last executing test programs:

1.394543712s ago: executing program 1 (id=554):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
socket$packet(0x11, 0xa, 0x300)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000700)='\x009', 0x2}], 0x1, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x6)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r3, &(0x7f0000000180)='memory.swap.current\x00', 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
syz_extract_tcp_res(&(0x7f0000000700)={0x41424344, <r4=>0x41424344}, 0x2, 0x5)
syz_emit_ethernet(0x4a, &(0x7f0000000200)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "2a8435", 0x14, 0x6, 0x0, @empty, @local, {[], {{0x0, 0x4e22, 0x41424344, r4, 0x0, 0x4, 0x5, 0xc2}}}}}}}, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_emit_ethernet(0x36, &(0x7f0000000400)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x23, 0x28, 0x66, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4621, 0x4e24, r4, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x5, 0x0, 0xe7}}}}}}, 0x0)

1.196619656s ago: executing program 3 (id=563):
r0 = gettid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000193c0)={0x11, 0x13, &(0x7f0000019300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000206a932500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000000)='sys_enter\x00', r2, 0x0, 0x91}, 0x18)
time(0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
r4 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$selinux_access(r4, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x56)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r5, 0x545c, 0x200000000000000)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='svcrdma_qp_error\x00', r3, 0x0, 0x80000000}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.100621218s ago: executing program 1 (id=565):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$eJzs3M1rVFcbAPDn3nwYNb6JL/LyWkoNtGChOBrFSl2py9ZFof0DDHEiIdcPkhRMcBHbhXRVC910UWgXpX9AoetstNBV6aaVFrqXShHdp9zJnWQwM0mqMx4/fj84c8/HZM7z5JK555C5E8BLa6x8yCP2R8S5LGKk6s8jYrBRG4pYWn3eg/vXJh/evzaZxcrKB39nkVV9zdfKquPuqjEUEb+cyeK/n2ycd25hcWaiKOqzVfvw/MUrh+cWFg9NX5y4UL9QvzR+YvzY8RPHjr99pGu5vrv35tmvxk/t+f7Mrauv3fj9yyxOxXA11ppHt4zFWKxUWvv7I2Ki25Ml0lflk7X0Zf0JAwIAYFN5yxrufzESfbG+eBuJW78mDQ4AAADoipW+WPsfFQAAAPCiyuz/AQAA4AXX/BzAg/vXJpsl7ScSnq57pyNitF3+/bHUOA7FQETsepBF622t2eqPPbGxiNj30+iPZYke3Ye8maXrEfH/dvlnjfxHG3dxb8w/j4hu3Jk99kj7ecr/VBfmT50/AC+n5dOrF7KN1798bf0Tba5//W2uXY8j9fWv8/pvPf++Duu/97c5R/3Ap593Gmtd/xXfvnq7nL88PlFS/8K96xGv9Hde/5T5Zx3yP7fNOQb++PmHTmNl/mW+zfK081/5JuJg2/3P+jfaZJt/P9HhqemiXj22nePG7e/2dZq/9fyXpZy/uRd4Gsrzv6tD/lud/yvbnGP5r4N/dhrbOv/87mD2YaM2WPVcnZifnx2PGMzObuw/unkszec0X6PM/83XN//7b5d/+Z6wVP0eyr3A9epYtj9+ZM5D773zxuPn31tl/ucf8/zf3OYcX382e7fTWOr8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHg+5BExHFleW6vnea0WsTsi9sWuvLg8N//W1OWPLp0vxyJGYyCfmi7qRyJiZLWdle3xRn29ffSR9rGI2BsRX4zsbLRrk5eL86mTBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYM3uiBiOLK9FRB4RD0fyvFZLHRUAAADQdaOpAwAAAAB6zv4fAAAAXnz2/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPTY3gPLd7KIWDq5s1FKg9XYQNLIgF7LUwcAJNOXOgAgmf7UAQDJ2OMD2RbjQx1HdnQ9FgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACeXQf3L9/JImLp5M5GKQ1WYwNJIwN6LU8dAJBMX+oAgGT6UwcAJGOPD2RbjA91HNnR9VgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeHYNN0qW1yIib9TzvFaL2BMRozGQTU0X9SMR8Z+I+G1kYEfZHk8dNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF03t7A4M1EU9VkVFRWVtUrqdyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFKYW1icmSiK+uxc6kgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA1OYWFmcmiqI+28NK6hwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEjnnwAAAP///JMJmQ==")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000001c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x8000000000000000, 0x6, 0x93b1, 0x8, 0x2, 0x80, 0x6, 0x61, 0x35})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x40505330, &(0x7f00000000c0)={0x80, 0x1, 0xffffffbc, 0x7, 0x0, 0x55a})
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0xffffffff})
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.090996258s ago: executing program 2 (id=566):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

1.064323068s ago: executing program 2 (id=568):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000008c0)={{0x1, 0x1, 0x18, <r1=>r0}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000700)={r2, &(0x7f0000001900)="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", &(0x7f0000001a00)=""/201, 0x4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
getpriority(0x1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r1}, &(0x7f0000000000), &(0x7f0000000380)=r0}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000740)='kfree\x00', r4}, 0x18)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_io_uring_setup(0x4553, &(0x7f0000000240)={0x0, 0x59fc, 0x80, 0x3, 0xbd7f7fff}, &(0x7f0000000480), &(0x7f00000001c0))

1.035386739s ago: executing program 2 (id=570):
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffed6)
syz_open_dev$sg(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
statfs(&(0x7f0000000840)='./file0/file0\x00', &(0x7f0000000880)=""/141)
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x6, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES8=0x0, @ANYBLOB="e6cbd4d30000000000000000b7020000033138d1000000850000008600000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8)
r2 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
flistxattr(r2, 0x0, 0xdeff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000020000000000000000000000952a5a5fc9a850a2bca4c7e93747a9dd87660d6bc0e15c8ed95a152bf122e956b454"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f00000000c0)=""/2, 0xffffffffffffff0f)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000710004000000000095000300"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
mq_open(&(0x7f0000000b40)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\x00\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x1, 0x0, 0x0)

1.01939014s ago: executing program 1 (id=571):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000240)='kfree\x00', r0, 0x0, 0x4ab}, 0x18)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
unshare(0x22020400)
syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
r3 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x40, r3, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$SMC_PNETID_DEL(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)={0x14, r3, 0xe27, 0x70bd28, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x4000)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x17, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r5}, 0x10)
open(&(0x7f0000000740)='./bus\x00', 0x143c62, 0x0)
fcntl$setflags(r2, 0x2, 0x1)
mount(&(0x7f0000000000), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

1.00357122s ago: executing program 2 (id=572):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000380)=@generic={&(0x7f00000002c0)='./file0\x00'}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
semget$private(0x0, 0x4000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x4e, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x80, 0x5, 0x7fff0003}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000400))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="44000000020605000000000000000000000000000c000300686173683a69700005000400000000000900020073797a310000000005000500020000000500010006"], 0x44}, 0x1, 0x0, 0x0, 0x20000800}, 0x2080)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r6}, 0x18)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1=0xe0004001}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x40)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000017"], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)

944.689851ms ago: executing program 1 (id=574):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
pipe2$9p(&(0x7f0000000140), 0x80)
r1 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)

850.744343ms ago: executing program 1 (id=580):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000)

711.122396ms ago: executing program 1 (id=582):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000380)=@generic={&(0x7f00000002c0)='./file0\x00'}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
semget$private(0x0, 0x4000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(0xffffffffffffffff, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x4e, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x80, 0x5, 0x7fff0003}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000400))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="44000000020605000000000000000000000000000c000300686173683a69700005000400000000000900020073797a310000000005000500020000000500010006"], 0x44}, 0x1, 0x0, 0x0, 0x20000800}, 0x2080)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r6}, 0x18)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1=0xe0004001}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x40)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_KEY_SET(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000000017"], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x4000004)

322.364753ms ago: executing program 3 (id=587):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
pipe2$9p(&(0x7f0000000140), 0x80)
r1 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)

276.191114ms ago: executing program 0 (id=588):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="190000000400000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000015000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f0000000000)=@req3={0x410000, 0x100000001, 0x210000, 0x1, 0xa, 0x0, 0xffffffff}, 0x1c)
close(r2)

275.767314ms ago: executing program 0 (id=589):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000e00)={0x28, 0x0, 0x10ada85e65c25359, 0xfffffffe, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x72}}}}}, 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x18)
r1 = syz_io_uring_setup(0xbc3, &(0x7f0000000180)={0x0, 0xbb93, 0x10000, 0x2, 0x264}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x2, 0xa3d8, &(0x7f00000005c0)=[{0x0}], 0x1, 0x8, 0x1, {0x2}})
io_uring_enter(r1, 0x29af, 0xd480, 0x0, 0x0, 0x0)

259.852505ms ago: executing program 3 (id=590):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

240.820115ms ago: executing program 3 (id=591):
r0 = syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket(0x8000000010, 0x2, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000200)={r0, 0x20, &(0x7f0000000180)={&(0x7f00000007c0)=""/149, 0x95, <r2=>0x0, &(0x7f0000000880)=""/201, 0xc9}}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nombcache}, {@delalloc}, {@data_err_ignore}, {@nojournal_checksum}, {@dioread_nolock}, {@bsdgroups}]}, 0x6, 0x4cd, &(0x7f0000000c80)="$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")
r4 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
write$UHID_INPUT(r4, &(0x7f00000027c0)={0x8, {"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", 0xffffffffffffff48}}, 0x1006)
r5 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
ftruncate(r5, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10)
write(r1, &(0x7f00000002c0)="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", 0xfc)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000001c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x8000000000000000, 0x6, 0x93b1, 0x8, 0x2, 0x80, 0x6, 0x61, 0x35})
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffd8, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x40505330, &(0x7f00000000c0)={0x80, 0x1, 0xffffffbc, 0x7, 0x0, 0x55a})
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0xffffffff})
r8 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r8, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

232.358295ms ago: executing program 0 (id=592):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={0x2, 0x3, 0x0, 0x3, 0xe, 0x0, 0x4070bd2c, 0x25dfdbfc, [@sadb_key={0x2, 0x9, 0x40, 0x0, "1cdc0dca1d9f6884"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc, 0x80000000}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xa}}}, @sadb_x_sa2={0x2, 0x13, 0x2, 0x0, 0x0, 0x70bd29, 0x3506}]}, 0x70}, 0x1, 0x7}, 0x0)

214.342605ms ago: executing program 0 (id=593):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000008c0)={{0x1, 0x1, 0x18, <r1=>r0}, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000700)={r2, &(0x7f0000001900)="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", &(0x7f0000001a00)=""/201, 0x4}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r3}, 0x10)
getpriority(0x1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r1}, &(0x7f0000000000), &(0x7f0000000380)=r0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_io_uring_setup(0x4553, &(0x7f0000000240)={0x0, 0x59fc, 0x80, 0x3, 0xbd7f7fff}, &(0x7f0000000480), &(0x7f00000001c0))

185.961256ms ago: executing program 0 (id=594):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[], 0x48)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000000c0)='sys_enter\x00'}, 0x18)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001020000"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
close(r3)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r4=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="8fedcb791f6f9875f37538e486dd6317ce8102030400fef2000e40000200875a65969ff57b00ff020000000000000000000000000001"], 0xfdef)
syz_pidfd_open(r0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})

172.289526ms ago: executing program 3 (id=595):
bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffed6)
syz_open_dev$sg(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
statfs(&(0x7f0000000840)='./file0/file0\x00', &(0x7f0000000880)=""/141)
bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x6, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES8=0x0, @ANYBLOB="e6cbd4d30000000000000000b7020000033138d1000000850000008600000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8)
r2 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
flistxattr(r2, 0x0, 0xdeff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000020000000000000000000000952a5a5fc9a850a2bca4c7e93747a9dd87660d6bc0e15c8ed95a152bf122e956b454"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f00000000c0)=""/2, 0xffffffffffffff0f)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000710004000000000095000300"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x18)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
mq_open(&(0x7f0000000b40)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\x00\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xca\xae\x1bs\xd4\xf0\xc0\xdag\x19R4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O', 0x1, 0x0, 0x0)

