last executing test programs:

4.427601139s ago: executing program 0 (id=3501):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
open(&(0x7f00000005c0)='./bus\x00', 0x147a42, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='bridge_slave_1\x00', 0x10)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCFLSH(r3, 0x5608, 0x0)

4.427186719s ago: executing program 0 (id=3502):
r0 = socket$kcm(0xa, 0x3, 0x3a)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x1000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0x0, 0xac14140c}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)="8bcd", 0xffe3}], 0x1, 0x0, 0x0, 0x900}, 0x60)

4.41124914s ago: executing program 0 (id=3503):
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000047000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r2, &(0x7f0000003400)=[{&(0x7f0000001080)=""/107, 0x7ffff000}, {&(0x7f0000004c00)=""/4096, 0x1000}], 0x2)

4.386747623s ago: executing program 2 (id=3504):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r0)
sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)

4.340892986s ago: executing program 2 (id=3507):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ustat(0x6, &(0x7f0000000340))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc010000190001000000000000000000ac14141d000000000000000000000006ac1414bb00000000000000000000000000000000000000000a00800000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000044010500e0000002000000000000000000000000000000003c00000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb000000003c00000000000000fe80000000000000000000000000000000000000000000000000000000000000000000007f000001000000000000000000000000000000006c00000000000000ac1414aa0000000000000000000000000000000000000000000000000000000000000000fe880000000000000000000000000001000000002b00000000000000e00000010000000000000000000000000000000000000000000000000000000000000000ac1414bb000000000000000000000000000000006c00000002000000fc010000000000000000000000000000000000000400"/436], 0x1fc}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x10132)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="c4000000190001000000000000000000ac1414bb0000000000000000000000000000000000000000000000000000000000000000000100000a00000006000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000000080000000000000000000000000000000000000faffbffffffffffff4ff000000000000000000000000000000000000000000000000000000000000000000000000000009000000000000000000000000000000000000000000000000000000b06b6e0000000000000000000a0010000100000000000000"], 0xc4}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
rename(&(0x7f0000000600)='./file0\x00', 0x0)

4.107215307s ago: executing program 0 (id=3511):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xfffffffe, 0x1004, 0x1, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5}, 0x48)
r0 = semget$private(0x0, 0x6, 0x0)
semop(r0, &(0x7f00000001c0)=[{0x0, 0x8000}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
msgget$private(0x0, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000140)={{0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0x0, 0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x20, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0xffffffff}, 0x48)
msgsnd(0x0, &(0x7f00000000c0)=ANY=[], 0x2000, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfef, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
r3 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r3, 0x3)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r4, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r5 = accept4(r3, 0x0, 0x0, 0x0)
sendmmsg(r5, &(0x7f0000001500), 0x588, 0x0)
msgsnd(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB], 0x8, 0x0)
msgctl$IPC_RMID(0x0, 0x0)

4.105517197s ago: executing program 3 (id=3513):
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)

4.104718718s ago: executing program 4 (id=3514):
r0 = socket$kcm(0xa, 0x3, 0x3a)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x1000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0x0, 0xac14140c}}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000140)="8bcd", 0xffe3}], 0x1, 0x0, 0x0, 0x900}, 0x60)

4.027677084s ago: executing program 3 (id=3515):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
open(&(0x7f00000005c0)='./bus\x00', 0x147a42, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCFLSH(r3, 0x5608, 0x0)

4.015131555s ago: executing program 4 (id=3516):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000340), 0x74, 0x101341)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_misc(r2, &(0x7f0000000580)=ANY=[@ANYBLOB="ce89f80dd797418cc7d5fa06d7b21f3567d46203b903a6c0d2c9669f9d0340ac2c4157b14b95d483ab7939ba62f69a30fec02c7dd0a287567cd347ff3a8c11995a"], 0xed)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0)
syz_emit_ethernet(0x81c, &(0x7f0000001100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @random="e955f5ea6ade", @void, {@llc_tr={0x11, {@snap={0xaa, 0x0, "2fa4", "a74338", 0x88e7, "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"}}}}}, 0x0)
ioctl$USBDEVFS_IOCTL(r1, 0x80045510, &(0x7f0000000040)=@usbdevfs_driver={0x81, 0x25bd, 0x0})

3.967645009s ago: executing program 4 (id=3517):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20, @local}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000004680)=ANY=[@ANYBLOB="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"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7}, 0x48)
r2 = socket$kcm(0x29, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x9}]}, 0x10)
bind$bt_hci(r4, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f0000001480)=[{&(0x7f0000000300)=""/122, 0x7a}, {&(0x7f0000000240)=""/63, 0x3f}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x3)
ioctl$sock_bt_hci(r3, 0x800448d2, 0x0)
write$binfmt_script(r2, &(0x7f0000003300)={'#! ', './bus'}, 0xff1d)
recvmmsg(r2, &(0x7f0000000380)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)=""/121, 0x79}], 0x1}}], 0x2, 0xa2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000180)={r0, r1})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000040)=0x8000)
splice(r7, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0)
close(0xffffffffffffffff)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x1, 0x803, 0x0)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x80, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, r11}, [@IFLA_LINKINFO={0x50, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x40, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0xd}}, @IFLA_VLAN_INGRESS_QOS={0x28, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x401}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x9}}]}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}]}}}, @IFLA_LINK={0x8, 0x5, r11}, @IFLA_MASTER={0x8, 0xa, r11}]}, 0x80}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
dup2(r9, r7)
ioctl$int_in(0xffffffffffffffff, 0x541b, 0x0)
writev(r8, &(0x7f0000000280)=[{&(0x7f0000000180)='Y', 0x1}], 0x1)

2.326699294s ago: executing program 3 (id=3523):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000500)=@newtclass={0x454, 0x28, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x6}}, [@tclass_kind_options=@c_netem={0xa}, @tclass_kind_options=@c_cake={0x9}, @TCA_RATE={0x6}, @tclass_kind_options=@c_htb={{0x8}, {0x408, 0x2, [@TCA_HTB_CTAB={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x846e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5ff0b358, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}]}}]}, 0x454}}, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, 0x0, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @private2}}}, 0x30)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7f450700000053c407cd"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chdir(&(0x7f0000000100)='./file0\x00')
open(&(0x7f0000000300)='.\x00', 0xc00, 0x0)

