team0: Port device team_slave_1 added
[   38.663994][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   38.683365][ T3315] team0: Port device team_slave_1 added
[   38.705302][ T3324] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.712341][ T3324] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.738314][ T3324] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.749571][ T3324] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.756728][ T3324] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.782728][ T3324] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   38.810331][ T3318] hsr_slave_0: entered promiscuous mode
[   38.816381][ T3318] hsr_slave_1: entered promiscuous mode
[   38.836557][ T3322] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.843676][ T3322] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.869663][ T3322] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.881299][ T3314] team0: Port device team_slave_0 added
[   38.888376][ T3314] team0: Port device team_slave_1 added
[   38.896384][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_0
[   38.903390][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.929452][ T3315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   38.940591][ T3322] batman_adv: batadv0: Adding interface: batadv_slave_1
[   38.947558][ T3322] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   38.973562][ T3322] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.000886][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.007965][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   39.033921][ T3315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.054670][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_0
[   39.061714][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   39.087670][ T3314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   39.114311][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_1
[   39.121288][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   39.147211][ T3314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   39.169140][ T3324] hsr_slave_0: entered promiscuous mode
[   39.175176][ T3324] hsr_slave_1: entered promiscuous mode
[   39.181257][ T3324] debugfs: 'hsr0' already exists in 'hsr'
[   39.186985][ T3324] Cannot create hsr debugfs directory
[   39.216219][ T3322] hsr_slave_0: entered promiscuous mode
[   39.222435][ T3322] hsr_slave_1: entered promiscuous mode
[   39.228504][ T3322] debugfs: 'hsr0' already exists in 'hsr'
[   39.234287][ T3322] Cannot create hsr debugfs directory
[   39.257479][ T3315] hsr_slave_0: entered promiscuous mode
[   39.263984][ T3315] hsr_slave_1: entered promiscuous mode
[   39.270614][ T3315] debugfs: 'hsr0' already exists in 'hsr'
[   39.276443][ T3315] Cannot create hsr debugfs directory
[   39.330932][ T3314] hsr_slave_0: entered promiscuous mode
[   39.337087][ T3314] hsr_slave_1: entered promiscuous mode
[   39.343046][ T3314] debugfs: 'hsr0' already exists in 'hsr'
[   39.348821][ T3314] Cannot create hsr debugfs directory
[   39.452508][ T3318] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   39.477585][ T3318] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   39.498698][ T3318] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   39.522322][ T3318] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   39.545426][ T3322] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   39.554273][ T3322] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   39.570588][ T3322] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   39.579747][ T3322] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   39.600945][ T3324] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   39.614987][ T3324] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   39.632004][ T3324] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   39.648449][ T3324] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   39.678231][ T3314] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   39.690782][ T3314] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   39.700953][ T3314] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   39.709932][ T3314] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   39.743223][ T3315] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   39.752191][ T3315] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   39.766010][ T3315] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   39.775540][ T3315] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   39.797634][ T3318] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.819994][ T3322] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.857117][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.868787][ T3324] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.878856][ T3322] 8021q: adding VLAN 0 to HW filter on device team0
[   39.894391][ T3318] 8021q: adding VLAN 0 to HW filter on device team0
[   39.909862][ T3314] 8021q: adding VLAN 0 to HW filter on device team0
[   39.918146][ T3324] 8021q: adding VLAN 0 to HW filter on device team0
[   39.929099][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.936177][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.945399][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.952483][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.960975][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.968085][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.985451][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.992623][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.004033][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.011131][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.021323][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.028470][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.046192][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.053298][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.062094][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.069337][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.124232][ T3315] 8021q: adding VLAN 0 to HW filter on device bond0
[   40.139226][ T3324] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   40.163749][ T3315] 8021q: adding VLAN 0 to HW filter on device team0
[   40.173748][ T3322] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   40.184265][ T3322] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   40.206153][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.213276][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.233100][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.240440][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.291645][ T3318] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.330020][ T3324] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.338356][ T3314] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.414867][ T3322] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.440497][ T3315] 8021q: adding VLAN 0 to HW filter on device batadv0
[   40.478403][ T3318] veth0_vlan: entered promiscuous mode
[   40.486326][ T3318] veth1_vlan: entered promiscuous mode
[   40.543426][ T3318] veth0_macvtap: entered promiscuous mode
[   40.566873][ T3314] veth0_vlan: entered promiscuous mode
[   40.591440][ T3318] veth1_macvtap: entered promiscuous mode
[   40.600555][ T3314] veth1_vlan: entered promiscuous mode
[   40.615131][ T3318] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.640591][ T3318] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.651680][ T3315] veth0_vlan: entered promiscuous mode
[   40.661178][ T3314] veth0_macvtap: entered promiscuous mode
[   40.671041][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.683568][ T3314] veth1_macvtap: entered promiscuous mode
[   40.695255][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.706668][ T3324] veth0_vlan: entered promiscuous mode
[   40.717055][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.731529][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_0
[   40.738835][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.752100][ T3315] veth1_vlan: entered promiscuous mode
[   40.762829][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_1
[   40.770416][   T29] kauditd_printk_skb: 9 callbacks suppressed
[   40.770440][   T29] audit: type=1400 audit(1763348334.768:81): avc:  denied  { mounton } for  pid=3318 comm="syz-executor" path="/root/syzkaller.kKARle/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   40.774833][ T3322] veth0_vlan: entered promiscuous mode
[   40.778394][   T29] audit: type=1400 audit(1763348334.768:82): avc:  denied  { mount } for  pid=3318 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   40.803354][ T3324] veth1_vlan: entered promiscuous mode
[   40.806228][   T29] audit: type=1400 audit(1763348334.768:83): avc:  denied  { mounton } for  pid=3318 comm="syz-executor" path="/root/syzkaller.kKARle/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   40.840761][ T3324] veth0_macvtap: entered promiscuous mode
[   40.858828][   T29] audit: type=1400 audit(1763348334.768:84): avc:  denied  { mount } for  pid=3318 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   40.873702][ T3324] veth1_macvtap: entered promiscuous mode
[   40.886395][   T29] audit: type=1400 audit(1763348334.768:85): avc:  denied  { mounton } for  pid=3318 comm="syz-executor" path="/root/syzkaller.kKARle/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   40.903727][ T3315] veth0_macvtap: entered promiscuous mode
[   40.918665][   T29] audit: type=1400 audit(1763348334.768:86): avc:  denied  { mounton } for  pid=3318 comm="syz-executor" path="/root/syzkaller.kKARle/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3932 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[   40.939799][ T3315] veth1_macvtap: entered promiscuous mode
[   40.951920][   T29] audit: type=1400 audit(1763348334.768:87): avc:  denied  { unmount } for  pid=3318 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   40.970109][ T3322] veth1_vlan: entered promiscuous mode
[   40.978507][   T29] audit: type=1400 audit(1763348334.828:88): avc:  denied  { mounton } for  pid=3318 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   41.005494][   T29] audit: type=1400 audit(1763348334.828:89): avc:  denied  { mount } for  pid=3318 comm="syz-executor" name="/" dev="gadgetfs" ino=3936 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   41.016077][ T3324] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.035057][   T52] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.044860][ T3318] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   41.056716][ T3322] veth0_macvtap: entered promiscuous mode
[   41.069587][   T52] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.087906][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.096134][   T29] audit: type=1400 audit(1763348335.088:90): avc:  denied  { read write } for  pid=3318 comm="syz-executor" name="loop0" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   41.096246][   T52] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.141948][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.151588][   T52] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.170675][ T3324] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.181992][   T59] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.195090][   T59] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.205485][ T3322] veth1_macvtap: entered promiscuous mode
[   41.221634][ T3322] batman_adv: batadv0: Interface activated: batadv_slave_0
[   41.229744][   T59] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.240192][   T59] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.251402][ T3488] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   41.257186][ T3484] loop0: detected capacity change from 0 to 512
[   41.262252][ T3488] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   41.279810][ T3484] ext4: Bad value for 'auto_da_alloc'
[   41.286985][ T3322] batman_adv: batadv0: Interface activated: batadv_slave_1
[   41.300371][   T59] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.332610][   T59] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.360823][   T59] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.383833][   T59] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.428722][   T59] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   41.437527][   T59] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   41.455099][ T3499] loop1: detected capacity change from 0 to 1024
[   41.462147][ T3499] EXT4-fs: Ignoring removed orlov option
[   41.491392][   T59] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   41.504427][ T2112] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   41.514144][ T3499] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.568531][ T3505] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT
[   41.745001][ T3509] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6'.
[   41.819167][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.986503][ T3521] loop1: detected capacity change from 0 to 128
[   42.020418][ T3529] loop2: detected capacity change from 0 to 2048
[   42.042697][ T3521] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   42.067240][ T3521] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.084351][ T3529] GPT:first_usable_lbas don't match.
[   42.089831][ T3529] GPT:34 != 290
[   42.093342][ T3529] GPT: Use GNU Parted to correct GPT errors.
[   42.099686][ T3529]  loop2: p1 p2 p3
[   42.121233][    C0] hrtimer: interrupt took 27214 ns
[   42.243414][ T3540] netlink: 'syz.1.11': attribute type 3 has an invalid length.
[   42.286029][ T3538] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   42.386590][ T3315] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   42.458793][ T3546] netlink: 27 bytes leftover after parsing attributes in process `syz.3.17'.
[   42.499667][ T3550] loop3: detected capacity change from 0 to 1024
[   42.505295][ T3500] kexec: Could not allocate swap buffer
[   42.537439][ T3550] EXT4-fs: Ignoring removed orlov option
[   42.559101][ T3550] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.626426][ T3548] loop0: detected capacity change from 0 to 512
[   42.641887][ T3566] smc: net device bond0 applied user defined pnetid SYZ0
[   42.655240][ T3548] ext4: Bad value for 'auto_da_alloc'
[   42.661737][ T3565] netlink: 4 bytes leftover after parsing attributes in process `syz.4.21'.
[   42.672785][ T3566] smc: net device bond0 erased user defined pnetid SYZ0
[   42.775330][ T3568] loop4: detected capacity change from 0 to 2048
[   42.830526][ T3568] GPT:first_usable_lbas don't match.
[   42.835912][ T3568] GPT:34 != 290
[   42.839487][ T3568] GPT: Use GNU Parted to correct GPT errors.