151.745477ms ago: executing program 2 (id=596):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r3, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'veth1_to_bridge\x00', 0x200}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r3, 0x0, 0x48c, &(0x7f00000002c0)={0x2, 'veth1_virt_wifi\x00'}, 0x18)

126.400937ms ago: executing program 3 (id=597):
r0 = gettid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000193c0)={0x11, 0x13, &(0x7f0000019300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000206a932500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000000)='sys_enter\x00', r2, 0x0, 0x91}, 0x18)
time(0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
r4 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$selinux_access(r4, &(0x7f00000004c0)=ANY=[@ANYBLOB='system_u:object_r:updpwd_exec_t '], 0x56)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r5, 0x545c, 0x200000000000000)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='svcrdma_qp_error\x00', r3, 0x0, 0x80000000}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

108.145428ms ago: executing program 2 (id=598):
r0 = gettid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000193c0)={0x11, 0x13, &(0x7f0000019300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000206a932500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000100000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000000)='sys_enter\x00', r2, 0x0, 0x91}, 0x18)
time(0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
r4 = openat$selinux_member(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$selinux_access(r4, &(0x7f00000004c0)=ANY=[@ANYBLOB], 0x56)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCMIWAIT(r5, 0x545c, 0x200000000000000)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='svcrdma_qp_error\x00', r3, 0x0, 0x80000000}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

98.032688ms ago: executing program 4 (id=599):
open(&(0x7f0000000740)='./bus\x00', 0x143c62, 0x0)
mount(&(0x7f0000000000), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

82.081158ms ago: executing program 4 (id=600):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000940)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sched_kthread_work_queue_work\x00', r5}, 0x2a)
socketpair(0x11, 0xa, 0x0, &(0x7f0000001080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x20000000000002b8, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x8000, 0x0, 0x0, 0x41000}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@deltfilter={0x24, 0x2d, 0x200, 0x70bd26, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x10}, {0x4, 0xe}, {0xf, 0x7}}}, 0x24}}, 0x14000000)
socket$packet(0x11, 0x2, 0x300)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0xb4}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)

60.511038ms ago: executing program 4 (id=601):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = dup(r2)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:mouse_device_t:s0\x00', 0x20, 0x0)

46.018849ms ago: executing program 4 (id=602):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000e00)={0x28, 0x0, 0x10ada85e65c25359, 0xfffffffe, 0x25dfdbfd, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x72}}}}}, 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x18)
r1 = syz_io_uring_setup(0xbc3, &(0x7f0000000180)={0x0, 0xbb93, 0x10000, 0x2, 0x264}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x2, 0xa3d8, &(0x7f00000005c0)=[{0x0}], 0x1, 0x8, 0x1, {0x2}})
io_uring_enter(r1, 0x29af, 0xd480, 0x0, 0x0, 0x0)

30.214719ms ago: executing program 4 (id=603):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000280)={0x2, 0x3, 0x0, 0x3, 0xe, 0x0, 0x4070bd2c, 0x25dfdbfc, [@sadb_key={0x2, 0x9, 0x40, 0x0, "1cdc0dca1d9f6884"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc, 0x80000000}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0xa}}}, @sadb_x_sa2={0x2, 0x13, 0x2, 0x0, 0x0, 0x70bd29, 0x3506}]}, 0x70}, 0x1, 0x7}, 0x0)

13.530199ms ago: executing program 0 (id=604):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x3}, 0x18)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000000), 0x1)
writev(r1, &(0x7f0000000780)=[{&(0x7f0000000040)='\a', 0x1}], 0x1)

0s ago: executing program 4 (id=605):
r0 = syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$eJzs3M1rVFcbAPDn3nwYNb6JL/LyWkoNtGChOBrFSl2py9ZFof0DDHEiIdcPkhRMcBHbhXRVC910UWgXpX9AoetstNBV6aaVFrqXShHdp9zJnWQwM0mqMx4/fj84c8/HZM7z5JK555C5E8BLa6x8yCP2R8S5LGKk6s8jYrBRG4pYWn3eg/vXJh/evzaZxcrKB39nkVV9zdfKquPuqjEUEb+cyeK/n2ycd25hcWaiKOqzVfvw/MUrh+cWFg9NX5y4UL9QvzR+YvzY8RPHjr99pGu5vrv35tmvxk/t+f7Mrauv3fj9yyxOxXA11ppHt4zFWKxUWvv7I2Ki25Ml0lflk7X0Zf0JAwIAYFN5yxrufzESfbG+eBuJW78mDQ4AAADoipW+WPsfFQAAAPCiyuz/AQAA4AXX/BzAg/vXJpsl7ScSnq57pyNitF3+/bHUOA7FQETsepBF622t2eqPPbGxiNj30+iPZYke3Ye8maXrEfH/dvlnjfxHG3dxb8w/j4hu3Jk99kj7ecr/VBfmT50/AC+n5dOrF7KN1798bf0Tba5//W2uXY8j9fWv8/pvPf++Duu/97c5R/3Ap593Gmtd/xXfvnq7nL88PlFS/8K96xGv9Hde/5T5Zx3yP7fNOQb++PmHTmNl/mW+zfK081/5JuJg2/3P+jfaZJt/P9HhqemiXj22nePG7e/2dZq/9fyXpZy/uRd4Gsrzv6tD/lud/yvbnGP5r4N/dhrbOv/87mD2YaM2WPVcnZifnx2PGMzObuw/unkszec0X6PM/83XN//7b5d/+Z6wVP0eyr3A9epYtj9+ZM5D773zxuPn31tl/ucf8/zf3OYcX382e7fTWOr8AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHg+5BExHFleW6vnea0WsTsi9sWuvLg8N//W1OWPLp0vxyJGYyCfmi7qRyJiZLWdle3xRn29ffSR9rGI2BsRX4zsbLRrk5eL86mTBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYM3uiBiOLK9FRB4RD0fyvFZLHRUAAADQdaOpAwAAAAB6zv4fAAAAXnz2/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPTY3gPLd7KIWDq5s1FKg9XYQNLIgF7LUwcAJNOXOgAgmf7UAQDJ2OMD2RbjQx1HdnQ9FgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACeXQf3L9/JImLp5M5GKQ1WYwNJIwN6LU8dAJBMX+oAgGT6UwcAJGOPD2RbjA91HNnR9VgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeHYNN0qW1yIib9TzvFaL2BMRozGQTU0X9SMR8Z+I+G1kYEfZHk8dNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF03t7A4M1EU9VkVFRWVtUrqdyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFKYW1icmSiK+uxc6kgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA1OYWFmcmiqI+28NK6hwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEjnnwAAAP///JMJmQ==")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket(0x8000000010, 0x2, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000200)={r0, 0x20, &(0x7f0000000180)={&(0x7f00000007c0)=""/149, 0x95, <r2=>0x0, &(0x7f0000000880)=""/201, 0xc9}}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nombcache}, {@delalloc}, {@data_err_ignore}, {@nojournal_checksum}, {@dioread_nolock}, {@bsdgroups}]}, 0x6, 0x4cd, &(0x7f0000000c80)="$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")
r4 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
write$UHID_INPUT(r4, &(0x7f00000027c0)={0x8, {"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", 0xffffffffffffff48}}, 0x1006)
r5 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80)
ftruncate(r5, 0x800)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10)
write(r1, &(0x7f00000002c0)="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", 0xfc)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000001c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x8000000000000000, 0x6, 0x93b1, 0x8, 0x2, 0x80, 0x6, 0x61, 0x35})
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), 0xffffffffffffffff)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffd8, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x40505330, &(0x7f00000000c0)={0x80, 0x1, 0xffffffbc, 0x7, 0x0, 0x55a})
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0xffffffff})
r8 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r8, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

0s ago: executing program 0 (id=606):
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$eJzs3ctvW1UaAPDPdpMmaWb6mNGo7UjTSh2p81DjPDRqMjObWc3MotJoKrEBqYTEDSVOHMVOaaIuUth1wQKBQEIs2PMXsKErKiTEGvaIBSqCEiRAQjK613abOHGwII1p7u8n3ebch/2dU+s7Ovf4Xt8AMuts8k8uYjgiPoyIo43VrQecbfzZuH9zJllyUa9f/iKXHpestw5tve5IRKxHxEBE/P/fEc/ktsetrq7NT5fLpeXmerG2sFSsrq5duLYwPVeaKy2OTV6cmpocnRif2rO23n7puduX3vlv/9vfvHjv7svvvZtUa7i5b3M79lKj6X1xfNO2QxHxz0cRrAcKzfYM9roi/CTJ5/ebiDiX5v/RKKSfJpAF9Xq9/n39cKfd63XgwMqnY+BcfiQiGuV8fmSkMYb/bQzly5Vq7a9XKyuLs42x8rHoy1+9Vi6NNs8VjkVfLlkfS8sP18fb1ici0jHwK4XBdH1kplKe3d+uDmhzpC3/vy408h/ICKf8kF3yH7JL/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv+QXfIfskv+Qyb979KlZKm37n+fvb66Ml+5fmG2VJ0fWViZGZmpLC+NzFUqc+k9Ows/9n7lSmVp7G+xcqNYK1Vrxerq2pWFyspi7Up6X/+VUt++tAroxvEzdz7ORcT63wfTJdHf3CdX4WCr13PR63uQgd4o9LoDAnrG1B9kl3N8oP0netvHBQOdXrj0cL4QeLzke10BoGfOn/L9H2SV+X/ILvP/kF3G+MAOj+jbYrf5f+DxZP4fsmu4w/O/frXp2V2jEfHriPio0He49awv4CDIf5Zrjv/PH/3jcPve/ty36VcE/RHx/BuXX7sxXastjyXbv3ywvfZ6c/v4phd2PGEAeqWVp608BgCya+P+zZnWsp9xP/9X4yKE7fEPNecmB9LvKIc2cluuVcjt0bUL67ci4uRO8XPN5503TmSGNgrb4p9o/s013iKt76H0uen7E//Upvh/2BT/9M/+X4FsuJP0P6M75V8+zel4kH9b+5/hPbp2onP/l3/Q/xU69H9nuozx7JsvfNox/q2I0zvGb8UbSGO1x0/qdr7L+PeeeuJ3nfbV32q8z07xW5JSsbawVKyurl1If0durrQ4NnlxampydGJ8qpjOURdbM9Xb/ePkB3d3a/9Qh/i7tT/Z9ucu2//d799/8uwu8f90bufP/8Qu8Qcj4i9dxv9q/JOnO+1L4s92aH9+l/jJtoku41df/c/hLg8FAPZBdXVtfrpcLi0rKCj0pHDrl1GNtkKveybgUauuJqfmSdL3uiYAAAAAAAAAAABAt/bjcuJetxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CD4IQAA//9HcdTQ") (async)
arch_prctl$ARCH_GET_XCOMP_SUPP(0x1021, &(0x7f00000000c0)) (async)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x13, 0x5, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0xfffffff9}, [@map_val={0x18, 0xd, 0x2, 0x0, r2, 0x0, 0x0, 0x0, 0x4}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
syz_open_pts(r1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x94eb2000) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) (async, rerun: 32)
r4 = gettid() (rerun: 32)
process_vm_writev(r4, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) (async, rerun: 64)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0) (async, rerun: 64)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000240)='./file1\x00', &(0x7f00000002c0), 0x0, 0x0, 0x1) (async)
mkdir(&(0x7f0000000040)='./file1\x00', 0x80) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000200), 0xffffffffffffffff) (async, rerun: 32)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r7, 0x0, 0x32, &(0x7f0000000f00)=0x1000000, 0x4)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'veth0_macvtap\x00', <r8=>0x0})
sendmmsg$inet(r7, &(0x7f0000002240)=[{{&(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000080)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @local, @loopback}}}], 0x20}}], 0x1, 0x3e)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r9=>0x0})
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f00000003c0)={&(0x7f0000000100), 0xc, &(0x7f0000000340)={&(0x7f0000000680)={0xbc, r6, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0xf8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_LOC_ID={0x5}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x24, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r8}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010101}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR_REMOTE={0x54, 0x6, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r9}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}]}, 0xbc}, 0x1, 0x0, 0x0, 0x48054}, 0x4c04)

kernel console output (not intermixed with test programs):

