last executing test programs:

4m53.333046337s ago: executing program 2 (id=2063):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000001600), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_PORTS(r2, 0x0, 0x0)

4m53.332853996s ago: executing program 2 (id=2064):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000"], 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = io_uring_setup(0x4d3f, &(0x7f0000000240)={0x0, 0xca6a, 0x40, 0x1, 0x6})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r1, 0xb, &(0x7f0000000480), 0x66)

4m53.332744296s ago: executing program 2 (id=2065):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x35, 0x0})
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000800)='bic\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000004980)=[{{&(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000000200), 0x0, 0x0, 0x0, 0x80040000}}], 0x1, 0x20000810)

4m53.301055287s ago: executing program 2 (id=2067):
socket(0x10, 0x3, 0x0) (async)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)="15452f1c17ce03519634b0f248cd4f35bfbe040d6bec3aac6dbdaea4e21f786824ca85", 0x23}, {&(0x7f0000000100)="445fad3126ce24909e1424d14663981d8c0359c7bc376dafed5c51728053486f03e6c2c2c7c2", 0x26}], 0x2}, 0x404c080)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000008000000018120000", @ANYRES32=r1, @ANYBLOB="58600ca200000000b703000000000000c2ce9b198c60850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000008000000018120000", @ANYRES32=r1, @ANYBLOB="58600ca200000000b703000000000000c2ce9b198c60850000001b000000b7000000000000009500000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=@newsa={0x1a0, 0x10, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20, 0x64}, {@in, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x35}, {}, {0xfffffffffffffffa, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x0, 0x1070bd2a, 0x70bd28}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x18}}]}, 0x1a0}}, 0x0)
write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_SIOCSIFDSTADDR(r4, 0x8918, &(0x7f0000000280)={'ipvlan0\x00', {0x2, 0x4e24, @rand_addr=0xac141437}}) (async)
ioctl$sock_inet_SIOCSIFDSTADDR(r4, 0x8918, &(0x7f0000000280)={'ipvlan0\x00', {0x2, 0x4e24, @rand_addr=0xac141437}})
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='cachefiles_ondemand_open\x00', r2}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000417000/0x2000)=nil, 0x2000, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x59d, &(0x7f0000001100)="$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")
r6 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x8485c2cde8b1d87, 0x0)
write$binfmt_register(r6, &(0x7f0000000000)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x2009, 0x3a, '\r', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4E\xe7L\x82n;H\xd8\xdf\x9a, \\E\xd4\xab\x1ed', 0x3a, './file2', 0x3a, [0x46]}, 0x4b)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
write$binfmt_script(r7, &(0x7f0000002f80)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1)
r8 = mq_open(&(0x7f0000001600)='eth0\x00#~\x02\x00\x00\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfd\x05\x00\x00\x00\x00\x00\x80\x00\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94uu_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18A\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x05\x00\x00\x000\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xce\x00\x00\x00\xe8\vq+\xbb\xc7\xaf\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x3}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x3}, 0x18)
mq_timedsend(r8, &(0x7f0000000600)="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", 0xfd1, 0x6, 0x0)
mq_timedreceive(r8, &(0x7f000001d600)=""/102389, 0x18ff5, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
sched_setscheduler(0x0, 0x2, 0x0) (async)
sched_setscheduler(0x0, 0x2, 0x0)
unshare(0x8040600) (async)
unshare(0x8040600)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff5000000000003ad0d6a200000000c00095"], &(0x7f0000000000)='syzkaller\x00', 0x3}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="bf16000000000000b70700000100f0ff5000000000003ad0d6a200000000c00095"], &(0x7f0000000000)='syzkaller\x00', 0x3}, 0x94)

4m52.832952816s ago: executing program 2 (id=2078):
r0 = syz_open_dev$evdev(&(0x7f000001fa80), 0x0, 0x3f)
ioctl$EVIOCSCLOCKID(r0, 0x40084504, &(0x7f0000ffcffc))

4m52.736136969s ago: executing program 2 (id=2079):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000008, 0x11, r4, 0x1c36f000)
r5 = socket$inet6(0xa, 0x1, 0x8010000000000084)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020000002400048020000180070001006374000014000280080002400000000f08000140000000020900010073797a30000000000900020073797a320000000014000000110001"], 0x78}}, 0x0)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0xb, @empty}, 0x1c)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty, 0xfffffffe}}, 0x80000, 0x0, 0x0, 0x0, 0xb3550aa4ba878396}, 0x9c)

4m52.736021849s ago: executing program 32 (id=2079):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000008, 0x11, r4, 0x1c36f000)
r5 = socket$inet6(0xa, 0x1, 0x8010000000000084)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0b040000000000000000020000002400048020000180070001006374000014000280080002400000000f08000140000000020900010073797a30000000000900020073797a320000000014000000110001"], 0x78}}, 0x0)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e21, 0xb, @empty}, 0x1c)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty, 0xfffffffe}}, 0x80000, 0x0, 0x0, 0x0, 0xb3550aa4ba878396}, 0x9c)

7.366345996s ago: executing program 0 (id=7657):
socket(0x2, 0x80805, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x1f4, 0x0, 0x0, 0x0, 0x0, 0x300, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0xfffffffffffffffc}, 0x18)
r2 = mq_open(&(0x7f0000000a00)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00', 0x42, 0x1f0, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0x6, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0x102000000, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000002880)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYRES8=r0, @ANYRES32=r3, @ANYRESDEC=0x0], 0x30, 0x40400d1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001500)=ANY=[], 0x20, 0x20000854}}], 0x2, 0x814)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_usb_connect(0x5, 0x667, &(0x7f0000000680)=ANY=[@ANYBLOB="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"/1639], &(0x7f00000002c0)={0xa, &(0x7f0000000000)={0xa, 0x6, 0x310, 0x2, 0x4, 0x3, 0x20, 0x1}, 0x8, &(0x7f0000000080)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x3, [{0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0x44d}}, {0x9d, &(0x7f0000000140)=ANY=[@ANYBLOB="9d03a6519a779688b5c07933e09351b3ae8c17c0ca3eb4b0a4102e844433591a0d0caff6652605796d064eb890e553fae36db73b5135a93af36f3d70290e24f64ebe4c7e43d8cc61432491bb608643c83d59a81857feafdd8b4229e764b2fded329462843d4c31bb0b18c492c5bf4497bbcbef11a0361bb3f4133e33bc6f13e31dbc801f793352c2746edbebb0911a94aef68b69ccaa7467f7e3843184"]}, {0x9d, &(0x7f0000000200)=@string={0x9d, 0x3, "ddf0a394014644b3e62dd67d8872cc0a64a4e9df54bc74cc22f60659572af406877943af8871413c08171445dedee7e0783d1368940842babf3b65357944db0cf92fe4b83a7e67998329b4504c3bc25d2f2d5238d1f84470114804427bd28dbc2291420268ee8cf9473495c61ca49d81f689e95979a703f0d1733896a72d2844400f1a5fab29e1c0d069227292d3384d173621b492d899cf1e7a02"}}]})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f00000005c0)=r4}, 0x20)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0x10000000})
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r7=>0x0})
bind$can_j1939(r6, &(0x7f00000003c0)={0x1d, r7, 0xfffffffffffffffd, {0x0, 0xf0, 0x4}, 0x2}, 0x18)
r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000026c0)=@bpf_tracing={0x1a, 0x25, &(0x7f0000003b00)=ANY=[@ANYBLOB="1800000006000000000000000900000018110000", @ANYRES32, @ANYBLOB="0000000000001a00b702000014000000b70300000000000085000000328f8d83000000bf090000000000005527010000000000950000000000000018520000050000000000000000000000182b0000", @ANYRES32=r5, @ANYBLOB="000002af42001811000000000000000000000000ef548472a3294d6c88007ad81a35d48b8f7a5ec3cb4efcd62a8cf3551258348d6efead68e648f74e00da61a4f593d7431570e7b288271bf4f2bde853b7bccd3920857cedc6430fdb348ea5eb405324609f320cc6d308ba253b7750400787c300cef152008143782a0e9ae057ff6c53e19afb0898f52cf094a1fde6b3a8ce1cf5ea0b499fca8045d3f99e424a3ca62949d769d74bd00effa1f94978b6de99", @ANYRES32=r5, @ANYBLOB="0000000000000000b7020000000000008500000086000000185a00000200000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018690000090000000000000005b80000ca1bfeff0400"], &(0x7f00000022c0)='GPL\x00', 0x6, 0x3, &(0x7f0000002300)=""/3, 0x41100, 0x35, '\x00', r7, 0x1a, 0xffffffffffffffff, 0x8, &(0x7f0000002340)={0x7, 0x5}, 0x8, 0x10, &(0x7f0000002380)={0x2, 0x9, 0x4, 0xf3800000}, 0x10, 0x149f9, r0, 0x4, &(0x7f0000002780)=[0x1, 0xffffffffffffffff, r5, r5], &(0x7f0000002680)=[{0x5, 0x1, 0x4, 0xb}, {0x1, 0x2, 0xe7e, 0x9}, {0x2, 0x2, 0x7, 0x2}, {0x3, 0x3, 0x2}]}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002280)={r8, 0xe0, &(0x7f0000002180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x1, 0x2, &(0x7f0000002000)=[0x0], &(0x7f0000002040)=[0x0, 0x0], 0x0, 0x7d, &(0x7f0000002080)=[{}], 0x8, 0x10, &(0x7f00000020c0), &(0x7f0000002100), 0x8, 0x21, 0x8, 0x8, &(0x7f0000002140)}}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000023c0)={&(0x7f0000000380)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000d00)="994de9d80c85aceb305ab41204d3575decd4535b384856ccf12a11a943df08bc77401e2c93d5c2054da1a388573f136edb94cb8ebd2bb7777b49fb18724bea9c9d28b12e98279f4d849ca0feb61c2a233a4334c831bd90511ba3ff8c6c7c2fa1b30fe397523b81c67a1f8d22cf36837b0c5523eff519ab120f53c40055b0b5c343bc7e745ccf8dc6260f62fbc96a7113", 0x90}, {&(0x7f0000000dc0)="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", 0x1000}, {&(0x7f0000001dc0)="0e7e5cdcc1bbe466c2fc2de9647b81f18523ddb8882beacf8cf2775ee99190e328e7420e7bb47fe458bea2176dabc8891ed1e3aee3e98103025127031b3acfb6f5e654aec6da1e8350d7b90f8dc9420f566922adce75a36ac417cd8e4e81c15c6880ed4b80f43b44b7cd06dce82566cc14fc91d5dddf457dffef6cd892ea26178544dc118d55b04945a1ba01fd817c637f772456a2bd86b7d95c4c3eb2df17b6c9ca2da7e1543a16f777ddd96e8e71bb3f5ced750d5517b18d13beab3cfc64d3f789c2d8535f6e853a351632346abacb0f3a95f5be0bfe4cf473719bc0e29f0e3096262ceb9a38a508", 0xe9}, {&(0x7f0000001ec0)="34324ad9d7d345ca8688035c011c32c1f1c4a3cbd36298aa2fe0e899ad498c89abf3471590a1283b7bdb3af4227f285dc1c54b7e513b34b6b0cbbd2a9fe1ea5c97092090b7ecafbe4c0d3aa4e55cb1e356dde128053206bfe907baf8191e9c399dab384baa96efc51ca6e650d1211a69287cdd2f9b4c5338683ef87054d433b225fa4734edf3df22b53ebadbb625fd8f3b7b03209dac195eb5cf60fe1a8f0b8c2902db597ffabd907f50cb9650dbd9eeb233bdd8df316983cad6bd0714795ac4abffe39c9525d3e384e42d2f95347f1cd938b89fd02d910be58357cc6dfb9b9031b2bc90d379", 0xe6}, {&(0x7f0000002900)="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", 0x1000}], 0x5, &(0x7f0000002400)=ANY=[@ANYBLOB="14000000000000000000000002001200d000000000000000140000000000000000000000010000000a000000000000002c000000000000000000000007000000441c9361ac1414bb00000008e000000100000006000000000000000400000000140000000000000000000000020000000400000000000000111f000000000000000000000100000007000000000000005b10ed1eb842148cce689858d25fa89c91bbad92076090df77191c00000000", @ANYRES32=r7, @ANYBLOB="ac1414aae000000200000000140000000000000000000000010000000f000000000000001c000000000000000000000008000000", @ANYRES32=r9, @ANYBLOB="ac1e0001ac14143900000000"], 0xe8}, 0x20004000)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r10, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x4, './file0/file1\x00'}})

6.781374817s ago: executing program 0 (id=7666):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
r1 = open(&(0x7f0000000240)='.\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x65, 0xfc, 0x5, 0x0, 0x0, 0x100007, 0x88008, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x4, @perf_bp={0x0}, 0x212, 0xd, 0x7ffffefc, 0x3, 0x1, 0x0, 0x8, 0x0, 0xfc, 0x0, 0x1}, 0x0, 0x400000000007, 0xffffffffffffffff, 0x3)
r6 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_CREATE(r6, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}, 0x120)
write$UHID_DESTROY(r6, &(0x7f0000000080), 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
splice(r3, 0x0, r4, 0x0, 0x1, 0x0)
vmsplice(r4, &(0x7f0000000380)=[{&(0x7f0000000180)="04", 0x1}, {&(0x7f0000000200)="7f", 0x1}], 0x2, 0x6)
ioctl$sock_inet_udp_SIOCINQ(r4, 0x541b, 0x0)
write(r2, 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x8000001f)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000003c0)='xen_mc_entry_alloc\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
inotify_init1(0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

6.328210166s ago: executing program 0 (id=7672):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
r2 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r3}}]}})
r4 = getpid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001080)={<r5=>0x0, 0x0, <r6=>0x0}, &(0x7f00000010c0)=0xc)
r7 = syz_open_procfs(0x0, &(0x7f0000000cc0)='net/netlink\x00')
lseek(r7, 0x5, 0x1)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000001100))
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000001180)={{0x2, 0x0, 0x0, 0x0, r3, 0x12, 0xeec}, 0x0, 0x0, 0xa, 0x3, 0x1000, 0xcc, 0x10001, 0x2, 0x7, 0x1000, r5, r4})
fstat(0xffffffffffffffff, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0})
setgroups(0x9, &(0x7f0000000980)=[0x0, 0x0, 0x0, 0xee01, 0x0, 0x0, r3, r6, r8])
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a40)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff}, 0x94)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r10}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1000000004000000080000000800000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000a276"], 0x48)
r11 = socket$inet_smc(0x2b, 0x1, 0x0)
getpeername(r11, 0x0, 0x0)
r12 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00'}, 0x10)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r13}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="06efee429300f9ff0300e0fb080000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000000)={'veth1_virt_wifi\x00', <r15=>0x0})
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r12}, 0x8)
r16 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x17, 0xc, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r14, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000500000000000000f8ffffffb703000008000000b704001112a18d00000085000000150000"], &(0x7f00000001c0)='syzkaller\x00', 0x567, 0x0, 0x0, 0x0, 0x4, '\x00', r15, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r16, 0x0, 0xe, 0x0, &(0x7f0000001640)="e0857f9f582f0300000000000000", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))

5.986971363s ago: executing program 0 (id=7673):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000380)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000011c0)={0x11, 0xc, &(0x7f00000005c0)=ANY=[@ANYRESDEC=r0, @ANYRES32, @ANYRES8=r0], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
r3 = pidfd_getfd(r2, r2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="0000000100"/20, @ANYRESOCT=r1, @ANYRES32, @ANYBLOB="000400bea54f6d5b4b16d90c1100009e000078030000000000000000"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xf, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22ec}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000a00)='fib_table_lookup\x00', r5}, 0x18)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x20000000000002f5, &(0x7f0000000f80)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, r3}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000140)='./file0/../file0\x00')
pivot_root(&(0x7f0000007b00)='./file0/../file0\x00', &(0x7f0000000280)='./file0\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r6}, 0x10)
fsync(0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYRESDEC=r2], &(0x7f0000000340)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0xd}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r5, 0x18000000000002a0, 0xfe, 0x0, &(0x7f0000000100)="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", 0x0, 0x20000024, 0x60000000, 0x0, 0x0, &(0x7f0000000000), &(0x7f00000003c0)}, 0x50)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r8=>0x0})
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000b00)=ANY=[@ANYBLOB="4c000000100003052cbd7000fedbdf2500000020", @ANYRES32=0x0, @ANYBLOB="000800000000000000a7be055f16090000089b3d240087080b0001006d6163736563000014000280050006800000006eb5b027759af7e1a7a57abe5299cb255ddc9d602c659a12f2d114f6c82013bb257110bf1af742049b2b1d6bf55b7512aff98fdd469c5c90b9425fb2c8d069ed7890295fe31323f1c6c8a85db1001e3c26eb235ccfa9f936acc4520576947c8adee0b3ccdac6560d7cdab0413bafdaa370522629fe84a9aa", @ANYRES32=r8], 0x4c}}, 0x0)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r10}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r11, 0x0, 0xffffffffffffffff}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x8, 0xe, &(0x7f0000001840)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x14}, 0x94)

