last executing test programs:

2m34.804214196s ago: executing program 32 (id=9626):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
sendfile(r0, r1, 0x0, 0x8000002b)

2m23.096844251s ago: executing program 33 (id=10009):
r0 = socket$kcm(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='ip6_vti0\x00', 0x10)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @broadcast}, 0x10)
r1 = socket$kcm(0x2, 0x2, 0x73)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='veth1\x00', 0x10)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e22, @multicast2}, 0x10)

1m9.59037819s ago: executing program 0 (id=12876):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10)
getresgid(0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x800)
setreuid(0x0, 0x0)

1m9.570084731s ago: executing program 0 (id=12878):
io_setup(0x4, &(0x7f00000002c0)=<r0=>0x0)
r1 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x18)
io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x4, 0x0, 0x0, r1}])

1m9.462725983s ago: executing program 0 (id=12881):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}, @TCA_RATE={0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48801}, 0x0)

1m9.445252563s ago: executing program 0 (id=12882):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
move_mount(r0, &(0x7f0000000440)='./file0\x00', r0, &(0x7f0000000480)='./file0/../file0\x00', 0x2)

1m9.426869294s ago: executing program 0 (id=12883):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r0}, &(0x7f0000000600), &(0x7f0000000800)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
set_robust_list(&(0x7f0000000280)={0x0, 0xc8ac}, 0x18)

1m9.225883827s ago: executing program 0 (id=12892):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014004000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='scsi_dispatch_cmd_start\x00', r2}, 0x18)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

1m9.209590198s ago: executing program 34 (id=12892):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014004000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='scsi_dispatch_cmd_start\x00', r2}, 0x18)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

1m9.12291276s ago: executing program 6 (id=12899):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000040), &(0x7f0000000200)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
perf_event_open$cgroup(&(0x7f0000000180)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

1m9.056993701s ago: executing program 6 (id=12900):
r0 = fsopen(&(0x7f0000000140)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)

1m9.056172721s ago: executing program 6 (id=12910):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000240)=':', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='highspeed\x00', 0xa)
shutdown(r0, 0x1)

1m9.021490331s ago: executing program 6 (id=12904):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
move_mount(r0, &(0x7f0000000440)='./file0\x00', r0, &(0x7f0000000480)='./file0/../file0\x00', 0x2)

1m8.986744883s ago: executing program 6 (id=12906):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10)
capset(0x0, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0xffffffff})
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r1, &(0x7f0000000040)=ANY=[], 0x6)

1m8.778386047s ago: executing program 6 (id=12919):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x1612c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x200)
fcntl$getflags(r0, 0x401)

1m8.756659097s ago: executing program 35 (id=12919):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x1612c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x200)
fcntl$getflags(r0, 0x401)

19.947489899s ago: executing program 3 (id=14807):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
link(&(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

19.801924962s ago: executing program 3 (id=14814):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
getdents64(r2, &(0x7f0000002f40)=""/4098, 0x1002)

19.728235953s ago: executing program 3 (id=14818):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0, 0x0, 0x3}, 0x18)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000001000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000003808500000008000000bc0900000000000055090100000000007204800000000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x13, 0x4, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
getdents(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001500000000000000000000000200000000000000"], 0x1c}}, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
inotify_init1(0x80000)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000008c0)={0x1, {{0x2, 0x0, @multicast2}}}, 0x88)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x9, 0x10, &(0x7f0000000980)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4], 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x10, r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000, @void, @value}, 0x94)
syz_clone(0x200000, &(0x7f0000000740)="1f1b9793eeff8b4769bda1ad708d3eb1f321994bf1d813fd2fd079a7f15835494ed59f901b0b941d0f1f6eddadbca850d8f893e2578d4f2524f0e66e4eaf7966a74d490c825a8b6596c2e3ee81585483704eaa3c1e3471f6a82fcfefdb7457e0c7270e70c2705de00a4ed49a56aaf4d01d8409", 0x73, &(0x7f0000000300), &(0x7f0000000500), &(0x7f0000000880)="9b6b4e83b056f905184962e76e5e05304bbbbec2bd9da68442dc2e1382ad19d0d443372e813d89405b0c2bd466ad5a087236344e8cf676e8487559418e227ce983e3418bed70943b3067007784e240ff092bfb93a71a9f07be49b51228016249fc234d47f5d1c79fc8c197b3a9d57d9d95c75f74576042bb14dc4c50d0a68db1e27963718296b845c221c258e5815f1619d6eee218b17106caf4")
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r6}, 0x10)

19.448347479s ago: executing program 3 (id=14832):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
syz_clone3(&(0x7f00000014c0)={0x6361100, &(0x7f00000002c0), 0x0, 0x0, {0x13}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000001c0)='./file0/../file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)

19.3700939s ago: executing program 3 (id=14836):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, &(0x7f0000000680)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000007f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x290)
close_range(r1, 0xffffffffffffffff, 0x0)

18.852881261s ago: executing program 3 (id=14846):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0), &(0x7f0000000300), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

18.844726121s ago: executing program 36 (id=14846):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0), &(0x7f0000000300), 0x75, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

14.732841194s ago: executing program 5 (id=14926):
r0 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f00000008c0), &(0x7f0000000040)=r2}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r3}, 0x9)
write$selinux_validatetrans(r0, 0x0, 0x79)

14.732632374s ago: executing program 5 (id=14927):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x5)
ioctl$SG_IO(r2, 0x2285, 0x0)
writev(r2, &(0x7f0000000400)=[{&(0x7f0000000080)="aefdda9d240300005a90f57f07703aeff0f64ebbee07962c22772e11b44e65d76641cb010052f436dd2a", 0x2a}, {&(0x7f0000000040)="aa1d484ea0bfff00f7fc08fcd111fbdf23ea32db0e8f21d5bc27bd49eb067a0689fff2a41cfbf0e9d85e", 0x2a}], 0x2)

14.731937324s ago: executing program 5 (id=14936):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000cbffffff00000000000000008500000041000000850000005000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

14.061824557s ago: executing program 5 (id=14939):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f0000000240), 0x64, 0x537, &(0x7f0000000f80)="$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")

14.036166628s ago: executing program 5 (id=14930):
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="640000000206050000000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a30000000000500040000400000050005000a000000050001000600000014"], 0x64}}, 0x24002800)
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

13.967899949s ago: executing program 5 (id=14932):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0, 0x0, 0x3}, 0x18)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000001000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000003808500000008000000bc0900000000000055090100000000007204800000000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x13, 0x4, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
getdents(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001500000000000000000000000200000000000000"], 0x1c}}, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r1 = inotify_init1(0x80000)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f00000008c0)={0x1, {{0x2, 0x0, @multicast2}}}, 0x88)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x9, 0x10, &(0x7f0000000980)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYRESHEX=r1], 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x10, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000, @void, @value}, 0x94)
syz_clone(0x200000, &(0x7f0000000740)="1f1b9793eeff8b4769bda1ad708d3eb1f321994bf1d813fd2fd079a7f15835494ed59f901b0b941d0f1f6eddadbca850d8f893e2578d4f2524f0e66e4eaf7966a74d490c825a8b6596c2e3ee81585483704eaa3c1e3471f6a82fcfefdb7457e0c7270e70c2705de00a4ed49a56aaf4d01d8409", 0x73, &(0x7f0000000300), &(0x7f0000000500), &(0x7f0000000880)="9b6b4e83b056f905184962e76e5e05304bbbbec2bd9da68442dc2e1382ad19d0d443372e813d89405b0c2bd466ad5a087236344e8cf676e8487559418e227ce983e3418bed70943b3067007784e240ff092bfb93a71a9f07be49b51228016249fc234d47f5d1c79fc8c197b3a9d57d9d95c75f74576042bb14dc4c50d0a68db1e27963718296b845c221c258e5815f1619d6eee218b17106caf4")
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r7}, 0x10)

13.961725639s ago: executing program 37 (id=14932):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0, 0x0, 0x3}, 0x18)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000001000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000003808500000008000000bc0900000000000055090100000000007204800000000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x13, 0x4, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)
getdents(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001500000000000000000000000200000000000000"], 0x1c}}, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r1 = inotify_init1(0x80000)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f00000008c0)={0x1, {{0x2, 0x0, @multicast2}}}, 0x88)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x9, 0x10, &(0x7f0000000980)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYRESHEX=r1], 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x10, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000, @void, @value}, 0x94)
syz_clone(0x200000, &(0x7f0000000740)="1f1b9793eeff8b4769bda1ad708d3eb1f321994bf1d813fd2fd079a7f15835494ed59f901b0b941d0f1f6eddadbca850d8f893e2578d4f2524f0e66e4eaf7966a74d490c825a8b6596c2e3ee81585483704eaa3c1e3471f6a82fcfefdb7457e0c7270e70c2705de00a4ed49a56aaf4d01d8409", 0x73, &(0x7f0000000300), &(0x7f0000000500), &(0x7f0000000880)="9b6b4e83b056f905184962e76e5e05304bbbbec2bd9da68442dc2e1382ad19d0d443372e813d89405b0c2bd466ad5a087236344e8cf676e8487559418e227ce983e3418bed70943b3067007784e240ff092bfb93a71a9f07be49b51228016249fc234d47f5d1c79fc8c197b3a9d57d9d95c75f74576042bb14dc4c50d0a68db1e27963718296b845c221c258e5815f1619d6eee218b17106caf4")
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r7}, 0x10)

12.827754042s ago: executing program 1 (id=14955):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r2, @ANYRES32=r1, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r2, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r0}, 0x20)
sendmmsg$inet6(r0, &(0x7f0000000b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000ac0)="b0", 0x18000}], 0x11}}], 0x2, 0x0)

12.807141983s ago: executing program 1 (id=14956):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x59dc6d71776a1654, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002bbd7000000000001a00000018000180140002006261746164765f736c6176655f31"], 0x2c}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)

12.787934223s ago: executing program 1 (id=14957):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r1, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)

12.767085993s ago: executing program 1 (id=14958):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f0000000240), 0x64, 0x537, &(0x7f0000000f80)="$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")

12.588108047s ago: executing program 1 (id=14959):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000720000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000c80)='kmem_cache_free\x00', r1}, 0x10)
bind$bt_hci(r0, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e7, &(0x7f0000000200)="f7f8ec27cd2da6be7d55bff3373ca3eea7667f3d7f838fb912bbb6e7f3746bfba2818a8665f652dfcef51659a0b65f547046857d89aa2454a71d6bb292f41835a0f3ee7c4220dea3e85bb20f175a81c949835270bf0d17256b4f86f1b4fe129675f4c78547e664f373bcfb3316c5cd6d95872b8b5a00550a3cbbc85fce511786bff624f1444ff54a788ec5c969278b3f576edb97f4a6173fa3e769a035f1d25849d120be0274228785670f67de797af00910735b0a23b63b6ac2fe71868f9a8e7c624881e43abd009ccea0ac2ef96584a8d80cb2b1d5433dd22a5904a544b1e80a71fa647e4e09ad7dc3474326cf67b7ac7f9fbfe9058c")

12.196493215s ago: executing program 1 (id=14960):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x67)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r2, &(0x7f0000000040)=ANY=[], 0x6)

12.196327525s ago: executing program 38 (id=14960):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff}, 0x67)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r2, &(0x7f0000000040)=ANY=[], 0x6)

2.400256572s ago: executing program 2 (id=15268):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00'}, 0x10)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
write$binfmt_elf32(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="48c5"], 0x69)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff8, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1}}, 0x40)

2.341431063s ago: executing program 2 (id=15273):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)=0x3)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r0, &(0x7f0000000280)=[{&(0x7f0000000240)='\x00!', 0x2}], 0x1, 0x7, 0x0)

2.191041456s ago: executing program 2 (id=15283):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xbb)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
listen(r0, 0x3)

2.142419058s ago: executing program 2 (id=15285):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x18)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))

2.118468968s ago: executing program 2 (id=15289):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000005000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
close(r1)

2.095025598s ago: executing program 2 (id=15290):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x200, 0x802)
r1 = dup(r0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000380)={0x80, 0x6, 0xf00, 0xe0, 0x0, 0x0, 0x0})

890.816392ms ago: executing program 9 (id=15340):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000400)='.\x00', 0xa00000a1)
close(r2)

857.637213ms ago: executing program 9 (id=15342):
open(0x0, 0x145142, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000001700)=ANY=[@ANYBLOB="540200001600010000000000fedbdf25ff0100000000000000000000000000010a0101010000000000000000000000004e2200004e2300000a00200021000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fc0000000000000000000000000000000000000033000000e0000002000000000000000000000000060000000000000019d000000000000009000000000000000000000000000000000000000000000008000000000000000000000000000000ff030000100000000300000000000000ffffffff00000000ffffff7f000000000900000000000000000000007f000000070000002bbd7000000000000200013f000000000000000001000000060000002c001300200100000000000000000000000000010000000000000000000000020000001c00040003004e204e210000fe"], 0x254}}, 0x0)

822.266204ms ago: executing program 9 (id=15343):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000100850000005900000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
socket$inet(0x2, 0x2, 0x1)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x20000000)

762.349775ms ago: executing program 9 (id=15345):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000340)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x10909d, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000600)='./file0/file0\x00', &(0x7f0000000140)='./file0/../file0\x00', 0x0, 0x21800, 0x0)
umount2(&(0x7f0000000040)='./file0/../file0\x00', 0x0)

720.750245ms ago: executing program 9 (id=15347):
r0 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000400396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kfree\x00', r1, 0x0, 0x8000000000}, 0x18)
r2 = fsmount(r0, 0x0, 0x20)
symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f0000000140)='./file0\x00')
openat(r2, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664fa4)

356.660313ms ago: executing program 7 (id=15355):
close(0xffffffffffffffff)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x4000000, 0xffffffff, 0x1, 0x0, 0x0, 0x5, 0x4})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x2}, 0x18)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port0\x00', 0x8, 0x100075, 0xffefffff, 0x4, 0x1ff, 0x0, 0x0, 0x0, 0x6})

356.291123ms ago: executing program 8 (id=15356):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x40050)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r3, 0xffffffffffffffff, 0x100000000000000)

338.582913ms ago: executing program 7 (id=15357):
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffffffc, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

320.744034ms ago: executing program 8 (id=15358):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000380)={0x18, 0x0, {0x7, @broadcast, 'macvlan1\x00'}}, 0x1e)
sendmmsg(r2, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)="ab", 0x5ea}], 0x1}}], 0x484, 0x24048084)

310.146954ms ago: executing program 9 (id=15359):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x4, @local}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{0x5}, {0x0}, &(0x7f0000000300)=[{&(0x7f0000000880)=""/4096, 0x1000}], 0x1}}], 0x48}, 0x0)

309.704214ms ago: executing program 7 (id=15360):
r0 = fsopen(&(0x7f0000000280)='configfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
lseek(r2, 0x1, 0x0)
getdents(r2, 0x0, 0x58)

279.905085ms ago: executing program 39 (id=15359):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x4, @local}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{0x5}, {0x0}, &(0x7f0000000300)=[{&(0x7f0000000880)=""/4096, 0x1000}], 0x1}}], 0x48}, 0x0)

277.736995ms ago: executing program 7 (id=15362):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0)
sendmmsg$inet6(r1, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)

277.495505ms ago: executing program 8 (id=15363):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0xfff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000600), &(0x7f00000001c0)}, 0x20)
close(0x3)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xb, 0x8, 0xc, 0x80000000, 0x1, 0xffffffffffffffff, 0xd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x1800, r2}, 0x38)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)