1.366970049s ago: executing program 1 (id=3524):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x1000, 0x7}, 0x48)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000040)=@generic={0x0, r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r2}, &(0x7f0000000680)=0x2, &(0x7f00000006c0)}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r4=>0x0})
r5 = gettid()
timer_create(0x2, &(0x7f0000000180)={0x0, 0x4, 0x4, @tid=r5}, &(0x7f0000000140))
sched_setaffinity(r5, 0x8, &(0x7f0000000080)=0x9)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r6, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01dfffffff0000000000210000000c00018008000100", @ANYRES32=r4], 0x20}}, 0x0)

1.346102051s ago: executing program 0 (id=3525):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xffd, 0x7}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(0xffffffffffffffff, 0x6, 0x21, &(0x7f0000000040)="fdc3914d4ff37fc1eb21ef0ffe57d569", 0x10)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0), 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
mlockall(0x3)

1.345213931s ago: executing program 4 (id=3526):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000bc0)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@acl}, {@dioread_lock}]}, 0xfc, 0x572, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hvSuj6TKadKx14PbgXnyRIYg4EP8A330c/gP+FQMdDBlFH0So3PSmy9qkv5aZbPl84Lbn5N7bc78593t7Tm5CAhhYx7IfhYiXI+KbJOJQy7pi5CuPrW63/PD6VLYksbLy6Z9JJPljze2T/PeBvPJSRPz6VcTJwsZ2a4tLs+VKJZ3P62P1uStjtcWlU5fmyjPpTHp5YnLyzFuTE+++83bXYn39/N/ff3L3wzNfH1/+7uf7h28ncTYO5uta43gCN1orx8r/5qXhOLtuw/EuNNZPkl4fALsylOf5cGTXgEMxlGc98Pz7MiJWgAGVyH8YUM1xQHNu36V58DPjwQerE6BG7COt8RdXXxuJvY250f7l5LGZUTbfHe1C+1kbv/xx53a2xOavQ+zbog6wIzduRsTpYnHj9T/Jr3+7d7rx4vHm1rcxaP9/oJfuZuOfN9qN/wpr459oM/450CZ3d2Pr/C/c70IzHWXjv/fajn/XLl2jQ3nthcaYbzi5eKmSno6IFyPiRAzvyeqb3c85s3xvpdO61vFftmTtN8eC+XHcL+55fJ/pcr0cESNPEnfTg5sRrxTbxZ+s9X/Spv+z5+P8Nts4mt55tdO6reN/ulZ+initbf8/uqOVbH5/cqxxPow1z4qN/rp19LdO7fc6/qz/928e/2jSer+2tvM2ftz7T9pp3W7P/5Hks0a5mQTXyvX6/HjESPLxxscnHu3brDe3z+I/cXzz61+78z+bfH2+zfhvHbnVcdN+6P/pHfX/zgv3Pvrih07tb6//32yUTuSP5Ne/9vJzZbsH+KTPHwAAAAAAAPSTQkQcjKRQWisXCqXS6vs7jsT+QqVaq5+8WF24PB2Nz8qOxnCheaf7UMv7Icbz98M26xPr6pMRcTgivh3a16iXpqqV6V4HDwAAAAAAAAAAAAAAAAAAAH3iQIfP/2d+H+r10QFPXeOLDfb0+iiAXtjyK/+78U1PQF/aMv+B55b8h8El/2FwyX8YXPIfBpf8h8El/2FwyX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqvPnzmXLyvLD61NZffrq4sJs9eqp6bQ2W5pbmCpNVeevlGaq1ZlKWpqqzm319yrV6pXxiVi4NlZPa/Wx2uLShbnqwuX6hUtz5Zn0Qjr8v0QFAAAAAAAAAAAAAAAAAAAAz5ba4tJsuVJJ5xU6Ft6PvjiMpxngql3tXuyXKBQ6FG7m3buzvXp4UQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAdf4LAAD//++4Mnc=")
unshare(0x22020400)
unshare(0x20020400)
setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000900)=ANY=[], 0xfeeb, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x397, &(0x7f0000000180)={0x0, 0xff90}}, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, 0x0, 0x0)
socket(0x1, 0x803, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)

1.344811621s ago: executing program 3 (id=3527):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x454e, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$sock_int(r0, 0x1, 0xc, &(0x7f0000000000)=0x56, 0x4)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x60000000)

1.115285841s ago: executing program 3 (id=3528):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000140)=ANY=[@ANYRES16=0x0], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x401}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
r1 = syz_usbip_server_init(0x1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x5, &(0x7f0000000540)=ANY=[@ANYRESDEC=0x0], &(0x7f00000001c0)='syzkaller\x00', 0x9, 0x0, 0x0, 0x41000, 0x19, '\x00', 0x0, 0x2}, 0x90)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={0x0, &(0x7f0000000440)=""/66, 0xcb, 0x42, 0x1, 0x6}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_trie\x00')
preadv(r4, &(0x7f0000000b00)=[{&(0x7f0000000300)=""/30, 0x1e}], 0x1, 0x8, 0x0)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
sendmsg$can_j1939(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x4d8887eb)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYRESHEX=r3], 0x7c}, 0x1, 0x0, 0x0, 0x80001d0}, 0x40000)
sendmsg$NFT_BATCH(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[], 0x7c}}, 0xc004)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r7 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffc000/0x1000)=nil)
shmctl$IPC_RMID(r7, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmsg$netlink(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="1800000025000100000000000000000003"], 0x18}], 0x1}, 0x40)
syz_io_uring_setup(0x253e, 0x0, 0x0, 0x0)

1.069510945s ago: executing program 2 (id=3529):
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0x74, 0x101341)
ioctl$USBDEVFS_IOCTL(r0, 0x80045510, &(0x7f0000000040)=@usbdevfs_driver={0x81, 0x25bd, 0x0})

1.064749676s ago: executing program 1 (id=3530):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="40000000103f1f85236ccc4ce75fa61b6d6978d0", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0)

982.347023ms ago: executing program 4 (id=3531):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
close(r4)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/pm_trace', 0x40102, 0x0)
write$binfmt_misc(r3, &(0x7f00000000c0)=ANY=[@ANYRESHEX=r3], 0xfffffc8f)
splice(r2, 0x0, r4, 0x0, 0x1800, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x19, &(0x7f00000002c0)=0xfff)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r6, &(0x7f0000000280)=[{0x0}], 0x1, 0x0, 0x0)
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x10008, &(0x7f0000000000), 0x1, 0x4f5, &(0x7f0000000540)="$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")
ioctl$FS_IOC_GETFSLABEL(r7, 0x81009431, 0x0)
lgetxattr(0x0, &(0x7f0000000280)=ANY=[], 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000000)=[0x0])