5.911151444s ago: executing program 0 (id=7677):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'veth1_to_batadv\x00', 0x10})
socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008"], 0x64}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0xf5, 0xfff5, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e20, 0x80000, @dev={0xfe, 0x80, '\x00', 0x20}}, 0x1c, 0x0, 0x0, &(0x7f00000002c0)=[@dstopts={{0x18, 0x29, 0x37, {0x87}}}], 0x18}, 0x40c0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r7}, 0x10)
setsockopt$inet_sctp6_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000180)=0xa9, 0x4)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r8}, 0x10)
close(r0)

5.649825489s ago: executing program 0 (id=7683):
r0 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, 0x0, &(0x7f0000000480))
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5fd23178}, 0x94)
lsm_get_self_attr(0x68, &(0x7f00000004c0)={0x0, 0x0, 0x86, 0x66, ""/102}, &(0x7f0000000200)=0x86, 0x1)
preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000740)=""/4100, 0x1004}], 0x1, 0x145, 0x80000000)
ioctl$SNAPSHOT_SET_SWAP_AREA(r1, 0x400c330d, &(0x7f0000000000)={0x7, 0x3})

5.63237714s ago: executing program 33 (id=7683):
r0 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, 0x0, &(0x7f0000000480))
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/tcp6\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5fd23178}, 0x94)
lsm_get_self_attr(0x68, &(0x7f00000004c0)={0x0, 0x0, 0x86, 0x66, ""/102}, &(0x7f0000000200)=0x86, 0x1)
preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000740)=""/4100, 0x1004}], 0x1, 0x145, 0x80000000)
ioctl$SNAPSHOT_SET_SWAP_AREA(r1, 0x400c330d, &(0x7f0000000000)={0x7, 0x3})

2.093196619s ago: executing program 3 (id=7736):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000220000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

2.06635044s ago: executing program 3 (id=7737):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x20, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x24}, 0x94)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'bridge0\x00', 0x100})
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000180))
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005bc0)=@newlink={0x3c, 0x10, 0x40b, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, 0x0, 0x24f2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800001965ba917c62e1e6902300000000000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rss_stat\x00', r5}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)

1.783749385s ago: executing program 3 (id=7740):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
syz_io_uring_setup(0x494, 0x0, 0x0, 0x0)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x58, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x0, 0x4, 0xae, 0x2, 0xe, 0x450e}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0x3, 0x9}}]}}}]}, 0x58}}, 0x44080)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x30, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x55}, 0x4000)
bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mount_setattr(0xffffffffffffffff, &(0x7f0000001d80)='.\x00', 0x0, &(0x7f0000000480)={0x0, 0x0, 0x80000}, 0x20)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r5, &(0x7f00000001c0)=ANY=[], 0xff2e)
io_uring_enter(0xffffffffffffffff, 0x2219, 0x7721, 0x16, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

1.361577374s ago: executing program 6 (id=7748):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r3, 0x941c, 0x0)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
write$qrtrtun(r4, &(0x7f0000000340)="66bb0b760dc0f4ff", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x9}}, 0x40)
io_uring_register$IORING_REGISTER_IOWQ_AFF(r4, 0x11, &(0x7f0000000380)="9da60825bd414b1b733270bf49a965a926fdf231d541e8145f2e3cdedbfb55a757a7848b16f02047baa6c77c64dca7f27a667ff19eea649898d1f8f40ba27f6f58a04ed4165da9ce1b6cfbd5b053b5c504397d9aff", 0x55)
lstat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000400))
r6 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r6, 0x400, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
ppoll(&(0x7f0000000500)=[{r1, 0x6002}], 0x1, 0x0, 0x0, 0x0)
ioctl$int_in(r7, 0x5452, &(0x7f0000000280)=0x3)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r7, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x152610}], 0x1, 0x0, 0xe00}, 0x1f00)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x36}, 0x94)
modify_ldt$write2(0x11, &(0x7f0000000100)={0x1d30, 0x0, 0x2003, 0x1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)

1.0391506s ago: executing program 1 (id=7751):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000a0a000/0x1000)=nil, 0x1000, 0xb635773f06ebbeee, 0x8010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000340)={0x5, &(0x7f0000000300)=[{0x4, 0x4, 0x10, 0x4}, {0x1, 0x1, 0x40, 0x7}, {0x6, 0xd, 0x3, 0x33b6}, {0x8, 0x6e, 0x7, 0xa}, {0x9, 0x62, 0x5, 0x5}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r3, 0xc0182101, &(0x7f0000000380)={0x0, 0x3, 0x4})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000002f40)=[{{&(0x7f00000003c0)=@pppoe={0x18, 0x0, {0x0, @broadcast}}, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000480)=""/156, 0x9c}, {&(0x7f0000000540)=""/55, 0x37}, {&(0x7f00000007c0)=""/124, 0x7c}, {&(0x7f0000000600)}, {&(0x7f0000000840)=""/68, 0x44}, {&(0x7f0000001d40)=""/95, 0x5f}, {&(0x7f00000030c0)=""/4112, 0x1010}, {&(0x7f0000001940)=""/241, 0xf1}, {&(0x7f0000001a40)=""/148, 0x94}], 0x9, &(0x7f0000001bc0)=""/211, 0xd3}, 0x2}, {{&(0x7f0000001cc0)=@nfc, 0x80, &(0x7f00000006c0)=[{&(0x7f0000002fc0)=""/252, 0xfc}, {&(0x7f0000001e40)=""/240, 0xf0}], 0x2, &(0x7f0000001f40)=""/4096, 0x1000}, 0x5}], 0x2, 0x10041, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, r7, 0x0, 0x4, 0x0)
r8 = syz_pidfd_open(r7, 0x0)
pidfd_send_signal(r8, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_setup(0x7cac, &(0x7f00000000c0)={0x0, 0x753a, 0x8, 0x3, 0x1fd})
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0xa0683, 0x0)

956.048402ms ago: executing program 1 (id=7752):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0, r1}, 0x18)
r2 = semget$private(0x0, 0x3, 0x642)
semop(r2, &(0x7f0000000000)=[{0x3, 0xfff7, 0x1000}], 0x1)
semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000001c0))

889.612492ms ago: executing program 1 (id=7753):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = fcntl$dupfd(r0, 0x406, r0)
ioctl$SCSI_IOCTL_START_UNIT(r2, 0x5)

696.336866ms ago: executing program 5 (id=7755):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setpgid(0x0, 0x0)

649.681967ms ago: executing program 1 (id=7756):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0)

649.350657ms ago: executing program 4 (id=7757):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0xffa1, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="440000001000ffff27bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="fda65f0500000000140012800c0001006d616376746170000400028008000500", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x44}, 0x1, 0x0, 0x0, 0x308}, 0x0)

577.264078ms ago: executing program 4 (id=7758):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
process_mrelease(0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$poke(0x5, r0, &(0x7f0000000080), 0x0)

559.179299ms ago: executing program 3 (id=7759):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='\v\x00\x00\x00\a\x00\x00\x00\b\x00\x00\x00\b'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setpgid(0x0, 0x0)

537.92013ms ago: executing program 4 (id=7760):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0, r1}, 0x18)
r2 = semget$private(0x0, 0x3, 0x642)
semop(r2, 0x0, 0x0)
semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000001c0))

494.38464ms ago: executing program 1 (id=7761):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x6, 0x4, 0x1, 0x1, r0}, 0x50)

494.00755ms ago: executing program 4 (id=7762):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
r2 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r3}}]}})
r4 = getpid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001080)={<r5=>0x0, 0x0, <r6=>0x0}, &(0x7f00000010c0)=0xc)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000001100))
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000001180)={{0x2, 0x0, 0x0, 0x0, r3, 0x12, 0xeec}, 0x0, 0x0, 0xa, 0x3, 0x1000, 0xcc, 0x10001, 0x2, 0x7, 0x1000, r5, r4})
fstat(0xffffffffffffffff, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setgroups(0x9, &(0x7f0000000980)=[0x0, 0x0, 0x0, 0xee01, 0x0, 0x0, r3, r6, r7])

476.793031ms ago: executing program 6 (id=7763):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = semget$private(0x0, 0x3, 0x642)
semop(r2, 0x0, 0x0)
semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000001c0))

461.737221ms ago: executing program 5 (id=7764):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYRES16=0x0], 0x48)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800702, &(0x7f0000000100)={[{@max_batch_time={'max_batch_time', 0x3d, 0x8001}}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}, {@noauto_da_alloc}, {@noload}, {@oldalloc}, {@resuid}]}, 0x2, 0x470, &(0x7f0000000dc0)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b0000000700000008000000a6ad6a1a05"], 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@newtaction={0x18, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x18)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000800038004000380080005"], 0x3c}}, 0x0)

430.939902ms ago: executing program 1 (id=7765):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
r1 = open(&(0x7f0000000240)='.\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x65, 0xfc, 0x5, 0x0, 0x0, 0x100007, 0x88008, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x4, @perf_bp={0x0}, 0x212, 0xd, 0x7ffffefc, 0x3, 0x1, 0x0, 0x8, 0x0, 0xfc, 0x0, 0x1}, 0x0, 0x400000000007, 0xffffffffffffffff, 0x3)
r5 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_CREATE(r5, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}, 0x120)
write$UHID_DESTROY(r5, &(0x7f0000000080), 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
splice(r2, 0x0, r3, 0x0, 0x1, 0x0)
vmsplice(r3, &(0x7f0000000380)=[{&(0x7f0000000180)="04", 0x1}, {&(0x7f0000000200)="7f", 0x1}], 0x2, 0x6)
ioctl$sock_inet_udp_SIOCINQ(r3, 0x541b, 0x0)
r6 = inotify_init1(0x0)
r7 = inotify_add_watch(r6, &(0x7f0000000200)='.\x00', 0x10000a0)
r8 = dup(r6)
inotify_rm_watch(r8, r7)
close_range(r1, 0xffffffffffffffff, 0x0)

430.115281ms ago: executing program 6 (id=7766):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000a0a000/0x1000)=nil, 0x1000, 0xb635773f06ebbeee, 0x8010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000340)={0x5, &(0x7f0000000300)=[{0x4, 0x4, 0x10, 0x4}, {0x1, 0x1, 0x40, 0x7}, {0x6, 0xd, 0x3, 0x33b6}, {0x8, 0x6e, 0x7, 0xa}, {0x9, 0x62, 0x5, 0x5}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r3, 0xc0182101, &(0x7f0000000380)={0x0, 0x3, 0x4})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000002f40)=[{{&(0x7f00000003c0)=@pppoe={0x18, 0x0, {0x0, @broadcast}}, 0x80, &(0x7f0000001b00)=[{&(0x7f0000000480)=""/156, 0x9c}, {&(0x7f0000000540)=""/55, 0x37}, {&(0x7f00000007c0)=""/124, 0x7c}, {&(0x7f0000000600)}, {&(0x7f0000000840)=""/68, 0x44}, {&(0x7f0000001d40)=""/95, 0x5f}, {&(0x7f00000030c0)=""/4112, 0x1010}, {&(0x7f0000001940)=""/241, 0xf1}, {&(0x7f0000001a40)=""/148, 0x94}], 0x9, &(0x7f0000001bc0)=""/211, 0xd3}, 0x2}, {{&(0x7f0000001cc0)=@nfc, 0x80, &(0x7f00000006c0)=[{&(0x7f0000002fc0)=""/252, 0xfc}, {&(0x7f0000001e40)=""/240, 0xf0}], 0x2, &(0x7f0000001f40)=""/4096, 0x1000}, 0x5}], 0x2, 0x10041, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
r7 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, r7, 0x0, 0x4, 0x0)
r8 = syz_pidfd_open(r7, 0x0)
pidfd_send_signal(r8, 0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
io_uring_setup(0x7cac, &(0x7f00000000c0)={0x0, 0x753a, 0x8, 0x3, 0x1fd})
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0xa0683, 0x0)

396.206632ms ago: executing program 4 (id=7767):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = fcntl$dupfd(r0, 0x406, r0)
ioctl$SCSI_IOCTL_START_UNIT(r2, 0x5)

344.412853ms ago: executing program 4 (id=7768):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r1, 0xc0096616, &(0x7f0000000640)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]})
close(r2)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'wg1\x00', <r4=>0x0})
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000600), 0x4)
setsockopt$packet_int(r3, 0x107, 0x14, &(0x7f0000000000)=0xf41, 0x4)
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000001c0)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x20, 0x47d, 0x2041, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xb1, 0x90, 0xd, [{{0x9, 0x4, 0x0, 0x2f, 0x1, 0x3, 0x1, 0x1, 0x0, {0x9, 0x21, 0x800, 0x3b, 0x1, {0x22, 0x949}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0x6, 0x9, 0x9}}}}}]}}]}}, &(0x7f0000000500)={0xa, &(0x7f00000003c0)={0xa, 0x6, 0x110, 0x5, 0x1, 0x4, 0x40, 0x4}, 0x5, &(0x7f0000000400)={0x5, 0xf, 0x5}, 0x1, [{0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0xf4ff}}]})
sendto$packet(r3, &(0x7f0000000100)="0f", 0x1, 0x800, &(0x7f0000000080)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2e}}, 0x14)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r2}, 0x8)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0xa3, 0x0, 0x0, 0x0, '\x00', r4, 0x0, 0x0, 0x1, 0x1}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000001580), 0x80, &(0x7f0000001500)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r5}})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, &(0x7f00000003c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
creat(&(0x7f0000000080)='./bus\x00', 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x8c, &(0x7f0000000300)='trans=rdma,')

340.652883ms ago: executing program 5 (id=7769):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'veth1_to_batadv\x00', 0x10})
r2 = socket(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=@newqdisc={0x78, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c}}]}, 0x78}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xfff3}, {}, {0xd, 0x30}}, [@filter_kind_options=@f_basic={{0xa}, {0xc, 0x2, [@TCA_BASIC_CLASSID={0x8, 0x1, {0xfff3, 0xfff1}}]}}]}, 0x3c}}, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='kmem_cache_free\x00', r6}, 0x18)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0xf5, 0xfff5, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)
sendmsg$inet6(r5, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e20, 0x80000, @dev={0xfe, 0x80, '\x00', 0x20}}, 0x1c, 0x0}, 0x40c0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r10, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r11}, 0x10)
setsockopt$inet_sctp6_SCTP_NODELAY(r5, 0x84, 0x3, &(0x7f0000000180)=0xa9, 0x4)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r12}, 0x10)
close(r0)

293.885924ms ago: executing program 6 (id=7770):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000340)={@ipv4={""/10, ""/2, @multicast1}, <r1=>0x0}, &(0x7f00000003c0)=0x14)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x200000000}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(0x0, r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x4000, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r5, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x33}, @void}}}, 0x1c}}, 0x4000054)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000001a0000000c00018008000100", @ANYRES32=r8], 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r9=>0x0, &(0x7f00000007c0)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x40, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000440)=[{&(0x7f00000005c0)="4e4f137360dcdeb3", 0x8}], 0x1})
r11 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0xcb)
open_tree(r11, &(0x7f0000000200)='./file0/file0\x00', 0x9000)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0)

234.609726ms ago: executing program 6 (id=7771):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)

227.209026ms ago: executing program 5 (id=7772):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
setpgid(0x0, 0x0)

200.185086ms ago: executing program 6 (id=7773):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r3, 0x941c, 0x0)
r4 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x30, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x46)
write$qrtrtun(r4, &(0x7f0000000340)="66bb0b760dc0f4ff", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], &(0x7f0000000240)=[0x2], 0x0, 0x9}}, 0x40)
io_uring_register$IORING_REGISTER_IOWQ_AFF(r4, 0x11, &(0x7f0000000380)="9da60825bd414b1b733270bf49a965a926fdf231d541e8145f2e3cdedbfb55a757a7848b16f02047baa6c77c64dca7f27a667ff19eea649898d1f8f40ba27f6f58a04ed4165da9ce1b6cfbd5b053b5c504397d9aff", 0x55)
lstat(&(0x7f0000000280)='./file0\x00', &(0x7f0000000400))
r6 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
fcntl$setlease(r6, 0x400, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
r7 = socket$inet_smc(0x2b, 0x1, 0x0)
ppoll(&(0x7f0000000500)=[{r1, 0x6002}], 0x1, 0x0, 0x0, 0x0)
ioctl$int_in(r7, 0x5452, &(0x7f0000000280)=0x3)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r7, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x152610}], 0x1, 0x0, 0xe00}, 0x1f00)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x36}, 0x94)
modify_ldt$write2(0x11, &(0x7f0000000100)={0x1d30, 0x0, 0x2003, 0x1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)