235.890146ms ago: executing program 8 (id=15364):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r2}, 0x10)
setitimer(0x0, 0x0, 0x0)

224.971406ms ago: executing program 4 (id=15365):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000007c0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
close(r0)

206.859346ms ago: executing program 7 (id=15366):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000000c0)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)={0x2c, 0x2, 0x1, 0x3, 0x0, 0x0, {0x2}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x9}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x1}, @CTA_STATUS={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8004}, 0x40c0)

170.886457ms ago: executing program 8 (id=15367):
open(0x0, 0x145142, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000001700)=ANY=[@ANYBLOB="540200001600010000000000fedbdf25ff0100000000000000000000000000010a0101010000000000000000000000004e2200004e2300000a00200021000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="fc0000000000000000000000000000000000000033000000e0000002000000000000000000000000060000000000000019d000000000000009000000000000000000000000000000000000000000000008000000000000000000000000000000ff030000100000000300000000000000ffffffff00000000ffffff7f000000000900000000000000000000007f000000070000002bbd7000000000000200013f000000000000000001000000060000002c001300200100000000000000000000000000010000000000000000000000020000001c00040003004e204e210000fe"], 0x254}}, 0x0)

164.463427ms ago: executing program 4 (id=15368):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r2}, 0x20)
sendto$inet6(r0, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback, 0xffffffff}, 0x1c)

150.995477ms ago: executing program 7 (id=15369):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x14ec8576, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_usb_disconnect(0xffffffffffffffff)

128.106037ms ago: executing program 4 (id=15370):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110068", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r1}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000340), 0xffffffffffffffff)

123.889997ms ago: executing program 8 (id=15371):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400f400b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x410200}], 0x1}}], 0x48}, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x40, 0x2)

58.083149ms ago: executing program 4 (id=15372):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000400)='.\x00', 0xa00000a1)
close(r2)

32.30063ms ago: executing program 4 (id=15373):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r2}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000000c0)='io_uring_create\x00', r1}, 0x18)
io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6})

0s ago: executing program 4 (id=15374):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000380)={0x18, 0x0, {0x7, @broadcast, 'macvlan1\x00'}}, 0x1e)
sendmmsg(r2, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000500)="ab", 0x5ea}], 0x1}}], 0x484, 0x24048084)

kernel console output (not intermixed with test programs):