981.882383ms ago: executing program 2 (id=3532):
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000047000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
readv(r2, &(0x7f0000003400)=[{&(0x7f0000001080)=""/107, 0x7ffff000}, {&(0x7f0000004c00)=""/4096, 0x1000}], 0x2)

931.747398ms ago: executing program 1 (id=3533):
r0 = socket$inet(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5)

931.240058ms ago: executing program 1 (id=3534):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c00001310000304000000000264b3bb31610000", @ANYRES16=r0, @ANYRES8], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x14)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r3 = dup(r2)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2f, 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000e80), r4)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000ec0)={'wpan1\x00', <r7=>0x0})
sendmsg$IEEE802154_LLSEC_SETPARAMS(r5, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000280)={0x24, r6, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}]}, 0x24}}, 0x0)
r8 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICADD(r5, &(0x7f0000000d40)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000d80)={0xbc, r8, 0x8, 0x70bd26, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_SECCTX={0x2a, 0x7, 'system_u:object_r:scanner_device_t:s0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:lost_found_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x11}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @remote}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @loopback}]}, 0xbc}, 0x1, 0x0, 0x0, 0x8046}, 0x4000000)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x9, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r9}, 0x10)
r10 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r11 = dup(r10)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x220481a, &(0x7f0000000c80)={[{@hide}, {@dmode={'dmode', 0x3d, 0x401}}, {@check_relaxed}, {@block={'block', 0x3d, 0x400}}, {@overriderock}, {@sbsector={'sbsector', 0x3d, 0xcc}}]}, 0x1, 0x9f1, &(0x7f0000000180)="$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")
ioctl$PTP_EXTTS_REQUEST2(r11, 0x43403d05, 0x0)

893.620001ms ago: executing program 1 (id=3535):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bond0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000005e000100"/20, @ANYRES32=r1, @ANYRES16], 0x1c}}, 0x0)
r2 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), r3)
sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000009c0)={&(0x7f0000000280)={0x28, r4, 0x21, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}]}, 0x28}}, 0x0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80844004}, 0xc, &(0x7f00000003c0)={&(0x7f00000004c0)={0xd0, r4, 0x10, 0x70bd2d, 0x25dfdbfb, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x20001}, 0x800)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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")
lsetxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000140), 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000001c0)='host1x_cdma_push\x00', r6}, 0x10)
r9 = syz_open_dev$sg(&(0x7f0000000440), 0x0, 0x2001)
ioctl$SCSI_IOCTL_SEND_COMMAND(r9, 0x1, &(0x7f0000000040)=ANY=[])

831.825436ms ago: executing program 1 (id=3536):
socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/attr/current\x00', 0x2, 0x0)
syz_io_uring_setup(0x4f3b, &(0x7f0000000500)={0x0, 0x11cd, 0x0, 0xffffffff, 0x1fa}, 0x0, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
timer_create(0x3, 0x0, &(0x7f0000000100))
move_pages(0x0, 0x20000000000001ab, &(0x7f0000000000), 0x0, &(0x7f0000000000)=[0x0], 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0xf5ffffff, 0x0, 0x0, 0x2)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r1=>0x0})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a800800028008000200080000003e"], 0x44}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0)
r4 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000000), 0x4)
fsmount(r4, 0x0, 0x0)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000140), 0x12)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180))
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000)={r6}, 0x8)
sendto$packet(r7, &(0x7f0000000040)="191eb970f745ff3f2365", 0xa, 0x4000085, &(0x7f00000000c0)={0x11, 0x1a, 0x0, 0x1, 0x5, 0x6, @local}, 0x14)

822.212557ms ago: executing program 2 (id=3537):
socket$igmp6(0xa, 0x3, 0x3a) (async)
r0 = socket$igmp6(0xa, 0x3, 0x3a)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0x22, &(0x7f0000000080)={{0xa, 0x0, 0x101, @mcast2}, {0xa, 0x0, 0x0, @local}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x3, 0x1]}}, 0x5c) (async)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0x22, &(0x7f0000000080)={{0xa, 0x0, 0x101, @mcast2}, {0xa, 0x0, 0x0, @local}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x3, 0x1]}}, 0x5c)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