196.754296ms ago: executing program 3 (id=7774):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setpgid(0x0, 0x0)

35.608459ms ago: executing program 5 (id=7775):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
r2 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='kmem_cache_free\x00', r3}, 0x18)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008"], 0x64}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0xf5, 0xfff5, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e20, 0x80000, @dev={0xfe, 0x80, '\x00', 0x20}}, 0x1c, 0x0, 0x0, &(0x7f00000002c0)=[@dstopts={{0x18, 0x29, 0x37, {0x87}}}], 0x18}, 0x40c0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r8}, 0x10)
setsockopt$inet_sctp6_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000180)=0xa9, 0x4)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r9}, 0x10)
close(r0)

21.68077ms ago: executing program 3 (id=7776):
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='kmem_cache_free\x00'}, 0x18)
socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
close(0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
geteuid()
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000000000000000", @ANYRES32, @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000500"/28], 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x3e00, 0x116094000, 0x41000000}], 0x0)

0s ago: executing program 5 (id=7777):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = semget$private(0x0, 0x3, 0x642)
semop(r2, 0x0, 0x0)
semctl$SETALL(r2, 0x0, 0x11, &(0x7f00000001c0))

kernel console output (not intermixed with test programs):

424.907908][T23886] syz.5.7094: attempt to access beyond end of device
[  424.907908][T23886] loop5: rw=524288, sector=145, nr_sectors = 224 limit=128
[  424.918547][T23904] loop0: detected capacity change from 0 to 512
[  424.923189][T23886] syz.5.7094: attempt to access beyond end of device
[  424.923189][T23886] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  424.942033][T23886] syz.5.7094: attempt to access beyond end of device
[  424.942033][T23886] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  424.955577][T23886] syz.5.7094: attempt to access beyond end of device
[  424.955577][T23886] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  424.969239][T23886] syz.5.7094: attempt to access beyond end of device
[  424.969239][T23886] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  424.971392][T23904] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  424.982772][T23886] syz.5.7094: attempt to access beyond end of device
[  424.982772][T23886] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  424.992232][T23904] EXT4-fs (loop0): orphan cleanup on readonly fs
[  425.003775][T23906] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7101'.
[  425.013486][T23904] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7100: corrupted inode contents
[  425.031715][T23886] syz.5.7094: attempt to access beyond end of device
[  425.031715][T23886] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  425.034758][T23904] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.7100: mark_inode_dirty error
[  425.045363][T23886] syz.5.7094: attempt to access beyond end of device
[  425.045363][T23886] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  425.057135][T23904] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7100: corrupted inode contents
[  425.070543][T23886] syz.5.7094: attempt to access beyond end of device
[  425.070543][T23886] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  425.082366][T23904] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.7100: mark_inode_dirty error
[  425.128034][T23904] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7100: corrupted inode contents
[  425.148659][T23904] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  425.164830][T23904] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7100: corrupted inode contents
[  425.178623][T23904] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.7100: mark_inode_dirty error
[  425.194869][T23904] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  425.206974][T23904] EXT4-fs (loop0): 1 truncate cleaned up
[  425.212983][   T60] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 1
[  425.382455][T23916] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  425.382776][T23924] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7106'.
[  425.392372][T23916] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  425.419224][T23916] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7104'.
[  425.580589][T23929] loop4: detected capacity change from 0 to 512
[  425.623913][T23934] FAULT_INJECTION: forcing a failure.
[  425.623913][T23934] name failslab, interval 1, probability 0, space 0, times 0
[  425.636627][T23934] CPU: 1 UID: 0 PID: 23934 Comm: syz.4.7109 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  425.636655][T23934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  425.636671][T23934] Call Trace:
[  425.636681][T23934]  <TASK>
[  425.636691][T23934]  __dump_stack+0x1d/0x30
[  425.636719][T23934]  dump_stack_lvl+0xe8/0x140
[  425.636745][T23934]  dump_stack+0x15/0x1b
[  425.636828][T23934]  should_fail_ex+0x265/0x280
[  425.636853][T23934]  should_failslab+0x8c/0xb0
[  425.636880][T23934]  __kvmalloc_node_noprof+0x123/0x4e0
[  425.636920][T23934]  ? vmemdup_user+0x26/0xd0
[  425.636974][T23934]  ? cred_has_capability+0x210/0x280
[  425.637006][T23934]  vmemdup_user+0x26/0xd0
[  425.637037][T23934]  con_set_unimap+0x3f/0x6f0
[  425.637067][T23934]  ? selinux_capable+0x31/0x40
[  425.637104][T23934]  ? should_fail_ex+0xdb/0x280
[  425.637163][T23934]  vt_ioctl+0xfbb/0x1880
[  425.637204][T23934]  ? tty_jobctrl_ioctl+0x29e/0x810
[  425.637302][T23934]  tty_ioctl+0x7db/0xb80
[  425.637327][T23934]  ? __pfx_tty_ioctl+0x10/0x10
[  425.637352][T23934]  __se_sys_ioctl+0xce/0x140
[  425.637395][T23934]  __x64_sys_ioctl+0x43/0x50
[  425.637419][T23934]  x64_sys_call+0x1816/0x2ff0
[  425.637522][T23934]  do_syscall_64+0xd2/0x200
[  425.637555][T23934]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  425.637602][T23934]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  425.637633][T23934]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.637726][T23934] RIP: 0033:0x7fd3aa53eba9
[  425.637742][T23934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.637761][T23934] RSP: 002b:00007fd3a8fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  425.637781][T23934] RAX: ffffffffffffffda RBX: 00007fd3aa785fa0 RCX: 00007fd3aa53eba9
[  425.637795][T23934] RDX: 0000200000000180 RSI: 0000000000004b67 RDI: 0000000000000006
[  425.637809][T23934] RBP: 00007fd3a8fa7090 R08: 0000000000000000 R09: 0000000000000000
[  425.637852][T23934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.637866][T23934] R13: 00007fd3aa786038 R14: 00007fd3aa785fa0 R15: 00007ffc72e3ac38
[  425.637912][T23934]  </TASK>
[  426.136771][T23926] syz.5.7107 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  426.151026][T23926] CPU: 1 UID: 0 PID: 23926 Comm: syz.5.7107 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  426.151188][T23926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  426.151218][T23926] Call Trace:
[  426.151226][T23926]  <TASK>
[  426.151236][T23926]  __dump_stack+0x1d/0x30
[  426.151337][T23926]  dump_stack_lvl+0xe8/0x140
[  426.151361][T23926]  dump_stack+0x15/0x1b
[  426.151381][T23926]  dump_header+0x81/0x220
[  426.151538][T23926]  oom_kill_process+0x342/0x400
[  426.151603][T23926]  out_of_memory+0x979/0xb80
[  426.151699][T23926]  try_charge_memcg+0x5e6/0x9e0
[  426.151783][T23926]  obj_cgroup_charge_pages+0xa6/0x150
[  426.151823][T23926]  __memcg_kmem_charge_page+0x9f/0x170
[  426.151928][T23926]  __alloc_frozen_pages_noprof+0x188/0x360
[  426.151977][T23926]  alloc_pages_mpol+0xb3/0x250
[  426.152019][T23926]  alloc_pages_noprof+0x90/0x130
[  426.152137][T23926]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  426.152197][T23926]  __kvmalloc_node_noprof+0x30f/0x4e0
[  426.152277][T23926]  ? ip_set_alloc+0x1f/0x30
[  426.152357][T23926]  ? ip_set_alloc+0x1f/0x30
[  426.152442][T23926]  ? __kmalloc_cache_noprof+0x189/0x320
[  426.152481][T23926]  ip_set_alloc+0x1f/0x30
[  426.152505][T23926]  hash_netiface_create+0x282/0x740
[  426.152556][T23926]  ? __pfx_hash_netiface_create+0x10/0x10
[  426.152617][T23926]  ip_set_create+0x3cc/0x960
[  426.152661][T23926]  ? __nla_parse+0x40/0x60
[  426.152693][T23926]  nfnetlink_rcv_msg+0x4c6/0x590
[  426.152758][T23926]  netlink_rcv_skb+0x120/0x220
[  426.152788][T23926]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  426.152853][T23926]  nfnetlink_rcv+0x16b/0x1690
[  426.152876][T23926]  ? __rcu_read_unlock+0x4f/0x70
[  426.152949][T23926]  ? xa_load+0xb1/0xe0
[  426.152989][T23926]  ? __account_obj_stock+0x211/0x350
[  426.153016][T23926]  ? obj_cgroup_charge_account+0x122/0x1a0
[  426.153057][T23926]  ? __rcu_read_unlock+0x4f/0x70
[  426.153111][T23926]  ? __memcg_slab_post_alloc_hook+0x44c/0x580
[  426.153152][T23926]  ? __account_obj_stock+0x211/0x350
[  426.153184][T23926]  ? refill_obj_stock+0x254/0x2e0
[  426.153234][T23926]  ? rcu_segcblist_enqueue+0x92/0xb0
[  426.153308][T23926]  ? __rcu_read_unlock+0x4f/0x70
[  426.153333][T23926]  ? should_fail_ex+0x30/0x280
[  426.153362][T23926]  ? selinux_nlmsg_lookup+0x99/0x890
[  426.153409][T23926]  ? __rcu_read_unlock+0x34/0x70
[  426.153434][T23926]  ? __netlink_lookup+0x266/0x2a0
[  426.153480][T23926]  netlink_unicast+0x5c0/0x690
[  426.153597][T23926]  netlink_sendmsg+0x58b/0x6b0
[  426.153629][T23926]  ? __pfx_netlink_sendmsg+0x10/0x10
[  426.153657][T23926]  __sock_sendmsg+0x142/0x180
[  426.153699][T23926]  ____sys_sendmsg+0x31e/0x4e0
[  426.153817][T23926]  ___sys_sendmsg+0x17b/0x1d0
[  426.153870][T23926]  __x64_sys_sendmsg+0xd4/0x160
[  426.153909][T23926]  x64_sys_call+0x191e/0x2ff0
[  426.153933][T23926]  do_syscall_64+0xd2/0x200
[  426.153984][T23926]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  426.154013][T23926]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  426.154050][T23926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.154151][T23926] RIP: 0033:0x7feeee53eba9
[  426.154170][T23926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.154193][T23926] RSP: 002b:00007feeecf9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  426.154216][T23926] RAX: ffffffffffffffda RBX: 00007feeee785fa0 RCX: 00007feeee53eba9
[  426.154231][T23926] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000008
[  426.154245][T23926] RBP: 00007feeee5c1e19 R08: 0000000000000000 R09: 0000000000000000
[  426.154260][T23926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  426.154325][T23926] R13: 00007feeee786038 R14: 00007feeee785fa0 R15: 00007ffc1b070648
[  426.154347][T23926]  </TASK>
[  426.154353][T23926] memory: usage 307200kB, limit 307200kB, failcnt 3050
[  426.526357][T23926] memory+swap: usage 307724kB, limit 9007199254740988kB, failcnt 0
[  426.534298][T23926] kmem: usage 307068kB, limit 9007199254740988kB, failcnt 0
[  426.541633][T23926] Memory cgroup stats for /syz5:
[  426.548039][T23968] loop1: detected capacity change from 0 to 512
[  426.559861][T23968] EXT4-fs: Ignoring removed mblk_io_submit option
[  426.566818][T23926] cache 0
[  426.569827][T23926] rss 0
[  426.572597][T23926] shmem 0
[  426.575541][T23926] mapped_file 413696
[  426.579521][T23926] dirty 0
[  426.582470][T23926] writeback 0
[  426.585780][T23926] workingset_refault_anon 1014
[  426.590580][T23926] workingset_refault_file 32
[  426.595249][T23926] swap 536576
[  426.598586][T23926] swapcached 4096
[  426.602279][T23926] pgpgin 130022
[  426.605799][T23926] pgpgout 129989
[  426.607536][T23968] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  426.609405][T23926] pgfault 220712
[  426.622960][T23926] pgmajfault 570
[  426.626284][T23968] EXT4-fs (loop1): 1 truncate cleaned up
[  426.626576][T23926] inactive_anon 0
[  426.635925][T23926] active_anon 4096
[  426.639963][T23926] inactive_file 0
[  426.643613][T23926] active_file 131072
[  426.647577][T23926] unevictable 0
[  426.651052][T23926] hierarchical_memory_limit 314572800
[  426.656445][T23926] hierarchical_memsw_limit 9223372036854771712
[  426.662607][T23926] total_cache 0
[  426.666096][T23926] total_rss 0
[  426.669430][T23926] total_shmem 0
[  426.672908][T23926] total_mapped_file 413696
[  426.677451][T23926] total_dirty 0
[  426.680928][T23926] total_writeback 0
[  426.684771][T23926] total_workingset_refault_anon 1014
[  426.690096][T23926] total_workingset_refault_file 32
[  426.695220][T23926] total_swap 536576
[  426.699192][T23926] total_swapcached 4096
[  426.703540][T23926] total_pgpgin 130022
[  426.707563][T23926] total_pgpgout 129989
[  426.711644][T23926] total_pgfault 220712
[  426.715764][T23926] total_pgmajfault 570
[  426.719863][T23926] total_inactive_anon 0
[  426.724031][T23926] total_active_anon 4096
[  426.728371][T23926] total_inactive_file 0
[  426.732589][T23926] total_active_file 131072
[  426.737084][T23926] total_unevictable 0
[  426.741079][T23926] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.7107,pid=23925,uid=0
[  426.755882][T23926] Memory cgroup out of memory: Killed process 23925 (syz.5.7107) total-vm:94296kB, anon-rss:1200kB, file-rss:22564kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  426.882032][T23973] loop0: detected capacity change from 0 to 2048
[  426.913495][   T29] kauditd_printk_skb: 712 callbacks suppressed
[  426.913513][   T29] audit: type=1400 audit(426.883:29697): avc:  denied  { mounton } for  pid=23971 comm="syz.0.7126" path="/120/file0" dev="tmpfs" ino=655 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  426.996156][   T29] audit: type=1400 audit(426.963:29698): avc:  denied  { execute_no_trans } for  pid=23976 comm="syz.0.7127" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=464 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  427.048859][   T29] audit: type=1326 audit(427.023:29699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23978 comm="syz.4.7128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3aa53eba9 code=0x7ffc0000
[  427.094026][   T29] audit: type=1326 audit(427.043:29700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23978 comm="syz.4.7128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3aa53eba9 code=0x7ffc0000
[  427.117186][   T29] audit: type=1326 audit(427.043:29701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23978 comm="syz.4.7128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3aa53eba9 code=0x7ffc0000
[  427.140208][   T29] audit: type=1326 audit(427.043:29702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23978 comm="syz.4.7128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3aa53eba9 code=0x7ffc0000
[  427.163287][   T29] audit: type=1326 audit(427.043:29703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23978 comm="syz.4.7128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3aa53eba9 code=0x7ffc0000
[  427.186390][   T29] audit: type=1326 audit(427.043:29704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23978 comm="syz.4.7128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3aa53eba9 code=0x7ffc0000
[  427.209370][   T29] audit: type=1326 audit(427.043:29705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23978 comm="syz.4.7128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3aa53eba9 code=0x7ffc0000
[  427.232401][   T29] audit: type=1326 audit(427.043:29706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23978 comm="syz.4.7128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3aa53eba9 code=0x7ffc0000
[  427.232567][T23982] loop4: detected capacity change from 0 to 512
[  427.308264][T23982] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  427.316856][T23982] EXT4-fs (loop4): orphan cleanup on readonly fs
[  427.336937][T23982] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7130: corrupted inode contents
[  427.379115][T23998] loop5: detected capacity change from 0 to 164
[  427.385762][T23982] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.7130: mark_inode_dirty error
[  427.397733][T23998] ISOFS: unable to read i-node block
[  427.403067][T23998] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  427.421464][T23982] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7130: corrupted inode contents
[  427.445049][T23982] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.7130: mark_inode_dirty error
[  427.458787][T23982] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7130: corrupted inode contents
[  427.476770][T23982] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  427.490056][T23982] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7130: corrupted inode contents
[  427.505798][T23982] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.7130: mark_inode_dirty error
[  427.509113][T24006] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  427.519282][T23982] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  427.538718][T23982] EXT4-fs (loop4): 1 truncate cleaned up
[  427.539773][T24006] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  427.546102][T24004] macvtap1: entered allmulticast mode
[  427.560508][T24008] loop0: detected capacity change from 0 to 512
[  427.568933][   T37] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 1
[  427.581715][T24004] bridge0: port 3(macvtap1) entered blocking state
[  427.588364][T24004] bridge0: port 3(macvtap1) entered disabled state
[  427.631832][T24018] loop1: detected capacity change from 0 to 512
[  427.638931][T24018] EXT4-fs: Ignoring removed oldalloc option
[  427.655819][T24018] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.7143: Parent and EA inode have the same ino 15
[  427.691778][T24018] EXT4-fs (loop1): 1 orphan inode deleted
[  427.694041][T24022] 9pnet_fd: Insufficient options for proto=fd
[  427.742377][T24034] loop1: detected capacity change from 0 to 512
[  427.769556][T24034] EXT4-fs: Ignoring removed oldalloc option
[  427.779294][T24034] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.7149: Parent and EA inode have the same ino 15
[  427.791947][T24034] EXT4-fs (loop1): 1 orphan inode deleted
[  427.928917][T24063] loop5: detected capacity change from 0 to 128
[  427.935832][T24063] vfat: Unknown parameter '
'
[  427.939046][T24057] bond2: entered promiscuous mode
[  427.945679][T24057] bond2: entered allmulticast mode
[  427.951239][T24057] 8021q: adding VLAN 0 to HW filter on device bond2
[  427.960644][T24057] bond2 (unregistering): Released all slaves
[  428.099537][T24070] loop1: detected capacity change from 0 to 512
[  428.106293][T24070] EXT4-fs: Ignoring removed oldalloc option
[  428.112614][T24063] loop5: detected capacity change from 0 to 512
[  428.121947][T24070] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.7163: Parent and EA inode have the same ino 15
[  428.134763][T24070] EXT4-fs (loop1): 1 orphan inode deleted
[  428.142268][T24063] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.7161: bg 0: block 248: padding at end of block bitmap is not set
[  428.160806][T24063] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.7161: Failed to acquire dquot type 1
[  428.180539][T24063] EXT4-fs (loop5): 1 truncate cleaned up
[  428.243190][T24087] __nla_validate_parse: 11 callbacks suppressed
[  428.243209][T24087] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7170'.
[  428.261954][T24089] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7171'.
[  428.272033][T24089] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7171'.
[  428.280313][T24091] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7172'.
[  428.291279][T24091] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7172'.
[  428.330675][T24094] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  428.340548][T24094] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  428.383609][T24100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7175'.
[  428.392965][T24097] loop3: detected capacity change from 0 to 1764