[   24.811762][   T29] audit: type=1400 audit(1758752598.853:60): avc:  denied  { rlimitinh } for  pid=3281 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   24.831937][   T29] audit: type=1400 audit(1758752598.853:61): avc:  denied  { siginh } for  pid=3281 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.1.41' (ED25519) to the list of known hosts.
[   32.664655][   T29] audit: type=1400 audit(1758752606.793:62): avc:  denied  { mounton } for  pid=3295 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   32.665468][ T3295] cgroup: Unknown subsys name 'net'
[   32.688192][   T29] audit: type=1400 audit(1758752606.793:63): avc:  denied  { mount } for  pid=3295 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   32.718086][   T29] audit: type=1400 audit(1758752606.823:64): avc:  denied  { unmount } for  pid=3295 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   32.833296][ T3295] cgroup: Unknown subsys name 'cpuset'
[   32.840115][ T3295] cgroup: Unknown subsys name 'rlimit'
[   32.949196][   T29] audit: type=1400 audit(1758752607.073:65): avc:  denied  { setattr } for  pid=3295 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   32.974081][   T29] audit: type=1400 audit(1758752607.073:66): avc:  denied  { create } for  pid=3295 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   32.995771][   T29] audit: type=1400 audit(1758752607.073:67): avc:  denied  { write } for  pid=3295 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.003732][ T3297] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   33.017570][   T29] audit: type=1400 audit(1758752607.073:68): avc:  denied  { read } for  pid=3295 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.049594][   T29] audit: type=1400 audit(1758752607.083:69): avc:  denied  { mounton } for  pid=3295 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   33.075376][   T29] audit: type=1400 audit(1758752607.083:70): avc:  denied  { mount } for  pid=3295 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   33.101092][   T29] audit: type=1400 audit(1758752607.153:71): avc:  denied  { relabelto } for  pid=3297 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   33.143930][ T3295] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   34.328083][ T3304] chnl_net:caif_netlink_parms(): no params data found
[   34.337289][ T3306] chnl_net:caif_netlink_parms(): no params data found
[   34.403932][ T3311] chnl_net:caif_netlink_parms(): no params data found
[   34.442064][ T3304] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.450678][ T3304] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.458575][ T3304] bridge_slave_0: entered allmulticast mode
[   34.466101][ T3304] bridge_slave_0: entered promiscuous mode
[   34.474735][ T3304] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.482727][ T3304] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.490020][ T3304] bridge_slave_1: entered allmulticast mode
[   34.496858][ T3304] bridge_slave_1: entered promiscuous mode
[   34.505896][ T3306] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.514333][ T3306] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.521876][ T3306] bridge_slave_0: entered allmulticast mode
[   34.528742][ T3306] bridge_slave_0: entered promiscuous mode
[   34.538469][ T3306] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.545895][ T3306] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.553592][ T3306] bridge_slave_1: entered allmulticast mode
[   34.560234][ T3306] bridge_slave_1: entered promiscuous mode
[   34.578904][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.604181][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.644074][ T3304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.658819][ T3311] bridge0: port 1(bridge_slave_0) entered blocking state
[   34.666774][ T3311] bridge0: port 1(bridge_slave_0) entered disabled state
[   34.674422][ T3311] bridge_slave_0: entered allmulticast mode
[   34.681108][ T3311] bridge_slave_0: entered promiscuous mode
[   34.699694][ T3304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.715819][ T3306] team0: Port device team_slave_0 added
[   34.721667][ T3311] bridge0: port 2(bridge_slave_1) entered blocking state
[   34.728793][ T3311] bridge0: port 2(bridge_slave_1) entered disabled state
[   34.736249][ T3311] bridge_slave_1: entered allmulticast mode
[   34.743705][ T3311] bridge_slave_1: entered promiscuous mode
[   34.760983][ T3314] chnl_net:caif_netlink_parms(): no params data found
[   34.771383][ T3306] team0: Port device team_slave_1 added
[   34.789224][ T3304] team0: Port device team_slave_0 added
[   34.810639][ T3311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   34.826005][ T3304] team0: Port device team_slave_1 added
[   34.837466][ T3311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   34.847834][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   34.855514][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.883952][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   34.896049][ T3305] chnl_net:caif_netlink_parms(): no params data found
[   34.906550][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   34.913862][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   34.941089][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   34.986057][ T3311] team0: Port device team_slave_0 added
[   35.002617][ T3304] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.011085][ T3304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.038280][ T3304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.056512][ T3311] team0: Port device team_slave_1 added
[   35.070222][ T3304] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.077963][ T3304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.106070][ T3304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.139215][ T3314] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.146753][ T3314] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.155033][ T3314] bridge_slave_0: entered allmulticast mode
[   35.162804][ T3314] bridge_slave_0: entered promiscuous mode
[   35.179322][ T3305] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.187173][ T3305] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.196416][ T3305] bridge_slave_0: entered allmulticast mode
[   35.203347][ T3305] bridge_slave_0: entered promiscuous mode
[   35.212122][ T3305] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.219592][ T3305] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.227442][ T3305] bridge_slave_1: entered allmulticast mode
[   35.235078][ T3305] bridge_slave_1: entered promiscuous mode
[   35.242076][ T3314] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.250552][ T3314] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.259048][ T3314] bridge_slave_1: entered allmulticast mode
[   35.266050][ T3314] bridge_slave_1: entered promiscuous mode
[   35.273412][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.280610][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.308762][ T3311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.322353][ T3306] hsr_slave_0: entered promiscuous mode
[   35.328853][ T3306] hsr_slave_1: entered promiscuous mode
[   35.346124][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.353826][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.381251][ T3311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.429642][ T3304] hsr_slave_0: entered promiscuous mode
[   35.436413][ T3304] hsr_slave_1: entered promiscuous mode
[   35.442615][ T3304] debugfs: 'hsr0' already exists in 'hsr'
[   35.448780][ T3304] Cannot create hsr debugfs directory
[   35.455448][ T3305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.466081][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.483250][ T3305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.494231][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.546737][ T3311] hsr_slave_0: entered promiscuous mode
[   35.553427][ T3311] hsr_slave_1: entered promiscuous mode
[   35.559652][ T3311] debugfs: 'hsr0' already exists in 'hsr'
[   35.565836][ T3311] Cannot create hsr debugfs directory
[   35.572464][ T3314] team0: Port device team_slave_0 added
[   35.591449][ T3305] team0: Port device team_slave_0 added
[   35.600799][ T3305] team0: Port device team_slave_1 added
[   35.608759][ T3314] team0: Port device team_slave_1 added
[   35.640304][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.647520][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.674935][ T3314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.686525][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.693877][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.720871][ T3314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.751447][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.759272][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.788118][ T3305] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.800988][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.808541][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.836560][ T3305] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.901268][ T3305] hsr_slave_0: entered promiscuous mode
[   35.908398][ T3305] hsr_slave_1: entered promiscuous mode
[   35.914632][ T3305] debugfs: 'hsr0' already exists in 'hsr'
[   35.921497][ T3305] Cannot create hsr debugfs directory
[   35.931977][ T3314] hsr_slave_0: entered promiscuous mode
[   35.938532][ T3314] hsr_slave_1: entered promiscuous mode
[   35.945060][ T3314] debugfs: 'hsr0' already exists in 'hsr'
[   35.951453][ T3314] Cannot create hsr debugfs directory
[   36.052679][ T3306] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   36.069564][ T3306] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   36.086595][ T3306] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   36.098543][ T3306] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   36.134975][ T3311] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   36.147112][ T3311] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   36.156847][ T3311] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   36.166937][ T3311] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   36.211139][ T3304] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   36.222571][ T3304] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   36.236781][ T3304] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   36.254082][ T3304] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   36.272482][ T3305] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   36.284231][ T3305] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   36.297421][ T3305] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   36.331251][ T3305] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   36.357112][ T3314] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   36.368142][ T3314] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   36.378112][ T3314] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   36.393561][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.402792][ T3314] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   36.419039][ T3311] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.436737][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   36.460349][ T3311] 8021q: adding VLAN 0 to HW filter on device team0
[   36.475927][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.483748][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.493222][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.501302][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.515808][ T1003] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.523430][ T1003] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.556908][ T1003] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.564377][ T1003] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.606714][ T3311] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   36.636007][ T3305] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.657824][ T3304] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.678305][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.695385][ T3305] 8021q: adding VLAN 0 to HW filter on device team0
[   36.711538][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   36.721262][ T1003] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.729636][ T1003] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.740740][ T1003] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.748989][ T1003] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.767856][ T3304] 8021q: adding VLAN 0 to HW filter on device team0
[   36.785767][ T3314] 8021q: adding VLAN 0 to HW filter on device team0
[   36.805654][ T1003] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.813060][ T1003] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.825465][ T1003] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.833994][ T1003] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.843407][ T1003] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.850638][ T1003] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.859670][ T1003] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.867075][ T1003] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.879930][ T3311] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.018964][ T3306] veth0_vlan: entered promiscuous mode