ub 6-0:1.0: 8 ports detected
[  561.232767][T19042] vlan2: entered allmulticast mode
[  561.238070][T19042] bridge_slave_0: entered allmulticast mode
[  561.353500][T19064] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  561.360845][T19064] IPv6: NLM_F_CREATE should be set when creating new route
[  561.368098][T19064] IPv6: NLM_F_CREATE should be set when creating new route
[  561.375375][T19064] IPv6: NLM_F_CREATE should be set when creating new route
[  561.520441][T19081] SELinux: failed to load policy
[  561.691761][T19097] smc: net device bond0 applied user defined pnetid SYZ0
[  561.714542][T19097] smc: net device bond0 erased user defined pnetid SYZ0
[  561.774662][T19105] netlink: 3 bytes leftover after parsing attributes in process `syz.3.13530'.
[  561.795017][T19105] 0ªX¹¦À: renamed from caif0
[  561.807240][T19105] 0ªX¹¦À: entered allmulticast mode
[  561.812505][T19105] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  562.220798][T19162] bridge0: entered promiscuous mode
[  562.227932][T19162] batman_adv: batadv0: Adding interface: macsec1
[  562.234335][T19162] batman_adv: batadv0: The MTU of interface macsec1 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  562.262378][T19162] batman_adv: batadv0: Interface activated: macsec1
[  562.292975][T19166] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13548'.
[  562.302345][T19166] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13548'.
[  562.842120][T19237] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  563.088243][ T3664] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=3664 comm=kworker/1:3
[  563.105552][T19270] netlink: 340 bytes leftover after parsing attributes in process `syz.8.13584'.
[  563.403494][T19320] loop7: detected capacity change from 0 to 2048
[  563.451296][T19320] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  563.518814][T19320] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  563.594793][T19320] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  563.607309][T19320] EXT4-fs (loop7): This should not happen!! Data will be lost
[  563.607309][T19320] 
[  563.617232][T19320] EXT4-fs (loop7): Total free blocks count 0
[  563.623361][T19320] EXT4-fs (loop7): Free/Dirty block details
[  563.629399][T19320] EXT4-fs (loop7): free_blocks=2415919504
[  563.635624][T19320] EXT4-fs (loop7): dirty_blocks=48
[  563.641086][T19320] EXT4-fs (loop7): Block reservation details
[  563.647166][T19320] EXT4-fs (loop7): i_reserved_data_blocks=3
[  563.682637][ T3843] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  563.906545][T19382] __nla_validate_parse: 3 callbacks suppressed
[  563.906560][T19382] netlink: 16 bytes leftover after parsing attributes in process `syz.7.13628'.
[  564.115148][T19428] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13645'.
[  564.510538][T19492] warn_alloc: 1 callbacks suppressed
[  564.510551][T19492] syz.7.13672: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  564.517425][T19494] xt_nat: multiple ranges no longer supported
[  564.530743][T19492] CPU: 0 UID: 0 PID: 19492 Comm: syz.7.13672 Tainted: G        W           6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  564.530782][T19492] Tainted: [W]=WARN
[  564.530792][T19492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  564.530809][T19492] Call Trace:
[  564.530819][T19492]  <TASK>
[  564.530829][T19492]  __dump_stack+0x1d/0x30
[  564.530870][T19492]  dump_stack_lvl+0xe8/0x140
[  564.530897][T19492]  dump_stack+0x15/0x1b
[  564.530966][T19492]  warn_alloc+0x12b/0x1a0
[  564.531007][T19492]  ? audit_log_end+0x1d7/0x1f0
[  564.531056][T19492]  ? audit_log_end+0x1d7/0x1f0
[  564.531123][T19492]  __vmalloc_node_range_noprof+0x9c/0xe00
[  564.531165][T19492]  ? sized_strscpy+0x157/0x1a0
[  564.531195][T19492]  ? __rcu_read_unlock+0x4f/0x70
[  564.531223][T19492]  ? __perf_event_task_sched_in+0xa5b/0xac0
[  564.531295][T19492]  ? __rcu_read_unlock+0x4f/0x70
[  564.531324][T19492]  ? xfd_validate_state+0x45/0xf0
[  564.531429][T19492]  ? save_fpregs_to_fpstate+0x100/0x160
[  564.531480][T19492]  vmalloc_user_noprof+0x7d/0xb0
[  564.531527][T19492]  ? xskq_create+0x80/0xe0
[  564.531565][T19492]  xskq_create+0x80/0xe0
[  564.531634][T19492]  xsk_init_queue+0x95/0xf0
[  564.531671][T19492]  xsk_setsockopt+0x3de/0x510
[  564.531707][T19492]  ? __pfx_xsk_setsockopt+0x10/0x10
[  564.531820][T19492]  __sys_setsockopt+0x184/0x200
[  564.531871][T19492]  __x64_sys_setsockopt+0x64/0x80
[  564.531913][T19492]  x64_sys_call+0x2bd5/0x2fb0
[  564.531944][T19492]  do_syscall_64+0xd2/0x200
[  564.531977][T19492]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  564.532015][T19492]  ? clear_bhb_loop+0x40/0x90
[  564.532129][T19492]  ? clear_bhb_loop+0x40/0x90
[  564.532231][T19492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  564.532264][T19492] RIP: 0033:0x7fc743f5e929
[  564.532291][T19492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  564.532364][T19492] RSP: 002b:00007fc7425c7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  564.532390][T19492] RAX: ffffffffffffffda RBX: 00007fc744185fa0 RCX: 00007fc743f5e929
[  564.532411][T19492] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000004
[  564.532429][T19492] RBP: 00007fc743fe0b39 R08: 0000000000000004 R09: 0000000000000000
[  564.532503][T19492] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  564.532568][T19492] R13: 0000000000000000 R14: 00007fc744185fa0 R15: 00007fffe1168038
[  564.532606][T19492]  </TASK>
[  564.532744][T19492] Mem-Info:
[  564.785982][T19492] active_anon:14997 inactive_anon:37 isolated_anon:0
[  564.785982][T19492]  active_file:23393 inactive_file:2895 isolated_file:0
[  564.785982][T19492]  unevictable:2030 dirty:316 writeback:0
[  564.785982][T19492]  slab_reclaimable:3490 slab_unreclaimable:80280
[  564.785982][T19492]  mapped:28932 shmem:236 pagetables:1953
[  564.785982][T19492]  sec_pagetables:0 bounce:0
[  564.785982][T19492]  kernel_misc_reclaimable:0
[  564.785982][T19492]  free:1708549 free_pcp:20336 free_cma:0
[  564.831450][T19492] Node 0 active_anon:60104kB inactive_anon:148kB active_file:93572kB inactive_file:11580kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:115728kB dirty:1264kB writeback:0kB shmem:944kB writeback_tmp:0kB kernel_stack:5088kB pagetables:7812kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  564.860547][T19492] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  564.862894][   T29] kauditd_printk_skb: 409 callbacks suppressed
[  564.862913][   T29] audit: type=1400 audit(2000000128.595:38653): avc:  denied  { mounton } for  pid=19505 comm="syz.8.13679" path="/proc/355/task" dev="proc" ino=126651 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  564.889265][T19492] lowmem_reserve[]: 0 2882 7861 7861
[  564.924002][T19492] Node 0 DMA32 free:2947940kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951468kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[  564.946454][   T29] audit: type=1400 audit(2000000128.679:38654): avc:  denied  { block_suspend } for  pid=19509 comm="syz.5.13680" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  564.954348][T19492] lowmem_reserve[]: 0 0 4978 4978
[  564.981790][T19492] Node 0 Normal free:3870412kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:60104kB inactive_anon:148kB active_file:93572kB inactive_file:11580kB unevictable:0kB writepending:1264kB present:5242880kB managed:5098232kB mlocked:0kB bounce:0kB free_pcp:85896kB local_pcp:44708kB free_cma:0kB
[  565.014139][T19492] lowmem_reserve[]: 0 0 0 0
[  565.018785][T19492] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  565.031653][T19492] Node 0 DMA32: 5*4kB (M) 4*8kB (M) 3*16kB (M) 4*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947940kB
[  565.047850][T19492] Node 0 Normal: 220*4kB (UM) 367*8kB (UME) 791*16kB (UME) 235*32kB (UME) 582*64kB (UME) 541*128kB (UME) 221*256kB (UME) 208*512kB (UM) 129*1024kB (UME) 118*2048kB (UM) 782*4096kB (UM) = 3870392kB
[  565.067728][T19492] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  565.077112][T19492] 26564 total pagecache pages
[  565.081799][T19492] 59 pages in swap cache
[  565.086050][T19492] Free swap  = 122672kB
[  565.090313][T19492] Total swap = 124996kB
[  565.094557][T19492] 2097051 pages RAM
[  565.098386][T19492] 0 pages HighMem/MovableOnly
[  565.103076][T19492] 80786 pages reserved
[  565.139880][   T29] audit: type=1326 audit(2000000128.847:38655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19447 comm="syz.3.13653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7fc00000
[  565.189049][T19523] 9pnet_fd: Insufficient options for proto=fd
[  565.198905][   T29] audit: type=1400 audit(2000000128.913:38656): avc:  denied  { name_bind } for  pid=19524 comm="syz.1.13686" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[  565.221149][   T29] audit: type=1400 audit(2000000128.913:38658): avc:  denied  { create } for  pid=19525 comm="syz.8.13685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  565.241012][   T29] audit: type=1400 audit(2000000128.913:38657): avc:  denied  { node_bind } for  pid=19524 comm="syz.1.13686" saddr=255.255.255.255 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[  565.302035][   T29] audit: type=1400 audit(2000000128.978:38659): avc:  denied  { setopt } for  pid=19525 comm="syz.8.13685" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  565.322964][   T29] audit: type=1326 audit(2000000129.016:38660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19521 comm="syz.3.13684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  565.346783][   T29] audit: type=1326 audit(2000000129.016:38661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19521 comm="syz.3.13684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  565.370648][   T29] audit: type=1326 audit(2000000129.016:38662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19521 comm="syz.3.13684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  565.608429][T19578] netlink: 28 bytes leftover after parsing attributes in process `syz.7.13705'.
[  565.618532][T19576] netlink: 'syz.8.13706': attribute type 1 has an invalid length.
[  565.626759][T19578] netem: change failed
[  565.802496][T19603] netlink: 76 bytes leftover after parsing attributes in process `syz.7.13718'.
[  565.890174][T19614] loop7: detected capacity change from 0 to 1024
[  565.908487][T19614] EXT4-fs: Ignoring removed bh option
[  565.918624][T19614] EXT4-fs: inline encryption not supported
[  565.930591][T19614] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  565.935901][T19616] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.13722'.
[  565.954559][T19614] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  565.964351][T19610] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.13722'.
[  565.985758][T19614] EXT4-fs error (device loop7): ext4_map_blocks:780: inode #3: block 2: comm syz.7.13723: lblock 2 mapped to illegal pblock 2 (length 1)
[  566.021546][T19614] EXT4-fs error (device loop7): ext4_map_blocks:780: inode #3: block 48: comm syz.7.13723: lblock 0 mapped to illegal pblock 48 (length 1)
[  566.038418][T19614] EXT4-fs error (device loop7): ext4_acquire_dquot:6933: comm syz.7.13723: Failed to acquire dquot type 0
[  566.060674][T19614] EXT4-fs error (device loop7) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  566.082315][T19614] EXT4-fs error (device loop7): ext4_evict_inode:254: inode #11: comm syz.7.13723: mark_inode_dirty error
[  566.103535][T19614] EXT4-fs warning (device loop7): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  566.124308][T19614] EXT4-fs (loop7): 1 orphan inode deleted
[  566.135311][T19614] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  566.156903][ T3865] EXT4-fs error (device loop7): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:35: lblock 1 mapped to illegal pblock 1 (length 1)
[  566.172329][T19630] openvswitch: netlink: Message has 6 unknown bytes.
[  566.196078][ T3865] EXT4-fs error (device loop7): ext4_release_dquot:6969: comm kworker/u8:35: Failed to release dquot type 0
[  566.238632][T19614] EXT4-fs error (device loop7): ext4_map_blocks:780: inode #3: block 48: comm syz.7.13723: lblock 0 mapped to illegal pblock 48 (length 1)
[  566.300335][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  566.367654][T19662] netlink: '+}[@': attribute type 21 has an invalid length.
[  566.391291][T19662] netlink: 132 bytes leftover after parsing attributes in process `+}[@'.
[  566.574393][T19677] loop7: detected capacity change from 0 to 256
[  566.652247][T19677] FAT-fs (loop7): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  566.656870][T19675] netlink: 'syz.8.13735': attribute type 4 has an invalid length.
[  566.816697][T19720] netlink: 60 bytes leftover after parsing attributes in process `syz.1.13756'.
[  566.825850][T19720] netlink: 60 bytes leftover after parsing attributes in process `syz.1.13756'.
[  566.880952][T19720] netlink: 60 bytes leftover after parsing attributes in process `syz.1.13756'.
[  566.882774][ T3400] kernel write not supported for file /6492/attr/exec (pid: 3400 comm: kworker/0:3)
[  567.113936][T19755] netlink: 'syz.8.13771': attribute type 21 has an invalid length.
[  567.150312][T19751] ------------[ cut here ]------------
[  567.156197][T19751] WARNING: CPU: 1 PID: 19751 at mm/page_alloc.c:4935 __alloc_frozen_pages_noprof+0x218/0x360
[  567.166494][T19751] Modules linked in:
[  567.170443][T19751] CPU: 1 UID: 0 PID: 19751 Comm: syz.1.13769 Tainted: G        W           6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  567.184771][T19751] Tainted: [W]=WARN
[  567.188599][T19751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  567.198713][T19751] RIP: 0010:__alloc_frozen_pages_noprof+0x218/0x360
[  567.205425][T19751] Code: 83 3d 63 24 50 05 02 72 0e 48 83 b8 e0 fb ff ff 00 0f 84 48 ff ff ff 81 ca 00 01 00 00 e9 3d ff ff ff c6 05 1a 1d 4c 05 01 90 <0f> 0b 90 31 c0 eb 84 a9 00 00 08 00 75 52 44 89 f1 81 e1 7f ff ff
[  567.225133][T19751] RSP: 0018:ffffc90007c4ba30 EFLAGS: 00010246
[  567.231308][T19751] RAX: e84c05443ae02200 RBX: 000000000000000f RCX: 0000000000000000
[  567.239351][T19751] RDX: 0000000000000000 RSI: 000000000000000f RDI: 0000000000040dc0
[  567.247405][T19751] RBP: 0000000000000dc0 R08: ffff8881028b8a98 R09: 0000000000000000
[  567.255500][T19751] R10: ffff888131c4d448 R11: 0001888131c4d448 R12: ffffc90007c4bd28
[  567.263548][T19751] R13: 0000000000004494 R14: 0000000000040dc0 R15: 0000000000000000
[  567.271573][T19751] FS:  00007f5fd86176c0(0000) GS:ffff8882aef3c000(0000) knlGS:0000000000000000
[  567.280684][T19751] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  567.287290][T19751] CR2: 0000200000004000 CR3: 000000018d7c0000 CR4: 00000000003506f0
[  567.295317][T19751] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  567.303397][T19751] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  567.311558][T19751] Call Trace:
[  567.314872][T19751]  <TASK>
[  567.317860][T19751]  ? htab_map_hash+0x1cc/0x1d0
[  567.322804][T19751]  __alloc_pages_noprof+0x9/0x20
[  567.327841][T19751]  ___kmalloc_large_node+0x73/0x140
[  567.333114][T19751]  __kmalloc_large_node_noprof+0x16/0xa0
[  567.338830][T19751]  __kmalloc_noprof+0x2ab/0x3e0
[  567.343746][T19751]  ? hashtab_init+0x9b/0xe0
[  567.348302][T19751]  hashtab_init+0x9b/0xe0
[  567.352697][T19751]  symtab_init+0x2c/0x40
[  567.357002][T19751]  common_read+0x10b/0x300
[  567.361495][T19751]  ? hashtab_init+0x6e/0xe0
[  567.366123][T19751]  ? __pfx_common_read+0x10/0x10
[  567.371092][T19751]  policydb_read+0x652/0x1330
[  567.375852][T19751]  security_load_policy+0xba/0x890
[  567.381052][T19751]  ? rep_movs_alternative+0x4a/0x90
[  567.386344][T19751]  sel_write_load+0x1d4/0x380
[  567.391057][T19751]  ? __pfx_sel_write_load+0x10/0x10
[  567.396397][T19751]  vfs_write+0x266/0x8e0
[  567.400677][T19751]  ? __rcu_read_unlock+0x4f/0x70
[  567.405714][T19751]  ? __fget_files+0x184/0x1c0
[  567.410445][T19751]  ksys_write+0xda/0x1a0
[  567.414703][T19751]  __x64_sys_write+0x40/0x50
[  567.419326][T19751]  x64_sys_call+0x2cdd/0x2fb0
[  567.424064][T19751]  do_syscall_64+0xd2/0x200
[  567.428633][T19751]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  567.434814][T19751]  ? clear_bhb_loop+0x40/0x90
[  567.439594][T19751]  ? clear_bhb_loop+0x40/0x90
[  567.444371][T19751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.450336][T19751] RIP: 0033:0x7f5fd9fae929
[  567.454782][T19751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.474995][T19751] RSP: 002b:00007f5fd8617038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  567.483515][T19751] RAX: ffffffffffffffda RBX: 00007f5fda1d5fa0 RCX: 00007f5fd9fae929
[  567.491520][T19751] RDX: 00000000000044f0 RSI: 0000200000000000 RDI: 0000000000000003
[  567.499589][T19751] RBP: 00007f5fda030b39 R08: 0000000000000000 R09: 0000000000000000
[  567.507620][T19751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  567.515708][T19751] R13: 0000000000000000 R14: 00007f5fda1d5fa0 R15: 00007ffffae8f878
[  567.523716][T19751]  </TASK>
[  567.526830][T19751] ---[ end trace 0000000000000000 ]---
[  567.537481][T19751] SELinux: failed to load policy
[  567.646005][T19778] program syz.8.13780 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  568.118997][T19841] netlink: 'syz.3.13798': attribute type 4 has an invalid length.
[  568.746509][T19892] 0ªî{X¹¦: renamed from gretap0
[  568.762131][T19892] 0ªî{X¹¦: entered allmulticast mode
[  568.774207][T19892] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  568.824189][T19890] loop1: detected capacity change from 0 to 8192
[  568.845475][T19890] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  568.990600][T19911] netlink: 'syz.5.13831': attribute type 4 has an invalid length.
[  569.143819][T19936] 0ªî{X¹¦: renamed from gretap0 (while UP)
[  569.166427][T19936] 0ªî{X¹¦: entered allmulticast mode
[  569.186542][T19936] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[  569.758624][T19985] __nla_validate_parse: 11 callbacks suppressed
[  569.758642][T19985] netlink: 32 bytes leftover after parsing attributes in process `syz.8.13866'.
[  569.798984][T19993] openvswitch: netlink: Message has 6 unknown bytes.
[  570.180711][T20010] delete_channel: no stack
[  570.199445][T20007] loop7: detected capacity change from 0 to 8192
[  570.207611][T20007] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  570.218939][   T29] kauditd_printk_skb: 311 callbacks suppressed
[  570.218954][   T29] audit: type=1400 audit(2000000133.618:38970): avc:  denied  { mount } for  pid=20005 comm="syz.7.13874" name="/" dev="loop7" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  570.249323][   T29] audit: type=1326 audit(2000000133.618:38971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20012 comm="syz.5.13878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  570.273195][   T29] audit: type=1326 audit(2000000133.618:38972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20012 comm="syz.5.13878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  570.297055][   T29] audit: type=1326 audit(2000000133.618:38973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20012 comm="syz.5.13878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  570.328578][   T29] audit: type=1400 audit(2000000133.702:38974): avc:  denied  { unmount } for  pid=16839 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  570.386822][T20025] loop7: detected capacity change from 0 to 1764