[   42.845562][ T3568]  loop4: p1 p2 p3
[   42.984152][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.018182][ T3572] loop3: detected capacity change from 0 to 512
[   43.025941][ T3572] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   43.039295][ T3572] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   43.060655][ T3572] EXT4-fs (loop3): 1 orphan inode deleted
[   43.066442][ T3572] EXT4-fs (loop3): 1 truncate cleaned up
[   43.079661][ T3572] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.094884][ T3575] loop4: detected capacity change from 0 to 2048
[   43.139172][ T3305] GPT:first_usable_lbas don't match.
[   43.144529][ T3305] GPT:34 != 290
[   43.148069][ T3305] GPT: Use GNU Parted to correct GPT errors.
[   43.154132][ T3305]  loop4: p1 p2 p3
[   43.163961][ T3575] GPT:first_usable_lbas don't match.
[   43.169383][ T3575] GPT:34 != 290
[   43.172847][ T3575] GPT: Use GNU Parted to correct GPT errors.
[   43.179025][ T3575]  loop4: p1 p2 p3
[   43.370386][ T3582] loop2: detected capacity change from 0 to 2048
[   43.409219][ T3586] loop1: detected capacity change from 0 to 128
[   43.415056][ T3305] GPT:first_usable_lbas don't match.
[   43.420981][ T3305] GPT:34 != 290
[   43.424602][ T3305] GPT: Use GNU Parted to correct GPT errors.
[   43.428359][ T3587] loop0: detected capacity change from 0 to 128
[   43.430850][ T3305]  loop2: p1 p2 p3
[   43.445112][ T3586] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   43.465260][ T3586] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.477431][ T3587] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   43.491265][ T3582] GPT:first_usable_lbas don't match.
[   43.496652][ T3582] GPT:34 != 290
[   43.500272][ T3582] GPT: Use GNU Parted to correct GPT errors.
[   43.501935][ T3587] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.506532][ T3582]  loop2: p1 p2 p3
[   43.580210][ T3587] netlink: 'syz.0.28': attribute type 3 has an invalid length.
[   43.624164][ T3315] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   43.632076][ T3596] loop4: detected capacity change from 0 to 512
[   43.648612][ T3318] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   43.669136][ T3596] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   43.701047][ T3596] EXT4-fs (loop4): orphan cleanup on readonly fs
[   43.725457][ T3596] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   43.746701][ T3596] EXT4-fs (loop4): Cannot turn on quotas: error -117
[   43.756275][ T3596] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.29: bg 0: block 40: padding at end of block bitmap is not set
[   43.771411][ T3596] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   43.780862][ T3596] EXT4-fs (loop4): 1 truncate cleaned up
[   43.787468][ T3607] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT
[   43.798772][ T3596] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   43.862787][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.885830][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.899073][ T3609] netlink: 7 bytes leftover after parsing attributes in process `syz.3.32'.
[   44.025339][ T3618] loop4: detected capacity change from 0 to 2048
[   44.040608][ T3621] smc: net device bond0 applied user defined pnetid SYZ0
[   44.055235][ T3621] smc: net device bond0 erased user defined pnetid SYZ0
[   44.084452][ T3305] GPT:first_usable_lbas don't match.
[   44.089898][ T3305] GPT:34 != 290
[   44.093383][ T3305] GPT: Use GNU Parted to correct GPT errors.
[   44.099460][ T3305]  loop4: p1 p2 p3
[   44.124846][ T3627] syzkaller0: entered promiscuous mode
[   44.130503][ T3627] syzkaller0: entered allmulticast mode
[   44.142605][ T3618] GPT:first_usable_lbas don't match.
[   44.147968][ T3618] GPT:34 != 290
[   44.151566][ T3618] GPT: Use GNU Parted to correct GPT errors.
[   44.157674][ T3618]  loop4: p1 p2 p3
[   44.243235][ T3631] loop1: detected capacity change from 0 to 512
[   44.287819][ T3631] EXT4-fs: Ignoring removed i_version option
[   44.370884][ T3631] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.385851][ T3631] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   44.396520][ T3648] loop0: detected capacity change from 0 to 2048
[   44.417244][ T3631] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   44.427707][ T3631] SELinux: failed to load policy
[   44.434979][ T3648] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.449191][ T3648] EXT4-fs (loop0): shut down requested (1)
[   44.459093][ T3631] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   44.473125][ T3631] SELinux: failed to load policy
[   44.507099][ T3653] loop4: detected capacity change from 0 to 764
[   44.518807][ T3653] rock: corrupted directory entry. extent=32, offset=2044, size=237
[   44.531757][ T3653] FAULT_INJECTION: forcing a failure.
[   44.531757][ T3653] name failslab, interval 1, probability 0, space 0, times 1
[   44.544628][ T3653] CPU: 0 UID: 0 PID: 3653 Comm: syz.4.48 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.544655][ T3653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   44.544668][ T3653] Call Trace:
[   44.544675][ T3653]  <TASK>
[   44.544709][ T3653]  __dump_stack+0x1d/0x30
[   44.544731][ T3653]  dump_stack_lvl+0xe8/0x140
[   44.544757][ T3653]  dump_stack+0x15/0x1b
[   44.544778][ T3653]  should_fail_ex+0x265/0x280
[   44.544885][ T3653]  should_failslab+0x8c/0xb0
[   44.544914][ T3653]  kmem_cache_alloc_noprof+0x50/0x480
[   44.544949][ T3653]  ? alloc_empty_file+0x76/0x200
[   44.545067][ T3653]  alloc_empty_file+0x76/0x200
[   44.545105][ T3653]  path_openat+0x68/0x2170
[   44.545128][ T3653]  ? __bpf_get_stackid+0x7d4/0x800
[   44.545223][ T3653]  ? _parse_integer_limit+0x170/0x190
[   44.545262][ T3653]  ? _parse_integer+0x27/0x40
[   44.545301][ T3653]  ? kstrtoull+0x111/0x140
[   44.545415][ T3653]  ? kstrtouint+0x76/0xc0
[   44.545446][ T3653]  do_filp_open+0x109/0x230
[   44.545496][ T3653]  do_sys_openat2+0xa6/0x110
[   44.545559][ T3653]  __x64_sys_open+0xe6/0x110
[   44.545579][ T3653]  x64_sys_call+0x1457/0x3000
[   44.545634][ T3653]  do_syscall_64+0xd2/0x200
[   44.545660][ T3653]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   44.545770][ T3653]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   44.545811][ T3653]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.545841][ T3653] RIP: 0033:0x7f2341d8f6c9
[   44.545885][ T3653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.545902][ T3653] RSP: 002b:00007f23407ef038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[   44.545928][ T3653] RAX: ffffffffffffffda RBX: 00007f2341fe5fa0 RCX: 00007f2341d8f6c9
[   44.545944][ T3653] RDX: 0000000000000040 RSI: 0000000000000200 RDI: 0000200000000080
[   44.545959][ T3653] RBP: 00007f23407ef090 R08: 0000000000000000 R09: 0000000000000000
[   44.545975][ T3653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.545990][ T3653] R13: 00007f2341fe6038 R14: 00007f2341fe5fa0 R15: 00007ffdb2579ba8
[   44.546014][ T3653]  </TASK>
[   44.769652][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.969146][ T3679] FAULT_INJECTION: forcing a failure.
[   44.969146][ T3679] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   44.982289][ T3679] CPU: 1 UID: 0 PID: 3679 Comm: syz.1.59 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.982321][ T3679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   44.982406][ T3679] Call Trace:
[   44.982414][ T3679]  <TASK>
[   44.982423][ T3679]  __dump_stack+0x1d/0x30
[   44.982451][ T3679]  dump_stack_lvl+0xe8/0x140
[   44.982476][ T3679]  dump_stack+0x15/0x1b
[   44.982493][ T3679]  should_fail_ex+0x265/0x280
[   44.982529][ T3679]  should_fail+0xb/0x20
[   44.982666][ T3679]  should_fail_usercopy+0x1a/0x20
[   44.982686][ T3679]  _copy_from_user+0x1c/0xb0
[   44.982718][ T3679]  bpf_test_init+0xb9/0x140
[   44.982750][ T3679]  bpf_prog_test_run_skb+0x161/0xbf0
[   44.982836][ T3679]  ? __rcu_read_unlock+0x4f/0x70
[   44.982861][ T3679]  ? __fget_files+0x184/0x1c0
[   44.982909][ T3679]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   44.982943][ T3679]  bpf_prog_test_run+0x22a/0x390
[   44.983047][ T3679]  __sys_bpf+0x4c0/0x7c0
[   44.983074][ T3679]  __x64_sys_bpf+0x41/0x50
[   44.983139][ T3679]  x64_sys_call+0x2aee/0x3000
[   44.983239][ T3679]  do_syscall_64+0xd2/0x200
[   44.983271][ T3679]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   44.983393][ T3679]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   44.983426][ T3679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.983446][ T3679] RIP: 0033:0x7f390a70f6c9
[   44.983462][ T3679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.983484][ T3679] RSP: 002b:00007f3909177038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   44.983510][ T3679] RAX: ffffffffffffffda RBX: 00007f390a965fa0 RCX: 00007f390a70f6c9
[   44.983525][ T3679] RDX: 0000000000000050 RSI: 00002000000002c0 RDI: 000000000000000a
[   44.983538][ T3679] RBP: 00007f3909177090 R08: 0000000000000000 R09: 0000000000000000
[   44.983614][ T3679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   44.983628][ T3679] R13: 00007f390a966038 R14: 00007f390a965fa0 R15: 00007ffee6a82068
[   44.983647][ T3679]  </TASK>
[   45.204303][ T3674] capability: warning: `syz.4.58' uses deprecated v2 capabilities in a way that may be insecure
[   45.264536][ T3690] loop3: detected capacity change from 0 to 512
[   45.284923][ T3690] EXT4-fs: Ignoring removed i_version option
[   45.295115][ T3696] 9p: Unknown Cache mode or invalid value r
[   45.295987][ T3681] netlink: 8 bytes leftover after parsing attributes in process `syz.2.60'.
[   45.306160][ T3690] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.323461][ T3690] ext4 filesystem being mounted at /14/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   45.346611][ T3690] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   45.357197][ T3690] SELinux: failed to load policy
[   45.372989][ T3700] netlink: 16 bytes leftover after parsing attributes in process `syz.4.64'.
[   45.395139][ T3690] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   45.405602][ T3690] SELinux: failed to load policy
[   45.423524][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.447527][ T3702] FAULT_INJECTION: forcing a failure.