[  428.395545][T24100] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7175'.
[  428.479110][T24110] loop1: detected capacity change from 0 to 512
[  428.530781][T24117] random: crng reseeded on system resumption
[  428.559433][T24119] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7180'.
[  428.654865][T24125] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7182'.
[  428.667130][T24127] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7183'.
[  428.740265][T24136] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  428.749742][T24136] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  428.774431][T24139] loop1: detected capacity change from 0 to 512
[  428.790737][T24139] EXT4-fs: Ignoring removed oldalloc option
[  428.798591][T24139] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.7187: Parent and EA inode have the same ino 15
[  428.811484][T24139] EXT4-fs (loop1): 1 orphan inode deleted
[  428.829881][T24143] loop0: detected capacity change from 0 to 512
[  428.836684][T24143] EXT4-fs: Ignoring removed oldalloc option
[  428.844710][T24143] EXT4-fs error (device loop0): ext4_xattr_inode_iget:433: comm syz.0.7188: Parent and EA inode have the same ino 15
[  428.858574][T24143] EXT4-fs (loop0): 1 orphan inode deleted
[  429.069305][T24165] loop0: detected capacity change from 0 to 512
[  429.120017][T24169] pim6reg: entered allmulticast mode
[  429.126480][T24169] pim6reg: left allmulticast mode
[  429.282516][T24176] pim6reg: entered allmulticast mode
[  429.337530][T24180] pim6reg: left allmulticast mode
[  429.395250][T24187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  429.442173][T24187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  429.521508][T24205] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  429.532844][T24205] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  429.552109][T24172] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  429.927973][T24241] program syz.3.7223 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  429.952284][T24239] loop0: detected capacity change from 0 to 512
[  429.959934][T24239] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  429.977602][T24239] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.7222: bg 0: block 4: invalid block bitmap
[  429.990540][T24239] EXT4-fs (loop0): Remounting filesystem read-only
[  429.998669][T24239] EXT4-fs (loop0): 1 truncate cleaned up
[  430.249323][T24274] loop4: detected capacity change from 0 to 512
[  430.448507][T24282] loop4: detected capacity change from 0 to 512
[  430.468608][T24282] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  430.479424][T24287] loop1: detected capacity change from 0 to 512
[  430.482176][T24282] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.7236: bg 0: block 4: invalid block bitmap
[  430.486431][T24287] EXT4-fs: Ignoring removed oldalloc option
[  430.502022][T24282] EXT4-fs (loop4): Remounting filesystem read-only
[  430.512365][T24282] EXT4-fs (loop4): 1 truncate cleaned up
[  430.513438][T24287] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.7238: Parent and EA inode have the same ino 15
[  430.530832][T24287] EXT4-fs (loop1): 1 orphan inode deleted
[  430.725229][T24305] loop5: detected capacity change from 0 to 512
[  431.141052][T24334] ªªªªªª: renamed from vlan0 (while UP)
[  431.190968][T24345] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  431.216756][T24345] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  431.382490][T24348] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  431.390999][T24348] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  431.529156][T24372] loop5: detected capacity change from 0 to 512
[  431.691946][T24374] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  431.700600][T24374] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  431.793013][T24372] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  431.957975][T24395] loop1: detected capacity change from 0 to 512
[  431.979407][T24395] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  431.989462][T24395] EXT4-fs (loop1): orphan cleanup on readonly fs
[  432.002795][T24395] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.7277: corrupted inode contents
[  432.015091][T24395] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #16: comm syz.1.7277: mark_inode_dirty error
[  432.026876][T24395] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.7277: corrupted inode contents
[  432.039361][T24395] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.7277: mark_inode_dirty error
[  432.051115][T24395] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.7277: corrupted inode contents
[  432.064818][T24395] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  432.073994][T24395] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.7277: corrupted inode contents
[  432.087765][T24395] EXT4-fs error (device loop1): ext4_truncate:4666: inode #16: comm syz.1.7277: mark_inode_dirty error
[  432.092539][T24399] loop5: detected capacity change from 0 to 512
[  432.099265][T24395] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  432.115873][T24395] EXT4-fs (loop1): 1 truncate cleaned up
[  432.121943][   T60] __quota_error: 777 callbacks suppressed
[  432.121961][   T60] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  432.137657][   T60] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 1
[  432.235040][T24412] ªªªªªª: renamed from vlan0 (while UP)
[  432.242570][T24416] random: crng reseeded on system resumption
[  432.273565][   T29] audit: type=1326 audit(432.243:30481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeee53eba9 code=0x7ffc0000
[  432.296870][   T29] audit: type=1326 audit(432.243:30482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeee53eba9 code=0x7ffc0000
[  432.319958][   T29] audit: type=1326 audit(432.243:30483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7feeee53d65f code=0x7ffc0000
[  432.342946][   T29] audit: type=1326 audit(432.243:30484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeee53eba9 code=0x7ffc0000
[  432.366015][   T29] audit: type=1326 audit(432.243:30485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeee53eba9 code=0x7ffc0000
[  432.401020][   T29] audit: type=1326 audit(432.243:30486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeee53eba9 code=0x7ffc0000
[  432.424211][   T29] audit: type=1326 audit(432.243:30487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeee53eba9 code=0x7ffc0000
[  432.447275][   T29] audit: type=1326 audit(432.243:30488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeee53eba9 code=0x7ffc0000
[  432.470366][   T29] audit: type=1326 audit(432.243:30489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24417 comm="syz.5.7283" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeee53eba9 code=0x7ffc0000
[  432.664961][T24427] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  432.683650][T24427] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  432.789562][T24454] loop3: detected capacity change from 0 to 512
[  432.797595][T24454] EXT4-fs: Ignoring removed oldalloc option
[  432.806006][T24454] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.7295: Parent and EA inode have the same ino 15
[  432.819114][T24454] EXT4-fs (loop3): 1 orphan inode deleted
[  432.887979][T24472] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  432.898318][T24472] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  432.999318][T24482] loop3: detected capacity change from 0 to 512
[  433.007861][T24482] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  433.024315][T24482] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.7305: bg 0: block 4: invalid block bitmap
[  433.037176][T24482] EXT4-fs (loop3): Remounting filesystem read-only
[  433.043816][T24482] EXT4-fs (loop3): 1 truncate cleaned up
[  433.100966][T24493] loop1: detected capacity change from 0 to 512
[  433.343132][T24513] random: crng reseeded on system resumption
[  433.373457][T24515] loop0: detected capacity change from 0 to 512
[  433.388066][T24515] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  433.396512][T24515] EXT4-fs (loop0): orphan cleanup on readonly fs
[  433.404471][T24515] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7316: corrupted inode contents
[  433.416982][T24515] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.7316: mark_inode_dirty error
[  433.428761][T24515] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7316: corrupted inode contents
[  433.441322][T24515] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.7316: mark_inode_dirty error
[  433.454547][T24515] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7316: corrupted inode contents
[  433.487892][T24515] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  433.510198][T24515] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7316: corrupted inode contents
[  433.554495][T24515] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.7316: mark_inode_dirty error
[  433.573570][T24515] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  433.595868][T24515] EXT4-fs (loop0): 1 truncate cleaned up
[  433.602025][   T37] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 1
[  433.762064][T24543] __nla_validate_parse: 43 callbacks suppressed
[  433.762124][T24543] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7324'.
[  433.794560][T24545] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7325'.
[  433.808419][T24545] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7325'.
[  433.860875][T24550] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7327'.
[  433.870745][T24550] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7327'.
[  434.086903][T24566] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  434.099189][T24566] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  434.461276][T22408] EXT4-fs unmount: 66 callbacks suppressed
[  434.461291][T22408] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.484146][T24581] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7338'.
[  434.503987][T24581] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7338'.
[  434.530643][T24583] loop0: detected capacity change from 0 to 512
[  434.547319][T24583] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  434.555430][T24583] EXT4-fs (loop0): orphan cleanup on readonly fs
[  434.563514][T24583] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7339: corrupted inode contents
[  434.575820][T24583] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #16: comm syz.0.7339: mark_inode_dirty error
[  434.587832][T24583] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7339: corrupted inode contents
[  434.599981][T24583] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.7339: mark_inode_dirty error
[  434.611445][T24583] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7339: corrupted inode contents
[  434.623632][T24583] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  434.632515][T24583] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.7339: corrupted inode contents
[  434.644768][T24583] EXT4-fs error (device loop0): ext4_truncate:4666: inode #16: comm syz.0.7339: mark_inode_dirty error
[  434.657412][T24583] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  434.666852][T24583] EXT4-fs (loop0): 1 truncate cleaned up
[  434.672760][ T1455] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 1
[  434.685114][T24583] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  434.769438][T24593] 9pnet_fd: Insufficient options for proto=fd
[  434.891539][T24600] loop5: detected capacity change from 0 to 512
[  434.918586][T24600] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  435.106738][T24612] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  435.225924][T18015] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  435.492377][T22408] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.524460][T24634] loop0: detected capacity change from 0 to 512
[  435.549116][T24634] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  435.602211][T24641] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7357'.
[  435.851830][T24634] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  435.871811][T22408] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  435.924955][T24648] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7360'.
[  435.990602][T24652] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7362'.
[  436.415933][T24674] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.424652][T24674] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.629799][T24687] loop3: detected capacity change from 0 to 512
[  436.649356][T24687] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  436.783736][T24699] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  436.842826][T24705] bond1: entered promiscuous mode
[  436.847993][T24705] bond1: entered allmulticast mode
[  436.853814][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  436.853835][T24705] 8021q: adding VLAN 0 to HW filter on device bond1
[  436.872005][T24705] bond1 (unregistering): Released all slaves
[  436.901691][T24710] program syz.3.7382 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  437.136671][T24739] netlink: 'syz.5.7390': attribute type 2 has an invalid length.
[  437.156551][T24734] loop4: detected capacity change from 0 to 512
[  437.165804][T24746] loop1: detected capacity change from 0 to 512
[  437.168226][T24734] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  437.183262][T24746] EXT4-fs: Ignoring removed oldalloc option
[  437.190316][T24734] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.7392: bg 0: block 4: invalid block bitmap
[  437.200788][T24746] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.7396: Parent and EA inode have the same ino 15
[  437.203111][T24734] EXT4-fs (loop4): Remounting filesystem read-only
[  437.217278][T24746] EXT4-fs (loop1): 1 orphan inode deleted
[  437.221733][T24734] EXT4-fs (loop4): 1 truncate cleaned up
[  437.233456][T24734] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  437.239033][T24746] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  437.276791][T20127] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.329016][   T29] kauditd_printk_skb: 314 callbacks suppressed
[  437.329035][   T29] audit: type=1326 audit(437.303:30802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.358483][   T29] audit: type=1326 audit(437.303:30803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.381621][   T29] audit: type=1326 audit(437.303:30804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.381805][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.404915][   T29] audit: type=1326 audit(437.303:30805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.412514][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.435462][   T29] audit: type=1326 audit(437.303:30806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.443043][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.466015][   T29] audit: type=1326 audit(437.303:30807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.473498][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.496569][   T29] audit: type=1326 audit(437.303:30808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.503872][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.526923][   T29] audit: type=1326 audit(437.303:30809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.526968][   T29] audit: type=1326 audit(437.303:30810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.534442][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.557523][   T29] audit: type=1326 audit(437.303:30811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24757 comm="syz.0.7400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  437.580357][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.618542][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.626050][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.633570][T19059] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  437.642017][T19059] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  437.920062][T24783] loop3: detected capacity change from 0 to 512
[  437.938084][T24783] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  437.946781][T24783] EXT4-fs (loop3): orphan cleanup on readonly fs
[  437.957527][T24783] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7408: corrupted inode contents
[  437.969772][T24783] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.7408: mark_inode_dirty error
[  437.982659][T24783] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7408: corrupted inode contents
[  438.006014][T24783] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.7408: mark_inode_dirty error
[  438.033438][T24783] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7408: corrupted inode contents
[  438.045864][T24783] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  438.054698][T24783] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7408: corrupted inode contents
[  438.066664][T22233] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  438.076471][T24783] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.7408: mark_inode_dirty error
[  438.106611][T24799] loop4: detected capacity change from 0 to 512
[  438.113062][T24783] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  438.123643][T24783] EXT4-fs (loop3): 1 truncate cleaned up
[  438.130520][   T37] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 1
[  438.144706][T24799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  438.159801][T24783] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  438.172946][T24799] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  438.199318][T22233] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  438.227367][   T10] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  438.273997][T24814] 9pnet_fd: Insufficient options for proto=fd
[  438.539187][T24832] SELinux: security_context_str_to_sid (s) failed with errno=-22
[  438.819641][T24846] loop1: detected capacity change from 0 to 512
[  438.828024][T24846] EXT4-fs: Ignoring removed oldalloc option
[  438.836666][T24846] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.7425: Parent and EA inode have the same ino 15
[  438.849359][T24849] loop4: detected capacity change from 0 to 256
[  438.857701][T24849] FAT-fs (loop4): Directory bread(block 1285) failed
[  438.864651][T24846] EXT4-fs (loop1): 1 orphan inode deleted
[  438.871160][T24846] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  438.878602][T24849] FAT-fs (loop4): Directory bread(block 1285) failed
[  438.897920][T24849] FAT-fs (loop4): FAT read failed (blocknr 1281)
[  438.905568][T20127] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.016067][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.055803][T24866] __nla_validate_parse: 28 callbacks suppressed
[  439.055822][T24866] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7434'.
[  439.085750][T24870] loop3: detected capacity change from 0 to 512
[  439.093025][T24871] FAULT_INJECTION: forcing a failure.
[  439.093025][T24871] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  439.106281][T24871] CPU: 1 UID: 0 PID: 24871 Comm: syz.4.7432 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  439.106379][T24871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  439.106397][T24871] Call Trace:
[  439.106459][T24871]  <TASK>
[  439.106529][T24871]  __dump_stack+0x1d/0x30
[  439.106556][T24871]  dump_stack_lvl+0xe8/0x140
[  439.106582][T24871]  dump_stack+0x15/0x1b
[  439.106604][T24871]  should_fail_ex+0x265/0x280
[  439.106695][T24871]  should_fail+0xb/0x20
[  439.106723][T24871]  should_fail_usercopy+0x1a/0x20
[  439.106809][T24871]  _copy_from_user+0x1c/0xb0
[  439.106855][T24871]  kstrtouint_from_user+0x69/0xf0
[  439.106916][T24871]  ? 0xffffffff81000000
[  439.106930][T24871]  ? selinux_file_permission+0x1e4/0x320
[  439.106954][T24871]  proc_fail_nth_write+0x50/0x160
[  439.106990][T24871]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  439.107027][T24871]  vfs_write+0x269/0x960