[   37.041726][ T3306] veth1_vlan: entered promiscuous mode
[   37.058893][ T3305] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.067416][ T3304] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.076440][ T3314] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.111559][ T3311] veth0_vlan: entered promiscuous mode
[   37.129830][ T3306] veth0_macvtap: entered promiscuous mode
[   37.145879][ T3311] veth1_vlan: entered promiscuous mode
[   37.163016][ T3306] veth1_macvtap: entered promiscuous mode
[   37.182849][ T3311] veth0_macvtap: entered promiscuous mode
[   37.208033][ T3311] veth1_macvtap: entered promiscuous mode
[   37.225862][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.254613][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.267072][ T3305] veth0_vlan: entered promiscuous mode
[   37.278267][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.290559][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.313586][ T3305] veth1_vlan: entered promiscuous mode
[   37.320441][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.331228][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.350855][ T1985] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.366228][ T3305] veth0_macvtap: entered promiscuous mode
[   37.381310][ T1985] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.391165][ T3304] veth0_vlan: entered promiscuous mode
[   37.408609][ T3305] veth1_macvtap: entered promiscuous mode
[   37.420098][   T31] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.437209][ T3314] veth0_vlan: entered promiscuous mode
[   37.444614][   T31] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.458476][ T3304] veth1_vlan: entered promiscuous mode
[   37.467894][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.478073][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.479010][ T3306] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   37.503850][   T31] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.515694][   T31] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.536556][ T3314] veth1_vlan: entered promiscuous mode
[   37.544610][   T31] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.571017][ T3304] veth0_macvtap: entered promiscuous mode
[   37.612688][   T31] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.625397][ T3304] veth1_macvtap: entered promiscuous mode
[   37.636941][ T3314] veth0_macvtap: entered promiscuous mode
[   37.653874][   T31] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.666370][   T31] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.690008][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.691405][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.709782][   T37] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.720251][ T3314] veth1_macvtap: entered promiscuous mode
[   37.735095][   T37] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.735445][   T37] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.735511][   T37] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.742008][ T3486] loop2: detected capacity change from 0 to 512
[   37.788453][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.797947][   T29] kauditd_printk_skb: 32 callbacks suppressed
[   37.797964][   T29] audit: type=1400 audit(1758752611.923:104): avc:  denied  { load_policy } for  pid=3488 comm="syz.3.7" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   37.806899][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.853694][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.857148][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.857197][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.857294][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.861216][ T3489] SELinux: failed to load policy
[   37.861342][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861373][ T3489] SELinux: failed to load policy
[   37.861401][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861428][ T3489] SELinux: failed to load policy
[   37.861456][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861550][ T3489] SELinux: failed to load policy
[   37.861576][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861604][ T3489] SELinux: failed to load policy
[   37.861636][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861657][ T3489] SELinux: failed to load policy
[   37.861679][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861765][ T3489] SELinux: failed to load policy
[   37.861790][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861813][ T3489] SELinux: failed to load policy
[   37.861835][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861916][ T3489] SELinux: failed to load policy
[   37.861945][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.861949][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.864730][ T3489] SELinux: failed to load policy
[   37.871818][ T3486] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.881166][ T3489] SELinux:  policydb table sizes (0,0) do not match mine (8,7)
[   37.903835][   T29] audit: type=1400 audit(1758752612.033:105): avc:  denied  { mount } for  pid=3485 comm="syz.2.3" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   37.916526][ T3486] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.110469][ T3498] loop3: detected capacity change from 0 to 512
[   38.142890][   T29] audit: type=1400 audit(1758752612.263:106): avc:  denied  { add_name } for  pid=3485 comm="syz.2.3" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   38.142918][   T29] audit: type=1400 audit(1758752612.263:107): avc:  denied  { create } for  pid=3485 comm="syz.2.3" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   38.142945][   T29] audit: type=1400 audit(1758752612.263:108): avc:  denied  { read write } for  pid=3485 comm="syz.2.3" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   38.142967][   T29] audit: type=1400 audit(1758752612.263:109): avc:  denied  { open } for  pid=3485 comm="syz.2.3" path="/0/file1/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   38.187082][ T3498] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.187223][ T3498] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   38.193443][   T29] audit: type=1400 audit(1758752612.313:110): avc:  denied  { read open } for  pid=3497 comm="syz.3.8" path="/2/file1/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   38.214270][ T3505] FAULT_INJECTION: forcing a failure.
[   38.214270][ T3505] name failslab, interval 1, probability 0, space 0, times 1
[   38.215786][   T29] audit: type=1400 audit(1758752612.323:111): avc:  denied  { write } for  pid=3497 comm="syz.3.8" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   38.239684][ T3505] CPU: 1 UID: 0 PID: 3505 Comm: syz.4.5 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   38.239711][ T3505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   38.239723][ T3505] Call Trace:
[   38.239731][ T3505]  <TASK>
[   38.239739][ T3505]  __dump_stack+0x1d/0x30
[   38.239770][ T3505]  dump_stack_lvl+0xe8/0x140
[   38.239789][ T3505]  dump_stack+0x15/0x1b
[   38.239806][ T3505]  should_fail_ex+0x265/0x280
[   38.239830][ T3505]  should_failslab+0x8c/0xb0
[   38.239864][ T3505]  kmem_cache_alloc_noprof+0x50/0x310
[   38.239938][ T3505]  ? io_submit_one+0xb8/0x11d0
[   38.239966][ T3505]  io_submit_one+0xb8/0x11d0
[   38.240018][ T3505]  __se_sys_io_submit+0xfb/0x280
[   38.240057][ T3505]  __x64_sys_io_submit+0x43/0x50
[   38.240081][ T3505]  x64_sys_call+0x2d5d/0x2ff0
[   38.240103][ T3505]  do_syscall_64+0xd2/0x200
[   38.240133][ T3505]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   38.240175][ T3505]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   38.240204][ T3505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.240226][ T3505] RIP: 0033:0x7f7a4dc6eec9
[   38.240242][ T3505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.240331][ T3505] RSP: 002b:00007f7a4c6cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[   38.240397][ T3505] RAX: ffffffffffffffda RBX: 00007f7a4dec5fa0 RCX: 00007f7a4dc6eec9
[   38.240410][ T3505] RDX: 0000200000000480 RSI: 0000000000000001 RDI: 00007f7a4ea00000
[   38.240422][ T3505] RBP: 00007f7a4c6cf090 R08: 0000000000000000 R09: 0000000000000000
[   38.240454][ T3505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.240466][ T3505] R13: 00007f7a4dec6038 R14: 00007f7a4dec5fa0 R15: 00007ffed99fd178
[   38.240483][ T3505]  </TASK>
[   38.535225][   T29] audit: type=1400 audit(1758752612.333:112): avc:  denied  { open } for  pid=3503 comm="syz.4.5" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   38.535250][   T29] audit: type=1400 audit(1758752612.333:113): avc:  denied  { kernel } for  pid=3503 comm="syz.4.5" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[   38.609022][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.701268][ T3515] loop4: detected capacity change from 0 to 4096
[   38.718869][ T3515] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   38.755975][ T3511] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11'.
[   38.767669][ T3517] loop2: detected capacity change from 0 to 4096
[   38.775464][ T3515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.806394][ T3517] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   38.869357][ T3511] smc: net device bond0 applied user defined pnetid SYZ0
[   38.870076][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.878587][ T3511] Zero length message leads to an empty skb
[   38.908548][ T3517] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   38.911754][ T3511] syz.0.11 (3511) used greatest stack depth: 10176 bytes left
[   38.922947][ T3515] netlink: 'syz.4.12': attribute type 12 has an invalid length.
[   39.019052][ T3525] loop0: detected capacity change from 0 to 512
[   39.037282][ T3517] netlink: 'syz.2.13': attribute type 12 has an invalid length.
[   39.069842][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.084738][ T3525] EXT4-fs warning (device loop0): ext4_xattr_inode_get:542: inode #11: comm syz.0.16: ea_inode file size=0 entry size=6
[   39.100609][ T3527] loop3: detected capacity change from 0 to 512
[   39.137747][ T3527] EXT4-fs warning (device loop3): ext4_xattr_inode_get:542: inode #11: comm syz.3.14: ea_inode file size=0 entry size=6
[   39.162685][ T3525] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   39.177430][ T3527] ------------[ cut here ]------------
[   39.183329][ T3527] EA inode 11 i_nlink=2
[   39.183545][ T3527] WARNING: CPU: 0 PID: 3527 at fs/ext4/xattr.c:1053 ext4_xattr_inode_update_ref+0x3d4/0x3f0
[   39.191602][ T3525] EXT4-fs (loop0): 1 orphan inode deleted
[   39.199123][ T3527] Modules linked in:
[   39.206012][ T3525] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.209112][ T3527] CPU: 0 UID: 0 PID: 3527 Comm: syz.3.14 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   39.231258][ T3527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   39.241568][ T3527] RIP: 0010:ext4_xattr_inode_update_ref+0x3d4/0x3f0
[   39.248606][ T3527] Code: 90 49 8d 7e 40 e8 9c f8 b7 ff 4d 8b 6e 40 4c 89 e7 e8 b0 f3 b7 ff 41 8b 56 48 48 c7 c7 09 a7 54 86 4c 89 ee e8 fd de 66 ff 90 <0f> 0b 90 90 e9 58 fe ff ff e8 0e 9d ad 03 66 66 66 66 66 2e 0f 1f
[   39.268869][ T3527] RSP: 0018:ffffc90001dbb7c8 EFLAGS: 00010246
[   39.276297][ T3527] RAX: 40d91664eae08e00 RBX: ffff88811987d308 RCX: 0000000000080000
[   39.284617][ T3527] RDX: ffffc90004623000 RSI: 000000000000461f RDI: 0000000000004620
[   39.293040][ T3527] RBP: 0000000000000002 R08: 0001c90001dbb63f R09: 0000000000000000
[   39.302095][ T3527] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff88811987d2b8
[   39.310723][ T3527] R13: 000000000000000b R14: ffff88811987d270 R15: 0000000000000001
[   39.319556][ T3527] FS:  00007fa3c5b576c0(0000) GS:ffff8882aee40000(0000) knlGS:0000000000000000
[   39.329748][ T3527] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   39.337099][ T3527] CR2: 000055c2e9854c30 CR3: 000000011a13a000 CR4: 00000000003506f0
[   39.345629][ T3527] Call Trace:
[   39.349582][ T3527]  <TASK>
[   39.353133][ T3527]  ext4_xattr_inode_dec_ref_all+0x579/0x830
[   39.359437][ T3527]  ? errseq_check+0x2c/0x50
[   39.364271][ T3527]  ext4_xattr_delete_inode+0x6b7/0x790
[   39.370950][ T3527]  ? ext4_truncate+0x92e/0xae0
[   39.376346][ T3527]  ext4_evict_inode+0xa6a/0xd90
[   39.381742][ T3527]  ? __pfx_ext4_evict_inode+0x10/0x10
[   39.387817][ T3527]  evict+0x2e3/0x550
[   39.392081][ T3527]  ? __dquot_initialize+0x146/0x7c0
[   39.397650][ T3527]  iput+0x447/0x5b0
[   39.402278][ T3527]  ext4_process_orphan+0x1a9/0x1c0
[   39.407863][ T3527]  ext4_orphan_cleanup+0x6a8/0xa00
[   39.414107][ T3527]  ext4_fill_super+0x3260/0x35d0
[   39.419808][ T3527]  ? set_blocksize+0x1a8/0x310
[   39.425613][ T3527]  ? sb_set_blocksize+0xe3/0x100
[   39.431815][ T3527]  ? setup_bdev_super+0x30e/0x370
[   39.437671][ T3527]  ? __pfx_ext4_fill_super+0x10/0x10
[   39.444632][ T3527]  get_tree_bdev_flags+0x28e/0x300
[   39.450128][ T3527]  ? __pfx_ext4_fill_super+0x10/0x10
[   39.455615][ T3527]  get_tree_bdev+0x1f/0x30
[   39.460941][ T3527]  ext4_get_tree+0x1c/0x30