[  570.396977][   T29] audit: type=1400 audit(2000000133.777:38975): avc:  denied  { mount } for  pid=20024 comm="syz.7.13883" name="/" dev="loop7" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  570.437781][   T29] audit: type=1400 audit(2000000133.814:38976): avc:  denied  { unmount } for  pid=16839 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1
[  570.509979][   T29] audit: type=1400 audit(2000000133.889:38977): avc:  denied  { create } for  pid=20036 comm="syz.5.13888" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  570.590135][T20043] delete_channel: no stack
[  570.636870][T20046] SELinux: failed to load policy
[  570.642395][   T29] audit: type=1400 audit(2000000134.011:38978): avc:  denied  { load_policy } for  pid=20045 comm="syz.7.13890" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  570.695619][T20048] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13891'.
[  570.704689][T20048] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13891'.
[  570.742516][T20048] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13891'.
[  570.781574][   T29] audit: type=1400 audit(2000000134.133:38979): avc:  denied  { map } for  pid=20055 comm="syz.7.13894" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=128487 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  570.819561][T20058] program syz.3.13895 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  570.939310][T20073] netlink: 4 bytes leftover after parsing attributes in process `syz.7.13902'.
[  570.997484][T20078] SELinux: failed to load policy
[  571.035757][T20081] ALSA: seq fatal error: cannot create timer (-19)
[  571.110582][T20095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13910'.
[  571.119866][T20095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13910'.
[  571.129103][T20095] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13910'.
[  571.183541][T20101] program syz.7.13914 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  571.406876][T20137] 0ªî{X¹¦: left allmulticast mode
[  571.441919][T20137] bridge0: port 2(bridge_slave_1) entered disabled state
[  571.449343][T20137] bridge0: port 1(bridge_slave_0) entered disabled state
[  571.469285][T20141] ALSA: seq fatal error: cannot create timer (-19)
[  571.498279][T20137] bridge_slave_0: left allmulticast mode
[  571.504206][T20137] bridge_slave_0: left promiscuous mode
[  571.510001][T20137] bridge0: port 1(bridge_slave_0) entered disabled state
[  571.523634][T20137] bridge_slave_1: left allmulticast mode
[  571.529355][T20137] bridge_slave_1: left promiscuous mode
[  571.535598][T20137] bridge0: port 2(bridge_slave_1) entered disabled state
[  571.547696][T20137] bond0: (slave bond_slave_0): Releasing backup interface
[  571.555268][T20143] netlink: 'syz.1.13923': attribute type 4 has an invalid length.
[  571.566976][T20137] bond0: (slave bond_slave_1): Releasing backup interface
[  571.579973][T20137] team0: Port device team_slave_0 removed
[  571.591238][T20137] team0: Port device team_slave_1 removed
[  571.599713][T20137] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  571.609222][T20137] batman_adv: batadv0: Removing interface: batadv_slave_0
[  571.619315][T20137] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  571.628537][T20137] batman_adv: batadv0: Removing interface: batadv_slave_1
[  571.664147][T20137] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  571.673143][T20137] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  571.682084][T20137] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  571.691162][T20137] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  572.015473][T20200] program syz.5.13935 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  572.166472][T20209] netlink: 'syz.5.13939': attribute type 4 has an invalid length.
[  572.757668][T20290] 0ªî{X¹¦: left allmulticast mode
[  572.808426][T20290] bridge0: port 3(dummy0) entered disabled state
[  572.814903][T20290] bridge0: port 2(bridge_slave_1) entered disabled state
[  572.822201][T20290] bridge0: port 1(bridge_slave_0) entered disabled state
[  572.853731][T20290] dummy0: left allmulticast mode
[  572.858801][T20290] dummy0: left promiscuous mode
[  572.860534][T20295] netlink: 'syz.7.13980': attribute type 4 has an invalid length.
[  572.864278][T20290] bridge0: port 3(dummy0) entered disabled state
[  572.898398][T20290] bridge_slave_0: left promiscuous mode
[  572.904617][T20290] bridge0: port 1(bridge_slave_0) entered disabled state
[  572.924385][T20290] bridge_slave_1: left allmulticast mode
[  572.930104][T20290] bridge_slave_1: left promiscuous mode
[  572.935797][T20290] bridge0: port 2(bridge_slave_1) entered disabled state
[  572.956992][T20290] bond0: (slave bond_slave_0): Releasing backup interface
[  572.978959][T20290] bond0: (slave bond_slave_1): Releasing backup interface
[  572.998852][T20290] team0: Port device team_slave_0 removed
[  573.011191][T20290] team0: Port device team_slave_1 removed
[  573.031047][T20290] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  573.041293][T20290] batman_adv: batadv0: Removing interface: batadv_slave_0
[  573.050155][T20290] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  573.059208][T20290] batman_adv: batadv0: Removing interface: batadv_slave_1
[  573.094441][T20290] geneve0: left allmulticast mode
[  573.106368][T20290] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  573.115322][T20290] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  573.124514][T20290] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  573.133719][T20290] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  573.161753][T20290] batman_adv: batadv0: Interface deactivated: macsec1
[  573.178919][T20290] batman_adv: batadv0: Removing interface: macsec1
[  573.427594][T20350] netlink: 199836 bytes leftover after parsing attributes in process `syz.8.13995'.
[  573.481905][T20359] 9pnet: p9_errstr2errno: server reported unknown error �@íÎÇpî‘AçÁ›
¬ž;
KZì44§/@®qæžkøp
[  573.481905][T20359] éC<+¨
[  573.538711][T20365] loop1: detected capacity change from 0 to 128
[  573.572902][T20365] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  573.575090][T20370] 9pnet: Could not find request transport: 0xffffffffffffffff
[  573.590618][T20365] ext4 filesystem being mounted at /845/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  573.593640][T20357] netlink: 'syz.5.13997': attribute type 4 has an invalid length.
[  573.637109][ T6938] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  573.759922][T20405] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.14013'.
[  573.794056][T20393] netlink: 'syz.1.14021': attribute type 4 has an invalid length.
[  573.911484][T20421] netlink: 'syz.8.14029': attribute type 4 has an invalid length.
[  573.991979][T20436] smc: net device bond0 applied user defined pnetid SYZ0
[  573.999922][T20436] smc: net device bond0 erased user defined pnetid SYZ0
[  574.051940][T20442] vlan0: entered allmulticast mode
[  574.241887][T20464] bond0: (slave bond_slave_0): Releasing backup interface
[  574.252724][T20464] bond0: (slave bond_slave_1): Releasing backup interface
[  574.264346][T20464] team0: Port device team_slave_0 removed
[  574.270798][T20465] netlink: 'syz.3.14037': attribute type 4 has an invalid length.
[  574.278910][T20464] team0: Port device team_slave_1 removed
[  574.286330][T20464] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  574.295096][T20464] batman_adv: batadv0: Removing interface: batadv_slave_0
[  574.305014][T20464] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  574.314469][T20464] batman_adv: batadv0: Removing interface: batadv_slave_1
[  574.360421][T20464] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  574.369501][T20464] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  574.378463][T20464] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  574.387458][T20464] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  574.407868][T20464] bond2: left promiscuous mode
[  574.413155][T20464] bond2: left allmulticast mode
[  574.536856][T20485] SELinux: failed to load policy
[  574.593377][T20498] vlan0: entered allmulticast mode
[  574.671883][T20510] smc: net device bond0 applied user defined pnetid SYZ0
[  574.684251][T20506] netlink: 'syz.1.14053': attribute type 4 has an invalid length.
[  574.688039][T20510] smc: net device bond0 erased user defined pnetid SYZ0
[  575.033308][T20561] netlink: 'syz.7.14076': attribute type 4 has an invalid length.
[  575.121759][T20574] SELinux: failed to load policy
[  575.145944][T20576] loop7: detected capacity change from 0 to 256
[  575.153171][T20576] FAT-fs (loop7): bogus number of FAT sectors
[  575.159339][T20576] FAT-fs (loop7): Can't find a valid FAT filesystem
[  575.679748][   T29] kauditd_printk_skb: 160 callbacks suppressed
[  575.679767][   T29] audit: type=1326 audit(2000000138.716:39140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  575.709805][   T29] audit: type=1326 audit(2000000138.716:39141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  575.769153][   T29] audit: type=1400 audit(2000000138.735:39142): avc:  denied  { setopt } for  pid=20588 comm="syz.7.14083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  575.789498][   T29] audit: type=1326 audit(2000000138.772:39143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  575.813627][   T29] audit: type=1326 audit(2000000138.772:39144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  575.820964][T20595] smc: net device bond0 applied user defined pnetid SYZ0
[  575.837488][   T29] audit: type=1326 audit(2000000138.772:39145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  575.868346][   T29] audit: type=1326 audit(2000000138.772:39146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  575.881091][T20601] smc: net device bond0 erased user defined pnetid SYZ0
[  575.892260][   T29] audit: type=1326 audit(2000000138.772:39147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  575.923014][   T29] audit: type=1326 audit(2000000138.772:39148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  575.934860][T20597] netlink: 'syz.8.14088': attribute type 4 has an invalid length.
[  575.946710][   T29] audit: type=1326 audit(2000000138.772:39149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20587 comm="syz.5.14084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f53b1d5e929 code=0x7ffc0000
[  576.058581][T20597] __nla_validate_parse: 4 callbacks suppressed
[  576.058601][T20597] netlink: 12 bytes leftover after parsing attributes in process `syz.8.14088'.
[  576.150518][T20621] netlink: 340 bytes leftover after parsing attributes in process `syz.1.14097'.
[  576.160239][T20621] netlink: 48 bytes leftover after parsing attributes in process `syz.1.14097'.
[  576.423392][ T3400] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=3400 comm=kworker/0:3
[  576.500229][T20679] netlink: 4 bytes leftover after parsing attributes in process `syz.8.14113'.
[  576.631782][T20699] loop1: detected capacity change from 0 to 128
[  576.791022][T20720] netlink: 12 bytes leftover after parsing attributes in process `syz.8.14128'.
[  576.810637][T20722] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14130'.
[  576.824549][T20722] bridge0: port 1(macvlan2) entered blocking state
[  576.827078][T20726] xt_CT: You must specify a L4 protocol and not use inversions on it
[  576.831175][T20722] bridge0: port 1(macvlan2) entered disabled state
[  576.846616][T20722] macvlan2: entered allmulticast mode
[  576.852025][T20722] bridge0: entered allmulticast mode
[  576.864461][T20722] macvlan2: left allmulticast mode
[  576.869796][T20722] bridge0: left allmulticast mode
[  576.940676][T20731] validate_nla: 1 callbacks suppressed
[  576.940695][T20731] netlink: 'syz.8.14133': attribute type 4 has an invalid length.
[  577.246412][T20760] netlink: 12 bytes leftover after parsing attributes in process `syz.7.14145'.
[  577.458608][T20770] netlink: 'syz.8.14148': attribute type 4 has an invalid length.
[  577.930683][ T3400] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=3400 comm=kworker/0:3
[  577.993850][T20796] netlink: 12 bytes leftover after parsing attributes in process `syz.1.14156'.
[  578.069019][T20809] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14160'.
[  578.142343][T20823] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  578.897767][T20847] netlink: 16 bytes leftover after parsing attributes in process `syz.8.14187'.
[  579.047528][T20868] syz.1.14188: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  579.062346][T20868] CPU: 0 UID: 0 PID: 20868 Comm: syz.1.14188 Tainted: G        W           6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  579.062389][T20868] Tainted: [W]=WARN
[  579.062462][T20868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  579.062480][T20868] Call Trace:
[  579.062488][T20868]  <TASK>
[  579.062497][T20868]  __dump_stack+0x1d/0x30
[  579.062540][T20868]  dump_stack_lvl+0xe8/0x140
[  579.062564][T20868]  dump_stack+0x15/0x1b
[  579.062592][T20868]  warn_alloc+0x12b/0x1a0
[  579.062669][T20868]  ? audit_log_end+0x1d7/0x1f0
[  579.062715][T20868]  ? audit_log_end+0x1d7/0x1f0
[  579.062758][T20868]  __vmalloc_node_range_noprof+0x9c/0xe00
[  579.062808][T20868]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  579.062934][T20868]  ? slow_avc_audit+0x104/0x140
[  579.062981][T20868]  vmalloc_user_noprof+0x7d/0xb0
[  579.063023][T20868]  ? xskq_create+0x80/0xe0
[  579.063055][T20868]  xskq_create+0x80/0xe0
[  579.063127][T20868]  xsk_init_queue+0x95/0xf0
[  579.063236][T20868]  xsk_setsockopt+0x3de/0x510
[  579.063267][T20868]  ? __pfx_xsk_setsockopt+0x10/0x10
[  579.063298][T20868]  __sys_setsockopt+0x184/0x200
[  579.063335][T20868]  __x64_sys_setsockopt+0x64/0x80
[  579.063396][T20868]  x64_sys_call+0x2bd5/0x2fb0
[  579.063497][T20868]  do_syscall_64+0xd2/0x200
[  579.063517][T20868]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  579.063548][T20868]  ? clear_bhb_loop+0x40/0x90
[  579.063674][T20868]  ? clear_bhb_loop+0x40/0x90
[  579.063704][T20868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  579.063733][T20868] RIP: 0033:0x7f5fd9fae929
[  579.063781][T20868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  579.063807][T20868] RSP: 002b:00007f5fd8617038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  579.063831][T20868] RAX: ffffffffffffffda RBX: 00007f5fda1d5fa0 RCX: 00007f5fd9fae929
[  579.063848][T20868] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000004
[  579.063864][T20868] RBP: 00007f5fda030b39 R08: 0000000000000004 R09: 0000000000000000
[  579.063880][T20868] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[  579.063969][T20868] R13: 0000000000000000 R14: 00007f5fda1d5fa0 R15: 00007ffffae8f878
[  579.063994][T20868]  </TASK>
[  579.064002][T20868] Mem-Info:
[  579.289856][T20868] active_anon:48161 inactive_anon:38 isolated_anon:0
[  579.289856][T20868]  active_file:23392 inactive_file:2903 isolated_file:0
[  579.289856][T20868]  unevictable:0 dirty:248 writeback:0
[  579.289856][T20868]  slab_reclaimable:3500 slab_unreclaimable:80710
[  579.289856][T20868]  mapped:28921 shmem:33432 pagetables:1835
[  579.289856][T20868]  sec_pagetables:0 bounce:0
[  579.289856][T20868]  kernel_misc_reclaimable:0
[  579.289856][T20868]  free:1669933 free_pcp:26770 free_cma:0
[  579.335219][T20868] Node 0 active_anon:192644kB inactive_anon:152kB active_file:93568kB inactive_file:11612kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:115684kB dirty:992kB writeback:0kB shmem:133728kB writeback_tmp:0kB kernel_stack:4928kB pagetables:7340kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  579.364488][T20868] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  579.393094][T20868] lowmem_reserve[]: 0 2882 7861 7861
[  579.398454][T20868] Node 0 DMA32 free:2947940kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951468kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB
[  579.428750][T20868] lowmem_reserve[]: 0 0 4978 4978
[  579.433911][T20868] Node 0 Normal free:3716432kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:192644kB inactive_anon:152kB active_file:93568kB inactive_file:11612kB unevictable:0kB writepending:992kB present:5242880kB managed:5098232kB mlocked:0kB bounce:0kB free_pcp:103552kB local_pcp:86680kB free_cma:0kB
[  579.466484][T20868] lowmem_reserve[]: 0 0 0 0
[  579.471014][T20868] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  579.483769][T20868] Node 0 DMA32: 5*4kB (M) 4*8kB (M) 3*16kB (M) 4*32kB (M) 2*64kB (M) 2*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947940kB
[  579.499861][T20868] Node 0 Normal: 1700*4kB (UME) 348*8kB (U) 242*16kB (UE) 188*32kB (UE) 349*64kB (UME) 420*128kB (UE) 148*256kB (UME) 42*512kB (UM) 114*1024kB (UME) 118*2048kB (UM) 782*4096kB (UM) = 3716432kB
[  579.519215][T20868] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  579.528511][T20868] 59767 total pagecache pages
[  579.533216][T20868] 60 pages in swap cache
[  579.537476][T20868] Free swap  = 122668kB
[  579.541790][T20868] Total swap = 124996kB
[  579.545942][T20868] 2097051 pages RAM
[  579.549789][T20868] 0 pages HighMem/MovableOnly
[  579.554555][T20868] 80786 pages reserved
[  579.830260][T20923] netem: change failed
[  579.848617][T20925] netlink: 'syz.1.14211': attribute type 1 has an invalid length.
[  580.017228][T20944] netlink: 'syz.3.14220': attribute type 4 has an invalid length.
[  580.396855][T20992] loop3: detected capacity change from 0 to 512
[  580.404018][T20992] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  580.416139][T20992] EXT4-fs (loop3): 1 truncate cleaned up
[  580.423938][T20992] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.686380][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.793251][T21036] loop3: detected capacity change from 0 to 1024
[  580.803236][T21036] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.831612][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.016093][ T3664] kernel write not supported for file /591/attr/exec (pid: 3664 comm: kworker/1:3)
[  581.150816][   T29] kauditd_printk_skb: 281 callbacks suppressed
[  581.150834][   T29] audit: type=1326 audit(2000000143.833:39431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.188662][   T29] audit: type=1326 audit(2000000143.833:39432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.212674][   T29] audit: type=1326 audit(2000000143.833:39433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.236768][   T29] audit: type=1326 audit(2000000143.833:39434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.260477][   T29] audit: type=1326 audit(2000000143.833:39435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.284373][   T29] audit: type=1326 audit(2000000143.833:39436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.308304][   T29] audit: type=1326 audit(2000000143.833:39437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.332281][   T29] audit: type=1326 audit(2000000143.833:39438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.356082][   T29] audit: type=1326 audit(2000000143.833:39439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.379865][   T29] audit: type=1326 audit(2000000143.833:39440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21084 comm="syz.3.14275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  581.438516][T21091] netlink: 'syz.8.14278': attribute type 4 has an invalid length.