[  439.107131][T24871]  ? __rcu_read_unlock+0x4f/0x70
[  439.107236][T24871]  ? __fget_files+0x184/0x1c0
[  439.107274][T24871]  ksys_write+0xda/0x1a0
[  439.107306][T24871]  __x64_sys_write+0x40/0x50
[  439.107331][T24871]  x64_sys_call+0x27fe/0x2ff0
[  439.107427][T24871]  do_syscall_64+0xd2/0x200
[  439.107465][T24871]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  439.107555][T24871]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  439.107591][T24871]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.107619][T24871] RIP: 0033:0x7fd3aa53d65f
[  439.107705][T24871] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  439.107729][T24871] RSP: 002b:00007fd3a8f53030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  439.107751][T24871] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd3aa53d65f
[  439.107767][T24871] RDX: 0000000000000001 RSI: 00007fd3a8f530a0 RDI: 0000000000000009
[  439.107840][T24871] RBP: 00007fd3a8f53090 R08: 0000000000000000 R09: 0000000000000000
[  439.107857][T24871] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  439.107881][T24871] R13: 00007fd3aa786128 R14: 00007fd3aa786090 R15: 00007ffc72e3ac38
[  439.107909][T24871]  </TASK>
[  439.108454][T24866] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7434'.
[  439.140670][T24873] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7436'.
[  439.203763][T24870] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  439.358132][T24883] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7437'.
[  439.372337][T24883] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7437'.
[  439.439084][T24890] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  439.565261][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  439.589268][T24907] FAULT_INJECTION: forcing a failure.
[  439.589268][T24907] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  439.602473][T24907] CPU: 0 UID: 0 PID: 24907 Comm: syz.0.7446 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  439.602506][T24907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  439.602523][T24907] Call Trace:
[  439.602531][T24907]  <TASK>
[  439.602541][T24907]  __dump_stack+0x1d/0x30
[  439.602602][T24907]  dump_stack_lvl+0xe8/0x140
[  439.602624][T24907]  dump_stack+0x15/0x1b
[  439.602716][T24907]  should_fail_ex+0x265/0x280
[  439.602747][T24907]  should_fail+0xb/0x20
[  439.602774][T24907]  should_fail_usercopy+0x1a/0x20
[  439.602808][T24907]  _copy_from_user+0x1c/0xb0
[  439.602927][T24907]  __sys_sendto+0x19e/0x330
[  439.602974][T24907]  __x64_sys_sendto+0x76/0x90
[  439.603005][T24907]  x64_sys_call+0x2d05/0x2ff0
[  439.603033][T24907]  do_syscall_64+0xd2/0x200
[  439.603151][T24907]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  439.603181][T24907]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  439.603221][T24907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.603251][T24907] RIP: 0033:0x7fc8af20eba9
[  439.603271][T24907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.603309][T24907] RSP: 002b:00007fc8adc77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  439.603340][T24907] RAX: ffffffffffffffda RBX: 00007fc8af455fa0 RCX: 00007fc8af20eba9
[  439.603361][T24907] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000003
[  439.603377][T24907] RBP: 00007fc8adc77090 R08: 00002000000007c0 R09: 000000000000001c
[  439.603394][T24907] R10: 000000000404a880 R11: 0000000000000246 R12: 0000000000000001
[  439.603409][T24907] R13: 00007fc8af456038 R14: 00007fc8af455fa0 R15: 00007ffcd0228478
[  439.603502][T24907]  </TASK>
[  439.794275][T24913] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7449'.
[  439.830808][T24918] veth1_to_bond: entered allmulticast mode
[  439.837280][T24918] bond_slave_1: entered promiscuous mode
[  439.863445][T24920] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7452'.
[  439.872819][T24920] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7452'.
[  439.907050][T24917] bond_slave_1: left promiscuous mode
[  439.912544][T24917] veth1_to_bond: left allmulticast mode
[  439.980506][T24924] loop3: detected capacity change from 0 to 512
[  439.987875][T24924] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  440.001335][T24924] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.7453: bg 0: block 4: invalid block bitmap
[  440.014487][T24924] EXT4-fs (loop3): Remounting filesystem read-only
[  440.022572][T24924] EXT4-fs (loop3): 1 truncate cleaned up
[  440.028811][T24924] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.118293][T24937] FAULT_INJECTION: forcing a failure.
[  440.118293][T24937] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  440.131507][T24937] CPU: 0 UID: 0 PID: 24937 Comm: syz.0.7456 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  440.131536][T24937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  440.131548][T24937] Call Trace:
[  440.131556][T24937]  <TASK>
[  440.131564][T24937]  __dump_stack+0x1d/0x30
[  440.131645][T24937]  dump_stack_lvl+0xe8/0x140
[  440.131736][T24937]  dump_stack+0x15/0x1b
[  440.131762][T24937]  should_fail_ex+0x265/0x280
[  440.131788][T24937]  should_fail+0xb/0x20
[  440.131812][T24937]  should_fail_usercopy+0x1a/0x20
[  440.131842][T24937]  _copy_from_user+0x1c/0xb0
[  440.131900][T24937]  ____sys_sendmsg+0x1c5/0x4e0
[  440.131941][T24937]  ___sys_sendmsg+0x17b/0x1d0
[  440.132045][T24937]  __sys_sendmmsg+0x178/0x300
[  440.132098][T24937]  __x64_sys_sendmmsg+0x57/0x70
[  440.132135][T24937]  x64_sys_call+0x1c4a/0x2ff0
[  440.132240][T24937]  do_syscall_64+0xd2/0x200
[  440.132282][T24937]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  440.132389][T24937]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  440.132429][T24937]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  440.132471][T24937] RIP: 0033:0x7fc8af20eba9
[  440.132490][T24937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  440.132514][T24937] RSP: 002b:00007fc8adc77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  440.132538][T24937] RAX: ffffffffffffffda RBX: 00007fc8af455fa0 RCX: 00007fc8af20eba9
[  440.132554][T24937] RDX: 0000000000000001 RSI: 0000200000003480 RDI: 0000000000000003
[  440.132590][T24937] RBP: 00007fc8adc77090 R08: 0000000000000000 R09: 0000000000000000
[  440.132607][T24937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  440.132623][T24937] R13: 00007fc8af456038 R14: 00007fc8af455fa0 R15: 00007ffcd0228478
[  440.132649][T24937]  </TASK>
[  440.353230][T24943] loop5: detected capacity change from 0 to 512
[  440.417003][T24943] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.438996][T24950] bond1: entered promiscuous mode
[  440.444176][T24950] bond1: entered allmulticast mode
[  440.465888][T24950] 8021q: adding VLAN 0 to HW filter on device bond1
[  440.466036][T18015] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.495380][T24950] bond1 (unregistering): Released all slaves
[  440.520931][T24958] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7462'.
[  440.568816][T24959] random: crng reseeded on system resumption
[  440.608117][T24961] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  440.617055][T24961] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  440.740425][   T10] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  440.803471][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.860920][T24977] loop1: detected capacity change from 0 to 512
[  440.872353][T24977] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  440.873558][T24979] bond1: entered promiscuous mode
[  440.884541][T24977] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.7469: bg 0: block 4: invalid block bitmap
[  440.887649][T24979] bond1: entered allmulticast mode
[  440.901890][T24977] EXT4-fs (loop1): Remounting filesystem read-only
[  440.905333][T24979] 8021q: adding VLAN 0 to HW filter on device bond1
[  440.911764][T24977] EXT4-fs (loop1): 1 truncate cleaned up
[  440.924535][T24977] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.949662][T24979] bond1 (unregistering): Released all slaves
[  441.033468][T24993] loop3: detected capacity change from 0 to 512
[  441.048325][T24993] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  441.072147][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.108296][T25000] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7474'.
[  441.319759][T25010] batman_adv: batadv0: Adding interface: dummy0
[  441.326066][T25010] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  441.351711][T25010] batman_adv: batadv0: Interface activated: dummy0
[  441.369407][T25010] batadv0: mtu less than device minimum
[  441.375469][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.386246][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.397153][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.407756][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.418555][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.429279][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.440110][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.451040][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.461841][T25010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  441.520172][T25015] loop3: detected capacity change from 0 to 164
[  441.527384][T25015] iso9660: Unknown parameter '
'
[  441.534947][T25015] lo speed is unknown, defaulting to 1000
[  441.540943][T25015] lo speed is unknown, defaulting to 1000
[  441.547239][T25015] lo speed is unknown, defaulting to 1000
[  441.553707][T25015] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  441.563512][T25015] lo speed is unknown, defaulting to 1000
[  441.569639][T25015] lo speed is unknown, defaulting to 1000
[  441.575786][T25015] lo speed is unknown, defaulting to 1000
[  441.582502][T25015] lo speed is unknown, defaulting to 1000
[  441.589348][T25015] lo speed is unknown, defaulting to 1000
[  441.664600][T20127] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.824481][T25039] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  441.833395][T25039] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  441.887217][T25043] loop4: detected capacity change from 0 to 512
[  441.893992][T25043] EXT4-fs: Ignoring removed oldalloc option
[  441.906888][T25043] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.7491: Parent and EA inode have the same ino 15
[  441.920850][T25043] EXT4-fs (loop4): 1 orphan inode deleted
[  441.927286][T25043] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  441.960311][T22233] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.068379][T25054] netlink: '+}[@': attribute type 10 has an invalid length.
[  442.082604][T25056] FAULT_INJECTION: forcing a failure.
[  442.082604][T25056] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  442.095812][T25056] CPU: 1 UID: 0 PID: 25056 Comm: syz.3.7496 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  442.095842][T25056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  442.095859][T25056] Call Trace:
[  442.095866][T25056]  <TASK>
[  442.095873][T25056]  __dump_stack+0x1d/0x30
[  442.095970][T25056]  dump_stack_lvl+0xe8/0x140
[  442.095991][T25056]  dump_stack+0x15/0x1b
[  442.096009][T25056]  should_fail_ex+0x265/0x280
[  442.096036][T25056]  should_fail+0xb/0x20
[  442.096061][T25056]  should_fail_usercopy+0x1a/0x20
[  442.096124][T25056]  _copy_to_user+0x20/0xa0
[  442.096197][T25056]  simple_read_from_buffer+0xb5/0x130
[  442.096223][T25056]  proc_fail_nth_read+0x10e/0x150
[  442.096254][T25056]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  442.096282][T25056]  vfs_read+0x1a8/0x770
[  442.096381][T25056]  ? __rcu_read_unlock+0x4f/0x70
[  442.096404][T25056]  ? __fget_files+0x184/0x1c0
[  442.096435][T25056]  ksys_read+0xda/0x1a0
[  442.096494][T25056]  __x64_sys_read+0x40/0x50
[  442.096518][T25056]  x64_sys_call+0x27bc/0x2ff0
[  442.096542][T25056]  do_syscall_64+0xd2/0x200
[  442.096649][T25056]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  442.096675][T25056]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  442.096708][T25056]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  442.096731][T25056] RIP: 0033:0x7f3af541d5bc
[  442.096760][T25056] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  442.096779][T25056] RSP: 002b:00007f3af3e7f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  442.096814][T25056] RAX: ffffffffffffffda RBX: 00007f3af5665fa0 RCX: 00007f3af541d5bc
[  442.096828][T25056] RDX: 000000000000000f RSI: 00007f3af3e7f0a0 RDI: 0000000000000004
[  442.096841][T25056] RBP: 00007f3af3e7f090 R08: 0000000000000000 R09: 0000000000000000
[  442.096854][T25056] R10: 00002000000002c0 R11: 0000000000000246 R12: 0000000000000001
[  442.096935][T25056] R13: 00007f3af5666038 R14: 00007f3af5665fa0 R15: 00007ffceac24218
[  442.096957][T25056]  </TASK>
[  442.319751][T25060] loop3: detected capacity change from 0 to 512
[  442.333827][T25062] netlink: 'syz.5.7499': attribute type 10 has an invalid length.
[  442.347205][T25060] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  442.355522][T25060] EXT4-fs (loop3): orphan cleanup on readonly fs
[  442.363404][T25060] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7498: corrupted inode contents
[  442.375781][T25060] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.7498: mark_inode_dirty error
[  442.387529][   T29] kauditd_printk_skb: 453 callbacks suppressed
[  442.387547][   T29] audit: type=1400 audit(442.363:31264): avc:  denied  { ioctl } for  pid=25061 comm="syz.5.7499" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x4c06 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  442.388447][T25060] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7498: corrupted inode contents
[  442.394560][T25062] program syz.5.7499 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  442.420616][T25060] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.7498: mark_inode_dirty error
[  442.451391][T25062] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  442.460607][T25060] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7498: corrupted inode contents
[  442.474562][T25060] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  442.483433][T25060] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7498: corrupted inode contents
[  442.495750][T25060] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.7498: mark_inode_dirty error
[  442.507416][T25060] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  442.518066][T25060] EXT4-fs (loop3): 1 truncate cleaned up
[  442.524271][   T31] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  442.534100][   T31] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 1
[  442.548003][T25060] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  442.601677][   T29] audit: type=1400 audit(442.573:31265): avc:  denied  { sqpoll } for  pid=25078 comm="syz.1.7503" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  442.684031][   T29] audit: type=1326 audit(442.653:31266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25084 comm="syz.1.7505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  442.708770][   T29] audit: type=1326 audit(442.653:31267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25084 comm="syz.1.7505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  442.731822][   T29] audit: type=1326 audit(442.653:31268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25084 comm="syz.1.7505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  442.754912][   T29] audit: type=1326 audit(442.653:31269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25084 comm="syz.1.7505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  442.778145][   T29] audit: type=1326 audit(442.653:31270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25084 comm="syz.1.7505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  442.801765][   T29] audit: type=1326 audit(442.653:31271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25084 comm="syz.1.7505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  442.825244][   T29] audit: type=1326 audit(442.653:31272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25084 comm="syz.1.7505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  442.860669][T25092] loop4: detected capacity change from 0 to 512
[  442.892839][T25092] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  442.915527][T25092] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  442.943739][T25098] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  442.952503][T25098] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  442.960987][T22233] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  443.023326][T25108] loop5: detected capacity change from 0 to 512
[  443.030572][T25108] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  443.040846][T25108] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002]
[  443.050214][T25108] System zones: 1-12
[  443.054419][T25108] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.7514: corrupted in-inode xattr: e_value size too large
[  443.068986][T25108] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.7514: couldn't read orphan inode 15 (err -117)
[  443.080728][T25111] loop4: detected capacity change from 0 to 512
[  443.083483][T25108] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.087746][T25111] EXT4-fs: Ignoring removed oldalloc option
[  443.107859][T25111] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.7515: Parent and EA inode have the same ino 15
[  443.121663][T25111] EXT4-fs (loop4): 1 orphan inode deleted
[  443.128144][T25111] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.143295][T18015] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.168675][T22233] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.191807][T25114] loop5: detected capacity change from 0 to 1024
[  443.199855][T25114] EXT4-fs: Ignoring removed nobh option
[  443.205457][T25114] EXT4-fs: Ignoring removed nobh option
[  443.211677][T25114] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  443.222561][T25114] EXT4-fs error (device loop5): ext4_get_journal_inode:5800: comm syz.5.7516: inode #4294967295: comm syz.5.7516: iget: illegal inode #
[  443.236935][T25114] EXT4-fs (loop5): no journal found
[  443.242165][T25114] EXT4-fs (loop5): can't get journal size
[  443.248918][T25114] EXT4-fs (loop5): failed to initialize system zone (-22)
[  443.256090][T25114] EXT4-fs (loop5): mount failed
[  443.288923][T25127] loop5: detected capacity change from 0 to 512
[  443.308910][T25127] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  443.330267][T25127] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  443.364267][T18015] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  443.427493][T25141] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  443.436112][T25141] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  443.445493][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.476559][T25146] loop3: detected capacity change from 0 to 512
[  443.486569][T25146] EXT4-fs: Ignoring removed oldalloc option
[  443.509279][T25146] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.7527: Parent and EA inode have the same ino 15
[  443.526279][T25146] EXT4-fs (loop3): 1 orphan inode deleted
[  443.533232][T25146] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.567529][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.673162][T25166] random: crng reseeded on system resumption
[  443.875896][T25183] loop3: detected capacity change from 0 to 512
[  443.886684][T25185] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  443.895501][T25185] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  443.905551][T25183] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  443.961034][T25183] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  443.999054][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  444.395941][T25153] syz.5.7530 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000