[   39.465784][ T3527]  vfs_get_tree+0x57/0x1d0
[   39.471426][ T3527]  do_new_mount+0x207/0x5e0
[   39.476552][ T3527]  ? security_capable+0x83/0x90
[   39.481628][ T3527]  path_mount+0x4a4/0xb20
[   39.486857][ T3527]  ? user_path_at+0x109/0x130
[   39.491926][ T3527]  __se_sys_mount+0x28f/0x2e0
[   39.496825][ T3527]  ? do_mkdirat+0x3ac/0x3f0
[   39.502032][ T3527]  __x64_sys_mount+0x67/0x80
[   39.506668][ T3527]  x64_sys_call+0x2b4d/0x2ff0
[   39.511766][ T3527]  do_syscall_64+0xd2/0x200
[   39.516556][ T3527]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   39.522915][ T3527]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   39.530767][ T3527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   39.537194][ T3527] RIP: 0033:0x7fa3c70f066a
[   39.542017][ T3527] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   39.563069][ T3527] RSP: 002b:00007fa3c5b56e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   39.572229][ T3527] RAX: ffffffffffffffda RBX: 00007fa3c5b56ef0 RCX: 00007fa3c70f066a
[   39.581812][ T3527] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fa3c5b56eb0
[   39.590315][ T3527] RBP: 0000200000000180 R08: 00007fa3c5b56ef0 R09: 0000000000800700
[   39.598539][ T3527] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[   39.606658][ T3527] R13: 00007fa3c5b56eb0 R14: 0000000000000473 R15: 0000200000000680
[   39.615381][ T3527]  </TASK>
[   39.618603][ T3527] ---[ end trace 0000000000000000 ]---
[   39.624952][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.629253][ T3527] EXT4-fs (loop3): 1 orphan inode deleted
[   39.641826][ T3527] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.654356][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.708301][ T3556] 9pnet_fd: Insufficient options for proto=fd
[   39.731001][ T3560] netlink: 36 bytes leftover after parsing attributes in process `syz.1.21'.
[   39.744367][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.763754][ T3556] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   39.827794][ T3570] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   39.827988][ T3563] IPVS: stopping backup sync thread 3570 ...
[   39.893177][ T3574] loop4: detected capacity change from 0 to 512
[   39.908703][ T3574] EXT4-fs warning (device loop4): ext4_xattr_inode_get:542: inode #11: comm syz.4.25: ea_inode file size=0 entry size=6
[   39.924040][ T3574] EXT4-fs (loop4): 1 orphan inode deleted
[   39.933027][ T3574] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.979075][ T3577] loop2: detected capacity change from 0 to 4096
[   39.991110][ T3577] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   40.010505][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.020263][ T3579] loop1: detected capacity change from 0 to 4096
[   40.027516][ T3577] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.051834][ T3579] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   40.063960][ T3579] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.091473][ T3577] netlink: 'syz.2.26': attribute type 12 has an invalid length.
[   40.110372][ T3584] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   40.123359][ T3579] netlink: 'syz.1.27': attribute type 12 has an invalid length.
[   40.133537][ T3583] IPVS: stopping backup sync thread 3584 ...
[   40.166894][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.179880][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.233732][ T3590] ieee802154 phy0 wpan0: encryption failed: -22
[   40.275764][ T3556] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.302660][ T3590] =======================================================
[   40.302660][ T3590] WARNING: The mand mount option has been deprecated and
[   40.302660][ T3590]          and is ignored by this kernel. Remove the mand
[   40.302660][ T3590]          option from the mount to silence this warning.
[   40.302660][ T3590] =======================================================
[   40.342112][ T3590] tracefs: Unknown parameter 'mode9ITÌ0000000000000000400'
[   40.355107][ T3594] sd 0:0:1:0: device reset
[   40.391788][ T3556] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.428475][ T3598] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   40.448789][ T3602] netlink: 'syz.3.36': attribute type 1 has an invalid length.
[   40.458786][ T3598] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   40.483183][ T3556] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   40.484699][ T3602] netlink: 3 bytes leftover after parsing attributes in process `syz.3.36'.
[   40.539571][ T3602] 0ªX¹¦À: renamed from caif0
[   40.554690][ T3602] 0ªX¹¦À: entered allmulticast mode
[   40.560210][ T3602] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[   40.593753][   T12] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   40.618412][   T12] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   40.642539][   T12] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   40.681258][   T12] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   40.695758][ T3612] loop0: detected capacity change from 0 to 4096
[   40.703463][ T3612] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   40.738431][ T3612] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.776624][ T2927] nci: nci_add_new_protocol: the target found does not have the desired protocol
[   40.819900][ T3612] netlink: 'syz.0.39': attribute type 12 has an invalid length.
[   40.853424][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.882863][ T3623] loop3: detected capacity change from 0 to 4096
[   40.929912][ T3623] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   40.981144][ T3623] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.003546][ T3632] process 'syz.0.45' launched './file0' with NULL argv: empty string added
[   41.020595][ T3632] loop0: detected capacity change from 0 to 512
[   41.032848][ T3623] netlink: 'syz.3.41': attribute type 12 has an invalid length.
[   41.045905][ T3623] capability: warning: `syz.3.41' uses deprecated v2 capabilities in a way that may be insecure
[   41.073200][ T3632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.074537][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.118873][ T3632] ext4 filesystem being mounted at /file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   41.127074][ T3639] loop4: detected capacity change from 0 to 4096
[   41.164085][ T3632] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.226277][ T3639] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   41.287821][ T3639] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.302013][ T3650] IPVS: stopping backup sync thread 3653 ...
[   41.302152][ T3653] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   41.331245][ T3648] loop1: detected capacity change from 0 to 4096
[   41.354726][ T3648] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   41.416849][ T3648] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.468302][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.483017][ T3658] 
: renamed from bond0 (while UP)
[   41.495676][ T3648] netlink: 'syz.1.48': attribute type 12 has an invalid length.
[   41.522875][ T3665] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   41.524084][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.534006][ T3664] IPVS: stopping backup sync thread 3665 ...
[   41.566981][ T3667] loop2: detected capacity change from 0 to 512
[   41.605192][ T3671] netlink: 8 bytes leftover after parsing attributes in process `syz.4.52'.
[   41.607256][ T3674] netlink: 8 bytes leftover after parsing attributes in process `syz.0.58'.
[   41.643429][ T3675] loop1: detected capacity change from 0 to 4096
[   41.663459][ T3667] EXT4-fs warning (device loop2): ext4_xattr_inode_get:542: inode #11: comm syz.2.56: ea_inode file size=0 entry size=6
[   41.711140][ T3675] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   41.711692][ T3667] EXT4-fs (loop2): 1 orphan inode deleted
[   41.728327][ T3667] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.748123][ T3671] smc: net device bond0 erased user defined pnetid SYZ0
[   41.770908][ T3674] smc: net device bond0 applied user defined pnetid SYZ0
[   41.781391][ T3674] smc: net device bond0 erased user defined pnetid SYZ0
[   41.791477][ T3675] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.815322][ T3682] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   41.815585][ T3681] IPVS: stopping backup sync thread 3682 ...
[   41.867253][ T3684] netlink: 8 bytes leftover after parsing attributes in process `syz.3.60'.
[   41.879533][ T3675] netlink: 'syz.1.55': attribute type 12 has an invalid length.
[   41.889965][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.911205][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.938416][ T3689] loop2: detected capacity change from 0 to 512
[   41.948685][ T3684] smc: net device bond0 applied user defined pnetid SYZ0
[   41.971183][ T3689] EXT4-fs warning (device loop2): ext4_xattr_inode_get:542: inode #11: comm syz.2.62: ea_inode file size=0 entry size=6
[   41.971223][ T3684] smc: net device bond0 erased user defined pnetid SYZ0
[   41.999553][ T3689] EXT4-fs (loop2): 1 orphan inode deleted
[   42.006128][ T3689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.084014][ T3699] loop3: detected capacity change from 0 to 4096
[   42.116737][ T3699] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   42.158922][ T3699] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.179052][ T3703] loop1: detected capacity change from 0 to 4096
[   42.187211][ T3703] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   42.208095][ T3699] netlink: 'syz.3.66': attribute type 12 has an invalid length.
[   42.219133][ T3703] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.261204][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.285744][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.341679][ T3713] netlink: 8 bytes leftover after parsing attributes in process `syz.1.72'.
[   42.346263][ T3715] veth1_to_team: entered promiscuous mode
[   42.451325][ T3719] loop1: detected capacity change from 0 to 4096
[   42.473609][ T3719] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   42.497517][ T3719] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.551185][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.628766][ T3733] loop1: detected capacity change from 0 to 4096
[   42.638443][ T3735] loop4: detected capacity change from 0 to 4096
[   42.640770][ T3733] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   42.658845][ T3735] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   42.674558][ T3735] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.721736][ T3733] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.756253][ T3743] loop3: detected capacity change from 0 to 512
[   42.779706][ T3743] EXT4-fs warning (device loop3): ext4_xattr_inode_get:542: inode #11: comm syz.3.83: ea_inode file size=0 entry size=6
[   42.794002][ T3743] EXT4-fs (loop3): 1 orphan inode deleted
[   42.807036][   T29] kauditd_printk_skb: 699 callbacks suppressed
[   42.807061][   T29] audit: type=1326 audit(1758752616.933:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a5feec9 code=0x7ffc0000
[   42.840264][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.840303][ T3743] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   42.851852][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.863168][   T29] audit: type=1326 audit(1758752616.933:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a5feec9 code=0x7ffc0000
[   42.896298][   T29] audit: type=1326 audit(1758752616.933:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f592a5f5d67 code=0x7ffc0000
[   42.921516][   T29] audit: type=1326 audit(1758752616.933:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f592a59af79 code=0x7ffc0000
[   42.945707][   T29] audit: type=1326 audit(1758752616.933:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a5feec9 code=0x7ffc0000
[   42.970947][   T29] audit: type=1326 audit(1758752616.943:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f592a5f5d67 code=0x7ffc0000
[   42.994989][   T29] audit: type=1326 audit(1758752616.943:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f592a59af79 code=0x7ffc0000
[   43.018597][   T29] audit: type=1326 audit(1758752616.943:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f592a5feec9 code=0x7ffc0000
[   43.050054][   T29] audit: type=1326 audit(1758752616.993:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f592a5f5d67 code=0x7ffc0000
[   43.074012][   T29] audit: type=1326 audit(1758752616.993:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3688 comm="syz.2.62" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f592a59af79 code=0x7ffc0000
[   43.100020][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.166754][ T3757] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   43.168426][ T3750] IPVS: stopping backup sync thread 3757 ...
[   43.187068][ T3753] loop1: detected capacity change from 0 to 4096
[   43.195854][ T3753] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   43.198166][ T3753] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.260075][ T3756] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   43.270850][ T3756] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   43.281796][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.353993][ T3768] netlink: 80 bytes leftover after parsing attributes in process `syz.1.93'.