[   45.447527][ T3702] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   45.460814][ T3702] CPU: 0 UID: 0 PID: 3702 Comm: syz.3.65 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   45.460848][ T3702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   45.460864][ T3702] Call Trace:
[   45.460873][ T3702]  <TASK>
[   45.460883][ T3702]  __dump_stack+0x1d/0x30
[   45.460911][ T3702]  dump_stack_lvl+0xe8/0x140
[   45.460936][ T3702]  dump_stack+0x15/0x1b
[   45.461009][ T3702]  should_fail_ex+0x265/0x280
[   45.461053][ T3702]  should_fail+0xb/0x20
[   45.461093][ T3702]  should_fail_usercopy+0x1a/0x20
[   45.461155][ T3702]  _copy_from_user+0x1c/0xb0
[   45.461187][ T3702]  bpf_test_init+0xb9/0x140
[   45.461223][ T3702]  bpf_prog_test_run_skb+0x161/0xbf0
[   45.461263][ T3702]  ? __rcu_read_unlock+0x4f/0x70
[   45.461352][ T3702]  ? __fget_files+0x184/0x1c0
[   45.461391][ T3702]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[   45.461495][ T3702]  bpf_prog_test_run+0x22a/0x390
[   45.461518][ T3702]  __sys_bpf+0x4c0/0x7c0
[   45.461563][ T3702]  __x64_sys_bpf+0x41/0x50
[   45.461595][ T3702]  x64_sys_call+0x2aee/0x3000
[   45.461619][ T3702]  do_syscall_64+0xd2/0x200
[   45.461640][ T3702]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   45.461748][ T3702]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   45.461783][ T3702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.461805][ T3702] RIP: 0033:0x7f63497ff6c9
[   45.461821][ T3702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.461839][ T3702] RSP: 002b:00007f6348267038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   45.461888][ T3702] RAX: ffffffffffffffda RBX: 00007f6349a55fa0 RCX: 00007f63497ff6c9
[   45.461901][ T3702] RDX: 0000000000000050 RSI: 00002000000002c0 RDI: 000000000000000a
[   45.461941][ T3702] RBP: 00007f6348267090 R08: 0000000000000000 R09: 0000000000000000
[   45.461953][ T3702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.461965][ T3702] R13: 00007f6349a56038 R14: 00007f6349a55fa0 R15: 00007ffcb1e76a48
[   45.461984][ T3702]  </TASK>
[   45.792680][ T3709] loop4: detected capacity change from 0 to 1024
[   45.799721][ T3709] EXT4-fs: Ignoring removed orlov option
[   45.805946][   T29] kauditd_printk_skb: 508 callbacks suppressed
[   45.805962][   T29] audit: type=1400 audit(1763348339.798:598): avc:  denied  { mounton } for  pid=3708 comm="syz.4.68" path="/18/bus" dev="tmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   45.831870][ T3709] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   45.851482][   T29] audit: type=1400 audit(1763348339.848:599): avc:  denied  { read } for  pid=3708 comm="syz.4.68" path="/18/bus/bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   46.024967][   T29] audit: type=1326 audit(1763348340.018:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9532cff6c9 code=0x7ffc0000
[   46.048407][   T29] audit: type=1326 audit(1763348340.018:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9532cff6c9 code=0x7ffc0000
[   46.077732][   T29] audit: type=1326 audit(1763348340.068:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f9532cff6c9 code=0x7ffc0000
[   46.101194][   T29] audit: type=1326 audit(1763348340.068:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9532cff6c9 code=0x7ffc0000
[   46.124729][   T29] audit: type=1326 audit(1763348340.068:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9532cff6c9 code=0x7ffc0000
[   46.148196][   T29] audit: type=1326 audit(1763348340.068:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9532cff6c9 code=0x7ffc0000
[   46.171755][   T29] audit: type=1326 audit(1763348340.068:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9532cff6c9 code=0x7ffc0000
[   46.195655][   T29] audit: type=1326 audit(1763348340.068:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3712 comm="syz.2.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9532cff6c9 code=0x7ffc0000
[   46.246499][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.345989][ T3726] loop1: detected capacity change from 0 to 512
[   46.385611][ T3726] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   46.470120][ T3726] EXT4-fs (loop1): 1 orphan inode deleted
[   46.475971][ T3726] EXT4-fs (loop1): 1 truncate cleaned up
[   46.501509][ T3741] netlink: 27 bytes leftover after parsing attributes in process `syz.4.81'.
[   46.506794][ T3726] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   46.554040][ T3747] netlink: 'syz.2.83': attribute type 3 has an invalid length.
[   46.616371][ T3759] Zero length message leads to an empty skb
[   46.643124][ T3762] syzkaller0: entered promiscuous mode
[   46.648813][ T3762] syzkaller0: entered allmulticast mode
[   46.705827][ T3764] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.716124][ T3764] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.803263][ T3766] FAULT_INJECTION: forcing a failure.
[   46.803263][ T3766] name failslab, interval 1, probability 0, space 0, times 0
[   46.815991][ T3766] CPU: 1 UID: 0 PID: 3766 Comm: syz.2.92 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   46.816017][ T3766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   46.816030][ T3766] Call Trace:
[   46.816037][ T3766]  <TASK>
[   46.816047][ T3766]  __dump_stack+0x1d/0x30
[   46.816085][ T3766]  dump_stack_lvl+0xe8/0x140
[   46.816110][ T3766]  dump_stack+0x15/0x1b
[   46.816130][ T3766]  should_fail_ex+0x265/0x280
[   46.816207][ T3766]  should_failslab+0x8c/0xb0
[   46.816281][ T3766]  __kvmalloc_node_noprof+0x12e/0x670
[   46.816333][ T3766]  ? __nf_hook_entries_try_shrink+0x265/0x460
[   46.816354][ T3766]  __nf_hook_entries_try_shrink+0x265/0x460
[   46.816376][ T3766]  __nf_unregister_net_hook+0x2d1/0x3b0
[   46.816409][ T3766]  nf_unregister_net_hooks+0xab/0xe0
[   46.816507][ T3766]  ? __pfx_nf_defrag_ipv4_disable+0x10/0x10
[   46.816548][ T3766]  nf_defrag_ipv4_disable+0x84/0xa0
[   46.816590][ T3766]  bpf_nf_link_release+0xc2/0x170
[   46.816613][ T3766]  ? __pfx_bpf_nf_link_detach+0x10/0x10
[   46.816649][ T3766]  bpf_nf_link_detach+0x15/0x20
[   46.816671][ T3766]  link_detach+0x12e/0x180
[   46.816691][ T3766]  __sys_bpf+0x535/0x7c0
[   46.816714][ T3766]  __x64_sys_bpf+0x41/0x50
[   46.816764][ T3766]  x64_sys_call+0x2aee/0x3000
[   46.816784][ T3766]  do_syscall_64+0xd2/0x200
[   46.816802][ T3766]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   46.816835][ T3766]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   46.816865][ T3766]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.816960][ T3766] RIP: 0033:0x7f9532cff6c9
[   46.816973][ T3766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   46.816988][ T3766] RSP: 002b:00007f953175f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   46.817005][ T3766] RAX: ffffffffffffffda RBX: 00007f9532f55fa0 RCX: 00007f9532cff6c9
[   46.817016][ T3766] RDX: 0000000000000004 RSI: 0000200000000100 RDI: 0000000000000022
[   46.817026][ T3766] RBP: 00007f953175f090 R08: 0000000000000000 R09: 0000000000000000
[   46.817037][ T3766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.817047][ T3766] R13: 00007f9532f56038 R14: 00007f9532f55fa0 R15: 00007ffd2e1bf208
[   46.817116][ T3766]  </TASK>
[   47.101056][ T3774] netlink: 27 bytes leftover after parsing attributes in process `syz.4.96'.
[   47.134584][ T3777] loop4: detected capacity change from 0 to 512
[   47.145780][ T3777] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   47.167595][ T3777] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   47.180804][ T3777] EXT4-fs (loop4): 1 truncate cleaned up
[   47.186991][ T3777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.201868][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.305569][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.366624][ T3789] veth2: entered promiscuous mode
[   47.372439][ T3789] veth2: entered allmulticast mode
[   47.400532][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.463141][ T3796] netlink: 4 bytes leftover after parsing attributes in process `syz.0.104'.
[   47.475748][ T3798] capability: warning: `syz.3.103' uses 32-bit capabilities (legacy support in use)
[   47.490494][ T3795] netlink: 4 bytes leftover after parsing attributes in process `syz.0.104'.
[   47.505356][ T3795] netlink: 12 bytes leftover after parsing attributes in process `syz.0.104'.
[   47.612550][ T3809] loop3: detected capacity change from 0 to 512
[   47.627809][ T3809] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   47.638904][ T3811] 9pnet_fd: Insufficient options for proto=fd
[   47.651562][ T3809] EXT4-fs (loop3): 1 orphan inode deleted
[   47.657361][ T3809] EXT4-fs (loop3): 1 truncate cleaned up
[   47.664968][ T3809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.696763][ T3814] loop0: detected capacity change from 0 to 1024
[   47.703985][ T3814] EXT4-fs: Ignoring removed orlov option
[   47.720201][ T3814] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.791195][ T3817] smc: net device bond0 applied user defined pnetid SYZ0
[   47.799274][ T3817] smc: net device bond0 erased user defined pnetid SYZ0
[   47.902209][ T3820] loop2: detected capacity change from 0 to 1024
[   47.909126][ T3820] EXT4-fs: Ignoring removed orlov option
[   47.917795][ T3820] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.961570][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.986632][ T3823] syzkaller0: entered promiscuous mode
[   47.992255][ T3823] syzkaller0: entered allmulticast mode
[   48.203686][ T3826] loop0: detected capacity change from 0 to 512
[   48.210376][ T3826] ext4: Bad value for 'auto_da_alloc'
[   48.292309][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.347987][ T3838] netlink: 'syz.2.118': attribute type 3 has an invalid length.
[   48.402510][ T3847] 
@0�: renamed from bond_slave_1 (while UP)
[   48.449764][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.554715][ T3860] syzkaller0: entered promiscuous mode
[   48.560393][ T3860] syzkaller0: entered allmulticast mode
[   48.606813][ T3864] FAULT_INJECTION: forcing a failure.