[  581.471494][T21097] SELinux: security_context_str_to_sid () failed with errno=-22
[  581.512902][T21101] __nla_validate_parse: 14 callbacks suppressed
[  581.512921][T21101] netlink: 60 bytes leftover after parsing attributes in process `syz.3.14292'.
[  581.528330][T21101] netlink: 60 bytes leftover after parsing attributes in process `syz.3.14292'.
[  581.548778][T21101] netlink: 60 bytes leftover after parsing attributes in process `syz.3.14292'.
[  581.558033][T21101] netlink: 60 bytes leftover after parsing attributes in process `syz.3.14292'.
[  581.586382][T21101] netlink: 60 bytes leftover after parsing attributes in process `syz.3.14292'.
[  581.595605][T21101] netlink: 60 bytes leftover after parsing attributes in process `syz.3.14292'.
[  581.619407][T21117] netlink: 'syz.1.14282': attribute type 21 has an invalid length.
[  581.722022][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x4
[  581.729990][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x2
[  581.739113][T21140] SELinux: security_context_str_to_sid () failed with errno=-22
[  581.750090][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.757904][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.765875][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.773677][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.781786][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.789564][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.797667][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.805477][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.813290][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.820987][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.828759][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.836445][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.844172][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.851898][ T3400] hid-generic 0000:3000000:0000.0019: unknown main item tag 0x0
[  581.876882][T21152] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  581.893943][T21149] netlink: 60 bytes leftover after parsing attributes in process `syz.7.14297'.
[  581.903118][T21149] netlink: 60 bytes leftover after parsing attributes in process `syz.7.14297'.
[  581.913144][ T3400] hid-generic 0000:3000000:0000.0019: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  581.918728][T21154] netlink: 'syz.3.14300': attribute type 21 has an invalid length.
[  581.959398][T21149] netlink: 60 bytes leftover after parsing attributes in process `syz.7.14297'.
[  581.968672][T21149] netlink: 60 bytes leftover after parsing attributes in process `syz.7.14297'.
[  582.009176][T21168] loop1: detected capacity change from 0 to 512
[  582.028829][T21178] loop3: detected capacity change from 0 to 1024
[  582.030149][T21168] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  582.067218][T21184] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  582.068154][T21168] EXT4-fs (loop1): 1 truncate cleaned up
[  582.091636][T21168] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  582.093989][T21178] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  582.110905][T21188] pimreg: entered allmulticast mode
[  582.125890][T21188] pimreg: left allmulticast mode
[  582.151462][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.189845][T21202] SELinux: security_context_str_to_sid () failed with errno=-22
[  582.201998][ T6938] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.327052][T21227] SELinux: syz.3.14321 (21227) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  582.351862][T21233] loop1: detected capacity change from 0 to 512
[  582.369191][T21233] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  582.387212][T21233] EXT4-fs (loop1): 1 truncate cleaned up
[  582.394972][T21233] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  582.432727][T21253] usb usb1: usbfs: process 21253 (syz.8.14328) did not claim interface 0 before use
[  582.445662][ T6938] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.599526][T21275] SELinux: syz.1.14337 (21275) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  582.690220][T21280] netlink: 'syz.1.14339': attribute type 4 has an invalid length.
[  583.268526][T21308] loop1: detected capacity change from 0 to 1024
[  583.305272][T21308] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  583.387321][ T6938] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  583.593921][T21341] netlink: 'syz.1.14355': attribute type 4 has an invalid length.
[  583.622848][T21354] loop3: detected capacity change from 0 to 1024
[  583.659505][T21354] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  583.688342][T21354] ext4 filesystem being mounted at /2926/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  583.763691][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  584.015211][T21413] xt_hashlimit: size too large, truncated to 1048576
[  584.029002][T21411] loop3: detected capacity change from 0 to 512
[  584.040388][T21411] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  584.052056][T21411] EXT4-fs (loop3): 1 truncate cleaned up
[  584.058899][T21411] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  584.237994][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  584.349851][T21451] loop1: detected capacity change from 0 to 256
[  584.522865][T21466] loop7: detected capacity change from 0 to 512
[  584.530453][T21466] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  584.546061][T21466] EXT4-fs (loop7): 1 truncate cleaned up
[  584.556140][T21466] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  584.673523][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  584.682788][T21490] loop3: detected capacity change from 0 to 256
[  584.897432][T21526] xt_hashlimit: size too large, truncated to 1048576
[  584.931366][T21530] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  585.142815][T21541] loop7: detected capacity change from 0 to 256
[  585.170912][T21539] netlink: 'syz.3.14426': attribute type 4 has an invalid length.
[  585.755417][T21569] netlink: 'syz.1.14437': attribute type 4 has an invalid length.
[  585.787491][T21584] xt_hashlimit: max too large, truncated to 1048576
[  586.033888][T21615] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  586.033888][T21615]    program syz.1.14454 not setting count and/or reply_len properly
[  586.116943][T21622] netem: change failed
[  586.244649][T21644] pim6reg: entered allmulticast mode
[  586.282155][T21644] pim6reg: left allmulticast mode
[  586.538315][   T29] kauditd_printk_skb: 957 callbacks suppressed
[  586.538329][   T29] audit: type=1400 audit(2000000148.875:40398): avc:  denied  { getopt } for  pid=21603 comm="+}[@" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  586.757046][T21683] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  586.757046][T21683]    program syz.3.14470 not setting count and/or reply_len properly
[  586.789455][T21689] xt_hashlimit: max too large, truncated to 1048576
[  586.858382][   T29] audit: type=1326 audit(2000000149.175:40399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  586.882283][   T29] audit: type=1326 audit(2000000149.175:40400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  586.935558][   T29] audit: type=1326 audit(2000000149.231:40401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  586.959363][   T29] audit: type=1326 audit(2000000149.231:40402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  586.983428][   T29] audit: type=1326 audit(2000000149.231:40403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  587.007284][   T29] audit: type=1326 audit(2000000149.231:40404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  587.031023][   T29] audit: type=1326 audit(2000000149.231:40405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  587.054794][   T29] audit: type=1326 audit(2000000149.231:40406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  587.078531][   T29] audit: type=1326 audit(2000000149.231:40407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21695 comm="syz.3.14488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  587.108046][T21708] netem: change failed
[  587.171504][T21717] pim6reg: entered allmulticast mode
[  587.179983][T21717] pim6reg: left allmulticast mode
[  587.198132][T21725] SELinux: failed to load policy
[  587.210849][T21727] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  587.210849][T21727]    program syz.7.14490 not setting count and/or reply_len properly
[  587.328973][T21735] __nla_validate_parse: 17 callbacks suppressed
[  587.328994][T21735] netlink: 24 bytes leftover after parsing attributes in process `syz.8.14494'.
[  587.394459][T21750] netlink: 2048 bytes leftover after parsing attributes in process `syz.5.14493'.
[  587.403912][T21750] netlink: 36 bytes leftover after parsing attributes in process `syz.5.14493'.
[  587.481356][T21763] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  587.481356][T21763]    program syz.8.14504 not setting count and/or reply_len properly
[  587.517041][T21767] SELinux: failed to load policy
[  587.847796][T21813] netlink: 8 bytes leftover after parsing attributes in process `syz.8.14526'.
[  588.204884][T21820] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  588.204884][T21820]    program syz.5.14518 not setting count and/or reply_len properly
[  588.253898][T21824] usb usb1: usbfs: interface 0 claimed by hub while 'syz.7.14529' sets config #1
[  588.381042][T21834] usb usb1: usbfs: interface 0 claimed by hub while 'syz.8.14536' sets config #1
[  588.401166][T21836] netlink: 24 bytes leftover after parsing attributes in process `syz.7.14525'.
[  588.503870][T21857] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14535'.
[  588.552199][T21862] netlink: 'syz.7.14531': attribute type 4 has an invalid length.
[  588.659795][T21873] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.14541' sets config #1
[  588.691013][T21877] netlink: 24 bytes leftover after parsing attributes in process `syz.1.14543'.
[  588.852643][T21912] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14556'.
[  588.926901][T21925] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.14558' sets config #1
[  588.944010][T21927] netlink: 24 bytes leftover after parsing attributes in process `syz.5.14560'.
[  588.974390][T21932] tipc: New replicast peer: 10.1.1.2
[  588.979950][T21932] tipc: Enabled bearer <udp:syz0>, priority 10
[  588.997654][T21935] smc: net device bond0 applied user defined pnetid SYZ2
[  589.011837][T21935] smc: net device bond0 erased user defined pnetid SYZ2
[  589.245476][T21975] netlink: 8 bytes leftover after parsing attributes in process `syz.8.14570'.
[  589.245964][T21976] usb usb1: usbfs: interface 0 claimed by hub while 'syz.5.14572' sets config #1
[  589.254781][T21975] IPVS: Error joining to the multicast group
[  589.585688][T22013] usb usb1: usbfs: interface 0 claimed by hub while 'syz.8.14584' sets config #1
[  589.639291][T22011] netlink: 'syz.1.14583': attribute type 4 has an invalid length.
[  589.658445][T22016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4371 sclass=netlink_route_socket pid=22016 comm=syz.7.14585
[  589.751225][T22027] smc: net device bond0 applied user defined pnetid SYZ2
[  589.768194][T22027] smc: net device bond0 erased user defined pnetid SYZ2
[  590.052818][T22059] netlink: 'syz.8.14602': attribute type 4 has an invalid length.
[  590.282489][T22109] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4371 sclass=netlink_route_socket pid=22109 comm=syz.8.14617
[  590.314337][T22112] xt_hashlimit: max too large, truncated to 1048576
[  590.371807][T22119] netlink: 'syz.8.14620': attribute type 4 has an invalid length.
[  590.779745][T22145] IPVS: Error connecting to the multicast addr
[  590.880686][T22160] loop7: detected capacity change from 0 to 1024
[  590.919108][T22167] loop1: detected capacity change from 0 to 1024
[  590.928849][T22160] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  590.950930][T22167] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  590.953833][T22165] netlink: 'syz.8.14637': attribute type 4 has an invalid length.
[  590.992075][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  591.006600][ T6938] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  591.378500][T22244] ref_ctr_offset mismatch. inode: 0x13ba offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000000
[  591.571112][T22249] loop7: detected capacity change from 0 to 512
[  591.595772][T22249] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  591.620031][T22249] EXT4-fs (loop7): 1 truncate cleaned up
[  591.626179][T22249] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  591.692577][T22281] tipc: Failed to remove unknown binding: 66,1,1/0:1371284364/1371284366
[  591.701338][T22281] tipc: Failed to remove unknown binding: 66,1,1/0:1371284364/1371284366
[  591.721242][T22283] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  591.732913][T22283] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  591.752531][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  591.941252][T22317] netlink: 'syz.1.14687': attribute type 1 has an invalid length.
[  591.949149][T22317] netlink: 'syz.1.14687': attribute type 2 has an invalid length.
[  592.007748][T22329] loop3: detected capacity change from 0 to 1024
[  592.046061][T22329] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  592.057443][T22336] loop7: detected capacity change from 0 to 512
[  592.068113][   T29] kauditd_printk_skb: 198 callbacks suppressed
[  592.068187][   T29] audit: type=1400 audit(2000000154.048:40606): avc:  denied  { append open } for  pid=22328 comm="syz.3.14701" path="/3003/file1/memory.events" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  592.121128][   T29] audit: type=1400 audit(2000000154.086:40607): avc:  denied  { write } for  pid=22328 comm="syz.3.14701" name="memory.events" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  592.147423][T22336] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  592.171686][T22336] ext4 filesystem being mounted at /338/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  592.182942][   T29] audit: type=1400 audit(2000000154.161:40608): avc:  denied  { rmdir } for  pid=3317 comm="syz-executor" name="lost+found" dev="loop3" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  592.210010][   T29] audit: type=1400 audit(2000000154.189:40609): avc:  denied  { unlink } for  pid=3317 comm="syz-executor" name="file1" dev="loop3" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  592.233001][   T29] audit: type=1400 audit(2000000154.189:40610): avc:  denied  { unlink } for  pid=3317 comm="syz-executor" name="memory.events" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  592.236300][T22343] ref_ctr_offset mismatch. inode: 0x1467 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000000
[  592.256195][   T29] audit: type=1400 audit(2000000154.207:40611): avc:  denied  { create } for  pid=22335 comm="syz.7.14692" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  592.269960][T22336] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #2: comm syz.7.14692: corrupted inode contents
[  592.315914][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.335034][T22336] EXT4-fs error (device loop7): ext4_dirty_inode:6459: inode #2: comm syz.7.14692: mark_inode_dirty error
[  592.346986][T22336] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #2: comm syz.7.14692: corrupted inode contents
[  592.380571][T22336] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #2: comm syz.7.14692: mark_inode_dirty error
[  592.412170][   T29] audit: type=1400 audit(2000000154.376:40612): avc:  denied  { create } for  pid=22335 comm="syz.7.14692" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[  592.435438][T22363] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #2: comm syz.7.14692: corrupted inode contents
[  592.456520][T22363] EXT4-fs error (device loop7): ext4_dirty_inode:6459: inode #2: comm syz.7.14692: mark_inode_dirty error
[  592.471616][   T29] audit: type=1400 audit(2000000154.394:40613): avc:  denied  { relabelto } for  pid=22335 comm="syz.7.14692" name="/" dev="loop7" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  592.497931][   T29] audit: type=1326 audit(2000000154.404:40614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22365 comm="syz.3.14704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  592.521645][   T29] audit: type=1326 audit(2000000154.404:40615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22365 comm="syz.3.14704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9e57e0e929 code=0x7ffc0000
[  592.542918][T22372] tipc: Failed to remove unknown binding: 66,1,1/2886997005:2185013275/2185013277
[  592.551887][T22363] EXT4-fs error (device loop7): ext4_do_update_inode:5568: inode #2: comm syz.7.14692: corrupted inode contents
[  592.554548][T22372] tipc: Failed to remove unknown binding: 66,1,1/2886997005:2185013275/2185013277
[  592.584716][T22375] netlink: 'syz.8.14708': attribute type 1 has an invalid length.
[  592.592645][T22375] netlink: 'syz.8.14708': attribute type 2 has an invalid length.
[  592.747571][T22397] ref_ctr_offset mismatch. inode: 0x3d7e offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000000
[  592.762051][T22400] __nla_validate_parse: 17 callbacks suppressed
[  592.762066][T22400] netlink: 4 bytes leftover after parsing attributes in process `syz.5.14716'.
[  592.778429][T22400] netlink: 4 bytes leftover after parsing attributes in process `syz.5.14716'.
[  592.845837][T22409] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  593.018943][ T3865] bond0 (unregistering): Released all slaves
[  593.027534][ T3865] bond1 (unregistering): Released all slaves
[  593.035843][ T3865] bond2 (unregistering): Released all slaves
[  593.094149][ T3865] tipc: Disabling bearer <udp:s >
[  593.099487][ T3865] tipc: Left network mode
[  593.126544][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  593.175788][ T3865] hsr_slave_0: left promiscuous mode
[  593.182635][ T3865] hsr_slave_1: left promiscuous mode
[  593.249049][T22401] chnl_net:caif_netlink_parms(): no params data found
[  593.284851][T22560] tipc: Failed to remove unknown binding: 66,1,1/0:2369318939/2369318941
[  593.293428][T22560] tipc: Failed to remove unknown binding: 66,1,1/0:2369318939/2369318941
[  593.313653][T22401] bridge0: port 1(bridge_slave_0) entered blocking state
[  593.321149][T22401] bridge0: port 1(bridge_slave_0) entered disabled state
[  593.332488][T22597] netlink: 24 bytes leftover after parsing attributes in process `syz.7.14721'.
[  593.342084][T22401] bridge_slave_0: entered allmulticast mode
[  593.348519][T22401] bridge_slave_0: entered promiscuous mode
[  593.355554][T22597] netlink: 'syz.7.14721': attribute type 1 has an invalid length.
[  593.363532][T22401] bridge0: port 2(bridge_slave_1) entered blocking state
[  593.370678][T22401] bridge0: port 2(bridge_slave_1) entered disabled state