[   43.369449][ T3768] loop1: detected capacity change from 0 to 512
[   43.377070][ T3768] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   43.456283][ T3770] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   43.466893][ T3770] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   43.504206][ T3774] loop1: detected capacity change from 0 to 4096
[   43.516221][ T3774] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   43.528084][ T3774] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.555699][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.601738][ T3305] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.660470][ T3785] IPVS: stopping backup sync thread 3788 ...
[   44.125901][ T3836] IPVS: stopping backup sync thread 3837 ...
[   44.341720][ T3867] netlink: 8 bytes leftover after parsing attributes in process `syz.1.122'.
[   44.369944][ T3873] loop2: detected capacity change from 0 to 512
[   44.423513][ T3873] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   44.449595][ T3873] EXT4-fs (loop2): invalid journal inode
[   44.482486][ T3873] EXT4-fs (loop2): can't get journal size
[   44.485870][ T3884] FAULT_INJECTION: forcing a failure.
[   44.485870][ T3884] name failslab, interval 1, probability 0, space 0, times 0
[   44.501572][ T3884] CPU: 0 UID: 0 PID: 3884 Comm: syz.0.127 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   44.501612][ T3884] Tainted: [W]=WARN
[   44.501682][ T3884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   44.501695][ T3884] Call Trace:
[   44.501703][ T3884]  <TASK>
[   44.501712][ T3884]  __dump_stack+0x1d/0x30
[   44.501737][ T3884]  dump_stack_lvl+0xe8/0x140
[   44.501756][ T3884]  dump_stack+0x15/0x1b
[   44.501827][ T3884]  should_fail_ex+0x265/0x280
[   44.501854][ T3884]  ? audit_log_d_path+0x8d/0x150
[   44.501890][ T3884]  should_failslab+0x8c/0xb0
[   44.501918][ T3884]  __kmalloc_cache_noprof+0x4c/0x320
[   44.501964][ T3884]  audit_log_d_path+0x8d/0x150
[   44.501997][ T3884]  audit_log_d_path_exe+0x42/0x70
[   44.502078][ T3884]  audit_log_task+0x1e9/0x250
[   44.502160][ T3884]  audit_seccomp+0x61/0x100
[   44.502188][ T3884]  ? __seccomp_filter+0x68c/0x10d0
[   44.502224][ T3884]  __seccomp_filter+0x69d/0x10d0
[   44.502248][ T3884]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   44.502280][ T3884]  ? vfs_write+0x7e8/0x960
[   44.502311][ T3884]  __secure_computing+0x82/0x150
[   44.502332][ T3884]  syscall_trace_enter+0xcf/0x1e0
[   44.502354][ T3884]  do_syscall_64+0xac/0x200
[   44.502395][ T3884]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   44.502422][ T3884]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.502454][ T3884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.502542][ T3884] RIP: 0033:0x7fa863eceec9
[   44.502560][ T3884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.502580][ T3884] RSP: 002b:00007fa86292f038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[   44.502604][ T3884] RAX: ffffffffffffffda RBX: 00007fa864125fa0 RCX: 00007fa863eceec9
[   44.502618][ T3884] RDX: 0000000000000000 RSI: 0000000000000021 RDI: ffffffffffffffff
[   44.502632][ T3884] RBP: 00007fa86292f090 R08: 0000000000000000 R09: 0000000000000000
[   44.502645][ T3884] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   44.502678][ T3884] R13: 00007fa864126038 R14: 00007fa864125fa0 R15: 00007ffd8f0c48e8
[   44.502699][ T3884]  </TASK>
[   44.577780][ T3873] EXT4-fs (loop2): 1 truncate cleaned up
[   44.600525][ T3902] netlink: 5356 bytes leftover after parsing attributes in process `+}[@'.
[   44.602025][ T3873] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.836213][ T3924] loop1: detected capacity change from 0 to 4096
[   44.853840][ T3924] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   44.892470][ T3924] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.907894][ T3928] FAULT_INJECTION: forcing a failure.
[   44.907894][ T3928] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   44.921855][ T3928] CPU: 1 UID: 0 PID: 3928 Comm: syz.4.134 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   44.921889][ T3928] Tainted: [W]=WARN
[   44.921895][ T3928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   44.921907][ T3928] Call Trace:
[   44.921915][ T3928]  <TASK>
[   44.921977][ T3928]  __dump_stack+0x1d/0x30
[   44.921998][ T3928]  dump_stack_lvl+0xe8/0x140
[   44.922018][ T3928]  dump_stack+0x15/0x1b
[   44.922036][ T3928]  should_fail_ex+0x265/0x280
[   44.922061][ T3928]  should_fail+0xb/0x20
[   44.922156][ T3928]  should_fail_usercopy+0x1a/0x20
[   44.922184][ T3928]  strncpy_from_user+0x25/0x230
[   44.922223][ T3928]  ? __kmalloc_cache_noprof+0x189/0x320
[   44.922287][ T3928]  __se_sys_memfd_create+0x1ff/0x590
[   44.922381][ T3928]  __x64_sys_memfd_create+0x31/0x40
[   44.922406][ T3928]  x64_sys_call+0x2abe/0x2ff0
[   44.922502][ T3928]  do_syscall_64+0xd2/0x200
[   44.922531][ T3928]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   44.922567][ T3928]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.922636][ T3928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.922658][ T3928] RIP: 0033:0x7f7a4dc6eec9
[   44.922674][ T3928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.922693][ T3928] RSP: 002b:00007f7a4c6cee18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[   44.922759][ T3928] RAX: ffffffffffffffda RBX: 000000000000056a RCX: 00007f7a4dc6eec9
[   44.922773][ T3928] RDX: 00007f7a4c6ceef0 RSI: 0000000000000000 RDI: 00007f7a4dcf2960
[   44.922787][ T3928] RBP: 0000200000000580 R08: 00007f7a4c6cebb7 R09: 00007f7a4c6cee40
[   44.922799][ T3928] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000540
[   44.922828][ T3928] R13: 00007f7a4c6ceef0 R14: 00007f7a4c6ceeb0 R15: 0000200000000f80
[   44.922849][ T3928]  </TASK>
[   44.929310][ T3931] loop0: detected capacity change from 0 to 164
[   44.957575][ T3924] validate_nla: 3 callbacks suppressed
[   44.957590][ T3924] netlink: 'syz.1.133': attribute type 12 has an invalid length.
[   44.971303][ T3931] iso9660: Unknown parameter ''
[   45.160749][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.214529][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.228279][ T3955] loop0: detected capacity change from 0 to 512
[   45.250815][ T3952] netlink: 96 bytes leftover after parsing attributes in process `syz.1.136'.
[   45.283291][ T3955] EXT4-fs warning (device loop0): ext4_xattr_inode_get:542: inode #11: comm syz.0.140: ea_inode file size=0 entry size=6
[   45.311298][ T3966] loop2: detected capacity change from 0 to 512
[   45.348254][ T3966] EXT4-fs warning (device loop2): ext4_xattr_inode_get:542: inode #11: comm syz.2.143: ea_inode file size=0 entry size=6
[   45.363814][ T3955] EXT4-fs (loop0): 1 orphan inode deleted
[   45.364313][ T3955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.364775][ T3966] EXT4-fs (loop2): 1 orphan inode deleted
[   45.372615][ T3966] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.436579][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.459724][ T3976] netlink: 8 bytes leftover after parsing attributes in process `syz.1.147'.
[   45.550752][ T3991] sd 0:0:1:0: device reset
[   45.619347][ T3987] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   45.666585][ T4000] netlink: 8 bytes leftover after parsing attributes in process `syz.2.157'.
[   45.711035][ T4004] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   45.711697][ T4003] IPVS: stopping backup sync thread 4004 ...
[   45.852841][ T4017] sd 0:0:1:0: device reset
[   45.878900][ T4019] loop1: detected capacity change from 0 to 512
[   45.893621][ T4019] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   45.946784][ T4023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   45.956485][ T4023] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   45.991171][ T4025] netlink: 8 bytes leftover after parsing attributes in process `syz.1.168'.
[   46.084967][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.149540][ T4032] netlink: 80 bytes leftover after parsing attributes in process `syz.0.171'.
[   46.165750][ T4032] loop0: detected capacity change from 0 to 512
[   46.173433][ T4032] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   46.403453][ T4047] netlink: 8 bytes leftover after parsing attributes in process `syz.4.179'.
[   46.428481][ T4049] loop1: detected capacity change from 0 to 4096
[   46.462395][ T4049] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   46.496643][ T4052] sd 0:0:1:0: device reset
[   46.506453][ T4049] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.554330][ T4055] FAULT_INJECTION: forcing a failure.
[   46.554330][ T4055] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   46.568702][ T4055] CPU: 0 UID: 0 PID: 4055 Comm: syz.2.181 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   46.568788][ T4055] Tainted: [W]=WARN
[   46.568794][ T4055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   46.568805][ T4055] Call Trace:
[   46.568811][ T4055]  <TASK>
[   46.568818][ T4055]  __dump_stack+0x1d/0x30
[   46.568839][ T4055]  dump_stack_lvl+0xe8/0x140
[   46.568858][ T4055]  dump_stack+0x15/0x1b
[   46.568874][ T4055]  should_fail_ex+0x265/0x280
[   46.568934][ T4055]  should_fail+0xb/0x20
[   46.568957][ T4055]  should_fail_usercopy+0x1a/0x20
[   46.568994][ T4055]  _copy_to_user+0x20/0xa0
[   46.569109][ T4055]  simple_read_from_buffer+0xb5/0x130
[   46.569134][ T4055]  proc_fail_nth_read+0x10e/0x150
[   46.569234][ T4055]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   46.569322][ T4055]  vfs_read+0x1a5/0x770
[   46.569345][ T4055]  ? __rcu_read_unlock+0x4f/0x70
[   46.569368][ T4055]  ? __fget_files+0x184/0x1c0
[   46.569398][ T4055]  ksys_read+0xda/0x1a0
[   46.569479][ T4055]  __x64_sys_read+0x40/0x50
[   46.569503][ T4055]  x64_sys_call+0x27bc/0x2ff0
[   46.569526][ T4055]  do_syscall_64+0xd2/0x200
[   46.569561][ T4055]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   46.569616][ T4055]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   46.569648][ T4055]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   46.569672][ T4055] RIP: 0033:0x7f592a5fd8dc
[   46.569689][ T4055] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   46.569776][ T4055] RSP: 002b:00007f592905f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   46.569872][ T4055] RAX: ffffffffffffffda RBX: 00007f592a855fa0 RCX: 00007f592a5fd8dc
[   46.569887][ T4055] RDX: 000000000000000f RSI: 00007f592905f0a0 RDI: 0000000000000006
[   46.569901][ T4055] RBP: 00007f592905f090 R08: 0000000000000000 R09: 0000000000000000
[   46.569920][ T4055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   46.569939][ T4055] R13: 00007f592a856038 R14: 00007f592a855fa0 R15: 00007ffc47f1d918
[   46.569967][ T4055]  </TASK>
[   46.886924][ T4049] netlink: 'syz.1.178': attribute type 12 has an invalid length.
[   46.905689][ T4070] loop0: detected capacity change from 0 to 4096
[   46.914549][ T4070] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   46.941332][ T4070] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.955731][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.970681][ T4078] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   46.980556][ T4078] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   46.983272][ T4079] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[   47.008981][ T4070] netlink: 'syz.0.188': attribute type 12 has an invalid length.
[   47.023014][ T4072] netlink: 'syz.2.189': attribute type 4 has an invalid length.
[   47.039443][ T4072] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4072 comm=syz.2.189
[   47.040452][ T4082] loop1: detected capacity change from 0 to 4096
[   47.073426][ T4082] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   47.085445][ T4072] netlink: 'syz.2.189': attribute type 4 has an invalid length.
[   47.094769][ T4082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.129634][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.171934][ T3306] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.176736][ T4094] loop0: detected capacity change from 0 to 512
[   47.188728][ T4094] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   47.266417][ T4100] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   47.283271][ T4100] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   47.326861][ T4108] sd 0:0:1:0: device reset
[   47.357736][ T4110] loop0: detected capacity change from 0 to 4096
[   47.365548][ T4110] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   47.378758][ T4110] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.405034][ T4110] netlink: 'syz.0.204': attribute type 12 has an invalid length.
[   47.432088][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.488829][ T4117] macvlan1: entered promiscuous mode
[   47.496746][ T4117] ipvlan0: entered promiscuous mode
[   47.503370][ T4117] ipvlan0: left promiscuous mode
[   47.509294][ T4117] macvlan1: left promiscuous mode
[   47.566558][ T4122] loop2: detected capacity change from 0 to 4096