[   48.606813][ T3864] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   48.620044][ T3864] CPU: 1 UID: 0 PID: 3864 Comm: syz.3.126 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   48.620078][ T3864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   48.620160][ T3864] Call Trace:
[   48.620165][ T3864]  <TASK>
[   48.620172][ T3864]  __dump_stack+0x1d/0x30
[   48.620192][ T3864]  dump_stack_lvl+0xe8/0x140
[   48.620210][ T3864]  dump_stack+0x15/0x1b
[   48.620293][ T3864]  should_fail_ex+0x265/0x280
[   48.620359][ T3864]  should_fail+0xb/0x20
[   48.620386][ T3864]  should_fail_usercopy+0x1a/0x20
[   48.620405][ T3864]  _copy_from_iter+0xd2/0xe80
[   48.620426][ T3864]  ? alloc_pages_mpol+0x217/0x260
[   48.620449][ T3864]  copy_page_from_iter+0x178/0x2a0
[   48.620551][ T3864]  tun_get_user+0x679/0x26e0
[   48.620674][ T3864]  ? ref_tracker_alloc+0x1f2/0x2f0
[   48.620714][ T3864]  tun_chr_write_iter+0x15e/0x210
[   48.620740][ T3864]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   48.620819][ T3864]  vfs_write+0x52a/0x960
[   48.620847][ T3864]  ksys_write+0xda/0x1a0
[   48.620885][ T3864]  __x64_sys_write+0x40/0x50
[   48.620920][ T3864]  x64_sys_call+0x2802/0x3000
[   48.620948][ T3864]  do_syscall_64+0xd2/0x200
[   48.620966][ T3864]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   48.620991][ T3864]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   48.621062][ T3864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   48.621080][ T3864] RIP: 0033:0x7f63497fe17f
[   48.621094][ T3864] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[   48.621109][ T3864] RSP: 002b:00007f6348267000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[   48.621132][ T3864] RAX: ffffffffffffffda RBX: 00007f6349a55fa0 RCX: 00007f63497fe17f
[   48.621143][ T3864] RDX: 000000000000004e RSI: 00002000000001c0 RDI: 00000000000000c8
[   48.621154][ T3864] RBP: 00007f6348267090 R08: 0000000000000000 R09: 0000000000000000
[   48.621164][ T3864] R10: 000000000000004e R11: 0000000000000293 R12: 0000000000000001
[   48.621175][ T3864] R13: 00007f6349a56038 R14: 00007f6349a55fa0 R15: 00007ffcb1e76a48
[   48.621192][ T3864]  </TASK>
[   48.959579][ T3877] loop3: detected capacity change from 0 to 512
[   48.973265][ T3877] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   48.991483][ T3877] EXT4-fs (loop3): 1 orphan inode deleted
[   48.997284][ T3877] EXT4-fs (loop3): 1 truncate cleaned up
[   49.005142][ T3877] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.040680][ T3882] netlink: 27 bytes leftover after parsing attributes in process `syz.0.134'.
[   49.116995][ T3888] can0: slcan on ttyS3.
[   49.158301][ T3888] can0 (unregistered): slcan off ttyS3.
[   49.165898][ T3888] can0: slcan on ttyS3.
[   49.276998][ T3902] loop2: detected capacity change from 0 to 512
[   49.286036][ T3902] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   49.303705][ T3898] can: request_module (can-proto-0) failed.
[   49.334411][ T3902] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.348496][ T3902] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   49.365706][ T3902] EXT4-fs: Ignoring removed orlov option
[   49.372629][ T3902] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   49.388093][ T3902] EXT4-fs (loop2): can't enable nombcache during remount
[   49.401672][ T3902] geneve2: entered promiscuous mode
[   49.406945][ T3902] geneve2: entered allmulticast mode
[   49.414661][   T12] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   49.423951][   T12] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   49.434528][   T12] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   49.443568][   T12] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   49.457690][ T3922] loop0: detected capacity change from 0 to 128
[   49.465076][ T3922] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   49.477738][ T3922] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   49.486630][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.594964][ T3933] loop0: detected capacity change from 0 to 512
[   49.604949][ T3933] EXT4-fs: Ignoring removed i_version option
[   49.622498][ T3933] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.639322][ T3933] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   49.651952][ T3933] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   49.662419][ T3933] SELinux: failed to load policy
[   49.686300][ T3933] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   49.704481][ T3933] SELinux: failed to load policy
[   49.742467][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.804273][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.864064][ T3953] netlink: 27 bytes leftover after parsing attributes in process `syz.4.154'.
[   49.900374][ T3952] SELinux:  Context system_u:object_r:crypt_device_t:s0 is not valid (left unmapped).
[   49.929729][ T3883] can0 (unregistered): slcan off ttyS3.
[   50.134869][ T3982] netlink: 'syz.4.158': attribute type 3 has an invalid length.
[   50.848065][   T29] kauditd_printk_skb: 1304 callbacks suppressed
[   50.848081][   T29] audit: type=1326 audit(1763348344.778:1912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   50.877814][   T29] audit: type=1326 audit(1763348344.778:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   50.901186][   T29] audit: type=1326 audit(1763348344.788:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   50.924548][   T29] audit: type=1326 audit(1763348344.788:1915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   50.947921][   T29] audit: type=1326 audit(1763348344.788:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   50.971551][   T29] audit: type=1326 audit(1763348344.788:1917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   50.994957][   T29] audit: type=1326 audit(1763348344.788:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   51.018402][   T29] audit: type=1326 audit(1763348344.788:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   51.042084][ T4004] loop2: detected capacity change from 0 to 512
[   51.049049][   T29] audit: type=1326 audit(1763348344.788:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   51.052469][ T4004] EXT4-fs: Ignoring removed i_version option
[   51.072507][   T29] audit: type=1326 audit(1763348344.788:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.0.163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   51.123329][ T4004] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.137690][ T4004] ext4 filesystem being mounted at /34/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   51.173217][ T4004] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   51.183916][ T4004] SELinux: failed to load policy
[   51.204981][ T4004] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   51.215939][ T4004] SELinux: failed to load policy
[   51.231055][ T4019] loop4: detected capacity change from 0 to 512
[   51.237965][ T4019] EXT4-fs: Ignoring removed i_version option
[   51.250047][ T4019] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   51.263638][ T4021] netlink: 27 bytes leftover after parsing attributes in process `syz.0.167'.
[   51.269522][ T4019] EXT4-fs error (device loop4): xattr_find_entry:337: inode #15: comm syz.4.166: corrupted xattr entries
[   51.288590][ T4019] EXT4-fs (loop4): 1 orphan inode deleted
[   51.301422][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.304108][ T4019] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.341208][ T4026] netlink: 'syz.2.169': attribute type 3 has an invalid length.
[   51.356638][ T4028] netlink: 24 bytes leftover after parsing attributes in process `syz.3.170'.
[   51.374759][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.413469][ T4030] loop4: detected capacity change from 0 to 512
[   51.421586][ T4030] EXT4-fs: Ignoring removed i_version option
[   51.427718][ T4030] EXT4-fs: Ignoring removed bh option
[   51.446510][ T4036] netlink: 27 bytes leftover after parsing attributes in process `syz.2.172'.
[   51.448177][ T4035] FAULT_INJECTION: forcing a failure.
[   51.448177][ T4035] name failslab, interval 1, probability 0, space 0, times 0
[   51.468211][ T4035] CPU: 0 UID: 0 PID: 4035 Comm: syz.3.174 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   51.468262][ T4035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   51.468274][ T4035] Call Trace:
[   51.468281][ T4035]  <TASK>
[   51.468289][ T4035]  __dump_stack+0x1d/0x30
[   51.468312][ T4035]  dump_stack_lvl+0xe8/0x140
[   51.468339][ T4035]  dump_stack+0x15/0x1b
[   51.468359][ T4035]  should_fail_ex+0x265/0x280
[   51.468483][ T4035]  should_failslab+0x8c/0xb0
[   51.468553][ T4035]  kmem_cache_alloc_node_noprof+0x57/0x4a0
[   51.468594][ T4035]  ? __alloc_skb+0x101/0x320
[   51.468634][ T4035]  __alloc_skb+0x101/0x320
[   51.468669][ T4035]  ? audit_log_start+0x342/0x720
[   51.468741][ T4035]  audit_log_start+0x3a0/0x720
[   51.468762][ T4035]  ? kstrtouint+0x76/0xc0
[   51.468857][ T4035]  audit_seccomp+0x48/0x100
[   51.468895][ T4035]  ? __seccomp_filter+0x82d/0x1250
[   51.468939][ T4035]  __seccomp_filter+0x83e/0x1250
[   51.469013][ T4035]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   51.469054][ T4035]  ? vfs_write+0x7e8/0x960
[   51.469123][ T4035]  ? __rcu_read_unlock+0x4f/0x70
[   51.469218][ T4035]  ? __fget_files+0x184/0x1c0
[   51.469252][ T4035]  __secure_computing+0x82/0x150
[   51.469287][ T4035]  syscall_trace_enter+0xcf/0x1e0
[   51.469398][ T4035]  do_syscall_64+0xac/0x200
[   51.469430][ T4035]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   51.469477][ T4035]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   51.469512][ T4035]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   51.469548][ T4035] RIP: 0033:0x7f63497ff6c9
[   51.469644][ T4035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   51.469663][ T4035] RSP: 002b:00007f6348267038 EFLAGS: 00000246 ORIG_RAX: 0000000000000042
[   51.469685][ T4035] RAX: ffffffffffffffda RBX: 00007f6349a55fa0 RCX: 00007f63497ff6c9
[   51.469700][ T4035] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[   51.469790][ T4035] RBP: 00007f6348267090 R08: 0000000000000000 R09: 0000000000000000
[   51.469807][ T4035] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[   51.469822][ T4035] R13: 00007f6349a56038 R14: 00007f6349a55fa0 R15: 00007ffcb1e76a48
[   51.469847][ T4035]  </TASK>
[   51.717387][ T4030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   51.720756][ T4044] syzkaller0: entered promiscuous mode
[   51.730439][ T4030] ext4 filesystem being mounted at /49/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   51.735412][ T4044] syzkaller0: entered allmulticast mode
[   51.745825][ T4038] loop2: detected capacity change from 0 to 1024
[   51.760664][ T4032] loop0: detected capacity change from 0 to 512
[   51.765882][ T4038] EXT4-fs: Ignoring removed orlov option
[   51.767490][ T4032] ext4: Bad value for 'auto_da_alloc'
[   51.792468][ T4038] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.824120][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.967001][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.173752][ T4064] netlink: 'syz.4.182': attribute type 3 has an invalid length.