735.564955ms ago: executing program 2 (id=3538):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20, @local}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000004680)=ANY=[@ANYBLOB="180000000300000000000000a012544f95002b000000000093adffa82255f674412d020000000000005ab527ee3697f1ed4436dd1164b1b3f427f6ba6b34f98125f30e631d273683626e00dc254d570d4a6b78a5833488cfe410090000004aa900003d3cd62f00158e6eee8501000000520a0000151d010000000100bf000000003bbd424c6e6cafbe9309aba218812868a51d129e78f6ae170bf5a52001a3cd000041f0db74596fd72c002a60c1bc7dc8c38b00f45f70685c6bd9ff41c69b7de4758c1096a1dc52f29e460a000517ebc406e89dcbb7677e6528b0856e31eb9474c0106fc48e1f8c1a5f6945ac24cf609068f6ff21e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d933bedf59ff232cebc68b91af50479387467824262852c7939db5672d07cdbe8e148bf56497e5d56d06c7551b870b2851c3f0a1aab71587a21c8f1b3369ebfcb4cb2946601b0f04edb256c604f068773f6db9d661bd7f0e2536f00000000000000005521458b7d1e341c6f864f983d745f5865aad41d29158ae7602a2d6cd41503f1aa3dc7f1580ace9bf2afd28d7157e67fb98d121a96eb372713255012e00300000000000000b35faae176f98b745eda2967199cc93685bb537e8e487166737089df20618cd4acf3e3dc10e13ef227f627a40000ad1fa253d33fa74f172d0007ae4e1e347c0cff28235a6bb7aa3804b907a8f2880c5cb1cb385e6add14652003c7cdd3324f07d134d3ed07f1c10900000009dd872ec64fa6c718bbd1aa591140cff0be4c6f8df08445e9734ae30aa9afdc7125f01ab03a9b1074407136b4506000f0916aada035df2e0452a9b39e73aeeb6eaf14652dda689e2051d9b7eb85f3f2d5aed65201cc2c51944da8d7391d5b6b9741aa3b76600cd1aa0afe5f8f46df4c5124caf673374b371867a79b31c6617fc3327191fbf514573f1e30d1fd2d763f3ee9218b15c1d60be2168fffcd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257bc97def5f07f2b77f05a4f81a9cf81109715b67ccd74089ed6b86f81ca3d247d8f71d290ed1b1a11f7a67125170c88c3b6a50696332226401b110da9c4407eca22debc99335583b00013c3130978fa069af8223b38ced735c2d90c6d84c30a0d87dc0c102000000000000009ef52134842e64171f3963841086e3797a4825d081f2d987f05c534187738655d7a6240412c8f283cc0c1eba2866dc9580000000000000007fffffffff554b82d9c162f3556076b80552d961ca74f1ffdaccf0ea5f02e0219ccb9087e6c3b3917bb74fd3d560700a1fab44e77e312b3b129e000302d613916c9bcf9f0000fac73a5b6bfb01efada800e50000000000fdaf2f7b3b79a433e08074ea2462974ab2cbd247eb1cfa2638f56daee57ed14bc74de0fd87a9ce638190f3570e0b4c80ef682df22237270955afb6008846557ee3bc09fda6dbb6550d597300eb82a184c96ffde5a30e5433d866665b98ca2002c836e89feef904c22ff2634b7bfbf5c0d586cda5b45fd00dede1e88a4d41dee7cc8d0834fb8d124638fec58faeb4c16abb440df2a694f4cdcaa400d503d79906958102000000000000000000001ffff0ef89b2a68d2bb2dd163e863314e8449801b52bb93f6c9084659ce777dda8563c859656a357770289a61faa95a82b04cfb7f2f97252e9322abe282c3344fc6738b4467893b9bf0d1c8130ae6b00110635376413c29f7c6f7b7e29b9f4bddd5e328661f4615e627a6f608ad53a4168fe8e5d7d934aa289b4bd2b870000000000000000000000000000bc4b4ff50000009b777883a02ffd92dfc4cb4114b9f9cf4ad155110cd3ace2b322ae31bfa27847c799c8869a1ea5b98e525e6383ad7fd9795170e7b11e247603000000001459c7f606d721d3979676bffb3049166ab84ac1061991bd57c2566c10c296352a5105b6164e3f2491e4793e590dcc71f110da96366c40dd44a2c9882d3aa0f8a797b8fea6efcfb5276b7679f15559cdaabf5fc14add71d0bca37405ded69b77ab4a3d7487fd50c5e22adef9546abb9b5fe7f30e4e0c13f60870fde1f88d830b11002135e8e7262f29b6d7923bfbe0bd2a8be179e56b3bff3792cee2fc37eee739c3008ce740d8804f8e705f0dc59d000021363e8df94ff175b48dc8c12def681a11647946595445bf1cb7d2778cd27a6b3b2966b011d193ba8075da1d1da9311a050000ab89524414cae922141f7baf17756c31559907a53581b6ebb790ad60bd03870c39d1ad12c750837e63f9880fd70259e35590afb4843cd4e9989398eaa89cefb3aa13cab8d015cbaf1561d95362decd73b8f8cbf8269cac091cfaaa3c7e46d6e79145fc0f1d1b383752ccb40515a772356d746914540216adf4c0f44f1cff3760afa252720ec6dad3a98671ecdaff46cddffb1f05a0c0976070d603a442d014822369fa3eacbb69bd1b0a074357acd5d02161fed146ad3aa15d2b8101b7bd1e091ada78ecd50181f4b35cae1b29aff91494c916323b61f815c4e0701657087ad11eef97952921365bc898ba2c76a9b6e0052f43b1ad2dfdf3f958fc1d32e692bc8846c78a956ada453c67c1c2cdc4f8b1c94e9adc106e85b31e030d955c5578e107a6e8ca0d4dd05344c3e2af25d9a3b0f7805624016aeab271a75f0bacb101a156ef8948064569154a7de08f80e4df4c339b69431b0a5671097d89212b465b0b32275deae10a77e334c9fc074d181bdeb5be80a6249d472e78e6be57a5ccd354cf0a74680bc9987d5aade221a2be926210b2690d09e4b7a3dea25403397439979c27d5613262de10bacecfff2d58437f422df4252c018795310c25e8fce18ed366ac2caade564ca869727a7dc26271e17d7aba48971835530311545273d3caadeb5d2017dcddab8f38f2068f68a4111ddd587b5df4b5d8f1ce00231a2092eb2e797c491a1e66f736c5867831c5d6eaa9ef1806fd95bbe00318000000000000259da51ff7517ace7361420a4669a97f7d0bf095c2787f00bdbfee19670d1e0ec5e6c3cb09972fa4d94993157b96d6695177c99d83716651129320924352cda7b8ead91c3301af620c1e8d703dd29ad77f54836779600bb0db3ecfad36fa8164999898e4aaa56324e1c03a74daf593f92a8ecc03f8c8e3af9ae07dc03780cc0d69da9e3528c1693fb51998731992ceb27dcc0be5be4decefe41b78bc1847bf54b087e095172f06cfa6d4bf958b1d4544947ff1230655199db4f475006047fe83caca97758dffa53cee764f85932eb20d54241b2d515c0826dfe1f0f40ae920455a4548fb35e2a345c05b1c252b7877bb3d834b0b3579a36249146f832ef258df5127318c7017ac1a996c4f902f82deb60fd113ccf812d55ffd625057bd4ff3960992b85bc8d32edfca386be16b1c549aec52e31e1405d86c7760282901750b732ec06b0db735222a731195633164704886a0c50a5db0d694028cdf61b9749d5d7bd79969a92114ca804a6365615ceb09ed22e4fc3a7d0e2ee4a5fc10f3d01346481e934e411d0e9d7a9fa515a2219b526d8f3e2b383ef694ff99257fc52c31a3503ce22e503214fa808301b489bb0cd8000000000000159c447fc6f1bf1137f6863aceb90d62dae497fe08f7e627727ad0919a62fe92a33f1e5d390000000000000000004135cb6dda469cd6622e6c36e9f005789e6b827c07b8f4f8d4f15695fe30d32ee6efe22cf8d299239eaa54e5c699a904a0344febb884d1cc94f552f48d84ee3431d817edc4bdb762d62778f30baee4aa428bba55f6cff1b5ba395d461db8ffe6fb89e1058a73bc8564c86497b92330b23cb3befb569cc67f15e349644a2c47924423e2983517074747680306eddd948e5211377575787cfa291ec8796dd7db6968791aea4f5e627b219e99bb9262493bbf04415b22ee398406ec88f6b758f6b240a87dc169f51d3a79fb512afae14fbc5e7808764b8550622c1e3080cdd6b21ce0f0324712343943f5e061df056b3b809c07e1318daf9ed1ebea0f95e302dab0b6bc52ed2aac8b950b448ca3a03d1bd21078c54f5cf86c5563b9bba2805a30574a4123e27d6f281f70ac769c62b49bf7cc73f0c9a2b84534d234d2eb136f8620d3e1147a7b7361618e0064cad6fe32685d143af0d378d54c0a5953c764ae8721bd23cba4701e9f0d7a6e1ba92c87b0384f8ee595d618f7cf5a80a0a2edc2541072e146c1e5a8f7b65c877af04e742cfdcac0641a11d51fd6dc88965691bce388005fbb071451bc260bcf7df8890d9c5c8ef47bc4ff5080a2a771f85b4f3d2a2259196a8423e7a992e9b320a40921f6f74d5b0e94be6c9c059e62ff53e5c2139806cca4545d88a7f7ff366e5d7f08a56609130931b64e3bb70000d38011b924ed9df6aa170c6d845f43c0bcbe3839cd1422944651a5908c76c3f3b4070aa1d896e4adc117698c452c9926442a000e128bb936a99536290f906c088cb10ee7bee50b7b013e4e1ff3481d77c7697738b46deebd9ac6e58b41341dcbfad161e3d529a504821549629ef63f8297bec881eb5edb07ed6c86640fb4128d7931e56bb89f0ce605"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x7}, 0x48)
r2 = socket$kcm(0x29, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x9}]}, 0x10)
bind$bt_hci(r4, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f0000001480)=[{&(0x7f0000000300)=""/122, 0x7a}, {&(0x7f0000000240)=""/63, 0x3f}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x3)
ioctl$sock_bt_hci(r3, 0x800448d2, 0x0)
write$binfmt_script(r2, &(0x7f0000003300)={'#! ', './bus'}, 0xff1d)
recvmmsg(r2, &(0x7f0000000380)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)=""/121, 0x79}], 0x1}}], 0x2, 0xa2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000180)={r0, r1})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000040)=0x8000)
splice(r7, 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0)
close(0xffffffffffffffff)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x1, 0x803, 0x0)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x80, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, r11}, [@IFLA_LINKINFO={0x50, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x40, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0xd}}, @IFLA_VLAN_INGRESS_QOS={0x28, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x401}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x1, 0x9}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x3, 0x9}}]}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}]}}}, @IFLA_LINK={0x8, 0x5, r11}, @IFLA_MASTER={0x8, 0xa, r11}]}, 0x80}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
dup2(r9, r7)
ioctl$int_in(0xffffffffffffffff, 0x541b, 0x0)
writev(r8, &(0x7f0000000280)=[{&(0x7f0000000180)='Y', 0x1}], 0x1)