[  444.410138][T25153] CPU: 0 UID: 0 PID: 25153 Comm: syz.5.7530 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  444.410177][T25153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  444.410191][T25153] Call Trace:
[  444.410200][T25153]  <TASK>
[  444.410234][T25153]  __dump_stack+0x1d/0x30
[  444.410330][T25153]  dump_stack_lvl+0xe8/0x140
[  444.410349][T25153]  dump_stack+0x15/0x1b
[  444.410364][T25153]  dump_header+0x81/0x220
[  444.410530][T25153]  oom_kill_process+0x342/0x400
[  444.410563][T25153]  out_of_memory+0x979/0xb80
[  444.410604][T25153]  try_charge_memcg+0x5e6/0x9e0
[  444.410634][T25153]  obj_cgroup_charge_pages+0xa6/0x150
[  444.410681][T25153]  __memcg_kmem_charge_page+0x9f/0x170
[  444.410713][T25153]  __alloc_frozen_pages_noprof+0x188/0x360
[  444.410752][T25153]  alloc_pages_mpol+0xb3/0x250
[  444.410823][T25153]  alloc_pages_noprof+0x90/0x130
[  444.410855][T25153]  __vmalloc_node_range_noprof+0x6f2/0xe00
[  444.410973][T25153]  __kvmalloc_node_noprof+0x30f/0x4e0
[  444.411002][T25153]  ? ip_set_alloc+0x1f/0x30
[  444.411022][T25153]  ? ip_set_alloc+0x1f/0x30
[  444.411063][T25153]  ? hash_netiface_create+0x21b/0x740
[  444.411095][T25153]  ? __kmalloc_cache_noprof+0x189/0x320
[  444.411203][T25153]  ip_set_alloc+0x1f/0x30
[  444.411223][T25153]  hash_netiface_create+0x282/0x740
[  444.411255][T25153]  ? __pfx_hash_netiface_create+0x10/0x10
[  444.411319][T25153]  ip_set_create+0x3cc/0x960
[  444.411353][T25153]  ? __nla_parse+0x40/0x60
[  444.411381][T25153]  nfnetlink_rcv_msg+0x4c6/0x590
[  444.411455][T25153]  netlink_rcv_skb+0x120/0x220
[  444.411477][T25153]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  444.411581][T25153]  nfnetlink_rcv+0x16b/0x1690
[  444.411599][T25153]  ? __rcu_read_unlock+0x4f/0x70
[  444.411621][T25153]  ? xa_load+0xb1/0xe0
[  444.411667][T25153]  ? __account_obj_stock+0x2d6/0x350
[  444.411692][T25153]  ? obj_cgroup_charge_account+0x122/0x1a0
[  444.411733][T25153]  ? __rcu_read_unlock+0x4f/0x70
[  444.411752][T25153]  ? __memcg_slab_post_alloc_hook+0x44c/0x580
[  444.411856][T25153]  ? __account_obj_stock+0x211/0x350
[  444.411880][T25153]  ? refill_obj_stock+0x254/0x2e0
[  444.411909][T25153]  ? rcu_segcblist_enqueue+0x92/0xb0
[  444.411942][T25153]  ? __rcu_read_unlock+0x4f/0x70
[  444.411960][T25153]  ? should_fail_ex+0x30/0x280
[  444.411982][T25153]  ? selinux_nlmsg_lookup+0x99/0x890
[  444.412012][T25153]  ? __rcu_read_unlock+0x34/0x70
[  444.412032][T25153]  ? __netlink_lookup+0x266/0x2a0
[  444.412096][T25153]  netlink_unicast+0x5c0/0x690
[  444.412120][T25153]  netlink_sendmsg+0x58b/0x6b0
[  444.412147][T25153]  ? __pfx_netlink_sendmsg+0x10/0x10
[  444.412188][T25153]  __sock_sendmsg+0x142/0x180
[  444.412277][T25153]  ____sys_sendmsg+0x31e/0x4e0
[  444.412307][T25153]  ___sys_sendmsg+0x17b/0x1d0
[  444.412350][T25153]  __x64_sys_sendmsg+0xd4/0x160
[  444.412381][T25153]  x64_sys_call+0x191e/0x2ff0
[  444.412434][T25153]  do_syscall_64+0xd2/0x200
[  444.412494][T25153]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  444.412516][T25153]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  444.412589][T25153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  444.412609][T25153] RIP: 0033:0x7feeee53eba9
[  444.412624][T25153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  444.412641][T25153] RSP: 002b:00007feeecf9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  444.412658][T25153] RAX: ffffffffffffffda RBX: 00007feeee785fa0 RCX: 00007feeee53eba9
[  444.412669][T25153] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000008
[  444.412681][T25153] RBP: 00007feeee5c1e19 R08: 0000000000000000 R09: 0000000000000000
[  444.412703][T25153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  444.412714][T25153] R13: 00007feeee786038 R14: 00007feeee785fa0 R15: 00007ffc1b070648
[  444.412741][T25153]  </TASK>
[  444.412747][T25153] memory: usage 307200kB, limit 307200kB, failcnt 3443
[  444.789553][T25153] memory+swap: usage 308300kB, limit 9007199254740988kB, failcnt 0
[  444.797494][T25153] kmem: usage 307044kB, limit 9007199254740988kB, failcnt 0
[  444.804778][T25153] Memory cgroup stats for /syz5:
[  444.804997][T25153] cache 0
[  444.812880][T25153] rss 4096
[  444.815908][T25153] shmem 0
[  444.818873][T25153] mapped_file 413696
[  444.822759][T25153] dirty 0
[  444.825693][T25153] writeback 0
[  444.829069][T25153] workingset_refault_anon 1031
[  444.833878][T25153] workingset_refault_file 34
[  444.838704][T25153] swap 1126400
[  444.842170][T25153] swapcached 28672
[  444.845897][T25153] pgpgin 163088
[  444.849400][T25153] pgpgout 163049
[  444.853074][T25153] pgfault 259127
[  444.856697][T25153] pgmajfault 582
[  444.860344][T25153] inactive_anon 28672
[  444.864376][T25153] active_anon 0
[  444.867908][T25153] inactive_file 131072
[  444.871998][T25153] active_file 0
[  444.875567][T25153] unevictable 0
[  444.879043][T25153] hierarchical_memory_limit 314572800
[  444.884478][T25153] hierarchical_memsw_limit 9223372036854771712
[  444.890648][T25153] total_cache 0
[  444.894203][T25153] total_rss 4096
[  444.897783][T25153] total_shmem 0
[  444.901252][T25153] total_mapped_file 413696
[  444.905668][T25153] total_dirty 0
[  444.909150][T25153] total_writeback 0
[  444.912973][T25153] total_workingset_refault_anon 1031
[  444.918289][T25153] total_workingset_refault_file 34
[  444.923521][T25153] total_swap 1126400
[  444.927609][T25153] total_swapcached 28672
[  444.931851][T25153] total_pgpgin 163088
[  444.935827][T25153] total_pgpgout 163049
[  444.940010][T25153] total_pgfault 259127
[  444.944105][T25153] total_pgmajfault 582
[  444.948324][T25153] total_inactive_anon 28672
[  444.952960][T25153] total_active_anon 0
[  444.957045][T25153] total_inactive_file 131072
[  444.961660][T25153] total_active_file 0
[  444.965658][T25153] total_unevictable 0
[  444.969681][T25153] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.7530,pid=25152,uid=0
[  444.984448][T25153] Memory cgroup out of memory: Killed process 25152 (syz.5.7530) total-vm:94296kB, anon-rss:1072kB, file-rss:22564kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  445.025303][T25213] ªªªªªª: renamed from vlan0 (while UP)
[  445.061080][T25217] program syz.4.7551 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  445.086787][T25217] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  445.148320][T25224] loop1: detected capacity change from 0 to 512
[  445.159747][T25224] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  445.173455][T25222] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.188953][T25224] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  445.201357][T25229] loop3: detected capacity change from 0 to 512
[  445.222834][T20127] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  445.238426][T25229] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  445.255616][T25229] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  445.279849][T25222] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.320710][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  445.378491][T25222] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.431570][T25222] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.476457][T25258] program syz.1.7565 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  445.485938][T25258] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  445.509997][   T12] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  445.521854][   T12] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  445.540586][   T12] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  445.552075][   T12] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  445.638506][T25256] loop5: detected capacity change from 0 to 512
[  445.645731][T25256] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  445.757050][T25256] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.7564: bg 0: block 4: invalid block bitmap
[  445.769925][T25256] EXT4-fs (loop5): Remounting filesystem read-only
[  445.776942][T25256] EXT4-fs (loop5): 1 truncate cleaned up
[  445.783934][T25256] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  445.799775][T25284] loop4: detected capacity change from 0 to 512
[  445.808154][T25284] EXT4-fs: Ignoring removed oldalloc option
[  445.821152][T25284] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.7573: Parent and EA inode have the same ino 15
[  445.835631][T25284] EXT4-fs (loop4): 1 orphan inode deleted
[  445.855176][T25284] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  445.940560][T18015] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.956290][T22233] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.998544][T25289] geneve2: entered promiscuous mode
[  446.003931][T25289] geneve2: entered allmulticast mode
[  446.098124][T25296] loop1: detected capacity change from 0 to 512
[  446.124378][T25296] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  446.142885][T25296] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  446.189741][T20127] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  446.210566][T25303] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.279663][T25303] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.294897][T25309] loop1: detected capacity change from 0 to 512
[  446.302435][T25309] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  446.328098][T25303] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.346785][T25309] EXT4-fs (loop1): orphan cleanup on readonly fs
[  446.359797][T25309] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  446.374924][T25309] EXT4-fs (loop1): Remounting filesystem read-only
[  446.382844][T25309] EXT4-fs (loop1): 1 truncate cleaned up
[  446.390839][T25303] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.402687][T25309] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  446.439554][T20127] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.468986][   T51] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  446.472242][T25312] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  446.485478][   T51] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  446.485591][   T51] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  446.494578][T25312] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  446.531750][   T51] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  446.569438][T19057] hid_parser_main: 68 callbacks suppressed
[  446.569536][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.582959][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.590464][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.597961][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.605374][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.612838][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.620375][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.627868][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.635281][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.642758][T19057] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  446.650893][T19057] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  446.672036][T25320] __nla_validate_parse: 6 callbacks suppressed
[  446.672050][T25320] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7585'.
[  446.688549][T25320] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7585'.
[  446.824192][T25331] random: crng reseeded on system resumption
[  446.886620][T25338] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7591'.
[  447.007254][T25342] loop5: detected capacity change from 0 to 512
[  447.014237][T25342] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  447.027435][T25342] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.7592: bg 0: block 4: invalid block bitmap
[  447.041692][T25342] EXT4-fs (loop5): Remounting filesystem read-only
[  447.048606][T25342] EXT4-fs (loop5): 1 truncate cleaned up
[  447.054858][T25342] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  447.068906][T25348] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7593'.
[  447.082161][T25348] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7593'.
[  447.139971][T25353] bond1: entered promiscuous mode
[  447.145444][T25353] bond1: entered allmulticast mode
[  447.152046][T25353] 8021q: adding VLAN 0 to HW filter on device bond1
[  447.161322][T25359] random: crng reseeded on system resumption
[  447.196987][T25353] bond1 (unregistering): Released all slaves
[  447.207695][T18015] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.329026][T25375] loop4: detected capacity change from 0 to 512
[  447.335719][T25375] EXT4-fs: quotafile must be on filesystem root
[  447.528926][   T29] kauditd_printk_skb: 235 callbacks suppressed
[  447.528997][   T29] audit: type=1326 audit(447.503:31508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25382 comm="syz.3.7604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.559660][   T29] audit: type=1326 audit(447.503:31509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25382 comm="syz.3.7604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.582758][   T29] audit: type=1326 audit(447.503:31510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25382 comm="syz.3.7604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.605828][   T29] audit: type=1326 audit(447.503:31511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25382 comm="syz.3.7604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.613988][T25387] loop3: detected capacity change from 0 to 512
[  447.635754][T25387] EXT4-fs: Ignoring removed oldalloc option
[  447.643913][T25387] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.7605: Parent and EA inode have the same ino 15
[  447.656685][T25387] EXT4-fs (loop3): 1 orphan inode deleted
[  447.662785][T25387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  447.691997][T19924] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.733034][   T10] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  447.772912][T25394] random: crng reseeded on system resumption
[  447.820851][   T29] audit: type=1326 audit(447.793:31512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25398 comm="syz.3.7609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.844271][   T29] audit: type=1326 audit(447.793:31513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25398 comm="syz.3.7609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.867464][   T29] audit: type=1326 audit(447.803:31514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25398 comm="syz.3.7609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.890477][   T29] audit: type=1326 audit(447.813:31515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25398 comm="syz.3.7609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.913486][   T29] audit: type=1326 audit(447.813:31516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25398 comm="syz.3.7609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3af541eba9 code=0x7ffc0000
[  447.954613][T25402] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7610'.
[  447.972738][   T29] audit: type=1326 audit(447.943:31517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25392 comm="syz.0.7607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8af20eba9 code=0x7ffc0000
[  448.095644][T25413] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7614'.
[  448.104996][T25413] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7614'.
[  448.307622][T25423] loop5: detected capacity change from 0 to 512
[  448.337739][T25429] loop4: detected capacity change from 0 to 512
[  448.390914][T25426] random: crng reseeded on system resumption
[  448.418968][T25437] netlink: 'syz.0.7621': attribute type 10 has an invalid length.
[  448.479575][T25434] lo speed is unknown, defaulting to 1000
[  448.576798][T25443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7622'.
[  448.624174][T25429] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  448.629955][T25423] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  448.632942][T25429] EXT4-fs (loop4): orphan cleanup on readonly fs
[  448.653581][T25423] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  448.663636][T25429] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7620: corrupted inode contents
[  448.686399][T25429] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.7620: mark_inode_dirty error
[  448.700202][T18015] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  448.710751][T25429] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7620: corrupted inode contents
[  448.723929][T25429] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.7620: mark_inode_dirty error
[  448.736541][T25429] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7620: corrupted inode contents
[  448.750913][T25429] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  448.759874][T25429] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7620: corrupted inode contents
[  448.772827][T25429] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.7620: mark_inode_dirty error
[  448.784570][T25451] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7625'.
[  448.797984][T25429] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  448.820975][T25429] EXT4-fs (loop4): 1 truncate cleaned up
[  448.827055][   T51] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:3: Failed to release dquot type 1
[  448.843844][T25429] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  449.030690][T25469] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  449.043594][T25469] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  449.731617][T19069] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  449.911013][T19057] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  449.988575][T25511] loop4: detected capacity change from 0 to 512
[  450.009189][T25511] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  450.018886][T25511] EXT4-fs (loop4): orphan cleanup on readonly fs
[  450.027206][T25511] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7645: corrupted inode contents
[  450.041141][T25511] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #16: comm syz.4.7645: mark_inode_dirty error
[  450.052940][T25511] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7645: corrupted inode contents
[  450.066590][T25511] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.7645: mark_inode_dirty error
[  450.079173][T25511] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7645: corrupted inode contents
[  450.093836][T25511] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  450.123049][T25511] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.7645: corrupted inode contents
[  450.143507][T25511] EXT4-fs error (device loop4): ext4_truncate:4666: inode #16: comm syz.4.7645: mark_inode_dirty error
[  450.165588][T25511] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  450.175613][T25511] EXT4-fs (loop4): 1 truncate cleaned up
[  450.182186][   T60] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:4: Failed to release dquot type 1
[  450.757732][T25533] lo speed is unknown, defaulting to 1000
[  450.859428][T25533] chnl_net:caif_netlink_parms(): no params data found
[  450.925768][T25533] bridge0: port 1(bridge_slave_0) entered blocking state
[  450.932916][T25533] bridge0: port 1(bridge_slave_0) entered disabled state
[  450.941830][T25533] bridge_slave_0: entered allmulticast mode
[  450.948568][T25533] bridge_slave_0: entered promiscuous mode
[  450.955678][T25533] bridge0: port 2(bridge_slave_1) entered blocking state
[  450.962956][T25533] bridge0: port 2(bridge_slave_1) entered disabled state
[  450.971827][T25533] bridge_slave_1: entered allmulticast mode
[  450.978565][T25533] bridge_slave_1: entered promiscuous mode
[  451.001836][T25533] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  451.033538][T25533] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  451.073450][T25533] team0: Port device team_slave_0 added
[  451.085972][T25533] team0: Port device team_slave_1 added
[  451.106486][T25533] batman_adv: batadv0: Adding interface: batadv_slave_0