[   52.271341][ T4073] loop4: detected capacity change from 0 to 512
[   52.285040][ T4073] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   52.323739][ T4073] EXT4-fs (loop4): 1 orphan inode deleted
[   52.329579][ T4073] EXT4-fs (loop4): 1 truncate cleaned up
[   52.339124][ T4073] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   52.391834][ T4083] netlink: 27 bytes leftover after parsing attributes in process `syz.1.186'.
[   52.450696][ T4087] loop0: detected capacity change from 0 to 1024
[   52.461381][ T4087] EXT4-fs: Ignoring removed orlov option
[   52.480709][ T4087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   52.510013][ T4089] syzkaller0: entered promiscuous mode
[   52.515561][ T4089] syzkaller0: entered allmulticast mode
[   52.803404][ T4115] syzkaller0: entered promiscuous mode
[   52.809078][ T4115] syzkaller0: entered allmulticast mode
[   52.827193][ T4115] FAULT_INJECTION: forcing a failure.
[   52.827193][ T4115] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   52.840333][ T4115] CPU: 0 UID: 0 PID: 4115 Comm: syz.2.190 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   52.840368][ T4115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   52.840383][ T4115] Call Trace:
[   52.840392][ T4115]  <TASK>
[   52.840402][ T4115]  __dump_stack+0x1d/0x30
[   52.840431][ T4115]  dump_stack_lvl+0xe8/0x140
[   52.840458][ T4115]  dump_stack+0x15/0x1b
[   52.840494][ T4115]  should_fail_ex+0x265/0x280
[   52.840531][ T4115]  should_fail+0xb/0x20
[   52.840573][ T4115]  should_fail_usercopy+0x1a/0x20
[   52.840648][ T4115]  _copy_from_user+0x1c/0xb0
[   52.840740][ T4115]  ___sys_recvmsg+0xaa/0x370
[   52.840759][ T4115]  ? _parse_integer+0x27/0x40
[   52.840849][ T4115]  do_recvmmsg+0x1ef/0x540
[   52.840877][ T4115]  ? fput+0x8f/0xc0
[   52.840900][ T4115]  __x64_sys_recvmmsg+0xe5/0x170
[   52.840982][ T4115]  x64_sys_call+0x27aa/0x3000
[   52.841004][ T4115]  do_syscall_64+0xd2/0x200
[   52.841030][ T4115]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   52.841065][ T4115]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   52.841111][ T4115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   52.841139][ T4115] RIP: 0033:0x7f9532cff6c9
[   52.841158][ T4115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   52.841201][ T4115] RSP: 002b:00007f953175f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   52.841240][ T4115] RAX: ffffffffffffffda RBX: 00007f9532f55fa0 RCX: 00007f9532cff6c9
[   52.841252][ T4115] RDX: 0000000000001b00 RSI: 0000200000005140 RDI: 0000000000000006
[   52.841317][ T4115] RBP: 00007f953175f090 R08: 0000000000000000 R09: 0000000000000000
[   52.841333][ T4115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   52.841346][ T4115] R13: 00007f9532f56038 R14: 00007f9532f55fa0 R15: 00007ffd2e1bf208
[   52.841366][ T4115]  </TASK>
[   53.065578][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.113689][ T3324] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.135008][ T4123] can0: slcan on ttyS3.
[   53.218915][ T4134] netlink: 28 bytes leftover after parsing attributes in process `syz.0.197'.
[   53.227910][ T4134] netlink: 28 bytes leftover after parsing attributes in process `syz.0.197'.
[   53.396447][ T4140] loop3: detected capacity change from 0 to 512
[   53.403232][ T4140] ext4: Bad value for 'auto_da_alloc'
[   53.532269][ T4127] netlink: 'syz.4.194': attribute type 1 has an invalid length.
[   53.540002][ T4127] netlink: 224 bytes leftover after parsing attributes in process `syz.4.194'.
[   53.623044][ T4165] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.662713][ T4165] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.676878][ T4166] netlink: 60 bytes leftover after parsing attributes in process `syz.4.201'.
[   53.712737][ T4165] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.773879][ T4165] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.822123][ T2112] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   53.834897][ T2112] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   53.847244][ T2112] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   53.859809][ T2112] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   53.930968][ T4118] can0 (unregistered): slcan off ttyS3.
[   54.215820][ T4211] netlink: 12 bytes leftover after parsing attributes in process `syz.2.208'.
[   54.257218][ T4211] loop2: detected capacity change from 0 to 512
[   54.280855][ T4211] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[   54.290441][ T4211] EXT4-fs (loop2): orphan cleanup on readonly fs
[   54.304048][ T4219] loop0: detected capacity change from 0 to 1024
[   54.316664][ T4219] EXT4-fs: Ignoring removed orlov option
[   54.323908][ T4211] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #13: comm syz.2.208: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   54.343041][ T4219] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.355732][ T4217] loop3: detected capacity change from 0 to 512
[   54.372643][ T4211] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.208: couldn't read orphan inode 13 (err -117)
[   54.393089][ T4211] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   54.411595][ T4217] EXT4-fs warning (device loop3): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop3.
[   54.428145][ T4211] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   54.438972][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.449275][ T4233] netlink: 'syz.4.211': attribute type 3 has an invalid length.
[   54.457139][ T4211] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[   54.498521][ T4211] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   54.516984][ T4246] syzkaller1: entered promiscuous mode
[   54.522606][ T4246] syzkaller1: entered allmulticast mode
[   54.530455][ T4239] syzkaller0: entered promiscuous mode
[   54.534795][ T4247] loop0: detected capacity change from 0 to 512
[   54.535968][ T4239] syzkaller0: entered allmulticast mode
[   54.543217][ T4211] ext4 filesystem being remounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.562570][ T4247] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   54.582011][ T4247] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.594803][ T4247] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   54.618379][ T4235] EXT4-fs: Ignoring removed orlov option
[   54.624173][ T4235] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   54.636863][ T4235] EXT4-fs (loop0): can't enable nombcache during remount
[   54.644703][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.690923][ T4235] geneve2: entered promiscuous mode
[   54.696274][ T4235] geneve2: entered allmulticast mode
[   54.729760][ T2112] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   54.749068][ T2112] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   54.768550][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.777515][ T4262] syzkaller1: entered promiscuous mode
[   54.783150][ T4262] syzkaller1: entered allmulticast mode
[   54.793190][ T2112] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   54.811970][ T2112] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   54.886234][ T4281] loop2: detected capacity change from 0 to 512
[   54.893373][ T4281] EXT4-fs: Ignoring removed i_version option
[   54.910534][ T4281] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   54.923603][ T4281] ext4 filesystem being mounted at /45/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   54.937108][ T4281] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   54.947730][ T4281] SELinux: failed to load policy
[   54.961887][ T4281] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   54.972514][ T4281] SELinux: failed to load policy
[   54.991300][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.000571][ T4292] loop3: detected capacity change from 0 to 1024
[   55.007822][ T4292] EXT4-fs: Ignoring removed orlov option
[   55.020171][ T4292] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.037711][ T4292] smc: net device bond0 applied user defined pnetid SYZ0
[   55.045986][ T4292] smc: net device bond0 erased user defined pnetid SYZ0
[   55.056396][ T4295] loop2: detected capacity change from 0 to 2048
[   55.074418][ T4295] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.089619][ T4295] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   55.104573][ T4295] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 65537 with max blocks 1 with error 28
[   55.117271][ T4295] EXT4-fs (loop2): This should not happen!! Data will be lost
[   55.117271][ T4295] 
[   55.127097][ T4295] EXT4-fs (loop2): Total free blocks count 0
[   55.133157][ T4295] EXT4-fs (loop2): Free/Dirty block details
[   55.139234][ T4295] EXT4-fs (loop2): free_blocks=2415919104
[   55.145066][ T4295] EXT4-fs (loop2): dirty_blocks=16
[   55.150264][ T4295] EXT4-fs (loop2): Block reservation details
[   55.156310][ T4295] EXT4-fs (loop2): i_reserved_data_blocks=1
[   55.164070][ T4295] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   55.175407][ T4295] syz.2.224 (4295) used greatest stack depth: 9880 bytes left
[   55.194638][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.235916][ T4300] loop2: detected capacity change from 0 to 1024
[   55.243520][ T4300] =======================================================
[   55.243520][ T4300] WARNING: The mand mount option has been deprecated and
[   55.243520][ T4300]          and is ignored by this kernel. Remove the mand
[   55.243520][ T4300]          option from the mount to silence this warning.
[   55.243520][ T4300] =======================================================
[   55.289182][ T4300] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   55.300774][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.301011][ T4300] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #3: block 1: comm syz.2.225: lblock 1 mapped to illegal pblock 1 (length 1)
[   55.324146][ T4300] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.225: Failed to acquire dquot type 0
[   55.335694][ T4300] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.225: Freeing blocks not in datazone - block = 0, count = 4096
[   55.349853][ T4300] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.225: Invalid inode bitmap blk 0 in block_group 0
[   55.362739][ T4300] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[   55.371653][   T12] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   55.386095][ T4300] EXT4-fs (loop2): 1 orphan inode deleted
[   55.386926][ T4303] syzkaller0: entered promiscuous mode
[   55.393162][   T12] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:0: Failed to release dquot type 0
[   55.397414][ T4303] syzkaller0: entered allmulticast mode
[   55.409896][ T4300] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.512372][ T3322] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.528462][  T313] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   55.546005][  T313] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:5: Failed to release dquot type 0
[   55.611024][ T4312] loop2: detected capacity change from 0 to 512
[   55.629354][ T4312] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   55.663071][ T4312] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.677639][ T4312] EXT4-fs: Ignoring removed orlov option
[   55.684001][ T4312] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   55.692641][ T4312] EXT4-fs (loop2): can't enable nombcache during remount
[   55.791062][ T4322] loop2: detected capacity change from 0 to 512
[   55.810166][ T4322] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.233: Failed to acquire dquot type 1
[   55.822026][ T4322] EXT4-fs (loop2): 1 truncate cleaned up
[   55.828383][ T4322] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.864006][ T4326] loop3: detected capacity change from 0 to 512
[   55.889568][ T4326] ext4 filesystem being mounted at /51/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   55.999196][ T4328] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   56.145005][   T29] kauditd_printk_skb: 942 callbacks suppressed
[   56.145022][   T29] audit: type=1400 audit(1763348350.138:2856): avc:  denied  { append } for  pid=4341 comm="syz.1.240" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   56.175935][ T4342] usb usb1: usbfs: process 4342 (syz.1.240) did not claim interface 63 before use
[   56.197981][   T29] audit: type=1400 audit(1763348350.188:2857): avc:  denied  { mount } for  pid=4341 comm="syz.1.240" name="/" dev="configfs" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[   56.220751][   T29] audit: type=1400 audit(1763348350.188:2858): avc:  denied  { search } for  pid=4341 comm="syz.1.240" name="/" dev="configfs" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   56.268402][ T4342] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[   56.319024][   T29] audit: type=1400 audit(1763348350.238:2859): avc:  denied  { search } for  pid=4341 comm="syz.1.240" name="/" dev="configfs" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   56.341212][   T29] audit: type=1400 audit(1763348350.238:2860): avc:  denied  { read open } for  pid=4341 comm="syz.1.240" path="/" dev="configfs" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[   56.363821][   T29] audit: type=1400 audit(1763348350.248:2861): avc:  denied  { shutdown } for  pid=4341 comm="syz.1.240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   56.407251][ T4352] netlink: 7 bytes leftover after parsing attributes in process `syz.1.244'.