[  593.393899][T22401] bridge_slave_1: entered allmulticast mode
[  593.403065][T22401] bridge_slave_1: entered promiscuous mode
[  593.445664][T22401] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  593.459804][T22401] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  593.479148][T22632] loop3: detected capacity change from 0 to 1024
[  593.499992][T22401] team0: Port device team_slave_0 added
[  593.506105][T22632] EXT4-fs: Ignoring removed i_version option
[  593.513277][T22632] EXT4-fs: Ignoring removed mblk_io_submit option
[  593.520467][T22401] team0: Port device team_slave_1 added
[  593.526322][T22632] EXT4-fs: Ignoring removed nobh option
[  593.551961][T22632] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  593.572947][T22401] batman_adv: batadv0: Adding interface: batadv_slave_0
[  593.580027][T22401] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  593.606303][T22401] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  593.623103][T22632] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.14726: Allocating blocks 385-513 which overlap fs metadata
[  593.637849][T22401] batman_adv: batadv0: Adding interface: batadv_slave_1
[  593.644897][T22401] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  593.670885][T22401] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  593.684859][T22631] EXT4-fs (loop3): pa ffff888106a8f620: logic 16, phys. 129, len 24
[  593.692913][T22631] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8
[  593.736898][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  593.738005][T22401] hsr_slave_0: entered promiscuous mode
[  593.764735][T22401] hsr_slave_1: entered promiscuous mode
[  593.999077][T22828] SET target dimension over the limit!
[  594.018207][T22831] loop7: detected capacity change from 0 to 256
[  594.048798][T22839] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  594.048798][T22839]    program syz.8.14763 not setting count and/or reply_len properly
[  594.207689][T22401] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  594.223993][T22401] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  594.240582][T22401] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  594.258784][T22401] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  594.317393][T22401] 8021q: adding VLAN 0 to HW filter on device bond0
[  594.335472][T22401] 8021q: adding VLAN 0 to HW filter on device team0
[  594.346973][ T3892] bridge0: port 1(bridge_slave_0) entered blocking state
[  594.354163][ T3892] bridge0: port 1(bridge_slave_0) entered forwarding state
[  594.365477][ T3954] bridge0: port 2(bridge_slave_1) entered blocking state
[  594.372608][ T3954] bridge0: port 2(bridge_slave_1) entered forwarding state
[  594.462992][T22401] 8021q: adding VLAN 0 to HW filter on device batadv0
[  594.561316][T22401] veth0_vlan: entered promiscuous mode
[  594.570020][T22401] veth1_vlan: entered promiscuous mode
[  594.589889][T22401] veth0_macvtap: entered promiscuous mode
[  594.598404][T22401] veth1_macvtap: entered promiscuous mode
[  594.610869][T22401] batman_adv: batadv0: Interface activated: batadv_slave_0
[  594.623217][T22401] batman_adv: batadv0: Interface activated: batadv_slave_1
[  594.633565][T22401] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  594.642394][T22401] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  594.651147][T22401] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  594.659948][T22401] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  594.873638][T22909] tipc: Failed to remove unknown binding: 66,1,1/0:1167250430/1167250432
[  594.877279][T22910] loop7: detected capacity change from 0 to 1024
[  594.882152][T22909] tipc: Failed to remove unknown binding: 66,1,1/0:1167250430/1167250432
[  594.901095][T22910] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  594.911087][T22910] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  594.922963][T22910] EXT4-fs error (device loop7): ext4_get_journal_inode:5796: inode #32: comm syz.7.14769: iget: special inode unallocated
[  594.936650][T22910] EXT4-fs (loop7): Remounting filesystem read-only
[  594.943216][T22910] EXT4-fs (loop7): no journal found
[  594.948522][T22910] EXT4-fs (loop7): can't get journal size
[  594.965097][T22913] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  594.965097][T22913]    program syz.5.14771 not setting count and/or reply_len properly
[  594.993911][T22910] EXT4-fs (loop7): filesystem is read-only
[  595.009154][T22910] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  595.067471][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  595.124184][T22925] SET target dimension over the limit!
[  595.245315][T22931] loop1: detected capacity change from 0 to 256
[  595.401071][T22948] sg_write: data in/out 3843/14 bytes for SCSI command 0x4-- guessing data in;
[  595.401071][T22948]    program syz.1.14788 not setting count and/or reply_len properly
[  595.401622][T22952] validate_nla: 1 callbacks suppressed
[  595.401640][T22952] netlink: 'syz.5.14783': attribute type 4 has an invalid length.
[  595.599163][T22970] loop3: detected capacity change from 0 to 1024
[  595.607678][T22973] SET target dimension over the limit!
[  595.645463][T22970] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  595.705345][T22970] EXT4-fs error (device loop3): __ext4_remount:6736: comm syz.3.14795: Abort forced by user
[  595.733604][T22970] EXT4-fs (loop3): Remounting filesystem read-only
[  595.740399][T22970] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  595.780800][T22994] netlink: 'syz.5.14803': attribute type 4 has an invalid length.
[  595.869286][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  596.209940][T23035] netlink: 'syz.3.14818': attribute type 4 has an invalid length.
[  596.237275][T23054] program syz.5.14828 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  596.239737][T23050] syzkaller1: entered promiscuous mode
[  596.252152][T23050] syzkaller1: entered allmulticast mode
[  596.332724][T23056] loop7: detected capacity change from 0 to 1024
[  596.369742][T23056] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  596.386783][T23056] EXT4-fs error (device loop7): mb_free_blocks:1948: group 0, inode 18: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  596.415700][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  596.656546][T23099] loop1: detected capacity change from 0 to 512
[  596.691727][T23099] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  596.752768][T23099] ext4 filesystem being mounted at /24/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  596.797062][T23099] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.14841: corrupted inode contents
[  596.841399][T23099] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #2: comm syz.1.14841: mark_inode_dirty error
[  596.879575][T23099] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.14841: corrupted inode contents
[  596.899826][T23099] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.14841: mark_inode_dirty error
[  596.937763][T23099] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.14841: corrupted inode contents
[  596.971895][T23099] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #2: comm syz.1.14841: mark_inode_dirty error
[  596.986624][T23106] netlink: 'syz.5.14843': attribute type 4 has an invalid length.
[  597.027008][T23099] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.14841: corrupted inode contents
[  597.233052][T23153] loop7: detected capacity change from 0 to 1024
[  597.241288][ T3892] dvmrp1 (unregistering): left allmulticast mode
[  597.257994][ T3892] team0: Port device geneve1 removed
[  597.266330][T23153] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  597.282637][T23153] EXT4-fs error (device loop7): __ext4_remount:6736: comm syz.7.14857: Abort forced by user
[  597.304955][T23153] EXT4-fs (loop7): Remounting filesystem read-only
[  597.311598][T23153] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  597.340154][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.375561][T23159] program syz.8.14859 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  597.405254][ T3892] $Hÿ (unregistering): Released all slaves
[  597.416071][ T3892] bond0 (unregistering): Released all slaves
[  597.462288][ T3892] tipc: Disabling bearer <udp:syz2>
[  597.467791][ T3892] tipc: Left network mode
[  597.472713][   T29] kauditd_printk_skb: 125 callbacks suppressed
[  597.472729][   T29] audit: type=1400 audit(2000000159.109:40741): avc:  denied  { execute } for  pid=23169 comm="syz.7.14871" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=136919 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  597.643767][T22401] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.713357][   T29] audit: type=1400 audit(2000000159.324:40742): avc:  denied  { map } for  pid=23200 comm="syz.7.14870" path="socket:[136060]" dev="sockfs" ino=136060 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  597.737249][   T29] audit: type=1400 audit(2000000159.324:40743): avc:  denied  { read } for  pid=23200 comm="syz.7.14870" path="socket:[136060]" dev="sockfs" ino=136060 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  597.868112][T23223] loop1: detected capacity change from 0 to 1024
[  597.897760][ T3892] team0 (unregistering): Port device batadv1 removed
[  597.907123][T23223] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  597.936735][ T3892] team0 (unregistering): Port device hsr_slave_0 removed
[  597.947474][ T3843] smc: removing ib device syz0
[  597.961110][ T3867] smc: removing ib device syz!
[  597.973271][T23223] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 18: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  598.009280][ T3892] smc: removing net device lo with user defined pnetid SYZ1
[  598.028644][T23232] netlink: 'syz.7.14882': attribute type 4 has an invalid length.
[  598.044078][T22401] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.148552][T23172] syz.8.14863: attempt to access beyond end of device
[  598.148552][T23172] loop17: rw=2048, sector=0, nr_sectors = 8 limit=0
[  598.182268][   T29] audit: type=1326 audit(2000000159.764:40744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23295 comm="syz.7.14876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc743f5e929 code=0x7ffc0000
[  598.206037][   T29] audit: type=1326 audit(2000000159.764:40745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23295 comm="syz.7.14876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc743f5e929 code=0x7ffc0000
[  598.236568][   T10] kernel write not supported for file [eventfd] (pid: 10 comm: kworker/0:1)
[  598.265001][   T29] audit: type=1326 audit(2000000159.829:40746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23295 comm="syz.7.14876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc743f5e929 code=0x7ffc0000
[  598.288776][   T29] audit: type=1326 audit(2000000159.829:40747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23295 comm="syz.7.14876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc743f5e929 code=0x7ffc0000
[  598.312823][   T29] audit: type=1326 audit(2000000159.829:40748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23295 comm="syz.7.14876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc743f5e929 code=0x7ffc0000
[  598.336640][   T29] audit: type=1326 audit(2000000159.829:40749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23295 comm="syz.7.14876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc743f5e929 code=0x7ffc0000
[  598.360441][   T29] audit: type=1326 audit(2000000159.829:40750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23295 comm="syz.7.14876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc743f5e929 code=0x7ffc0000
[  598.475729][T23124] chnl_net:caif_netlink_parms(): no params data found
[  598.550676][T23373] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125
[  598.594486][T23124] bridge0: port 1(bridge_slave_0) entered blocking state
[  598.601727][T23124] bridge0: port 1(bridge_slave_0) entered disabled state
[  598.609036][T23124] bridge_slave_0: entered allmulticast mode
[  598.616924][T23124] bridge_slave_0: entered promiscuous mode
[  598.623930][T23124] bridge0: port 2(bridge_slave_1) entered blocking state
[  598.624684][ T3892] IPVS: stop unused estimator thread 0...
[  598.631008][T23124] bridge0: port 2(bridge_slave_1) entered disabled state
[  598.644301][T23124] bridge_slave_1: entered allmulticast mode
[  598.650959][T23124] bridge_slave_1: entered promiscuous mode
[  598.669793][T23124] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  598.680315][T23124] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  598.702800][T23124] team0: Port device team_slave_0 added
[  598.709992][T23124] team0: Port device team_slave_1 added
[  598.728014][T23124] batman_adv: batadv0: Adding interface: batadv_slave_0
[  598.735171][T23124] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  598.761272][T23124] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  598.772807][T23124] batman_adv: batadv0: Adding interface: batadv_slave_1
[  598.779772][T23124] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  598.805837][T23124] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  598.834930][T23124] hsr_slave_0: entered promiscuous mode
[  598.840923][T23124] hsr_slave_1: entered promiscuous mode
[  598.846773][T23124] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  598.854328][T23124] Cannot create hsr debugfs directory
[  598.922864][T23124] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  598.931691][T23124] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  598.940499][T23124] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  598.949181][T23124] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  598.985092][T23124] 8021q: adding VLAN 0 to HW filter on device bond0
[  598.997519][T23124] 8021q: adding VLAN 0 to HW filter on device team0
[  599.007961][ T3865] bridge0: port 1(bridge_slave_0) entered blocking state
[  599.015168][ T3865] bridge0: port 1(bridge_slave_0) entered forwarding state
[  599.026452][  T328] bridge0: port 2(bridge_slave_1) entered blocking state
[  599.033551][  T328] bridge0: port 2(bridge_slave_1) entered forwarding state
[  599.098664][T23124] 8021q: adding VLAN 0 to HW filter on device batadv0
[  599.205855][T23124] veth0_vlan: entered promiscuous mode
[  599.214023][T23124] veth1_vlan: entered promiscuous mode
[  599.229186][T23124] veth0_macvtap: entered promiscuous mode
[  599.236550][T23124] veth1_macvtap: entered promiscuous mode
[  599.248586][T23124] batman_adv: batadv0: Interface activated: batadv_slave_0
[  599.261337][T23124] batman_adv: batadv0: Interface activated: batadv_slave_1
[  599.270671][T23124] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  599.279495][T23124] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  599.288265][T23124] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  599.297144][T23124] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  599.481781][T23618] loop9: detected capacity change from 0 to 1024
[  599.501382][T23618] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  599.523695][T23616] netlink: 'syz.1.14888': attribute type 4 has an invalid length.
[  599.576752][T23618] EXT4-fs error (device loop9): mb_free_blocks:1948: group 0, inode 18: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  599.602872][T23624] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=23624 comm=syz.8.14890
[  599.615676][T23624] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=23624 comm=syz.8.14890
[  599.676622][T23124] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  599.717720][T23634] SELinux: security policydb version 18 (MLS) not backwards compatible
[  599.726890][T23634] SELinux: failed to load policy
[  599.732156][   T10] kernel write not supported for file [eventfd] (pid: 10 comm: kworker/0:1)
[  599.795452][T23643] loop1: detected capacity change from 0 to 512
[  599.806251][T23643] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  599.901866][T22401] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  599.980350][T23653] netlink: 'syz.9.14906': attribute type 4 has an invalid length.
[  600.056805][T23607] syz.5.14898 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000
[  600.067998][T23607] CPU: 0 UID: 0 PID: 23607 Comm: syz.5.14898 Tainted: G        W           6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  600.068048][T23607] Tainted: [W]=WARN
[  600.068057][T23607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  600.068072][T23607] Call Trace:
[  600.068078][T23607]  <TASK>
[  600.068085][T23607]  __dump_stack+0x1d/0x30
[  600.068106][T23607]  dump_stack_lvl+0xe8/0x140
[  600.068138][T23607]  dump_stack+0x15/0x1b
[  600.068160][T23607]  dump_header+0x81/0x220
[  600.068232][T23607]  oom_kill_process+0x334/0x3f0
[  600.068276][T23607]  out_of_memory+0x979/0xb80
[  600.068332][T23607]  try_charge_memcg+0x5e6/0x9e0
[  600.068362][T23607]  charge_memcg+0x51/0xc0
[  600.068392][T23607]  mem_cgroup_swapin_charge_folio+0xcc/0x150
[  600.068502][T23607]  __read_swap_cache_async+0x1df/0x350
[  600.068539][T23607]  swap_cluster_readahead+0x277/0x3e0
[  600.068575][T23607]  swapin_readahead+0xde/0x6f0
[  600.068611][T23607]  ? __filemap_get_folio+0x49f/0x650
[  600.068714][T23607]  ? swap_cache_get_folio+0x77/0x200
[  600.068823][T23607]  do_swap_page+0x301/0x2430
[  600.068843][T23607]  ? css_rstat_updated+0xcd/0x5b0
[  600.068895][T23607]  ? __pfx_default_wake_function+0x10/0x10
[  600.068919][T23607]  handle_mm_fault+0x9a5/0x2be0
[  600.068940][T23607]  ? mas_walk+0xf2/0x120
[  600.069002][T23607]  do_user_addr_fault+0x636/0x1090
[  600.069043][T23607]  ? fpregs_restore_userregs+0xe2/0x1d0
[  600.069076][T23607]  ? switch_fpu_return+0xe/0x20
[  600.069149][T23607]  ? fpregs_assert_state_consistent+0xb4/0xe0
[  600.069207][T23607]  exc_page_fault+0x62/0xa0
[  600.069257][T23607]  asm_exc_page_fault+0x26/0x30
[  600.069279][T23607] RIP: 0033:0x7f53b1c3538c
[  600.069302][T23607] Code: 66 0f 1f 44 00 00 69 3d 26 03 e8 00 e8 03 00 00 48 8d 1d 27 0c 35 00 e8 02 95 12 00 eb 0c 48 81 c3 e0 00 00 00 48 39 eb 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 e0 00 00
[  600.069321][T23607] RSP: 002b:00007ffce37f9f40 EFLAGS: 00010202
[  600.069415][T23607] RAX: 0000000000000000 RBX: 00007f53b1f85fa0 RCX: 0000000000000000
[  600.069429][T23607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055558939d808
[  600.069442][T23607] RBP: 00007f53b1f87ba0 R08: 0000000000000000 R09: 7fffffffffffffff
[  600.069457][T23607] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000089936
[  600.069469][T23607] R13: 00007ffce37fa030 R14: ffffffffffffffff R15: 00007ffce37fa050
[  600.069491][T23607]  </TASK>
[  600.069498][T23607] memory: usage 307200kB, limit 307200kB, failcnt 203
[  600.310459][T23607] memory+swap: usage 307388kB, limit 9007199254740988kB, failcnt 0
[  600.318369][T23607] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0
[  600.325681][T23607] Memory cgroup stats for /syz5:
[  600.326457][T23607] cache 4096
[  600.334703][T23607] rss 0
[  600.337471][T23607] shmem 0
[  600.340408][T23607] mapped_file 0
[  600.343940][T23607] dirty 0
[  600.346904][T23607] writeback 4096