[  451.113488][T25533] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  451.139524][T25533] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  451.151798][T25533] batman_adv: batadv0: Adding interface: batadv_slave_1
[  451.158841][T25533] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  451.184984][T25533] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  451.269725][T25533] hsr_slave_0: entered promiscuous mode
[  451.276241][T25533] hsr_slave_1: entered promiscuous mode
[  451.286431][T25533] debugfs: 'hsr0' already exists in 'hsr'
[  451.292897][T25533] Cannot create hsr debugfs directory
[  451.360320][T25559] bond1: entered promiscuous mode
[  451.365429][T25559] bond1: entered allmulticast mode
[  451.371138][T25559] 8021q: adding VLAN 0 to HW filter on device bond1
[  451.391389][T25559] bond1 (unregistering): Released all slaves
[  451.470824][T25566] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  451.479975][T25566] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  451.598093][T25576] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.642754][T25576] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.653966][T25533] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  451.666460][T25533] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  451.698195][T25533] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  451.714268][T25576] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.725665][T25533] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  451.761216][T25576] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  451.819795][   T60] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  451.841310][   T60] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  451.857653][   T60] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  451.865991][   T60] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  451.879853][T25533] 8021q: adding VLAN 0 to HW filter on device bond0
[  451.907085][T25533] 8021q: adding VLAN 0 to HW filter on device team0
[  451.918350][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[  451.925435][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[  451.949825][T25533] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  451.960387][T25533] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  451.975987][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.983202][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  452.072364][T25533] 8021q: adding VLAN 0 to HW filter on device batadv0
[  452.093380][T19054] hid_parser_main: 94 callbacks suppressed
[  452.093457][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.107020][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.114462][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.122069][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.129591][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.137140][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.144600][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.152100][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.159661][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.167505][T19054] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  452.206466][T25613] FAULT_INJECTION: forcing a failure.
[  452.206466][T25613] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  452.219642][T25613] CPU: 0 UID: 0 PID: 25613 Comm: syz.3.7669 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  452.219697][T25613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  452.219714][T25613] Call Trace:
[  452.219723][T25613]  <TASK>
[  452.219733][T25613]  __dump_stack+0x1d/0x30
[  452.219761][T25613]  dump_stack_lvl+0xe8/0x140
[  452.219836][T25613]  dump_stack+0x15/0x1b
[  452.219859][T25613]  should_fail_ex+0x265/0x280
[  452.219889][T25613]  should_fail+0xb/0x20
[  452.219916][T25613]  should_fail_usercopy+0x1a/0x20
[  452.219979][T25613]  _copy_from_user+0x1c/0xb0
[  452.220016][T25613]  kstrtouint_from_user+0x69/0xf0
[  452.220043][T25613]  ? 0xffffffff81000000
[  452.220061][T25613]  ? selinux_file_permission+0x1e4/0x320
[  452.220164][T25613]  proc_fail_nth_write+0x50/0x160
[  452.220196][T25613]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  452.220232][T25613]  vfs_write+0x269/0x960
[  452.220374][T25613]  ? vfs_read+0x4e6/0x770
[  452.220401][T25613]  ? __rcu_read_unlock+0x4f/0x70
[  452.220568][T25613]  ? __fget_files+0x184/0x1c0
[  452.220736][T25613]  ksys_write+0xda/0x1a0
[  452.220836][T25613]  __x64_sys_write+0x40/0x50
[  452.220876][T25613]  x64_sys_call+0x27fe/0x2ff0
[  452.220905][T25613]  do_syscall_64+0xd2/0x200
[  452.221012][T25613]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  452.221066][T25613]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  452.221106][T25613]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  452.221131][T25613] RIP: 0033:0x7f3af541d65f
[  452.221146][T25613] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  452.221189][T25613] RSP: 002b:00007f3af3e7f030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  452.221280][T25613] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3af541d65f
[  452.221293][T25613] RDX: 0000000000000001 RSI: 00007f3af3e7f0a0 RDI: 0000000000000004
[  452.221354][T25613] RBP: 00007f3af3e7f090 R08: 0000000000000000 R09: 0000000000000000
[  452.221398][T25613] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  452.221471][T25613] R13: 00007f3af5666038 R14: 00007f3af5665fa0 R15: 00007ffceac24218
[  452.221495][T25613]  </TASK>
[  452.223930][T19054] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  452.434279][T25533] veth0_vlan: entered promiscuous mode
[  452.459269][T25533] veth1_vlan: entered promiscuous mode
[  452.475492][T25533] veth0_macvtap: entered promiscuous mode
[  452.502385][T25533] veth1_macvtap: entered promiscuous mode
[  452.515448][T25533] batman_adv: batadv0: Interface activated: batadv_slave_0
[  452.528587][T25533] batman_adv: batadv0: Interface activated: batadv_slave_1
[  452.539457][   T29] kauditd_printk_skb: 146 callbacks suppressed
[  452.539489][   T29] audit: type=1400 audit(452.513:31662): avc:  denied  { write } for  pid=25631 comm="syz.0.7672" name="netlink" dev="proc" ino=4026532860 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  452.541310][   T37] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  452.573714][   T29] audit: type=1326 audit(452.543:31663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.603189][   T37] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  452.605062][   T29] audit: type=1326 audit(452.553:31664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.635061][   T29] audit: type=1326 audit(452.553:31665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.658187][   T29] audit: type=1326 audit(452.553:31666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.681494][   T29] audit: type=1326 audit(452.553:31667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.704611][   T29] audit: type=1326 audit(452.553:31668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.727685][   T29] audit: type=1326 audit(452.553:31669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.750707][   T29] audit: type=1326 audit(452.553:31670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.773850][   T29] audit: type=1326 audit(452.553:31671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25633 comm="syz.1.7671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  452.809548][   T37] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  452.828164][   T37] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  452.869346][T25646] __nla_validate_parse: 7 callbacks suppressed
[  452.869395][T25646] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7673'.
[  452.892620][T25648] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  452.902775][T25650] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7676'.
[  452.912568][T25648] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  452.914649][T25650] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7676'.
[  453.059953][T25656] loop4: detected capacity change from 0 to 512
[  453.066703][T25656] EXT4-fs: Ignoring removed oldalloc option
[  453.074495][T25656] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.7679: Parent and EA inode have the same ino 15
[  453.088731][T25656] EXT4-fs (loop4): 1 orphan inode deleted
[  453.132940][T25661] loop3: detected capacity change from 0 to 512
[  453.165977][T25665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  453.175195][T25665] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  453.184948][T25661] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  453.197463][T25661] EXT4-fs (loop3): orphan cleanup on readonly fs
[  453.206829][  T123] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  453.219257][T25661] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7681: corrupted inode contents
[  453.238484][T25661] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.7681: mark_inode_dirty error
[  453.247367][T25672] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7686'.
[  453.251872][T25661] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7681: corrupted inode contents
[  453.274566][  T123] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  453.275450][T25672] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7686'.
[  453.294944][T25661] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.7681: mark_inode_dirty error
[  453.316675][T25661] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7681: corrupted inode contents
[  453.330768][T25661] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  453.344114][  T123] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  453.357941][T25679] ªªªªªª: renamed from vlan0 (while UP)
[  453.363917][T25661] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.7681: corrupted inode contents
[  453.378759][T25661] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.7681: mark_inode_dirty error
[  453.392209][  T123] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  453.403607][T25661] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  453.413367][T25661] EXT4-fs (loop3): 1 truncate cleaned up
[  453.420878][   T31] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 1
[  453.474612][T25674] lo speed is unknown, defaulting to 1000
[  453.493859][T25693] loop1: detected capacity change from 0 to 512
[  453.508911][  T123] bridge_slave_1: left allmulticast mode
[  453.514701][  T123] bridge_slave_1: left promiscuous mode
[  453.520483][  T123] bridge0: port 2(bridge_slave_1) entered disabled state
[  453.528483][T25693] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  453.537331][  T123] bridge_slave_0: left allmulticast mode
[  453.543032][  T123] bridge_slave_0: left promiscuous mode
[  453.548966][  T123] bridge0: port 1(bridge_slave_0) entered disabled state
[  453.617972][T25699] loop1: detected capacity change from 0 to 512
[  453.624578][T25699] EXT4-fs: Ignoring removed oldalloc option
[  453.632387][T25699] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.7691: Parent and EA inode have the same ino 15
[  453.645629][T25699] EXT4-fs (loop1): 1 orphan inode deleted
[  453.869506][T25703] loop4: detected capacity change from 0 to 512
[  453.876624][T25703] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  453.888783][T25703] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.7692: bg 0: block 4: invalid block bitmap
[  453.901814][T25703] EXT4-fs (loop4): Remounting filesystem read-only
[  453.908514][T25703] EXT4-fs (loop4): 1 truncate cleaned up
[  454.038344][  T123] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  454.048594][  T123] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  454.058296][  T123] bond0 (unregistering): Released all slaves
[  454.110702][  T123] hsr_slave_0: left promiscuous mode
[  454.118885][  T123] hsr_slave_1: left promiscuous mode
[  454.124549][  T123] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  454.132026][  T123] batman_adv: batadv0: Removing interface: batadv_slave_0
[  454.140786][  T123] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  454.148284][  T123] batman_adv: batadv0: Removing interface: batadv_slave_1
[  454.159724][  T123] veth1_macvtap: left promiscuous mode
[  454.165283][  T123] veth0_macvtap: left promiscuous mode
[  454.171194][  T123] veth1_vlan: left promiscuous mode
[  454.178304][  T123] veth0_vlan: left promiscuous mode
[  454.249635][  T123] team0 (unregistering): Port device team_slave_1 removed
[  454.259969][  T123] team0 (unregistering): Port device team_slave_0 removed
[  454.305198][T25716] program syz.3.7694 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  454.314439][T25718] loop5: detected capacity change from 0 to 512
[  454.321229][T25716] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  454.343983][T25674] chnl_net:caif_netlink_parms(): no params data found
[  454.363380][T25723] loop3: detected capacity change from 0 to 512
[  454.404159][T25723] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  454.437989][T25733] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  454.449303][T25674] bridge0: port 1(bridge_slave_0) entered blocking state
[  454.456425][T25674] bridge0: port 1(bridge_slave_0) entered disabled state
[  454.463725][T25674] bridge_slave_0: entered allmulticast mode
[  454.470629][T25674] bridge_slave_0: entered promiscuous mode
[  454.479420][T25674] bridge0: port 2(bridge_slave_1) entered blocking state
[  454.486645][T25674] bridge0: port 2(bridge_slave_1) entered disabled state
[  454.496179][T25674] bridge_slave_1: entered allmulticast mode
[  454.498781][T19054] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  454.513880][T25674] bridge_slave_1: entered promiscuous mode
[  454.543517][T25674] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  454.558085][T25674] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  454.587158][T25674] team0: Port device team_slave_0 added
[  454.601034][T25740] bond1: entered promiscuous mode
[  454.606137][T25740] bond1: entered allmulticast mode
[  454.611602][T25740] 8021q: adding VLAN 0 to HW filter on device bond1
[  454.621813][T25740] bond1 (unregistering): Released all slaves
[  454.632173][T25674] team0: Port device team_slave_1 added
[  454.651404][T25674] batman_adv: batadv0: Adding interface: batadv_slave_0
[  454.658427][T25674] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  454.684615][T25674] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  454.698369][T25674] batman_adv: batadv0: Adding interface: batadv_slave_1
[  454.705374][T25674] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  454.731433][T25674] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  454.760642][T25674] hsr_slave_0: entered promiscuous mode
[  454.766866][T25674] hsr_slave_1: entered promiscuous mode
[  454.772912][T25674] debugfs: 'hsr0' already exists in 'hsr'
[  454.774354][T25751] loop5: detected capacity change from 0 to 512
[  454.778739][T25674] Cannot create hsr debugfs directory
[  454.808345][T25751] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  454.816765][T25751] EXT4-fs (loop5): orphan cleanup on readonly fs
[  454.824958][T25751] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.7704: corrupted inode contents
[  454.827017][T25757] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7705'.
[  454.839798][T25751] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #16: comm syz.5.7704: mark_inode_dirty error
[  454.860252][T25751] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.7704: corrupted inode contents
[  454.872670][T25751] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #16: comm syz.5.7704: mark_inode_dirty error
[  454.885949][T25751] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.7704: corrupted inode contents
[  454.899701][T25751] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  454.909041][T25751] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #16: comm syz.5.7704: corrupted inode contents
[  454.922757][T25751] EXT4-fs error (device loop5): ext4_truncate:4666: inode #16: comm syz.5.7704: mark_inode_dirty error
[  454.933414][T25757] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7705'.
[  454.934261][T25751] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  454.950900][T25674] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  454.954592][T25751] EXT4-fs (loop5): 1 truncate cleaned up
[  454.964328][  T123] EXT4-fs error (device loop5): ext4_release_dquot:6973: comm kworker/u8:5: Failed to release dquot type 1
[  454.966975][T25674] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  454.992785][T25674] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  455.003691][T25674] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  455.020102][T25674] bridge0: port 2(bridge_slave_1) entered blocking state
[  455.027211][T25674] bridge0: port 2(bridge_slave_1) entered forwarding state
[  455.034610][T25674] bridge0: port 1(bridge_slave_0) entered blocking state
[  455.041669][T25674] bridge0: port 1(bridge_slave_0) entered forwarding state
[  455.077450][T25674] 8021q: adding VLAN 0 to HW filter on device bond0
[  455.089357][T25674] 8021q: adding VLAN 0 to HW filter on device team0
[  455.098519][  T123] bridge0: port 1(bridge_slave_0) entered disabled state
[  455.107724][  T123] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.123475][  T123] bridge0: port 1(bridge_slave_0) entered blocking state
[  455.130611][  T123] bridge0: port 1(bridge_slave_0) entered forwarding state
[  455.142627][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  455.149744][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  455.190324][T19054] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  455.249387][T25674] 8021q: adding VLAN 0 to HW filter on device batadv0
[  455.362592][T25674] veth0_vlan: entered promiscuous mode
[  455.375730][T25674] veth1_vlan: entered promiscuous mode
[  455.393287][T25674] veth0_macvtap: entered promiscuous mode
[  455.403192][T25674] veth1_macvtap: entered promiscuous mode
[  455.416869][T25674] batman_adv: batadv0: Interface activated: batadv_slave_0
[  455.429415][T25674] batman_adv: batadv0: Interface activated: batadv_slave_1
[  455.441079][   T12] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  455.461842][   T12] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  455.473617][T25801] FAULT_INJECTION: forcing a failure.
[  455.473617][T25801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  455.486755][T25801] CPU: 1 UID: 0 PID: 25801 Comm: syz.1.7710 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  455.486788][T25801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  455.486811][T25801] Call Trace:
[  455.486820][T25801]  <TASK>
[  455.486830][T25801]  __dump_stack+0x1d/0x30
[  455.486858][T25801]  dump_stack_lvl+0xe8/0x140
[  455.486880][T25801]  dump_stack+0x15/0x1b
[  455.486897][T25801]  should_fail_ex+0x265/0x280
[  455.486962][T25801]  should_fail+0xb/0x20
[  455.486985][T25801]  should_fail_usercopy+0x1a/0x20
[  455.487015][T25801]  _copy_from_user+0x1c/0xb0
[  455.487048][T25801]  bpf_test_init+0xdf/0x160
[  455.487077][T25801]  bpf_prog_test_run_skb+0x144/0xbd0
[  455.487186][T25801]  ? __rcu_read_unlock+0x4f/0x70
[  455.487217][T25801]  ? __fget_files+0x184/0x1c0
[  455.487325][T25801]  ? __rcu_read_unlock+0x4f/0x70
[  455.487381][T25801]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  455.487407][T25801]  bpf_prog_test_run+0x227/0x390
[  455.487479][T25801]  __sys_bpf+0x4b9/0x7b0
[  455.487548][T25801]  __x64_sys_bpf+0x41/0x50
[  455.487575][T25801]  x64_sys_call+0x2aea/0x2ff0
[  455.487621][T25801]  do_syscall_64+0xd2/0x200
[  455.487658][T25801]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  455.487683][T25801]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  455.487775][T25801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.487804][T25801] RIP: 0033:0x7f1a6c52eba9