[   56.439706][ T4355] netlink: 7 bytes leftover after parsing attributes in process `syz.0.245'.
[   56.468899][ T4350] loop2: detected capacity change from 0 to 512
[   56.476392][ T4350] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   56.550447][ T4363] can0: slcan on ttyS3.
[   56.670708][ T4350] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.732927][ T4350] EXT4-fs: Ignoring removed orlov option
[   56.739051][ T4350] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   56.761968][ T4350] EXT4-fs (loop2): can't enable nombcache during remount
[   56.813982][   T29] audit: type=1326 audit(1763348350.808:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4385 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   56.837361][   T29] audit: type=1326 audit(1763348350.808:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4385 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   56.860851][   T29] audit: type=1326 audit(1763348350.808:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4385 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   56.884230][   T29] audit: type=1326 audit(1763348350.808:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4385 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   56.981177][ T4408] loop3: detected capacity change from 0 to 1024
[   56.990419][ T4404] netlink: 40 bytes leftover after parsing attributes in process `syz.2.249'.
[   57.009283][ T4386] can0 (unregistered): slcan off ttyS3.
[   57.018631][ T4408] EXT4-fs: Ignoring removed orlov option
[   57.058209][ T4408] smc: net device bond0 applied user defined pnetid SYZ0
[   57.059226][ T4408] smc: net device bond0 erased user defined pnetid SYZ0
[   57.132761][ T4426] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.143143][ T4426] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[   57.202617][ T4426] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.213081][ T4426] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[   57.248336][ T4435] loop3: detected capacity change from 0 to 512
[   57.255384][ T4435] EXT4-fs: dax option not supported
[   57.301407][ T4426] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.311826][ T4426] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[   57.361499][ T4426] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   57.371966][ T4426] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[   57.457734][ T4452] loop0: detected capacity change from 0 to 512
[   57.466037][ T4452] ext4: Bad value for 'auto_da_alloc'
[   57.497377][ T2112] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[   57.505795][ T2112] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[   57.530715][ T2112] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[   57.539087][ T2112] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[   57.557876][ T2112] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[   57.566373][ T2112] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[   57.574858][ T2112] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[   57.583231][ T2112] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[   57.594180][ T4479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.263'.
[   57.616435][ T4479] netlink: 24 bytes leftover after parsing attributes in process `syz.2.263'.
[   57.625889][ T4479] IPVS: Error connecting to the multicast addr
[   57.641005][ T4483] netlink: 'syz.3.265': attribute type 3 has an invalid length.
[   57.700253][ T4479] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=4479 comm=syz.2.263
[   57.918161][ T4504] loop2: detected capacity change from 0 to 512
[   57.925221][ T4504] ext4: Bad value for 'auto_da_alloc'
[   58.263857][ T4541] netlink: 27 bytes leftover after parsing attributes in process `syz.3.273'.
[   58.304188][ T4543] loop3: detected capacity change from 0 to 1024
[   58.311527][ T4543] EXT4-fs: inline encryption not supported
[   58.317447][ T4543] EXT4-fs: Ignoring removed i_version option
[   58.334224][ T4543] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[   58.394116][ T4549] syzkaller0: entered allmulticast mode
[   58.485810][ T4555] loop3: detected capacity change from 0 to 512
[   58.493022][ T4555] EXT4-fs: Ignoring removed i_version option
[   58.500701][ T4558] loop4: detected capacity change from 0 to 7
[   58.507229][ T4558] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.515490][ T4558] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.523418][ T4558]  loop4: unable to read partition table
[   58.529544][ T4558] loop_reread_partitions: partition scan of loop4 (���������S�j̖�P=ý?�}X���	���%��`��ր����5) failed (rc=-5)
[   58.543432][ T3494] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.552075][ T3494] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.560421][ T3494] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.569054][ T3494] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.578345][ T4555] ext4 filesystem being mounted at /68/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.592142][ T4558] pim6reg: entered allmulticast mode
[   58.597739][ T3494] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.609608][ T4555] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   58.620123][ T4555] SELinux: failed to load policy
[   58.632793][ T4555] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   58.643611][ T4555] SELinux: failed to load policy
[   58.681933][ T3494] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.691121][ T3494] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.699836][ T3494] Buffer I/O error on dev loop4, logical block 0, async page read
[   58.754328][ T4565] netlink: 7 bytes leftover after parsing attributes in process `syz.2.281'.
[   58.772197][ T4558] pim6reg: left allmulticast mode
[   58.823993][ T4571] netlink: 'syz.2.283': attribute type 3 has an invalid length.
[   58.851597][ T4563] loop3: detected capacity change from 0 to 512
[   58.858592][ T4563] ext4: Bad value for 'auto_da_alloc'
[   58.879868][ T4574] netlink: 27 bytes leftover after parsing attributes in process `syz.2.284'.
[   58.952761][ T4576] netlink: 12 bytes leftover after parsing attributes in process `syz.2.285'.
[   58.985190][ T4576] netlink: 4264 bytes leftover after parsing attributes in process `syz.2.285'.
[   59.111840][ T4578] syzkaller0: entered promiscuous mode
[   59.117633][ T4578] syzkaller0: entered allmulticast mode
[   59.276340][ T3004]  loop4: unable to read partition table
[   59.468393][ T4553] syz.0.278 (4553) used greatest stack depth: 7496 bytes left
[   59.536882][ T4589] FAULT_INJECTION: forcing a failure.
[   59.536882][ T4589] name failslab, interval 1, probability 0, space 0, times 0
[   59.549772][ T4589] CPU: 0 UID: 0 PID: 4589 Comm: syz.1.291 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   59.549835][ T4589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   59.549850][ T4589] Call Trace:
[   59.549858][ T4589]  <TASK>
[   59.549866][ T4589]  __dump_stack+0x1d/0x30
[   59.549963][ T4589]  dump_stack_lvl+0xe8/0x140
[   59.549989][ T4589]  dump_stack+0x15/0x1b
[   59.550016][ T4589]  should_fail_ex+0x265/0x280
[   59.550113][ T4589]  should_failslab+0x8c/0xb0
[   59.550140][ T4589]  kmem_cache_alloc_noprof+0x50/0x480
[   59.550227][ T4589]  ? getname_flags+0x80/0x3b0
[   59.550332][ T4589]  getname_flags+0x80/0x3b0
[   59.550359][ T4589]  do_sys_openat2+0x60/0x110
[   59.550378][ T4589]  __x64_sys_openat+0xf2/0x120
[   59.550476][ T4589]  x64_sys_call+0x2eab/0x3000
[   59.550502][ T4589]  do_syscall_64+0xd2/0x200
[   59.550561][ T4589]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   59.550587][ T4589]  ? irqentry_exit_to_user_mode+0x7b/0xa0
[   59.550655][ T4589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   59.550673][ T4589] RIP: 0033:0x7f390a70f6c9
[   59.550691][ T4589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.550707][ T4589] RSP: 002b:00007f3909177038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[   59.550724][ T4589] RAX: ffffffffffffffda RBX: 00007f390a965fa0 RCX: 00007f390a70f6c9
[   59.550735][ T4589] RDX: 000000000000403f RSI: 0000200000005c40 RDI: ffffffffffffff9c
[   59.550746][ T4589] RBP: 00007f3909177090 R08: 0000000000000000 R09: 0000000000000000
[   59.550756][ T4589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   59.550818][ T4589] R13: 00007f390a966038 R14: 00007f390a965fa0 R15: 00007ffee6a82068
[   59.550836][ T4589]  </TASK>
[   59.794478][ T4591] random: crng reseeded on system resumption
[   59.801549][ T4593] Driver unsupported XDP return value 0 on prog  (id 227) dev N/A, expect packet loss!
[   59.820882][ T4591] pimreg: entered allmulticast mode
[   59.829522][ T4591] syz_tun: entered allmulticast mode
[   59.833151][ T4595] netlink: 'syz.0.294': attribute type 3 has an invalid length.
[   59.836076][ T4590] syz_tun: left allmulticast mode
[   59.850379][ T4590] pimreg: left allmulticast mode
[   59.881458][ T4599] loop3: detected capacity change from 0 to 1024
[   59.891576][ T4601] loop0: detected capacity change from 0 to 512
[   59.899116][ T4599] EXT4-fs: Ignoring removed orlov option
[   59.912325][ T4601] ext4 filesystem being mounted at /55/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   59.920395][ T4599] smc: net device bond0 applied user defined pnetid SYZ0
[   59.931397][ T4599] smc: net device bond0 erased user defined pnetid SYZ0
[   59.983982][ T4611] netlink: 27 bytes leftover after parsing attributes in process `syz.3.299'.