[  600.350567][T23607] workingset_refault_anon 17
[  600.355290][T23607] workingset_refault_file 0
[  600.359931][T23607] swap 192512
[  600.363287][T23607] swapcached 8192
[  600.366945][T23607] pgpgin 149193
[  600.370399][T23607] pgpgout 149190
[  600.374032][T23607] pgfault 203067
[  600.377600][T23607] pgmajfault 10
[  600.381056][T23607] inactive_anon 8192
[  600.384941][T23607] active_anon 0
[  600.388466][T23607] inactive_file 0
[  600.392103][T23607] active_file 4096
[  600.395826][T23607] unevictable 0
[  600.399295][T23607] hierarchical_memory_limit 314572800
[  600.404656][T23607] hierarchical_memsw_limit 9223372036854771712
[  600.410819][T23607] total_cache 4096
[  600.414606][T23607] total_rss 0
[  600.417936][T23607] total_shmem 0
[  600.421513][T23607] total_mapped_file 0
[  600.425496][T23607] total_dirty 0
[  600.428976][T23607] total_writeback 4096
[  600.433050][T23607] total_workingset_refault_anon 17
[  600.438154][T23607] total_workingset_refault_file 0
[  600.443239][T23607] total_swap 192512
[  600.447051][T23607] total_swapcached 8192
[  600.451253][T23607] total_pgpgin 149193
[  600.455287][T23607] total_pgpgout 149190
[  600.459350][T23607] total_pgfault 203067
[  600.463433][T23607] total_pgmajfault 10
[  600.467409][T23607] total_inactive_anon 8192
[  600.471888][T23607] total_active_anon 0
[  600.475903][T23607] total_inactive_file 0
[  600.480108][T23607] total_active_file 4096
[  600.484389][T23607] total_unevictable 0
[  600.488383][T23607] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.14898,pid=23607,uid=0
[  600.503243][T23607] Memory cgroup out of memory: Killed process 23607 (syz.5.14898) total-vm:93624kB, anon-rss:1064kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  600.778635][T32139] kernel write not supported for file [eventfd] (pid: 32139 comm: kworker/0:4)
[  601.083484][T23678] syz.9.14915: attempt to access beyond end of device
[  601.083484][T23678] loop19: rw=2048, sector=0, nr_sectors = 8 limit=0
[  601.773446][T23816] loop9: detected capacity change from 0 to 512
[  601.781821][T23816] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  601.843475][T23124] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.978737][   T10] usb usb2-port1: attempt power cycle
[  602.175115][T23844] syz.1.14940: attempt to access beyond end of device
[  602.175115][T23844] loop3: rw=2048, sector=0, nr_sectors = 8 limit=0
[  602.245778][ T3892] bond0 (unregistering): Released all slaves
[  602.314080][ T3892] hsr_slave_0: left promiscuous mode
[  602.341225][ T3892] hsr_slave_1: left promiscuous mode
[  602.349582][T23993] loop7: detected capacity change from 0 to 512
[  602.388607][T23993] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  602.401069][T23993] System zones: 0-2, 18-18, 34-34
[  602.406996][T23993] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.14944: bg 0: block 248: padding at end of block bitmap is not set
[  602.423421][T23993] EXT4-fs error (device loop7): ext4_acquire_dquot:6933: comm syz.7.14944: Failed to acquire dquot type 1
[  602.435592][T23993] EXT4-fs (loop7): 1 truncate cleaned up
[  602.437856][T23827] chnl_net:caif_netlink_parms(): no params data found
[  602.443604][T23993] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  602.475687][T23993] ext4 filesystem being mounted at /402/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  602.525315][T16839] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  602.552108][T23827] bridge0: port 1(bridge_slave_0) entered blocking state
[  602.559348][T23827] bridge0: port 1(bridge_slave_0) entered disabled state
[  602.576872][T23827] bridge_slave_0: entered allmulticast mode
[  602.583826][T23827] bridge_slave_0: entered promiscuous mode
[  602.590780][T23827] bridge0: port 2(bridge_slave_1) entered blocking state
[  602.597971][T23827] bridge0: port 2(bridge_slave_1) entered disabled state
[  602.605331][T23827] bridge_slave_1: entered allmulticast mode
[  602.614329][T23827] bridge_slave_1: entered promiscuous mode
[  602.646061][T23827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  602.663191][T23827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  602.698777][T23827] team0: Port device team_slave_0 added
[  602.706452][T23827] team0: Port device team_slave_1 added
[  602.727111][T23827] batman_adv: batadv0: Adding interface: batadv_slave_0
[  602.734117][T23827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  602.760235][T23827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  602.793101][T23827] batman_adv: batadv0: Adding interface: batadv_slave_1
[  602.800137][T23827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  602.826160][T23827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  602.864921][T23827] hsr_slave_0: entered promiscuous mode
[  602.874014][T23827] hsr_slave_1: entered promiscuous mode
[  602.880489][T23827] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  602.888429][T23827] Cannot create hsr debugfs directory
[  603.053350][T24278] loop1: detected capacity change from 0 to 512
[  603.081201][T24278] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  603.089496][T24278] System zones: 0-2, 18-18, 34-34
[  603.105431][T24278] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.14958: bg 0: block 248: padding at end of block bitmap is not set
[  603.120575][T24278] __quota_error: 31 callbacks suppressed
[  603.120590][T24278] Quota error (device loop1): write_blk: dquota write failed
[  603.133837][T24278] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  603.137453][T24224] chnl_net:caif_netlink_parms(): no params data found
[  603.143990][T24278] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.14958: Failed to acquire dquot type 1
[  603.164576][T24278] EXT4-fs (loop1): 1 truncate cleaned up
[  603.172516][T24278] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  603.185228][T24278] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  603.220891][T22401] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.232135][T24224] bridge0: port 1(bridge_slave_0) entered blocking state
[  603.239353][T24224] bridge0: port 1(bridge_slave_0) entered disabled state
[  603.246672][T24224] bridge_slave_0: entered allmulticast mode
[  603.253242][T24224] bridge_slave_0: entered promiscuous mode
[  603.260135][T24224] bridge0: port 2(bridge_slave_1) entered blocking state
[  603.267445][T24224] bridge0: port 2(bridge_slave_1) entered disabled state
[  603.275737][T24224] bridge_slave_1: entered allmulticast mode
[  603.282338][T24224] bridge_slave_1: entered promiscuous mode
[  603.369431][ T3892] bond0 (unregistering): Released all slaves
[  603.394320][T24224] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  603.406130][T24224] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  603.424410][ T3892] hsr_slave_0: left promiscuous mode
[  603.430039][ T3892] hsr_slave_1: left promiscuous mode
[  603.491353][T24224] team0: Port device team_slave_0 added
[  603.498298][T24224] team0: Port device team_slave_1 added
[  603.523336][T24224] batman_adv: batadv0: Adding interface: batadv_slave_0
[  603.530401][T24224] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.556489][T24224] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  603.568081][T24224] batman_adv: batadv0: Adding interface: batadv_slave_1
[  603.575135][T24224] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  603.601347][T24224] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  603.645253][T24224] hsr_slave_0: entered promiscuous mode
[  603.652600][T24224] hsr_slave_1: entered promiscuous mode
[  603.658625][T24224] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  603.666197][T24224] Cannot create hsr debugfs directory
[  603.671685][T23827] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  603.689776][T23827] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  603.699287][T23827] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  603.708618][T23827] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  603.778199][ T3892] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  603.832845][ T3892] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  603.872903][T23827] 8021q: adding VLAN 0 to HW filter on device bond0
[  603.894286][T23827] 8021q: adding VLAN 0 to HW filter on device team0
[  603.901555][T24554] chnl_net:caif_netlink_parms(): no params data found
[  603.917407][ T3892] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  603.941696][ T3847] bridge0: port 1(bridge_slave_0) entered blocking state
[  603.948848][ T3847] bridge0: port 1(bridge_slave_0) entered forwarding state
[  603.962896][ T3847] bridge0: port 2(bridge_slave_1) entered blocking state
[  603.970006][ T3847] bridge0: port 2(bridge_slave_1) entered forwarding state
[  604.005305][ T3892] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  604.015859][   T10] usb usb2-port1: unable to enumerate USB device
[  604.023273][T23648] vhci_hcd: invalid port number 64
[  604.028417][T23648] vhci_hcd: default hub control req: 6006 v0f02 i0040 l0
[  604.029000][T24554] bridge0: port 1(bridge_slave_0) entered blocking state
[  604.042742][T24554] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.051089][T24554] bridge_slave_0: entered allmulticast mode
[  604.058074][T24554] bridge_slave_0: entered promiscuous mode
[  604.065076][T24554] bridge0: port 2(bridge_slave_1) entered blocking state
[  604.072147][T24554] bridge0: port 2(bridge_slave_1) entered disabled state
[  604.079552][T24554] bridge_slave_1: entered allmulticast mode
[  604.086406][T24554] bridge_slave_1: entered promiscuous mode
[  604.110778][T24554] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  604.126126][T24554] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  604.152120][T24554] team0: Port device team_slave_0 added
[  604.158838][T24554] team0: Port device team_slave_1 added
[  604.180517][T24554] batman_adv: batadv0: Adding interface: batadv_slave_0
[  604.187654][T24554] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  604.213713][T24554] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  604.226237][T24554] batman_adv: batadv0: Adding interface: batadv_slave_1
[  604.233234][T24554] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  604.259350][T24554] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  604.314115][T24554] hsr_slave_0: entered promiscuous mode
[  604.320348][T24554] hsr_slave_1: entered promiscuous mode
[  604.326205][T24554] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  604.333837][T24554] Cannot create hsr debugfs directory
[  604.342315][ T3892] bridge_slave_1: left allmulticast mode
[  604.348004][ T3892] bridge_slave_1: left promiscuous mode
[  604.353695][ T3892] bridge0: port 2(bridge_slave_1) entered disabled state
[  604.361492][ T3892] bridge_slave_0: left allmulticast mode
[  604.367258][ T3892] bridge_slave_0: left promiscuous mode
[  604.372979][ T3892] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.460723][ T3892] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  604.470763][ T3892] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  604.480448][ T3892] bond0 (unregistering): Released all slaves
[  604.504013][T23827] 8021q: adding VLAN 0 to HW filter on device batadv0
[  604.511193][T24224] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  604.520931][T24224] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  604.539941][T24224] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  604.554415][T24224] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  604.569970][ T3892] hsr_slave_0: left promiscuous mode
[  604.575570][ T3892] hsr_slave_1: left promiscuous mode
[  604.581195][ T3892] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  604.588725][ T3892] batman_adv: batadv0: Removing interface: batadv_slave_0
[  604.596611][ T3892] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  604.604390][ T3892] batman_adv: batadv0: Removing interface: batadv_slave_1
[  604.614419][ T3892] veth1_macvtap: left promiscuous mode
[  604.619928][ T3892] veth0_macvtap: left promiscuous mode
[  604.625521][ T3892] veth1_vlan: left promiscuous mode
[  604.631124][ T3892] veth0_vlan: left promiscuous mode
[  604.693469][ T3892] team0 (unregistering): Port device team_slave_1 removed
[  604.703983][ T3892] team0 (unregistering): Port device team_slave_0 removed
[  604.788370][T24224] 8021q: adding VLAN 0 to HW filter on device bond0
[  604.802968][T24224] 8021q: adding VLAN 0 to HW filter on device team0
[  604.814709][ T3847] bridge0: port 1(bridge_slave_0) entered blocking state
[  604.821913][ T3847] bridge0: port 1(bridge_slave_0) entered forwarding state
[  604.834957][ T3954] bridge0: port 2(bridge_slave_1) entered blocking state
[  604.842149][ T3954] bridge0: port 2(bridge_slave_1) entered forwarding state
[  604.866161][T24224] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  604.876739][T24224] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  604.915965][T23827] veth0_vlan: entered promiscuous mode
[  604.924698][T23827] veth1_vlan: entered promiscuous mode
[  604.942914][T23827] veth0_macvtap: entered promiscuous mode
[  604.951216][T23827] veth1_macvtap: entered promiscuous mode
[  604.965448][T23827] batman_adv: batadv0: Interface activated: batadv_slave_0
[  604.976384][T24224] 8021q: adding VLAN 0 to HW filter on device batadv0
[  604.985382][T23827] batman_adv: batadv0: Interface activated: batadv_slave_1
[  604.995144][T23827] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  605.003944][T23827] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  605.012703][T23827] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  605.021469][T23827] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  605.077512][   T29] audit: type=1400 audit(2000000166.219:40780): avc:  denied  { write } for  pid=23827 comm="syz-executor" name="cgroup.procs" dev="cgroup" ino=151 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:logrotate_var_lib_t:s0"
[  605.078820][T24554] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  605.105406][   T29] audit: type=1400 audit(2000000166.219:40781): avc:  denied  { open } for  pid=23827 comm="syz-executor" path="/syzcgroup/cpu/syz2/cgroup.procs" dev="cgroup" ino=151 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:logrotate_var_lib_t:s0"
[  605.158562][   T29] audit: type=1400 audit(2000000166.284:40782): avc:  denied  { create } for  pid=25043 comm="syz.9.14969" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  605.168098][T24554] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  605.178416][   T29] audit: type=1400 audit(2000000166.284:40783): avc:  denied  { bind } for  pid=25043 comm="syz.9.14969" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  605.178443][   T29] audit: type=1400 audit(2000000166.284:40784): avc:  denied  { name_bind } for  pid=25043 comm="syz.9.14969" src=170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  605.178466][   T29] audit: type=1400 audit(2000000166.284:40785): avc:  denied  { node_bind } for  pid=25043 comm="syz.9.14969" src=170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  605.270819][T24554] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  605.290736][T24554] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  605.379418][T24554] 8021q: adding VLAN 0 to HW filter on device bond0
[  605.406415][T24224] veth0_vlan: entered promiscuous mode
[  605.420417][T24224] veth1_vlan: entered promiscuous mode
[  605.460479][T24554] 8021q: adding VLAN 0 to HW filter on device team0
[  605.486288][ T3892] bridge0: port 1(bridge_slave_0) entered blocking state
[  605.493388][ T3892] bridge0: port 1(bridge_slave_0) entered forwarding state
[  605.532615][ T3892] bridge0: port 2(bridge_slave_1) entered blocking state
[  605.539957][ T3892] bridge0: port 2(bridge_slave_1) entered forwarding state
[  605.566325][T24554] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  605.576841][T24554] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  605.610641][T24224] veth0_macvtap: entered promiscuous mode
[  605.622510][T24224] veth1_macvtap: entered promiscuous mode
[  605.637507][T24224] batman_adv: batadv0: Interface activated: batadv_slave_0
[  605.663451][T24224] batman_adv: batadv0: Interface activated: batadv_slave_1
[  605.681522][T24224] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  605.690491][T24224] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  605.699521][T24224] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  605.708432][T24224] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  605.728610][T25055] block device autoloading is deprecated and will be removed.
[  605.738335][   T29] audit: type=1400 audit(2000000166.827:40786): avc:  denied  { write } for  pid=25109 comm="syz.9.14977" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1
[  605.764657][T25055] syz.2.14962: attempt to access beyond end of device
[  605.764657][T25055] loop5: rw=2048, sector=0, nr_sectors = 8 limit=0
[  605.768705][T24554] 8021q: adding VLAN 0 to HW filter on device batadv0
[  605.924641][   T29] audit: type=1400 audit(2000000167.014:40787): avc:  denied  { mount } for  pid=25134 comm="syz.9.14979" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  606.046562][T24554] veth0_vlan: entered promiscuous mode
[  606.058359][T24554] veth1_vlan: entered promiscuous mode
[  606.078958][T24554] veth0_macvtap: entered promiscuous mode
[  606.086462][T25163] netlink: 300 bytes leftover after parsing attributes in process `syz.7.14984'.
[  606.100460][T24554] veth1_macvtap: entered promiscuous mode
[  606.120849][T24554] batman_adv: batadv0: Interface activated: batadv_slave_0
[  606.137662][T24554] batman_adv: batadv0: Interface activated: batadv_slave_1
[  606.149371][T24554] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  606.158150][T24554] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  606.167086][T24554] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  606.176071][T24554] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  606.229627][T25177] xt_hashlimit: max too large, truncated to 1048576
[  606.325604][T25191] loop2: detected capacity change from 0 to 256
[  606.333553][T25191] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  606.502599][T25206] loop7: detected capacity change from 0 to 2048
[  606.511163][T25211] loop4: detected capacity change from 0 to 512
[  606.543092][T25211] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  606.567635][T25211] EXT4-fs (loop4): invalid journal inode
[  606.569954][T25206] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  606.573326][T25211] EXT4-fs (loop4): can't get journal size
[  606.613862][T25206] EXT4-fs error (device loop7): ext4_check_all_de:659: inode #12: block 9: comm syz.7.14997: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=13, rec_len=21, size=892 fake=0
[  606.614285][T25211] EXT4-fs (loop4): 1 truncate cleaned up
[  606.639166][T25211] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  606.660647][T25206] EXT4-fs (loop7): Remounting filesystem read-only
[  606.703986][T24224] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  606.753682][T24554] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  607.585446][T25309] loop9: detected capacity change from 0 to 2048