[  455.487822][T25801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.487892][T25801] RSP: 002b:00007f1a6af8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  455.487916][T25801] RAX: ffffffffffffffda RBX: 00007f1a6c775fa0 RCX: 00007f1a6c52eba9
[  455.487931][T25801] RDX: 0000000000000050 RSI: 00002000000002c0 RDI: 000000000000000a
[  455.487947][T25801] RBP: 00007f1a6af8f090 R08: 0000000000000000 R09: 0000000000000000
[  455.487960][T25801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  455.488052][T25801] R13: 00007f1a6c776038 R14: 00007f1a6c775fa0 R15: 00007ffc60d26ca8
[  455.488079][T25801]  </TASK>
[  455.498431][   T12] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  455.711051][   T12] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  455.866644][T25844] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7719'.
[  455.901801][T25844] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7719'.
[  455.921844][T25853] loop4: detected capacity change from 0 to 512
[  455.981264][T25862] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7721'.
[  456.091683][T25879] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12 sclass=netlink_route_socket pid=25879 comm=syz.6.7725
[  456.175623][T25892] bond1: entered promiscuous mode
[  456.180882][T25892] bond1: entered allmulticast mode
[  456.186783][T25892] 8021q: adding VLAN 0 to HW filter on device bond1
[  456.205971][T25892] bond1 (unregistering): Released all slaves
[  456.299278][T25914] loop6: detected capacity change from 0 to 512
[  456.322689][T25914] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  456.331095][T25914] EXT4-fs (loop6): orphan cleanup on readonly fs
[  456.339424][T25914] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.7728: corrupted inode contents
[  456.351899][T25914] EXT4-fs error (device loop6): ext4_dirty_inode:6538: inode #16: comm syz.6.7728: mark_inode_dirty error
[  456.367571][T25914] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.7728: corrupted inode contents
[  456.381302][T25914] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #16: comm syz.6.7728: mark_inode_dirty error
[  456.393294][T25914] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.7728: corrupted inode contents
[  456.405837][T25914] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem
[  456.414915][T25914] EXT4-fs error (device loop6): ext4_do_update_inode:5653: inode #16: comm syz.6.7728: corrupted inode contents
[  456.427404][T25914] EXT4-fs error (device loop6): ext4_truncate:4666: inode #16: comm syz.6.7728: mark_inode_dirty error
[  456.438859][T25914] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem
[  456.448451][T25914] EXT4-fs (loop6): 1 truncate cleaned up
[  456.454501][   T31] EXT4-fs error (device loop6): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 1
[  456.656291][T25971] loop3: detected capacity change from 0 to 512
[  456.701477][T25977] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  456.710125][T25977] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  456.719302][T25977] netdevsim netdevsim5: Direct firmware load for ./file0/file1 failed with error -2
[  456.916829][T25986] bond1: entered promiscuous mode
[  456.922000][T25986] bond1: entered allmulticast mode
[  456.929117][T25986] 8021q: adding VLAN 0 to HW filter on device bond1
[  456.945260][T25986] bond1 (unregistering): Released all slaves
[  457.253713][T19066] hid_parser_main: 68 callbacks suppressed
[  457.253780][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.267241][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.274652][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.282084][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.289500][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.296964][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.304396][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.311829][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.319271][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.326710][T19066] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  457.335742][T19066] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  457.419337][T26009] ªªªªªª: renamed from vlan0 (while UP)
[  457.545679][T26018] FAULT_INJECTION: forcing a failure.
[  457.545679][T26018] name failslab, interval 1, probability 0, space 0, times 0
[  457.558460][T26018] CPU: 1 UID: 0 PID: 26018 Comm: syz.1.7749 Not tainted syzkaller #0 PREEMPT(voluntary) 
[  457.558544][T26018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  457.558559][T26018] Call Trace:
[  457.558566][T26018]  <TASK>
[  457.558574][T26018]  __dump_stack+0x1d/0x30
[  457.558597][T26018]  dump_stack_lvl+0xe8/0x140
[  457.558618][T26018]  dump_stack+0x15/0x1b
[  457.558640][T26018]  should_fail_ex+0x265/0x280
[  457.558702][T26018]  should_failslab+0x8c/0xb0
[  457.558733][T26018]  kmem_cache_alloc_node_noprof+0x57/0x320
[  457.558773][T26018]  ? __alloc_skb+0x101/0x320
[  457.558800][T26018]  __alloc_skb+0x101/0x320
[  457.558955][T26018]  netlink_alloc_large_skb+0xba/0xf0
[  457.558993][T26018]  netlink_sendmsg+0x3cf/0x6b0
[  457.559032][T26018]  ? __pfx_netlink_sendmsg+0x10/0x10
[  457.559066][T26018]  __sock_sendmsg+0x142/0x180
[  457.559180][T26018]  ____sys_sendmsg+0x31e/0x4e0
[  457.559219][T26018]  ___sys_sendmsg+0x17b/0x1d0
[  457.559272][T26018]  __x64_sys_sendmsg+0xd4/0x160
[  457.559326][T26018]  x64_sys_call+0x191e/0x2ff0
[  457.559347][T26018]  do_syscall_64+0xd2/0x200
[  457.559418][T26018]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[  457.559452][T26018]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  457.559487][T26018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.559559][T26018] RIP: 0033:0x7f1a6c52eba9
[  457.559592][T26018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  457.559608][T26018] RSP: 002b:00007f1a6af8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  457.559625][T26018] RAX: ffffffffffffffda RBX: 00007f1a6c775fa0 RCX: 00007f1a6c52eba9
[  457.559637][T26018] RDX: 0000000000000000 RSI: 0000200000000940 RDI: 0000000000000004
[  457.559648][T26018] RBP: 00007f1a6af8f090 R08: 0000000000000000 R09: 0000000000000000
[  457.559659][T26018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  457.559670][T26018] R13: 00007f1a6c776038 R14: 00007f1a6c775fa0 R15: 00007ffc60d26ca8
[  457.559745][T26018]  </TASK>
[  457.849097][T26025] random: crng reseeded on system resumption
[  457.875014][   T29] kauditd_printk_skb: 190 callbacks suppressed
[  457.875098][   T29] audit: type=1326 audit(457.843:31859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  457.905614][   T29] audit: type=1326 audit(457.843:31860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  457.928730][   T29] audit: type=1326 audit(457.863:31861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  457.951952][   T29] audit: type=1326 audit(457.863:31862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  457.974949][   T29] audit: type=1326 audit(457.863:31863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  457.998015][   T29] audit: type=1326 audit(457.863:31864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  458.021085][   T29] audit: type=1326 audit(457.863:31865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  458.029311][T26030] loop4: detected capacity change from 0 to 1024
[  458.044304][   T29] audit: type=1326 audit(457.863:31866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  458.055842][T26031] program syz.1.7753 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  458.075223][   T29] audit: type=1326 audit(457.863:31867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  458.106519][   T29] audit: type=1326 audit(457.863:31868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26026 comm="syz.1.7752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a6c52eba9 code=0x7ffc0000
[  458.129655][T26031] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  458.195805][T26038] bond2: entered promiscuous mode
[  458.201109][T26038] bond2: entered allmulticast mode
[  458.208180][T26038] 8021q: adding VLAN 0 to HW filter on device bond2
[  458.228669][T26038] bond2 (unregistering): Released all slaves
[  458.372891][T26057] loop5: detected capacity change from 0 to 512
[  458.388043][T26057] EXT4-fs: Ignoring removed oldalloc option
[  458.401709][T26057] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.7764: Parent and EA inode have the same ino 15
[  458.433703][T26057] EXT4-fs (loop5): 1 orphan inode deleted
[  458.449719][T26064] program syz.4.7767 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  458.462046][T26064] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  458.489496][T26069] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  458.500952][T26071] random: crng reseeded on system resumption
[  458.511267][T26069] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  458.521621][T26069] 9pnet_fd: Insufficient options for proto=fd
[  458.535990][T26073] __nla_validate_parse: 8 callbacks suppressed
[  458.536011][T26073] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7769'.
[  458.552994][T26073] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7769'.
[  458.781036][T26092] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7775'.
[  458.826558][ T3295] ==================================================================
[  458.834700][ T3295] BUG: KCSAN: data-race in virtqueue_disable_cb / virtqueue_disable_cb
[  458.842981][ T3295] 
[  458.845303][ T3295] read to 0xffff88810284fd78 of 2 bytes by interrupt on cpu 1:
[  458.852851][ T3295]  virtqueue_disable_cb+0x58/0x150
[  458.857979][ T3295]  skb_xmit_done+0x65/0x140
[  458.862511][ T3295]  vring_interrupt+0x155/0x180
[  458.867292][ T3295]  __handle_irq_event_percpu+0x90/0x440
[  458.872853][ T3295]  handle_irq_event+0x64/0xf0
[  458.877541][ T3295]  handle_edge_irq+0x154/0x470
[  458.882319][ T3295]  __common_interrupt+0x60/0xb0
[  458.887177][ T3295]  common_interrupt+0x7e/0x90
[  458.891870][ T3295]  asm_common_interrupt+0x26/0x40
[  458.896896][ T3295]  __sanitizer_cov_trace_pc+0x8/0x70
[  458.902210][ T3295]  batadv_nc_worker+0xb1/0xae0
[  458.906981][ T3295]  process_scheduled_works+0x4cb/0x9d0
[  458.912461][ T3295]  worker_thread+0x582/0x770
[  458.917068][ T3295]  kthread+0x489/0x510
[  458.921166][ T3295]  ret_from_fork+0x11f/0x1b0
[  458.925843][ T3295]  ret_from_fork_asm+0x1a/0x30
[  458.930618][ T3295] 
[  458.932937][ T3295] write to 0xffff88810284fd78 of 2 bytes by task 3295 on cpu 0:
[  458.940580][ T3295]  virtqueue_disable_cb+0x7a/0x150
[  458.945703][ T3295]  start_xmit+0x103/0x17a0
[  458.950129][ T3295]  dev_hard_start_xmit+0x125/0x3e0
[  458.955269][ T3295]  sch_direct_xmit+0x192/0x550
[  458.960125][ T3295]  __dev_queue_xmit+0xe9a/0x2000
[  458.965079][ T3295]  ip_finish_output2+0x77f/0x8b0
[  458.970046][ T3295]  ip_finish_output+0x114/0x2a0
[  458.974919][ T3295]  ip_output+0xbd/0x190
[  458.979089][ T3295]  __ip_queue_xmit+0xb4b/0xb80
[  458.983873][ T3295]  ip_queue_xmit+0x39/0x50
[  458.988317][ T3295]  __tcp_transmit_skb+0x1641/0x1a60
[  458.993536][ T3295]  tcp_write_xmit+0x1210/0x2fd0
[  458.998406][ T3295]  __tcp_push_pending_frames+0x6d/0x1b0
[  459.003967][ T3295]  tcp_push+0x311/0x330
[  459.008144][ T3295]  tcp_sendmsg_locked+0x2458/0x2c00
[  459.013362][ T3295]  tcp_sendmsg+0x2f/0x50
[  459.017609][ T3295]  inet_sendmsg+0x76/0xd0
[  459.021959][ T3295]  __sock_sendmsg+0x102/0x180
[  459.026743][ T3295]  sock_write_iter+0x165/0x1b0
[  459.031706][ T3295]  vfs_write+0x52a/0x960
[  459.035949][ T3295]  ksys_write+0xda/0x1a0
[  459.040192][ T3295]  __x64_sys_write+0x40/0x50
[  459.044791][ T3295]  x64_sys_call+0x27fe/0x2ff0
[  459.049488][ T3295]  do_syscall_64+0xd2/0x200
[  459.054018][ T3295]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  459.059915][ T3295] 
[  459.062236][ T3295] value changed: 0x0000 -> 0x0001
[  459.067261][ T3295] 
[  459.069589][ T3295] Reported by Kernel Concurrency Sanitizer on:
SYZFAIL: failed to send rpc
fd=3 want=56 sent=0 n=-1 (errno 32: Broken pipe)
[  459.075740][ T3295] CPU: 0 UID: 0 PID: 3295 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[  459.085636][ T3295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  459.095861][ T3295] ==================================================================
[  459.345490][T25950] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.470852][T25950] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.529226][T25950] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.618639][T25950] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  459.670266][T25950] bridge_slave_1: left allmulticast mode
[  459.675918][T25950] bridge_slave_1: left promiscuous mode
[  459.681690][T25950] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.689404][T25950] bridge_slave_0: left allmulticast mode
[  459.695044][T25950] bridge_slave_0: left promiscuous mode
[  459.700744][T25950] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.778481][T25950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  459.788418][T25950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  459.798061][T25950] bond0 (unregistering): Released all slaves
[  459.840507][T25950] hsr_slave_0: left promiscuous mode
[  459.846374][T25950] hsr_slave_1: left promiscuous mode
[  459.852066][T25950] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  459.859532][T25950] batman_adv: batadv0: Removing interface: batadv_slave_0
[  459.867591][T25950] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  459.875061][T25950] batman_adv: batadv0: Removing interface: batadv_slave_1
[  459.885632][T25950] veth1_macvtap: left promiscuous mode
[  459.891256][T25950] veth0_macvtap: left promiscuous mode
[  459.896953][T25950] veth1_vlan: left promiscuous mode
[  459.902191][T25950] veth0_vlan: left promiscuous mode
[  459.964476][T25950] team0 (unregistering): Port device team_slave_1 removed
[  459.974736][T25950] team0 (unregistering): Port device team_slave_0 removed
[  460.288847][T25950] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.338372][T25950] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.387508][T25950] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.447512][T25950] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.531247][T25950] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.568883][T25950] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.628993][T25950] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.689080][T25950] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.760512][T25950] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.787775][T25950] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.847634][T25950] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.907780][T25950] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.979900][T25950] bridge_slave_1: left allmulticast mode
[  460.985651][T25950] bridge_slave_1: left promiscuous mode
[  460.991604][T25950] bridge0: port 2(bridge_slave_1) entered disabled state
[  460.999422][T25950] bridge_slave_0: left allmulticast mode
[  461.005156][T25950] bridge_slave_0: left promiscuous mode
[  461.010902][T25950] bridge0: port 1(bridge_slave_0) entered disabled state
[  461.023593][T25950] bridge_slave_1: left allmulticast mode
[  461.029297][T25950] bridge_slave_1: left promiscuous mode
[  461.035073][T25950] bridge0: port 2(bridge_slave_1) entered disabled state
[  461.042846][T25950] bridge_slave_0: left allmulticast mode
[  461.048606][T25950] bridge_slave_0: left promiscuous mode
[  461.054306][T25950] bridge0: port 1(bridge_slave_0) entered disabled state
[  461.062615][T25950] bridge_slave_1: left allmulticast mode
[  461.068302][T25950] bridge_slave_1: left promiscuous mode
[  461.073956][T25950] bridge0: port 2(bridge_slave_1) entered disabled state
[  461.081764][T25950] bridge_slave_0: left allmulticast mode
[  461.087488][T25950] bridge_slave_0: left promiscuous mode
[  461.093189][T25950] bridge0: port 1(bridge_slave_0) entered disabled state
[  461.728544][T25950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  461.738434][T25950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  461.748096][T25950] bond0 (unregistering): Released all slaves
[  461.838393][T25950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  461.848408][T25950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  461.858269][T25950] bond0 (unregistering): Released all slaves
[  462.488288][T25950] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  462.498410][T25950] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  462.507972][T25950] bond0 (unregistering): Released all slaves
[  462.546008][T25950] hsr_slave_0: left promiscuous mode
[  462.551913][T25950] hsr_slave_1: left promiscuous mode
[  462.557600][T25950] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  462.564974][T25950] batman_adv: batadv0: Removing interface: batadv_slave_0
[  462.573017][T25950] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  462.580546][T25950] batman_adv: batadv0: Removing interface: batadv_slave_1
[  462.590523][T25950] hsr_slave_0: left promiscuous mode
[  462.596266][T25950] hsr_slave_1: left promiscuous mode
[  462.601861][T25950] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  462.609335][T25950] batman_adv: batadv0: Removing interface: batadv_slave_0
[  462.616866][T25950] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  462.624307][T25950] batman_adv: batadv0: Removing interface: batadv_slave_1
[  462.633820][T25950] hsr_slave_0: left promiscuous mode
[  462.639545][T25950] hsr_slave_1: left promiscuous mode
[  462.645047][T25950] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  462.652546][T25950] net_ratelimit: 10 callbacks suppressed
[  462.652562][T25950] batadv0: mtu less than device minimum
[  462.664246][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.674983][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.685739][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.696735][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.707536][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.718299][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.728949][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.739579][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.750277][T25950] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  462.764318][T25950] batman_adv: batadv0: Removing interface: batadv_slave_0
[  462.772631][T25950] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  462.786956][T25950] batman_adv: batadv0: Removing interface: batadv_slave_1
[  462.794475][T25950] batman_adv: batadv0: Interface deactivated: dummy0
[  462.801216][T25950] batman_adv: batadv0: Removing interface: dummy0
[  462.814664][T25950] veth1_macvtap: left promiscuous mode
[  462.820179][T25950] veth0_macvtap: left promiscuous mode
[  462.825693][T25950] veth1_vlan: left promiscuous mode
[  462.831066][T25950] veth0_vlan: left promiscuous mode
[  462.836834][T25950] veth1_macvtap: left promiscuous mode
[  462.842329][T25950] veth0_macvtap: left promiscuous mode
[  462.848051][T25950] veth1_vlan: left promiscuous mode
[  462.853401][T25950] veth0_vlan: left promiscuous mode
[  462.859342][T25950] veth1_macvtap: left promiscuous mode
[  462.864818][T25950] veth0_macvtap: left promiscuous mode
[  462.870365][T25950] veth1_vlan: left promiscuous mode
[  462.875670][T25950] veth0_vlan: left promiscuous mode
[  463.003998][T25950] team0 (unregistering): Port device team_slave_1 removed
[  463.015416][T25950] team0 (unregistering): Port device team_slave_0 removed
[  463.070440][T25950] team0 (unregistering): Port device team_slave_1 removed
[  463.080286][T25950] team0 (unregistering): Port device team_slave_0 removed
[  463.135870][T25950] team0 (unregistering): Port device team_slave_1 removed
[  463.145805][T25950] team0 (unregistering): Port device team_slave_0 removed
[  463.176389][T19069] lo speed is unknown, defaulting to 1000
[  463.182243][T19069] infiniband syz0: ib_query_port failed (-19)