[   60.055936][ T4621] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   60.063232][ T4621] IPv6: NLM_F_CREATE should be set when creating new route
[   60.070503][ T4621] IPv6: NLM_F_CREATE should be set when creating new route
[   60.077721][ T4621] IPv6: NLM_F_CREATE should be set when creating new route
[   60.391544][ T4644] loop4: detected capacity change from 0 to 512
[   60.410726][ T4644] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   60.443343][ T4644] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   60.476749][ T4644] EXT4-fs: Ignoring removed orlov option
[   60.488364][ T4644] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   60.553071][ T4644] EXT4-fs (loop4): can't enable nombcache during remount
[   60.578630][ T4644] geneve2: entered promiscuous mode
[   60.583897][ T4644] geneve2: entered allmulticast mode
[   60.600797][   T12] netdevsim netdevsim4 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[   60.610471][   T12] netdevsim netdevsim4 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[   60.619847][ T4671] netlink: 56 bytes leftover after parsing attributes in process `syz.1.311'.
[   60.630119][   T12] netdevsim netdevsim4 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[   60.638926][   T12] netdevsim netdevsim4 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[   60.647381][ T4671] netlink: 8 bytes leftover after parsing attributes in process `syz.1.311'.
[   60.787002][ T4678] syzkaller0: entered promiscuous mode
[   60.792570][ T4678] syzkaller0: entered allmulticast mode
[   60.805325][ T4678] tipc: Started in network mode
[   60.810307][ T4678] tipc: Node identity 426c25023964, cluster identity 4711
[   60.817500][ T4678] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   60.825944][ T4677] tipc: Resetting bearer <eth:syzkaller0>
[   60.834275][ T4677] tipc: Disabling bearer <eth:syzkaller0>
[   60.914775][ T4682] netlink: 'syz.1.316': attribute type 21 has an invalid length.
[   60.930031][ T4682] tmpfs: Bad value for 'nr_blocks'
[   61.118475][ T4701] netlink: 'syz.3.324': attribute type 3 has an invalid length.
[   61.151669][   T29] kauditd_printk_skb: 408 callbacks suppressed
[   61.151686][   T29] audit: type=1326 audit(1763348355.148:3274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   61.170435][ T4705] can0: slcan on ttyS3.
[   61.183409][   T29] audit: type=1326 audit(1763348355.158:3275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   61.209108][   T29] audit: type=1326 audit(1763348355.158:3276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   61.209148][   T29] audit: type=1326 audit(1763348355.158:3277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   61.209182][   T29] audit: type=1326 audit(1763348355.158:3278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   61.279736][   T29] audit: type=1326 audit(1763348355.158:3279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   61.303307][   T29] audit: type=1326 audit(1763348355.158:3280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   61.303368][   T29] audit: type=1326 audit(1763348355.158:3281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   61.303401][   T29] audit: type=1326 audit(1763348355.158:3282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f63498015e7 code=0x7ffc0000
[   61.303432][   T29] audit: type=1326 audit(1763348355.158:3283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4702 comm="syz.3.325" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f634980155c code=0x7ffc0000
[   61.437313][ T4723] netlink: 'syz.0.329': attribute type 3 has an invalid length.
[   61.488471][ T4715] can0 (unregistered): slcan off ttyS3.
[   61.579675][ T4747] loop3: detected capacity change from 0 to 128
[   61.581681][ T4747] journal_path: Non-blockdev passed as './mnt'
[   61.593121][ T4747] EXT4-fs: error: could not find journal device path
[   61.622723][ T3305] udevd[3305]: incorrect ext4 checksum on /dev/loop3
[   61.715028][ T4759] loop3: detected capacity change from 0 to 512
[   61.722316][ T4759] EXT4-fs: Ignoring removed i_version option
[   61.750587][ T4759] ext4 filesystem being mounted at /84/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   61.796386][ T4759] SELinux:  policydb magic number 0x75622f2e does not match expected magic number 0xf97cff8c
[   61.807415][ T4759] SELinux: failed to load policy
[   61.861516][ T4763] loop1: detected capacity change from 0 to 512
[   61.868287][ T4763] ext4: Bad value for 'auto_da_alloc'
[   61.891331][ T4772] loop4: detected capacity change from 0 to 512
[   61.908458][ T4772] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   61.939037][ T4772] EXT4-fs (loop4): 1 orphan inode deleted
[   61.944818][ T4772] EXT4-fs (loop4): 1 truncate cleaned up
[   62.056794][ T4781] loop3: detected capacity change from 0 to 1024
[   62.066401][ T4781] EXT4-fs: Ignoring removed orlov option
[   62.097963][ T4784] smc: net device bond0 applied user defined pnetid SYZ0
[   62.106011][ T4784] smc: net device bond0 erased user defined pnetid SYZ0
[   62.113366][ T4781] smc: net device bond0 applied user defined pnetid SYZ0
[   62.121467][ T4781] smc: net device bond0 erased user defined pnetid SYZ0
[   62.216646][ T4794] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4794 comm=syz.2.349
[   62.434957][ T4801] loop3: detected capacity change from 0 to 32768
[   62.458486][ T4812] loop2: detected capacity change from 0 to 1024
[   62.465331][ T4812] EXT4-fs: Ignoring removed orlov option
[   62.486448][ T3494]  loop3: p1 p3 < p5 p6 >
[   62.493930][ T4812] smc: net device bond0 applied user defined pnetid SYZ0
[   62.501298][ T4812] smc: net device bond0 erased user defined pnetid SYZ0
[   62.513114][ T4801]  loop3: p1 p3 < p5 p6 >
[   62.570077][ T3516] udevd[3516]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory
[   62.579940][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop3p6, 10) failed: No such file or directory
[   62.581469][ T3494] udevd[3494]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   62.600658][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   62.624223][ T3516] udevd[3516]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory
[   62.635377][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop3p6, 10) failed: No such file or directory
[   62.647284][ T3494] udevd[3494]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[   62.659247][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   62.746190][ T4827] __nla_validate_parse: 4 callbacks suppressed
[   62.746209][ T4827] netlink: 4 bytes leftover after parsing attributes in process `syz.3.361'.
[   62.862795][ T4831] loop1: detected capacity change from 0 to 128
[   62.897727][ T4831] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.923524][ T4839] syzkaller0: entered promiscuous mode
[   62.929459][ T4839] syzkaller0: entered allmulticast mode
[   63.162816][ T4854] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4854 comm=syz.3.373
[   63.202156][ T4859] netlink: 4 bytes leftover after parsing attributes in process `syz.3.375'.
[   63.257187][ T4864] syzkaller0: entered promiscuous mode
[   63.262898][ T4864] syzkaller0: entered allmulticast mode
[   63.536361][ T4888] syzkaller0: entered promiscuous mode
[   63.541925][ T4888] syzkaller0: entered allmulticast mode
[   63.692532][ T4895] loop4: detected capacity change from 0 to 512
[   63.700549][ T4895] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   63.722336][ T4895] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   63.752321][ T4905] netlink: 'syz.3.394': attribute type 1 has an invalid length.
[   63.752504][ T4895] EXT4-fs: Ignoring removed orlov option
[   63.765917][ T4895] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   63.775869][ T4895] EXT4-fs (loop4): can't enable nombcache during remount
[   63.969123][ T4921] netlink: 4 bytes leftover after parsing attributes in process `syz.3.402'.
[   63.972585][ T4919] syzkaller0: entered promiscuous mode
[   63.983662][ T4919] syzkaller0: entered allmulticast mode
[   64.053607][ T4927] netlink: 'syz.3.404': attribute type 3 has an invalid length.
[   64.089117][ T4932] netlink: 27 bytes leftover after parsing attributes in process `syz.3.407'.
[   64.146049][ T4940] loop1: detected capacity change from 0 to 1024
[   64.149964][ T4937] loop3: detected capacity change from 0 to 512
[   64.153181][ T4940] EXT4-fs: Ignoring removed orlov option
[   64.165419][ T4937] EXT4-fs: Ignoring removed i_version option
[   64.200547][ T4937] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   64.215596][ T4940] smc: net device bond0 applied user defined pnetid SYZ0
[   64.228372][ T4940] smc: net device bond0 erased user defined pnetid SYZ0
[   64.240985][ T4937] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   64.260575][ T4937] SELinux: failed to load policy
[   64.296110][ T4937] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   64.316218][ T4951] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8)
[   64.320616][ T4937] SELinux: failed to load policy
[   64.322816][ T4951] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   64.335443][ T4951] vhci_hcd vhci_hcd.0: Device attached
[   64.339202][ T4955] netlink: 91 bytes leftover after parsing attributes in process `syz.1.415'.
[   64.402514][ T4958] loop1: detected capacity change from 0 to 128
[   64.426276][ T4961] netlink: 'syz.0.418': attribute type 3 has an invalid length.
[   64.436777][ T4958] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.518193][ T1040] vhci_hcd: vhci_device speed not set
[   64.578133][ T1040] usb 9-1: new full-speed USB device number 2 using vhci_hcd
[   64.582964][ T4975] loop1: detected capacity change from 0 to 512
[   64.605223][ T4953] vhci_hcd: connection reset by peer
[   64.613777][  T313] vhci_hcd: stop threads
[   64.618178][  T313] vhci_hcd: release socket
[   64.622827][  T313] vhci_hcd: disconnect device
[   64.638618][ T4975] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   64.647129][ T4975] EXT4-fs (loop1): orphan cleanup on readonly fs
[   64.653916][ T4975] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   64.669075][ T4975] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   64.676149][ T4975] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.423: bg 0: block 40: padding at end of block bitmap is not set
[   64.690880][ T4975] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   64.700234][ T4975] EXT4-fs (loop1): 1 truncate cleaned up
[   64.786180][ T4994] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   64.790902][ T4997] netlink: 91 bytes leftover after parsing attributes in process `syz.1.428'.
[   64.805963][ T4994] SELinux: failed to load policy
[   64.849079][ T4999] loop1: detected capacity change from 0 to 512
[   64.858097][ T4999] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   64.863703][ T5002] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   64.877325][ T5002] SELinux: failed to load policy
[   64.889871][ T4999] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.905087][ T4999] EXT4-fs: Ignoring removed orlov option
[   64.910990][ T4999] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   64.921119][ T4999] EXT4-fs (loop1): can't enable nombcache during remount
[   64.931894][ T4999] geneve2: entered promiscuous mode
[   64.937161][ T4999] geneve2: entered allmulticast mode
[   64.944616][   T52] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   64.953641][   T52] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   64.962893][   T52] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   64.971939][   T52] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   65.075525][ T5008] loop1: detected capacity change from 0 to 128
[   65.090381][ T5008] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.105406][ T5011] netlink: 'syz.3.431': attribute type 3 has an invalid length.