[  607.596843][T25309] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  607.616942][T25314] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  607.641559][T25309] EXT4-fs error (device loop9): ext4_check_all_de:659: inode #12: block 9: comm syz.9.15037: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=13, rec_len=21, size=892 fake=0
[  607.668338][T25314] SELinux: failed to load policy
[  607.680659][T25309] EXT4-fs (loop9): Remounting filesystem read-only
[  607.745392][T23124] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  607.785690][T25329] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  607.800912][T25327] IPVS: stopping master sync thread 25329 ...
[  607.935061][T25352] loop2: detected capacity change from 0 to 512
[  607.942355][T25352] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  607.952159][T25352] EXT4-fs (loop2): invalid journal inode
[  607.959340][T25352] EXT4-fs (loop2): can't get journal size
[  607.968642][T25352] EXT4-fs (loop2): 1 truncate cleaned up
[  607.974882][T25352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  608.011860][T23827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.263110][T25383] loop2: detected capacity change from 0 to 8192
[  608.271065][T25383] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  608.302835][T25393] loop9: detected capacity change from 0 to 512
[  608.311762][T25393] EXT4-fs error (device loop9): ext4_iget_extra_inode:5035: inode #15: comm syz.9.15075: corrupted in-inode xattr: invalid ea_ino
[  608.325412][T25393] EXT4-fs error (device loop9): ext4_orphan_get:1398: comm syz.9.15075: couldn't read orphan inode 15 (err -117)
[  608.340488][T25393] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  608.358188][T25399] loop2: detected capacity change from 0 to 2048
[  608.367284][T25399] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.386755][T25399] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 9: comm syz.2.15076: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=13, rec_len=21, size=892 fake=0
[  608.405362][T25399] EXT4-fs (loop2): Remounting filesystem read-only
[  608.405629][T23124] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.437975][T23827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.478929][T25407] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  608.495443][T25407] SELinux: failed to load policy
[  608.507594][T25415] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  608.507652][T25412] IPVS: stopping master sync thread 25415 ...
[  608.613405][T25431] loop4: detected capacity change from 0 to 512
[  608.619955][   T29] kauditd_printk_skb: 105 callbacks suppressed
[  608.619967][   T29] audit: type=1326 audit(2000000169.530:40893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25432 comm="syz.7.15089" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f38c910e929 code=0x0
[  608.653961][T25431] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.15088: corrupted in-inode xattr: invalid ea_ino
[  608.667645][T25431] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.15088: couldn't read orphan inode 15 (err -117)
[  608.676486][T25438] netlink: 28 bytes leftover after parsing attributes in process `syz.9.15090'.
[  608.686214][   T29] audit: type=1326 audit(2000000169.586:40894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.712317][   T29] audit: type=1326 audit(2000000169.586:40895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.738829][   T29] audit: type=1326 audit(2000000169.642:40896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.762588][   T29] audit: type=1326 audit(2000000169.642:40897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.786301][   T29] audit: type=1326 audit(2000000169.642:40898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.809995][   T29] audit: type=1326 audit(2000000169.642:40899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.833928][   T29] audit: type=1326 audit(2000000169.642:40900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.857684][   T29] audit: type=1326 audit(2000000169.642:40901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.881373][   T29] audit: type=1326 audit(2000000169.642:40902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25429 comm="syz.4.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  608.955612][T25458] IPVS: Error connecting to the multicast addr
[  609.213884][T25489] netlink: 28 bytes leftover after parsing attributes in process `syz.8.15105'.
[  609.523974][T25498] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  609.534983][T25497] IPVS: stopping master sync thread 25498 ...
[  609.699864][T25518] netlink: 28 bytes leftover after parsing attributes in process `syz.7.15118'.
[  609.850723][T25543] netlink: 8 bytes leftover after parsing attributes in process `syz.9.15126'.
[  609.987973][T25568] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  610.002157][T25568] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  610.062011][T25581] netlink: 12 bytes leftover after parsing attributes in process `syz.9.15139'.
[  610.077445][T25581] netlink: 12 bytes leftover after parsing attributes in process `syz.9.15139'.
[  610.622763][T25604] SELinux: ebitmap: truncated map
[  610.630224][T25604] SELinux: failed to load policy
[  611.054871][T25641] netlink: 8 bytes leftover after parsing attributes in process `syz.8.15165'.
[  611.238759][ T3393] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  611.273691][ T3393] hid-generic 0000:0000:0000.001A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  611.274529][ T3847] nci: nci_rsp_packet: unknown rsp opcode 0x7
[  611.387165][T25688] xt_CT: You must specify a L4 protocol and not use inversions on it
[  611.455972][T25695] syzkaller1: entered promiscuous mode
[  611.461679][T25695] syzkaller1: entered allmulticast mode
[  611.677644][T25735] loop2: detected capacity change from 0 to 1024
[  611.684989][T25735] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  611.696058][T25735] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  611.707199][T25735] JBD2: no valid journal superblock found
[  611.713041][T25735] EXT4-fs (loop2): Could not load journal inode
[  611.725221][T25735] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ%ºu€
) failed with errno=-22
[  611.805285][T25746] SELinux: ebitmap: truncated map
[  611.816856][T25746] SELinux: failed to load policy
[  612.105486][T25768] netlink: 332 bytes leftover after parsing attributes in process `syz.7.15214'.
[  612.115040][T25768] netlink: 'syz.7.15214': attribute type 9 has an invalid length.
[  612.122939][T25768] netlink: 108 bytes leftover after parsing attributes in process `syz.7.15214'.
[  612.132187][T25768] netlink: 32 bytes leftover after parsing attributes in process `syz.7.15214'.
[  612.639024][T25794] loop9: detected capacity change from 0 to 164
[  612.795378][T25821] loop9: detected capacity change from 0 to 512
[  612.802861][T25821] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  612.815557][T25821] EXT4-fs (loop9): 1 truncate cleaned up
[  612.822267][T25821] EXT4-fs mount: 2 callbacks suppressed
[  612.822280][T25821] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  612.843109][T25828] loop2: detected capacity change from 0 to 256
[  612.863659][T23124] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  612.887485][T25836] loop9: detected capacity change from 0 to 512
[  612.894734][T25837] loop2: detected capacity change from 0 to 1024
[  612.902052][T25837] EXT4-fs: Ignoring removed nobh option
[  612.907788][T25837] EXT4-fs: Ignoring removed bh option
[  612.915037][T25836] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  612.927013][T25836] EXT4-fs (loop9): 1 truncate cleaned up
[  612.933237][T25836] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  612.948225][T25837] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  612.976736][T23124] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.017513][T25837] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.15242: Allocating blocks 497-513 which overlap fs metadata
[  613.143171][T23827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.225284][T25882] loop2: detected capacity change from 0 to 8192
[  613.341255][T25902] netlink: 596 bytes leftover after parsing attributes in process `syz.9.15262'.
[  613.590813][T25948] vhci_hcd: USB_PORT_FEAT_SUSPEND req not supported for USB 3.0 roothub
[  613.939904][T26015] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[  613.992285][T26019] netlink: 60 bytes leftover after parsing attributes in process `syz.8.15303'.
[  614.201855][   T29] kauditd_printk_skb: 213 callbacks suppressed
[  614.201870][   T29] audit: type=1400 audit(2000000174.759:41116): avc:  denied  { ioctl } for  pid=26053 comm="syz.9.15315" path="socket:[142658]" dev="sockfs" ino=142658 ioctlcmd=0x7459 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  614.247718][   T29] audit: type=1400 audit(2000000174.787:41117): avc:  denied  { cpu } for  pid=26042 comm="syz.7.15312" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  614.845160][T26105] rdma_op ffff88811f034980 conn xmit_rdma 0000000000000000
[  614.960817][T26112] netlink: 268 bytes leftover after parsing attributes in process `syz.9.15342'.
[  614.978908][T26114] loop4: detected capacity change from 0 to 512
[  615.007080][T26114] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  615.023495][T26114] EXT4-fs (loop4): invalid journal inode
[  615.035333][T26114] EXT4-fs (loop4): can't get journal size
[  615.052534][T26114] EXT4-fs (loop4): 1 truncate cleaned up
[  615.062548][T26114] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  615.145859][T24554] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  615.241273][   T29] audit: type=1326 audit(2000000175.723:41118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26141 comm="syz.4.15352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d545858e7 code=0x7ffc0000
[  615.265095][   T29] audit: type=1326 audit(2000000175.723:41119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26141 comm="syz.4.15352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d5452ab19 code=0x7ffc0000
[  615.288718][   T29] audit: type=1326 audit(2000000175.723:41120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26141 comm="syz.4.15352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d5458e929 code=0x7ffc0000
[  615.312485][   T29] audit: type=1326 audit(2000000175.723:41121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26141 comm="syz.4.15352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d545858e7 code=0x7ffc0000
[  615.336120][   T29] audit: type=1326 audit(2000000175.723:41122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26141 comm="syz.4.15352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d5452ab19 code=0x7ffc0000
[  615.360090][   T29] audit: type=1326 audit(2000000175.723:41123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26141 comm="syz.4.15352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d545858e7 code=0x7ffc0000
[  615.383816][   T29] audit: type=1326 audit(2000000175.723:41124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26141 comm="syz.4.15352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d5452ab19 code=0x7ffc0000
[  615.408340][   T29] audit: type=1326 audit(2000000175.723:41125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26141 comm="syz.4.15352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d545858e7 code=0x7ffc0000
[  615.653421][T26177] netlink: 268 bytes leftover after parsing attributes in process `syz.8.15367'.
[  615.694079][ T3400] usb usb2-port1: attempt power cycle
[  615.813215][T26168] chnl_net:caif_netlink_parms(): no params data found
[  615.836885][    T2] ==================================================================
[  615.845035][    T2] BUG: KCSAN: data-race in copy_process / memcpy_and_pad
[  615.852110][    T2] 
[  615.854450][    T2] write to 0xffff8881001d15f8 of 8 bytes by task 3865 on cpu 0:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  615.862104][    T2]  copy_process+0x1d42/0x1fe0
[  615.866828][    T2]  kernel_clone+0x16c/0x5b0
[  615.871359][    T2]  user_mode_thread+0x7d/0xb0
[  615.876091][    T2]  call_usermodehelper_exec_work+0x41/0x160
[  615.882033][    T2]  process_scheduled_works+0x4cb/0x9d0
[  615.887546][    T2]  worker_thread+0x582/0x770
[  615.892173][    T2]  kthread+0x486/0x510
[  615.896266][    T2]  ret_from_fork+0xda/0x150
[  615.900787][    T2]  ret_from_fork_asm+0x1a/0x30
[  615.905594][    T2] 
[  615.907932][    T2] read to 0xffff8881001d1040 of 3200 bytes by task 2 on cpu 1:
[  615.915524][    T2]  memcpy_and_pad+0x48/0x80
[  615.920074][    T2]  arch_dup_task_struct+0x2c/0x40
[  615.925130][    T2]  dup_task_struct+0x83/0x6a0
[  615.929826][    T2]  copy_process+0x399/0x1fe0
[  615.934442][    T2]  kernel_clone+0x16c/0x5b0
[  615.938993][    T2]  kernel_thread+0xac/0xe0
[  615.943449][    T2]  kthreadd+0x28d/0x360
[  615.947658][    T2]  ret_from_fork+0xda/0x150
[  615.952192][    T2]  ret_from_fork_asm+0x1a/0x30
[  615.956976][    T2] 
[  615.959306][    T2] Reported by Kernel Concurrency Sanitizer on:
[  615.965474][    T2] CPU: 1 UID: 0 PID: 2 Comm: kthreadd Tainted: G        W           6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(voluntary) 
[  615.979073][    T2] Tainted: [W]=WARN
[  615.982896][    T2] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  615.992994][    T2] ==================================================================
[  616.039235][ T5513] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  616.063872][T26168] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wg2": -EINTR
[  616.143235][ T5513] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  616.221864][ T5513] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  616.319010][ T5513] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  616.392361][ T5513] bridge_slave_1: left allmulticast mode
[  616.398043][ T5513] bridge_slave_1: left promiscuous mode
[  616.403741][ T5513] bridge0: port 2(bridge_slave_1) entered disabled state
[  616.411380][ T5513] bridge_slave_0: left allmulticast mode
[  616.417042][ T5513] bridge_slave_0: left promiscuous mode
[  616.422850][ T5513] bridge0: port 1(bridge_slave_0) entered disabled state
[  616.541274][ T5513] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  616.551134][ T5513] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  616.560803][ T5513] bond0 (unregistering): Released all slaves
[  616.627150][ T5513] hsr_slave_0: left promiscuous mode
[  616.632838][ T5513] hsr_slave_1: left promiscuous mode
[  616.638599][ T5513] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  616.646136][ T5513] batman_adv: batadv0: Removing interface: batadv_slave_0
[  616.653654][ T5513] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  616.661197][ T5513] batman_adv: batadv0: Removing interface: batadv_slave_1
[  616.671011][ T5513] veth1_macvtap: left promiscuous mode
[  616.676549][ T5513] veth0_macvtap: left promiscuous mode
[  616.682098][ T5513] veth1_vlan: left promiscuous mode
[  616.687392][ T5513] veth0_vlan: left promiscuous mode
[  616.745030][ T5513] team0 (unregistering): Port device team_slave_1 removed
[  616.754984][ T5513] team0 (unregistering): Port device team_slave_0 removed
[  617.324260][ T5513] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.385744][ T5513] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.449654][ T5513] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.523958][ T5513] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  617.579840][ T5513] bridge_slave_1: left allmulticast mode
[  617.585518][ T5513] bridge_slave_1: left promiscuous mode
[  617.591355][ T5513] bridge0: port 2(bridge_slave_1) entered disabled state
[  617.599129][ T5513] bridge_slave_0: left allmulticast mode
[  617.604829][ T5513] bridge_slave_0: left promiscuous mode
[  617.610503][ T5513] bridge0: port 1(bridge_slave_0) entered disabled state
[  617.651574][ T3400] usb usb2-port1: unable to enumerate USB device
[  617.658063][T25970] vhci_hcd: invalid port number 224
[  617.705281][ T5513] bond0 (unregistering): Released all slaves
[  617.769614][ T5513] bond0 (unregistering): Released all slaves
[  617.855783][ T5513] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  617.865742][ T5513] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  617.875156][ T5513] bond0 (unregistering): Released all slaves
[  617.919113][ T5513] tipc: Disabling bearer <udp:s >
[  617.924173][ T5513] tipc: Disabling bearer <udp:syz0>
[  617.929451][ T5513] tipc: Left network mode
[  617.937605][ T5513] hsr_slave_0: left promiscuous mode
[  617.944086][ T5513] hsr_slave_1: left promiscuous mode
[  617.951818][ T5513] hsr_slave_0: left promiscuous mode
[  617.957384][ T5513] hsr_slave_1: left promiscuous mode
[  617.963262][ T5513] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  617.970689][ T5513] batman_adv: batadv0: Removing interface: batadv_slave_0
[  617.978582][ T5513] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  617.986030][ T5513] batman_adv: batadv0: Removing interface: batadv_slave_1
[  617.996189][ T5513] veth1_macvtap: left promiscuous mode
[  618.001679][ T5513] veth0_macvtap: left promiscuous mode
[  618.007395][ T5513] veth1_vlan: left promiscuous mode
[  618.012750][ T5513] veth0_vlan: left promiscuous mode
[  618.148182][ T5513] team0 (unregistering): Port device team_slave_1 removed
[  618.159665][ T5513] team0 (unregistering): Port device team_slave_0 removed
[  618.957363][ T3865] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.031747][ T3865] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.084648][ T3865] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.159449][ T3865] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.256868][ T3865] bridge_slave_1: left allmulticast mode
[  619.262730][ T3865] bridge_slave_1: left promiscuous mode
[  619.268473][ T3865] bridge0: port 2(bridge_slave_1) entered disabled state
[  619.276275][ T3865] bridge_slave_0: left allmulticast mode
[  619.281920][ T3865] bridge_slave_0: left promiscuous mode
[  619.287700][ T3865] bridge0: port 1(bridge_slave_0) entered disabled state
[  619.362323][ T3865] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  619.372117][ T3865] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  619.381569][ T3865] bond0 (unregistering): Released all slaves
[  619.416606][ T3865] hsr_slave_0: left promiscuous mode
[  619.422360][ T3865] hsr_slave_1: left promiscuous mode
[  619.429099][ T3865] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  619.436534][ T3865] batman_adv: batadv0: Removing interface: batadv_slave_0
[  619.444012][ T3865] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  619.451478][ T3865] batman_adv: batadv0: Removing interface: batadv_slave_1
[  619.461712][ T3865] veth1_macvtap: left promiscuous mode
[  619.467480][ T3865] veth0_macvtap: left promiscuous mode
[  619.473006][ T3865] veth1_vlan: left promiscuous mode
[  619.478282][ T3865] veth0_vlan: left promiscuous mode
[  619.540499][ T3865] team0 (unregistering): Port device team_slave_1 removed
[  619.550492][ T3865] team0 (unregistering): Port device team_slave_0 removed