[   47.574637][ T4122] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   47.595227][ T4122] netlink: 'syz.2.209': attribute type 12 has an invalid length.
[   47.624228][ T4126] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   47.624498][ T4125] IPVS: stopping backup sync thread 4126 ...
[   47.653778][ T4128] loop0: detected capacity change from 0 to 512
[   47.661937][ T4128] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   47.694861][ T4135] IPVS: stopping backup sync thread 4136 ...
[   47.735667][ T4138] loop0: detected capacity change from 0 to 4096
[   47.743324][ T4138] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   47.783513][ T4148] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   47.793697][ T4148] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   47.805021][ T4138] netlink: 'syz.0.215': attribute type 12 has an invalid length.
[   47.852420][   T29] kauditd_printk_skb: 1022 callbacks suppressed
[   47.852448][   T29] audit: type=1326 audit(1758752621.983:1843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   47.886970][   T29] audit: type=1326 audit(1758752621.983:1844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   47.918655][   T29] audit: type=1326 audit(1758752621.983:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   47.949348][   T29] audit: type=1326 audit(1758752621.983:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   47.978097][   T29] audit: type=1326 audit(1758752621.983:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4154 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa863f01785 code=0x7ffc0000
[   48.004031][   T29] audit: type=1326 audit(1758752621.993:1848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   48.031974][   T29] audit: type=1326 audit(1758752621.993:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   48.060679][   T29] audit: type=1326 audit(1758752621.993:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   48.088122][   T29] audit: type=1326 audit(1758752621.993:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   48.118999][   T29] audit: type=1326 audit(1758752621.993:1852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4151 comm="syz.0.221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   48.161773][ T4159] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   48.167639][ T4158] IPVS: stopping backup sync thread 4159 ...
[   48.221422][ T4163] loop1: detected capacity change from 0 to 512
[   48.228912][ T4163] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   48.267623][ T4165] loop1: detected capacity change from 0 to 512
[   48.281389][ T4165] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.226: ea_inode file size=0 entry size=6
[   48.296740][ T4165] EXT4-fs (loop1): 1 orphan inode deleted
[   48.355292][ T4169] netlink: 8 bytes leftover after parsing attributes in process `syz.3.228'.
[   48.373054][ T4173] loop1: detected capacity change from 0 to 512
[   48.386098][ T4173] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.229: ea_inode file size=0 entry size=6
[   48.412532][ T4173] EXT4-fs (loop1): 1 orphan inode deleted
[   48.457346][ T4178] loop0: detected capacity change from 0 to 4096
[   48.473837][ T4178] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   48.499939][ T4180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.232'.
[   48.569930][ T4178] netlink: 'syz.0.231': attribute type 12 has an invalid length.
[   48.608376][ T4188] IPVS: stopping backup sync thread 4191 ...
[   48.617198][ T4190] loop1: detected capacity change from 0 to 512
[   48.626155][ T4190] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   48.667585][ T4194] loop0: detected capacity change from 0 to 512
[   48.723569][ T4198] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   48.737419][ T4194] EXT4-fs warning (device loop0): ext4_xattr_inode_get:542: inode #11: comm syz.0.237: ea_inode file size=0 entry size=6
[   48.762374][ T4198] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   48.778883][ T4194] EXT4-fs (loop0): 1 orphan inode deleted
[   49.012522][ T4217] loop4: detected capacity change from 0 to 4096
[   49.038260][ T4217] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   49.059968][ T4217] netlink: 'syz.4.245': attribute type 12 has an invalid length.
[   49.103341][ T4222] loop1: detected capacity change from 0 to 4096
[   49.117818][ T4222] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   49.306671][ T4236] FAULT_INJECTION: forcing a failure.
[   49.306671][ T4236] name failslab, interval 1, probability 0, space 0, times 0
[   49.322166][ T4236] CPU: 0 UID: 0 PID: 4236 Comm: syz.2.254 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   49.322198][ T4236] Tainted: [W]=WARN
[   49.322210][ T4236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   49.322221][ T4236] Call Trace:
[   49.322229][ T4236]  <TASK>
[   49.322237][ T4236]  __dump_stack+0x1d/0x30
[   49.322289][ T4236]  dump_stack_lvl+0xe8/0x140
[   49.322308][ T4236]  dump_stack+0x15/0x1b
[   49.322323][ T4236]  should_fail_ex+0x265/0x280
[   49.322345][ T4236]  should_failslab+0x8c/0xb0
[   49.322422][ T4236]  kmem_cache_alloc_noprof+0x50/0x310
[   49.322447][ T4236]  ? sctp_get_port_local+0x438/0xae0
[   49.322473][ T4236]  sctp_get_port_local+0x438/0xae0
[   49.322495][ T4236]  sctp_do_bind+0x398/0x4b0
[   49.322514][ T4236]  sctp_connect_new_asoc+0x153/0x3a0
[   49.322536][ T4236]  __sctp_connect+0x424/0x7a0
[   49.322588][ T4236]  ? selinux_sctp_bind_connect+0x20d/0x250
[   49.322636][ T4236]  sctp_getsockopt_connectx3+0x220/0x300
[   49.322664][ T4236]  sctp_getsockopt+0x910/0xaa0
[   49.322682][ T4236]  sock_common_getsockopt+0x60/0x70
[   49.322866][ T4236]  ? __pfx_sock_common_getsockopt+0x10/0x10
[   49.322967][ T4236]  do_sock_getsockopt+0x200/0x240
[   49.323035][ T4236]  __x64_sys_getsockopt+0x11e/0x1a0
[   49.323061][ T4236]  x64_sys_call+0x2bc6/0x2ff0
[   49.323081][ T4236]  do_syscall_64+0xd2/0x200
[   49.323109][ T4236]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   49.323174][ T4236]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   49.323225][ T4236]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   49.323245][ T4236] RIP: 0033:0x7f592a5feec9
[   49.323261][ T4236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   49.323299][ T4236] RSP: 002b:00007f592905f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[   49.323318][ T4236] RAX: ffffffffffffffda RBX: 00007f592a855fa0 RCX: 00007f592a5feec9
[   49.323330][ T4236] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000004
[   49.323394][ T4236] RBP: 00007f592905f090 R08: 0000200000000140 R09: 0000000000000000
[   49.323405][ T4236] R10: 0000200000000200 R11: 0000000000000246 R12: 0000000000000001
[   49.323416][ T4236] R13: 00007f592a856038 R14: 00007f592a855fa0 R15: 00007ffc47f1d918
[   49.323433][ T4236]  </TASK>
[   49.627771][ T4239] loop1: detected capacity change from 0 to 512
[   49.641146][ T4241] loop3: detected capacity change from 0 to 4096
[   49.650159][ T4239] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.255: ea_inode file size=0 entry size=6
[   49.664607][ T4241] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   49.669017][ T4239] EXT4-fs (loop1): 1 orphan inode deleted
[   49.729020][ T4246] IPVS: stopping backup sync thread 4247 ...
[   49.810543][ T4251] loop1: detected capacity change from 0 to 4096
[   49.832168][ T4253] __nla_validate_parse: 1 callbacks suppressed
[   49.832196][ T4253] netlink: 20 bytes leftover after parsing attributes in process `syz.3.259'.
[   49.852999][ T4251] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   49.947435][ T4263] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   49.989514][ T4263] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.007213][ T4268] loop0: detected capacity change from 0 to 512
[   50.014646][ T4268] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   50.133446][ T4274] loop3: detected capacity change from 0 to 4096
[   50.153616][ T4280] loop1: detected capacity change from 0 to 4096
[   50.164190][ T4274] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   50.176686][ T4280] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   50.212322][ T4274] validate_nla: 2 callbacks suppressed
[   50.212406][ T4274] netlink: 'syz.3.270': attribute type 12 has an invalid length.
[   50.269560][ T4294] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   50.281594][ T4294] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.370834][ T4309] loop0: detected capacity change from 0 to 1024
[   50.422151][ T4321] loop3: detected capacity change from 0 to 4096
[   50.430131][ T4321] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   50.446260][ T4329] netlink: 40 bytes leftover after parsing attributes in process `syz.0.290'.
[   50.542016][ T4341] vlan2: entered allmulticast mode
[   50.548877][ T4341] dummy0: entered allmulticast mode
[   50.563457][ T4339] loop4: detected capacity change from 0 to 1024
[   50.647588][ T4360] loop4: detected capacity change from 0 to 4096
[   50.655358][ T4360] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   50.757184][ T4368] loop4: detected capacity change from 0 to 4096
[   50.808296][ T4368] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   50.853244][ T4368] netlink: 'syz.4.306': attribute type 12 has an invalid length.
[   50.906135][ T4375] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   50.927770][ T4375] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   50.938269][ T4382] FAULT_INJECTION: forcing a failure.
[   50.938269][ T4382] name failslab, interval 1, probability 0, space 0, times 0
[   50.952185][ T4382] CPU: 0 UID: 0 PID: 4382 Comm: syz.0.311 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   50.952260][ T4382] Tainted: [W]=WARN
[   50.952266][ T4382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   50.952280][ T4382] Call Trace:
[   50.952286][ T4382]  <TASK>
[   50.952294][ T4382]  __dump_stack+0x1d/0x30
[   50.952316][ T4382]  dump_stack_lvl+0xe8/0x140
[   50.952337][ T4382]  dump_stack+0x15/0x1b
[   50.952354][ T4382]  should_fail_ex+0x265/0x280
[   50.952381][ T4382]  should_failslab+0x8c/0xb0
[   50.952520][ T4382]  kmem_cache_alloc_noprof+0x50/0x310
[   50.952548][ T4382]  ? skb_clone+0x151/0x1f0
[   50.952654][ T4382]  skb_clone+0x151/0x1f0
[   50.952680][ T4382]  __netlink_deliver_tap+0x2c9/0x500
[   50.952707][ T4382]  netlink_unicast+0x66b/0x690
[   50.952729][ T4382]  netlink_sendmsg+0x58b/0x6b0
[   50.952756][ T4382]  ? __pfx_netlink_sendmsg+0x10/0x10
[   50.952863][ T4382]  __sock_sendmsg+0x142/0x180
[   50.953047][ T4382]  ____sys_sendmsg+0x31e/0x4e0
[   50.953076][ T4382]  ___sys_sendmsg+0x17b/0x1d0
[   50.953181][ T4382]  __x64_sys_sendmsg+0xd4/0x160
[   50.953211][ T4382]  x64_sys_call+0x191e/0x2ff0
[   50.953235][ T4382]  do_syscall_64+0xd2/0x200
[   50.953269][ T4382]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   50.953345][ T4382]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   50.953375][ T4382]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   50.953398][ T4382] RIP: 0033:0x7fa863eceec9
[   50.953416][ T4382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   50.953435][ T4382] RSP: 002b:00007fa86292f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   50.953503][ T4382] RAX: ffffffffffffffda RBX: 00007fa864125fa0 RCX: 00007fa863eceec9
[   50.953517][ T4382] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[   50.953528][ T4382] RBP: 00007fa86292f090 R08: 0000000000000000 R09: 0000000000000000
[   50.953539][ T4382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   50.953549][ T4382] R13: 00007fa864126038 R14: 00007fa864125fa0 R15: 00007ffd8f0c48e8
[   50.953579][ T4382]  </TASK>
[   51.204679][ T4383] netlink: 28 bytes leftover after parsing attributes in process `syz.4.310'.
[   51.214325][ T4383] netlink: 4 bytes leftover after parsing attributes in process `syz.4.310'.
[   51.214493][ T4382] netlink: 20 bytes leftover after parsing attributes in process `syz.0.311'.
[   51.275774][ T4381] syz.4.310 uses obsolete (PF_INET,SOCK_PACKET)
[   51.296988][ T4381] loop4: detected capacity change from 0 to 1024
[   51.309148][ T4391] netlink: 80 bytes leftover after parsing attributes in process `syz.1.314'.
[   51.328722][ T4391] loop1: detected capacity change from 0 to 512
[   51.335955][ T4391] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   51.372615][ T4399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   51.382049][ T4399] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   51.395706][ T4401] loop1: detected capacity change from 0 to 512
[   51.410611][ T4404] sd 0:0:1:0: device reset
[   51.412867][ T4401] EXT4-fs warning (device loop1): ext4_xattr_inode_get:542: inode #11: comm syz.1.318: ea_inode file size=0 entry size=6
[   51.429999][ T4401] EXT4-fs (loop1): 1 orphan inode deleted
[   51.467634][ T4407] loop2: detected capacity change from 0 to 4096
[   51.476139][ T4407] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   51.498069][ T4407] netlink: 'syz.2.320': attribute type 12 has an invalid length.
[   51.512426][ T4412] loop4: detected capacity change from 0 to 512
[   51.522315][ T4412] EXT4-fs warning (device loop4): ext4_xattr_inode_get:542: inode #11: comm syz.4.322: ea_inode file size=0 entry size=6