567.20716ms ago: executing program 0 (id=3539):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000680)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f00000001c0)={0x2, &(0x7f0000000180)=[{0x2a2, 0x9, 0xe, 0x3}, {0x7, 0x9, 0x9, 0x6}]})
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x3, 0x3}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000005c0)={'ip6tnl0\x00', <r5=>0x0})
syz_clone(0x24001100, 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000300)={'netdevsim0\x00', <r9=>0x0})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r7, @ANYRES64=<r10=>r8, @ANYRES32=r9, @ANYBLOB="080006"], 0x30}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@bloom_filter={0x1e, 0x2, 0x9cd, 0x4, 0x90, r0, 0x0, '\x00', r9, 0xffffffffffffffff, 0x0, 0x2, 0x1, 0xd}, 0x48)
r11 = semget$private(0x0, 0x207, 0x0)
semtimedop(r11, &(0x7f00000002c0)=[{}, {0x0, 0xff78}], 0x2, 0x0)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="f406f6484369e2af960ed509d5298029e3fbff8e857d17747fbc417b60b69509db77c704e97db02e96b724e3b7470a6ce4eb1755f7900763e87065b284b596e4c77a12aab7ed23eee3ceecf4e1900487ac68bd395a5c8a6ea6d13ca257bdca88c71c552820305992959422d4470f38e7338168e6bfda18d29e2c22981ac9958b42", @ANYBLOB="ade57a1a46bdd46002ee6d1da18fabc121a071fbddd86aeaba709a43e2f365165cda1bda4e9ef127b664c1083177fd6b71240acf6ff8bed6334d2e2a788d67d8c528fe560904c41f2b64fe5d616d767d6d92b03a94e7bdcbf1b499122a6322bb3b179fbac33299b38fd34c8c17f07d68495745b6c69318a62a83f49d4cea74a9d0dfed55ab500b889d5dc008a8add26703eca9985d5bc3c9ff8b6e7b1d9af3ee87177df49a1478ab24b888a7143c6aab542530fc7261c2baa2e740094297be", @ANYRES16=r6, @ANYRES8=0x0, @ANYRES8=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x3, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000640), 0x19}, 0x10200}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r14 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000300)=ANY=[@ANYRES32=r10, @ANYRES32=r14, @ANYBLOB="0000000000000000b70800073bc269a2c84c0b000000292d7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES8=r2, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r12, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r15 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r15, 0xc018937e, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x2}}, './file0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r13}, 0x10)

295.399573ms ago: executing program 3 (id=3540):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ustat(0x6, &(0x7f0000000340))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc010000190001000000000000000000ac14141d000000000000000000000006ac1414bb00000000000000000000000000000000000000000a00800000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000044010500e0000002000000000000000000000000000000003c00000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb000000003c00000000000000fe80000000000000000000000000000000000000000000000000000000000000000000007f000001000000000000000000000000000000006c00000000000000ac1414aa0000000000000000000000000000000000000000000000000000000000000000fe880000000000000000000000000001000000002b00000000000000e00000010000000000000000000000000000000000000000000000000000000000000000ac1414bb000000000000000000000000000000006c00000002000000fc010000000000000000000000000000000000000400"/436], 0x1fc}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x10132)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYBLOB="c4000000190001000000000000000000ac1414bb0000000000000000000000000000000000000000000000000000000000000000000100000a00000006000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000000080000000000000000000000000000000000000faffbffffffffffff4ff000000000000000000000000000000000000000000000000000000000000000000000000000009000000000000000000000000000000000000000000000000000000b06b6e0000000000000000000a0010000100000000000000"], 0xc4}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)
rename(&(0x7f0000000600)='./file0\x00', 0x0)