[   65.211870][ T5023] loop1: detected capacity change from 0 to 512
[   65.239213][ T5023] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   65.247427][ T5023] EXT4-fs (loop1): orphan cleanup on readonly fs
[   65.254694][ T5023] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   65.270024][ T5023] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   65.277442][ T5023] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.436: bg 0: block 40: padding at end of block bitmap is not set
[   65.292598][ T5023] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   65.308393][ T5023] EXT4-fs (loop1): 1 truncate cleaned up
[   65.400491][ T5044] bridge0: entered promiscuous mode
[   65.407046][ T5044] bridge0: port 3(macsec1) entered blocking state
[   65.413736][ T5044] bridge0: port 3(macsec1) entered disabled state
[   65.424557][ T5044] macsec1: entered allmulticast mode
[   65.429927][ T5044] bridge0: entered allmulticast mode
[   65.435907][ T5044] macsec1: left allmulticast mode
[   65.441179][ T5044] bridge0: left allmulticast mode
[   65.447265][ T5044] bridge0: left promiscuous mode
[   65.483936][ T5051] netlink: 27 bytes leftover after parsing attributes in process `syz.0.446'.
[   65.531536][ T5057] netlink: 4 bytes leftover after parsing attributes in process `syz.0.448'.
[   65.599340][ T5061] loop4: detected capacity change from 0 to 512
[   65.613249][ T5061] EXT4-fs (loop4): failed to initialize system zone (-117)
[   65.620770][ T5063] loop2: detected capacity change from 0 to 512
[   65.633137][ T5061] EXT4-fs (loop4): mount failed
[   65.662487][ T5063] EXT4-fs (loop2): revision level too high, forcing read-only mode
[   65.691654][ T5063] EXT4-fs (loop2): orphan cleanup on readonly fs
[   65.699062][ T5063] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   65.714305][ T5063] EXT4-fs (loop2): Cannot turn on quotas: error -117
[   65.721679][ T5063] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.452: bg 0: block 40: padding at end of block bitmap is not set
[   65.738201][ T5063] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   65.747735][ T5063] EXT4-fs (loop2): 1 truncate cleaned up
[   65.770010][ T5074] loop4: detected capacity change from 0 to 128
[   65.802357][ T5079] netlink: 27 bytes leftover after parsing attributes in process `syz.2.458'.
[   65.818874][ T5074] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   65.836880][ T5083] netlink: 4 bytes leftover after parsing attributes in process `syz.2.460'.
[   65.877553][ T5081] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   65.907784][ T5086] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   65.918449][ T5086] SELinux: failed to load policy
[   66.003856][ T5098] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   66.058105][ T5098] SELinux: failed to load policy
[   66.086923][ T5106] loop1: detected capacity change from 0 to 512
[   66.165432][ T5106] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   66.165635][ T5106] EXT4-fs (loop1): orphan cleanup on readonly fs
[   66.167995][ T5106] __quota_error: 804 callbacks suppressed
[   66.168083][ T5106] Quota error (device loop1): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[   66.168794][ T5106] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   66.223081][   T29] audit: type=1326 audit(1763348360.218:4085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5096 comm="syz.3.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   66.255584][   T29] audit: type=1326 audit(1763348360.228:4086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5092 comm="syz.0.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   66.279114][   T29] audit: type=1326 audit(1763348360.228:4087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5092 comm="syz.0.463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61065ef6c9 code=0x7ffc0000
[   66.302757][   T29] audit: type=1400 audit(1763348360.248:4088): avc:  denied  { read open } for  pid=5118 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=483 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   66.303941][ T5106] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   66.328593][   T29] audit: type=1400 audit(1763348360.248:4089): avc:  denied  { getattr } for  pid=5118 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=483 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   66.360561][   T29] audit: type=1326 audit(1763348360.248:4090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5096 comm="syz.3.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63497ff6c9 code=0x7ffc0000
[   66.390491][ T5106] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.469: bg 0: block 40: padding at end of block bitmap is not set
[   66.405243][ T5106] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   66.425175][ T5106] EXT4-fs (loop1): 1 truncate cleaned up
[   66.448599][ T5127] netlink: 'syz.4.472': attribute type 3 has an invalid length.
[   66.468867][   T29] audit: type=1400 audit(1763348360.458:4091): avc:  denied  { add_name } for  pid=5116 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   66.491818][   T29] audit: type=1400 audit(1763348360.458:4092): avc:  denied  { create } for  pid=5116 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   66.514260][   T29] audit: type=1400 audit(1763348360.458:4093): avc:  denied  { write } for  pid=5116 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.sl0.link" dev="tmpfs" ino=3744 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   66.596091][ T5139] syzkaller1: entered promiscuous mode
[   66.601748][ T5139] syzkaller1: entered allmulticast mode
[   66.636411][ T5141] loop4: detected capacity change from 0 to 512
[   66.648676][ T5141] EXT4-fs: Ignoring removed i_version option
[   66.711150][ T5141] ext4 filesystem being mounted at /92/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   66.745526][ T5141] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   66.756039][ T5141] SELinux: failed to load policy
[   66.789771][ T5141] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   66.870538][ T5141] SELinux: failed to load policy
[   66.905772][ T5171] loop2: detected capacity change from 0 to 512
[   66.926727][ T5171] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   66.966585][ T5171] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   67.014269][ T5171] EXT4-fs: Ignoring removed orlov option
[   67.014484][ T5171] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   67.026678][ T5171] EXT4-fs (loop2): can't enable nombcache during remount
[   67.050495][ T5188] netlink: 'syz.4.487': attribute type 3 has an invalid length.
[   67.174923][ T5201] loop3: detected capacity change from 0 to 512
[   67.207388][ T5201] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   67.236902][ T5201] EXT4-fs (loop3): 1 orphan inode deleted
[   67.242768][ T5201] EXT4-fs (loop3): 1 truncate cleaned up
[   67.272396][ T5209] loop4: detected capacity change from 0 to 512
[   67.291829][ T5209] EXT4-fs: Ignoring removed i_version option
[   67.350919][ T5209] ext4 filesystem being mounted at /95/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   67.412201][ T5209] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   67.426627][ T5239] loop1: detected capacity change from 0 to 512
[   67.439902][ T5239] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   67.464525][ T5239] EXT4-fs (loop1): orphan cleanup on readonly fs
[   67.476802][ T5209] SELinux: failed to load policy
[   67.479312][ T5239] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   67.497470][ T5239] EXT4-fs (loop1): Cannot turn on quotas: error -117
[   67.503806][ T5209] SELinux:  policydb magic number 0x6c65732f does not match expected magic number 0xf97cff8c
[   67.505398][ T5239] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.498: bg 0: block 40: padding at end of block bitmap is not set
[   67.514944][ T5209] SELinux: failed to load policy
[   67.528921][ T5239] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem
[   67.543831][ T5239] EXT4-fs (loop1): 1 truncate cleaned up
[   67.637024][ T5251] loop1: detected capacity change from 0 to 1024
[   67.667709][ T5251] EXT4-fs: Ignoring removed orlov option
[   67.682637][ T5257] netlink: 'syz.4.503': attribute type 3 has an invalid length.
[   67.858048][ T5267] __nla_validate_parse: 3 callbacks suppressed
[   67.858067][ T5267] netlink: 59 bytes leftover after parsing attributes in process `syz.4.506'.
[   67.880616][ T5251] ==================================================================
[   67.888771][ T5251] BUG: KCSAN: data-race in vfs_fsync_range / writeback_single_inode
[   67.896805][ T5251] 
[   67.899150][ T5251] write to 0xffff88810bbc45f8 of 4 bytes by task 5263 on cpu 1:
[   67.906811][ T5251]  writeback_single_inode+0x150/0x3f0
[   67.912236][ T5251]  sync_inode_metadata+0x5b/0x90
[   67.917225][ T5251]  generic_buffers_fsync_noflush+0xd9/0x120
[   67.923157][ T5251]  ext4_sync_file+0x1ab/0x690
[   67.927869][ T5251]  vfs_fsync_range+0x10d/0x130
[   67.932669][ T5251]  ext4_buffered_write_iter+0x34f/0x3c0
[   67.938474][ T5251]  ext4_file_write_iter+0x387/0xf60
[   67.943723][ T5251]  iter_file_splice_write+0x666/0xa60
[   67.949140][ T5251]  direct_splice_actor+0x156/0x2a0
[   67.954311][ T5251]  splice_direct_to_actor+0x312/0x680
[   67.959728][ T5251]  do_splice_direct+0xda/0x150
[   67.964531][ T5251]  do_sendfile+0x380/0x650
[   67.968998][ T5251]  __x64_sys_sendfile64+0x105/0x150
[   67.974242][ T5251]  x64_sys_call+0x2bb4/0x3000
[   67.978959][ T5251]  do_syscall_64+0xd2/0x200
[   67.983500][ T5251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   67.989428][ T5251] 
[   67.991759][ T5251] read to 0xffff88810bbc45f8 of 4 bytes by task 5251 on cpu 0:
[   67.999333][ T5251]  vfs_fsync_range+0x9b/0x130
[   68.004024][ T5251]  ext4_buffered_write_iter+0x34f/0x3c0
[   68.009710][ T5251]  ext4_file_write_iter+0x387/0xf60
[   68.014936][ T5251]  iter_file_splice_write+0x666/0xa60
[   68.020351][ T5251]  direct_splice_actor+0x156/0x2a0
[   68.025478][ T5251]  splice_direct_to_actor+0x312/0x680
[   68.030968][ T5251]  do_splice_direct+0xda/0x150
[   68.035823][ T5251]  do_sendfile+0x380/0x650
[   68.040316][ T5251]  __x64_sys_sendfile64+0x105/0x150
[   68.045567][ T5251]  x64_sys_call+0x2bb4/0x3000
[   68.050262][ T5251]  do_syscall_64+0xd2/0x200
[   68.054798][ T5251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.060743][ T5251] 
[   68.063072][ T5251] value changed: 0x00000070 -> 0x00000002
[   68.068826][ T5251] 
[   68.071438][ T5251] Reported by Kernel Concurrency Sanitizer on:
[   68.077593][ T5251] CPU: 0 UID: 0 PID: 5251 Comm: syz.1.500 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   68.087230][ T5251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   68.097293][ T5251] ==================================================================
[   69.598823][ T1040] usb 9-1: enqueue for inactive port 0
[   69.604355][ T1040] usb 9-1: enqueue for inactive port 0
[   69.688121][ T1040] vhci_hcd: vhci_device speed not set