[   51.537353][ T4412] EXT4-fs (loop4): 1 orphan inode deleted
[   51.556568][ T4415] netlink: 8 bytes leftover after parsing attributes in process `syz.2.323'.
[   51.678938][ T4421] netlink: 64 bytes leftover after parsing attributes in process `syz.2.326'.
[   51.716958][ T4425] netlink: 80 bytes leftover after parsing attributes in process `syz.2.328'.
[   51.835568][ T4432] sd 0:0:1:0: device reset
[   52.046983][ T4452] netlink: 80 bytes leftover after parsing attributes in process `syz.2.340'.
[   52.121433][ T4460] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   52.134831][ T4460] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   52.745527][ T4500] netlink: 'syz.1.362': attribute type 12 has an invalid length.
[   52.868797][   T29] kauditd_printk_skb: 1610 callbacks suppressed
[   52.868815][   T29] audit: type=1326 audit(1758752626.993:3463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa863ec5d67 code=0x7ffc0000
[   52.932380][   T29] audit: type=1326 audit(1758752627.023:3464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa863e6af79 code=0x7ffc0000
[   52.957449][   T29] audit: type=1326 audit(1758752627.023:3465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   52.983252][   T29] audit: type=1326 audit(1758752627.033:3466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa863ec5d67 code=0x7ffc0000
[   52.983335][   T29] audit: type=1326 audit(1758752627.033:3467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa863e6af79 code=0x7ffc0000
[   52.983415][   T29] audit: type=1326 audit(1758752627.033:3468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   52.983451][   T29] audit: type=1326 audit(1758752627.043:3469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa863ec5d67 code=0x7ffc0000
[   52.983486][   T29] audit: type=1326 audit(1758752627.043:3470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa863e6af79 code=0x7ffc0000
[   52.983520][   T29] audit: type=1326 audit(1758752627.043:3471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fa863eceec9 code=0x7ffc0000
[   52.985145][   T29] audit: type=1326 audit(1758752627.063:3472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4462 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa863ec5d67 code=0x7ffc0000
[   53.068487][ T4529] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.068572][ T4529] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.110522][ T4531] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   53.111037][ T4528] IPVS: stopping backup sync thread 4531 ...
[   53.214753][ T4540] loop4: detected capacity change from 0 to 4096
[   53.264995][ T4540] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   53.277063][ T4540] netlink: 'syz.4.379': attribute type 12 has an invalid length.
[   53.402475][ T4556] sd 0:0:1:0: device reset
[   53.428712][ T4553] loop4: detected capacity change from 0 to 4096
[   53.434851][ T4553] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   53.458109][ T4559] netlink: 'syz.1.387': attribute type 12 has an invalid length.
[   53.477914][ T4553] netlink: 'syz.4.385': attribute type 12 has an invalid length.
[   53.510955][ T4567] IPVS: stopping backup sync thread 4569 ...
[   53.529088][ T4570] IPv6: Can't replace route, no match found
[   53.589197][ T4577] sd 0:0:1:0: device reset
[   53.589250][ T4572] netlink: 'syz.1.392': attribute type 12 has an invalid length.
[   53.630304][ T4583] sd 0:0:1:0: device reset
[   53.684386][ T4591] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.707379][ T4591] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.728713][ T4597] vlan2: entered allmulticast mode
[   53.734983][ T4597] dummy0: entered allmulticast mode
[   53.753498][ T4599] IPVS: stopping backup sync thread 4600 ...
[   53.857152][ T4610] netlink: 'syz.2.408': attribute type 12 has an invalid length.
[   53.994036][ T4620] sd 0:0:1:0: device reset
[   54.132157][ T4641] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.146421][ T4641] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.160627][ T4638] netlink: 'syz.1.420': attribute type 12 has an invalid length.
[   54.376456][ T4663] vlan2: entered allmulticast mode
[   54.405360][ T4669] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   54.417080][ T4668] IPVS: stopping backup sync thread 4669 ...
[   54.452093][ T4673] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.469540][ T4673] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.642024][ T4697] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   54.655788][ T4696] IPVS: stopping backup sync thread 4697 ...
[   54.800768][ T4720] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.811872][ T4720] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.839923][ T4726] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   54.840211][ T4725] IPVS: stopping backup sync thread 4726 ...
[   54.947367][ T4737] __nla_validate_parse: 10 callbacks suppressed
[   54.947386][ T4737] netlink: 20 bytes leftover after parsing attributes in process `syz.3.462'.
[   55.011037][ T4746] netlink: 8 bytes leftover after parsing attributes in process `syz.4.466'.
[   55.064515][ T4750] netlink: 48 bytes leftover after parsing attributes in process `syz.3.469'.
[   55.138913][ T4754] IPVS: stopping backup sync thread 4758 ...
[   55.151725][ T4759] netlink: 28 bytes leftover after parsing attributes in process `syz.1.472'.
[   55.161817][ T4759] netlink: 4 bytes leftover after parsing attributes in process `syz.1.472'.
[   55.271551][ T4771] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   55.280983][ T4771] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.365800][ T4779] netlink: 8 bytes leftover after parsing attributes in process `syz.1.480'.
[   55.422739][ T4787] netlink: 28 bytes leftover after parsing attributes in process `syz.0.484'.
[   55.431927][ T4787] netlink: 4 bytes leftover after parsing attributes in process `syz.0.484'.
[   55.457447][ T4789] sd 0:0:1:0: device reset
[   55.524274][ T4798] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   55.533578][ T4798] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   55.566985][ T4800] validate_nla: 6 callbacks suppressed
[   55.567003][ T4800] netlink: 'syz.2.490': attribute type 12 has an invalid length.
[   55.649042][ T4812] netlink: 8 bytes leftover after parsing attributes in process `syz.0.495'.
[   55.737876][ T4815] netlink: 48 bytes leftover after parsing attributes in process `syz.0.496'.
[   56.075734][ T4854] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.085434][ T4854] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.607628][ T4899] netlink: 'syz.0.530': attribute type 12 has an invalid length.
[   56.789320][ T4918] netlink: 'syz.2.538': attribute type 12 has an invalid length.
[   56.906544][ T4937] FAULT_INJECTION: forcing a failure.
[   56.906544][ T4937] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   56.920337][ T4937] CPU: 1 UID: 0 PID: 4937 Comm: syz.4.547 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   56.920431][ T4937] Tainted: [W]=WARN
[   56.920438][ T4937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   56.920449][ T4937] Call Trace:
[   56.920455][ T4937]  <TASK>
[   56.920461][ T4937]  __dump_stack+0x1d/0x30
[   56.920501][ T4937]  dump_stack_lvl+0xe8/0x140
[   56.920525][ T4937]  dump_stack+0x15/0x1b
[   56.920623][ T4937]  should_fail_ex+0x265/0x280
[   56.920650][ T4937]  should_fail+0xb/0x20
[   56.920668][ T4937]  should_fail_usercopy+0x1a/0x20
[   56.920760][ T4937]  _copy_from_iter+0xd2/0xe80
[   56.920786][ T4937]  ? __build_skb_around+0x1a0/0x200
[   56.920811][ T4937]  ? __alloc_skb+0x223/0x320
[   56.920836][ T4937]  netlink_sendmsg+0x471/0x6b0
[   56.920922][ T4937]  ? __pfx_netlink_sendmsg+0x10/0x10
[   56.920949][ T4937]  __sock_sendmsg+0x142/0x180
[   56.921048][ T4937]  ____sys_sendmsg+0x31e/0x4e0
[   56.921147][ T4937]  ___sys_sendmsg+0x17b/0x1d0
[   56.921187][ T4937]  __x64_sys_sendmsg+0xd4/0x160
[   56.921222][ T4937]  x64_sys_call+0x191e/0x2ff0
[   56.921321][ T4937]  do_syscall_64+0xd2/0x200
[   56.921358][ T4937]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   56.921402][ T4937]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   56.921434][ T4937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.921460][ T4937] RIP: 0033:0x7f7a4dc6eec9
[   56.921479][ T4937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.921570][ T4937] RSP: 002b:00007f7a4c6cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   56.921589][ T4937] RAX: ffffffffffffffda RBX: 00007f7a4dec5fa0 RCX: 00007f7a4dc6eec9
[   56.921602][ T4937] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000005
[   56.921617][ T4937] RBP: 00007f7a4c6cf090 R08: 0000000000000000 R09: 0000000000000000
[   56.921631][ T4937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   56.921645][ T4937] R13: 00007f7a4dec6038 R14: 00007f7a4dec5fa0 R15: 00007ffed99fd178
[   56.921694][ T4937]  </TASK>
[   57.145169][ T4933] netlink: 'syz.0.544': attribute type 12 has an invalid length.
[   57.191238][ T4945] netlink: 'syz.0.551': attribute type 12 has an invalid length.
[   57.390331][ T4970] netlink: 'syz.3.562': attribute type 12 has an invalid length.
[   57.429051][ T4954] netlink: 'syz.4.556': attribute type 12 has an invalid length.
[   57.479581][ T4971] netlink: 'syz.2.561': attribute type 12 has an invalid length.
[   57.636025][ T4992] smc: net device bond0 applied user defined pnetid SYZ0
[   57.644876][ T4992] smc: net device bond0 erased user defined pnetid SYZ0
[   57.773183][ T5002] netlink: 'syz.0.575': attribute type 12 has an invalid length.
[   57.928253][   T29] kauditd_printk_skb: 849 callbacks suppressed
[   57.928288][   T29] audit: type=1326 audit(1758752632.053:4322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   57.959376][   T29] audit: type=1326 audit(1758752632.063:4323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   57.983589][   T29] audit: type=1326 audit(1758752632.063:4324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   58.007667][   T29] audit: type=1326 audit(1758752632.063:4325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   58.033329][   T29] audit: type=1326 audit(1758752632.063:4326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   58.058535][   T29] audit: type=1326 audit(1758752632.063:4327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   58.083130][   T29] audit: type=1326 audit(1758752632.063:4328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   58.108778][   T29] audit: type=1326 audit(1758752632.063:4329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   58.134104][   T29] audit: type=1326 audit(1758752632.063:4330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   58.158693][   T29] audit: type=1326 audit(1758752632.063:4331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5011 comm="syz.4.579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f7a4dc6eec9 code=0x7ffc0000
[   58.228524][ T5025] smc: net device bond0 applied user defined pnetid SYZ0
[   58.239153][ T5025] smc: net device bond0 erased user defined pnetid SYZ0
[   58.425604][ T5038] netlink: 'syz.3.591': attribute type 12 has an invalid length.
[   58.476125][ T5050] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[   58.476256][ T5049] IPVS: stopping backup sync thread 5050 ...
[   58.644580][ T5073] ==================================================================
[   58.653582][ T5073] BUG: KCSAN: data-race in shmem_fallocate / shmem_fault
[   58.660741][ T5073] 
[   58.663074][ T5073] write to 0xffff8881196e5730 of 8 bytes by task 5074 on cpu 0:
[   58.670971][ T5073]  shmem_fallocate+0x221/0x840
[   58.676100][ T5073]  vfs_fallocate+0x3b6/0x400
[   58.680974][ T5073]  madvise_vma_behavior+0x192d/0x1cf0
[   58.686536][ T5073]  madvise_do_behavior+0x5b7/0x970
[   58.691779][ T5073]  do_madvise+0x10e/0x190
[   58.696402][ T5073]  __x64_sys_madvise+0x64/0x80
[   58.701352][ T5073]  x64_sys_call+0x1f1a/0x2ff0
[   58.706526][ T5073]  do_syscall_64+0xd2/0x200
[   58.711747][ T5073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.718076][ T5073] 
[   58.720411][ T5073] read to 0xffff8881196e5730 of 8 bytes by task 5073 on cpu 1:
[   58.728420][ T5073]  shmem_fault+0x90/0x250
[   58.732925][ T5073]  __do_fault+0xbc/0x200
[   58.737448][ T5073]  handle_mm_fault+0xf78/0x2c20
[   58.742477][ T5073]  __get_user_pages+0x102e/0x1fa0
[   58.748645][ T5073]  __mm_populate+0x243/0x3a0
[   58.753413][ T5073]  vm_mmap_pgoff+0x232/0x2e0
[   58.758279][ T5073]  ksys_mmap_pgoff+0xc2/0x310
[   58.763217][ T5073]  x64_sys_call+0x14a3/0x2ff0
[   58.768246][ T5073]  do_syscall_64+0xd2/0x200
[   58.772993][ T5073]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   58.779947][ T5073] 
[   58.782655][ T5073] value changed: 0x0000000000000000 -> 0xffffc90010363b58
[   58.790177][ T5073] 
[   58.792698][ T5073] Reported by Kernel Concurrency Sanitizer on:
[   58.799504][ T5073] CPU: 1 UID: 0 PID: 5073 Comm: syz.0.606 Tainted: G        W           syzkaller #0 PREEMPT(voluntary) 
[   58.811754][ T5073] Tainted: [W]=WARN
[   58.815555][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   58.825784][ T5073] ==================================================================