0s ago: executing program 4 (id=3541):
r0 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0xfc, 0x0, 0x67b}]}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000280)=ANY=[@ANYRES8=r1, @ANYRES64=r1, @ANYRESOCT=r1], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
r4 = socket(0x2, 0x80805, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000740), 0xffffffffffffffff)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@ipv4_newroute={0x1c, 0x18, 0x35f32a6dfa748ddd}, 0x1c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r5}, 0x10)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/disk', 0x169a82, 0x0)
sendmmsg$inet(r4, &(0x7f0000014980)=[{{&(0x7f0000000140)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000240)=[{&(0x7f0000001c00)='{', 0x1}], 0x1}}, {{&(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010101}, 0x10, &(0x7f0000010700)=[{&(0x7f0000010140)="9b", 0x1}], 0x1}}], 0x2, 0x0)
sendmmsg$inet_sctp(r4, &(0x7f0000001a40)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000300)="8d", 0x1}], 0x1}], 0x1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

ace with an up link
[  200.435936][T12466] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  200.501011][T12466] team0: Port device team_slave_0 added
[  200.523030][   T29] kauditd_printk_skb: 724 callbacks suppressed
[  200.523044][   T29] audit: type=1326 audit(1725675966.244:12762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12490 comm="syz.4.3205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e2b1ccef9 code=0x7ffc0000
[  200.558838][T12466] team0: Port device team_slave_1 added
[  200.624527][T12466] batman_adv: batadv0: Adding interface: batadv_slave_0
[  200.631517][T12466] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.658216][T12466] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  200.688449][   T29] audit: type=1326 audit(1725675966.284:12763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12490 comm="syz.4.3205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e2b1ccef9 code=0x7ffc0000
[  200.801546][T12466] batman_adv: batadv0: Adding interface: batadv_slave_1
[  200.809165][T12466] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.835143][T12466] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  200.855508][T12495] syz.0.3206 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  200.869704][T12495] CPU: 0 UID: 0 PID: 12495 Comm: syz.0.3206 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  200.880618][T12495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  200.890762][T12495] Call Trace:
[  200.894028][T12495]  <TASK>
[  200.896954][T12495]  dump_stack_lvl+0xf2/0x150
[  200.901574][T12495]  dump_stack+0x15/0x20
[  200.905742][T12495]  dump_header+0x83/0x2d0
[  200.910159][T12495]  oom_kill_process+0x341/0x4c0
[  200.915122][T12495]  out_of_memory+0x9af/0xbe0
[  200.919719][T12495]  ? __rcu_read_unlock+0x4e/0x70
[  200.924713][T12495]  mem_cgroup_out_of_memory+0x13e/0x190
[  200.930333][T12495]  try_charge_memcg+0x51b/0x810
[  200.935191][T12495]  obj_cgroup_charge_pages+0xbd/0x1a0
[  200.940659][T12495]  __memcg_kmem_charge_page+0x9d/0x170
[  200.946162][T12495]  __alloc_pages_noprof+0x1bc/0x360
[  200.951436][T12495]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  200.956830][T12495]  alloc_pages_noprof+0xe1/0x100
[  200.961818][T12495]  __vmalloc_node_range_noprof+0x736/0xec0
[  200.967729][T12495]  __kvmalloc_node_noprof+0x121/0x170
[  200.973301][T12495]  ? ip_set_alloc+0x1f/0x30
[  200.977903][T12495]  ip_set_alloc+0x1f/0x30
[  200.982292][T12495]  hash_netiface_create+0x273/0x730
[  200.987669][T12495]  ? __nla_parse+0x40/0x60
[  200.992218][T12495]  ? __pfx_hash_netiface_create+0x10/0x10
[  200.998015][T12495]  ip_set_create+0x359/0x8a0
[  201.002619][T12495]  ? strnstr+0xf1/0x100
[  201.006841][T12495]  ? __nla_parse+0x40/0x60
[  201.011256][T12495]  nfnetlink_rcv_msg+0x4a9/0x570
[  201.016256][T12495]  netlink_rcv_skb+0x12c/0x230
[  201.021314][T12495]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  201.026781][T12495]  nfnetlink_rcv+0x16c/0x15e0
[  201.031546][T12495]  ? kmem_cache_free+0xd8/0x280
[  201.036405][T12495]  ? nlmon_xmit+0x51/0x60
[  201.040737][T12495]  ? __kfree_skb+0x102/0x150
[  201.045327][T12495]  ? consume_skb+0x57/0x180
[  201.049842][T12495]  ? nlmon_xmit+0x51/0x60
[  201.054271][T12495]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  201.059661][T12495]  ? __dev_queue_xmit+0xb86/0x1fe0
[  201.064811][T12495]  ? ref_tracker_free+0x3a5/0x410
[  201.069883][T12495]  ? __rcu_read_unlock+0x4e/0x70
[  201.074856][T12495]  ? __dev_queue_xmit+0x161/0x1fe0
[  201.079988][T12495]  ? __netlink_deliver_tap+0x495/0x4c0
[  201.085472][T12495]  netlink_unicast+0x599/0x670
[  201.090246][T12495]  netlink_sendmsg+0x5cc/0x6e0
[  201.095030][T12495]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.100341][T12495]  __sock_sendmsg+0x140/0x180
[  201.105038][T12495]  ____sys_sendmsg+0x312/0x410
[  201.109973][T12495]  __sys_sendmsg+0x1e9/0x280
[  201.114670][T12495]  ? futex_wait+0x18e/0x1c0
[  201.119295][T12495]  __x64_sys_sendmsg+0x46/0x50
[  201.124066][T12495]  x64_sys_call+0x2689/0x2d60
[  201.128797][T12495]  do_syscall_64+0xc9/0x1c0
[  201.133410][T12495]  ? clear_bhb_loop+0x55/0xb0
[  201.138105][T12495]  ? clear_bhb_loop+0x55/0xb0
[  201.142966][T12495]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.148968][T12495] RIP: 0033:0x7f1a87dfcef9
[  201.153377][T12495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.173021][T12495] RSP: 002b:00007f1a86a56038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  201.181441][T12495] RAX: ffffffffffffffda RBX: 00007f1a87fb6058 RCX: 00007f1a87dfcef9
[  201.189425][T12495] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000c
[  201.197425][T12495] RBP: 00007f1a87e6f046 R08: 0000000000000000 R09: 0000000000000000
[  201.205411][T12495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  201.213387][T12495] R13: 0000000000000000 R14: 00007f1a87fb6058 R15: 00007ffd9f840f88
[  201.221370][T12495]  </TASK>
[  201.224691][T12495] memory: usage 307196kB, limit 307200kB, failcnt 744
[  201.231881][T12495] memory+swap: usage 307472kB, limit 9007199254740988kB, failcnt 0
[  201.239908][T12495] kmem: usage 307056kB, limit 9007199254740988kB, failcnt 0
[  201.247228][T12495] Memory cgroup stats for /syz0:
[  201.247476][T12495] cache 135168
[  201.255831][T12495] rss 4096
[  201.258895][T12495] shmem 0
[  201.261826][T12495] mapped_file 135168
[  201.265754][T12495] dirty 135168
[  201.269179][T12495] writeback 0
[  201.272460][T12495] workingset_refault_anon 151
[  201.277394][T12495] workingset_refault_file 2398
[  201.282154][T12495] swap 282624
[  201.285437][T12495] swapcached 8192
[  201.289161][T12495] pgpgin 322971
[  201.292712][T12495] pgpgout 322936
[  201.296361][T12495] pgfault 299212
[  201.299898][T12495] pgmajfault 95
[  201.303350][T12495] inactive_anon 0
[  201.307021][T12495] active_anon 8192
[  201.310888][T12495] inactive_file 135168
[  201.314973][T12495] active_file 0
[  201.318460][T12495] unevictable 0
[  201.321962][T12495] hierarchical_memory_limit 314572800
[  201.327373][T12495] hierarchical_memsw_limit 9223372036854771712
[  201.333516][T12495] total_cache 135168
[  201.337515][T12495] total_rss 4096
[  201.341060][T12495] total_shmem 0
[  201.344572][T12495] total_mapped_file 135168
[  201.349448][T12495] total_dirty 135168
[  201.353380][T12495] total_writeback 0
[  201.357223][T12495] total_workingset_refault_anon 151
[  201.362483][T12495] total_workingset_refault_file 2398
[  201.367787][T12495] total_swap 282624
[  201.371582][T12495] total_swapcached 8192
[  201.375753][T12495] total_pgpgin 322971
[  201.379715][T12495] total_pgpgout 322936
[  201.383768][T12495] total_pgfault 299212
[  201.387885][T12495] total_pgmajfault 95
[  201.391876][T12495] total_inactive_anon 0
[  201.396179][T12495] total_active_anon 8192
[  201.400426][T12495] total_inactive_file 135168
[  201.405100][T12495] total_active_file 0
[  201.409089][T12495] total_unevictable 0
[  201.413060][T12495] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.3206,pid=12493,uid=0
[  201.428658][T12495] Memory cgroup out of memory: Killed process 12493 (syz.0.3206) total-vm:87200kB, anon-rss:696kB, file-rss:16168kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  201.571022][T12466] hsr_slave_0: entered promiscuous mode
[  201.601019][T12466] hsr_slave_1: entered promiscuous mode
[  201.619444][T12466] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  201.628960][T12466] Cannot create hsr debugfs directory
[  201.704086][T12507] xt_CT: You must specify a L4 protocol and not use inversions on it
[  201.759067][T12510] loop4: detected capacity change from 0 to 164
[  201.802441][   T29] audit: type=1326 audit(1725675967.524:12764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12512 comm="syz.2.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  201.826720][   T29] audit: type=1326 audit(1725675967.524:12765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12512 comm="syz.2.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  201.850650][   T29] audit: type=1326 audit(1725675967.524:12766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12512 comm="syz.2.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  201.875113][   T29] audit: type=1326 audit(1725675967.524:12767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12512 comm="syz.2.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  201.899503][   T29] audit: type=1326 audit(1725675967.524:12768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12512 comm="syz.2.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  201.923263][   T29] audit: type=1326 audit(1725675967.524:12769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12512 comm="syz.2.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  201.947636][   T29] audit: type=1326 audit(1725675967.524:12770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12512 comm="syz.2.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  201.971412][   T29] audit: type=1326 audit(1725675967.524:12771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12512 comm="syz.2.3211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  202.041039][T12466] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.120866][T12466] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.147394][T12532] syz.4.3219[12532] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  202.147451][T12532] syz.4.3219[12532] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  202.197977][T12536] SELinux:  Context system_u:object_r:event_device_t:s0 is not valid (left unmapped).
[  202.258068][T12466] team0: Port device netdevsim1 removed
[  202.265187][T12466] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.284354][T12539] xt_CT: You must specify a L4 protocol and not use inversions on it
[  202.371503][T12466] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.449105][T12542] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3223'.
[  202.470883][T12546] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  202.477418][T12546] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  202.484983][T12546] vhci_hcd vhci_hcd.0: Device attached
[  202.501629][T12545] loop3: detected capacity change from 0 to 512
[  202.529835][T12545] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.559136][T12545] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.578911][T12554] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3224'.
[  202.595796][T12545] program syz.3.3225 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  202.607903][T12466] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  202.623768][T12466] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  202.640773][T12466] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  202.649867][T10955] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.663632][T12466] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  202.727874][T12466] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.745449][T12466] 8021q: adding VLAN 0 to HW filter on device team0
[  202.756912][ T1324] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.764038][ T1324] bridge0: port 1(bridge_slave_0) entered forwarding state
[  202.772646][   T35] usb 9-1: new low-speed USB device number 3 using vhci_hcd
[  202.802015][ T1324] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.809166][ T1324] bridge0: port 2(bridge_slave_1) entered forwarding state
[  202.873957][T12537] syz.0.3220 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  202.888261][T12537] CPU: 0 UID: 0 PID: 12537 Comm: syz.0.3220 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  202.899086][T12537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  202.909215][T12537] Call Trace:
[  202.912526][T12537]  <TASK>
[  202.915480][T12537]  dump_stack_lvl+0xf2/0x150
[  202.920092][T12537]  dump_stack+0x15/0x20
[  202.924255][T12537]  dump_header+0x83/0x2d0
[  202.928651][T12537]  oom_kill_process+0x341/0x4c0
[  202.933528][T12537]  out_of_memory+0x9af/0xbe0
[  202.938136][T12537]  ? __rcu_read_unlock+0x4e/0x70
[  202.943130][T12537]  mem_cgroup_out_of_memory+0x13e/0x190
[  202.948689][T12537]  try_charge_memcg+0x51b/0x810
[  202.953662][T12537]  obj_cgroup_charge_pages+0xbd/0x1a0
[  202.959062][T12537]  __memcg_kmem_charge_page+0x9d/0x170
[  202.964581][T12537]  __alloc_pages_noprof+0x1bc/0x360
[  202.969786][T12537]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  202.975153][T12537]  alloc_pages_noprof+0xe1/0x100
[  202.980174][T12537]  __vmalloc_node_range_noprof+0x736/0xec0
[  202.986063][T12537]  __kvmalloc_node_noprof+0x121/0x170
[  202.991479][T12537]  ? ip_set_alloc+0x1f/0x30
[  202.995989][T12537]  ip_set_alloc+0x1f/0x30
[  203.000326][T12537]  hash_netiface_create+0x273/0x730
[  203.005556][T12537]  ? __nla_parse+0x40/0x60
[  203.009977][T12537]  ? __pfx_hash_netiface_create+0x10/0x10
[  203.015715][T12537]  ip_set_create+0x359/0x8a0
[  203.020324][T12537]  ? strnstr+0xf1/0x100
[  203.024599][T12537]  ? __nla_parse+0x40/0x60
[  203.029024][T12537]  nfnetlink_rcv_msg+0x4a9/0x570
[  203.034020][T12537]  netlink_rcv_skb+0x12c/0x230
[  203.038800][T12537]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  203.044295][T12537]  nfnetlink_rcv+0x16c/0x15e0
[  203.048990][T12537]  ? kmem_cache_free+0xd8/0x280
[  203.053860][T12537]  ? nlmon_xmit+0x51/0x60
[  203.058196][T12537]  ? __kfree_skb+0x102/0x150
[  203.062833][T12537]  ? consume_skb+0x57/0x180
[  203.067333][T12537]  ? nlmon_xmit+0x51/0x60
[  203.071813][T12537]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  203.077107][T12537]  ? __dev_queue_xmit+0xb86/0x1fe0
[  203.082218][T12537]  ? ref_tracker_free+0x3a5/0x410
[  203.087485][T12537]  ? __rcu_read_unlock+0x4e/0x70
[  203.092512][T12537]  ? __dev_queue_xmit+0x161/0x1fe0
[  203.097631][T12537]  ? __netlink_deliver_tap+0x495/0x4c0
[  203.103096][T12537]  netlink_unicast+0x599/0x670
[  203.107859][T12537]  netlink_sendmsg+0x5cc/0x6e0
[  203.112643][T12537]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.118000][T12537]  __sock_sendmsg+0x140/0x180
[  203.122703][T12537]  ____sys_sendmsg+0x312/0x410
[  203.127527][T12537]  __sys_sendmsg+0x1e9/0x280
[  203.132134][T12537]  ? futex_wait+0x18e/0x1c0
[  203.136684][T12537]  __x64_sys_sendmsg+0x46/0x50
[  203.141461][T12537]  x64_sys_call+0x2689/0x2d60
[  203.146155][T12537]  do_syscall_64+0xc9/0x1c0
[  203.150693][T12537]  ? clear_bhb_loop+0x55/0xb0
[  203.155368][T12537]  ? clear_bhb_loop+0x55/0xb0
[  203.160043][T12537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.166030][T12537] RIP: 0033:0x7f1a87dfcef9
[  203.170440][T12537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.190069][T12537] RSP: 002b:00007f1a86a56038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  203.198500][T12537] RAX: ffffffffffffffda RBX: 00007f1a87fb6058 RCX: 00007f1a87dfcef9
[  203.206553][T12537] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000b
[  203.214520][T12537] RBP: 00007f1a87e6f046 R08: 0000000000000000 R09: 0000000000000000
[  203.222541][T12537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  203.230553][T12537] R13: 0000000000000000 R14: 00007f1a87fb6058 R15: 00007ffd9f840f88
[  203.238599][T12537]  </TASK>
[  203.242695][T12537] memory: usage 307200kB, limit 307200kB, failcnt 941
[  203.250080][T12537] memory+swap: usage 307624kB, limit 9007199254740988kB, failcnt 0
[  203.258072][T12537] kmem: usage 307064kB, limit 9007199254740988kB, failcnt 0
[  203.265354][T12537] Memory cgroup stats for /syz0:
[  203.265662][T12537] cache 135168
[  203.274058][T12537] rss 0
[  203.277260][T12537] shmem 0
[  203.280209][T12537] mapped_file 135168
[  203.284114][T12537] dirty 135168
[  203.287511][T12537] writeback 0
[  203.290876][T12537] workingset_refault_anon 176
[  203.295582][T12537] workingset_refault_file 2398
[  203.300405][T12537] swap 434176
[  203.302978][T12547] vhci_hcd: connection closed
[  203.303669][T12537] swapcached 4096
[  203.303678][T12537] pgpgin 326112
[  203.303684][T12537] pgpgout 326078
[  203.308685][   T28] vhci_hcd: stop threads
[  203.312119][T12537] pgfault 302672
[  203.315478][   T28] vhci_hcd: release socket
[  203.315492][   T28] vhci_hcd: disconnect device
[  203.336054][T12537] pgmajfault 108
[  203.339601][T12537] inactive_anon 4096
[  203.343619][T12537] active_anon 0
[  203.347100][T12537] inactive_file 135168
[  203.351206][T12537] active_file 0
[  203.354684][T12537] unevictable 0
[  203.355683][T12466] 8021q: adding VLAN 0 to HW filter on device batadv0
[  203.358250][T12537] hierarchical_memory_limit 314572800
[  203.370379][T12537] hierarchical_memsw_limit 9223372036854771712
[  203.376552][T12537] total_cache 135168
[  203.380495][T12537] total_rss 0
[  203.383833][T12537] total_shmem 0
[  203.387349][T12537] total_mapped_file 135168
[  203.391763][T12537] total_dirty 135168
[  203.395728][T12537] total_writeback 0
[  203.399661][T12537] total_workingset_refault_anon 176
[  203.404956][T12537] total_workingset_refault_file 2398
[  203.410379][T12537] total_swap 434176
[  203.414217][T12537] total_swapcached 4096
[  203.418402][T12537] total_pgpgin 326112
[  203.422410][T12537] total_pgpgout 326078
[  203.426494][T12537] total_pgfault 302672
[  203.430563][T12537] total_pgmajfault 108
[  203.434626][T12537] total_inactive_anon 4096
[  203.439146][T12537] total_active_anon 0
[  203.443211][T12537] total_inactive_file 135168
[  203.447893][T12537] total_active_file 0
[  203.450404][T12466] veth0_vlan: entered promiscuous mode
[  203.451850][T12537] total_unevictable 0
[  203.451860][T12537] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz0,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.3220,pid=12534,uid=0
[  203.462957][T12466] veth1_vlan: entered promiscuous mode
[  203.476392][T12537] Memory cgroup out of memory: Killed process 12534 (syz.0.3220) total-vm:87200kB, anon-rss:568kB, file-rss:16164kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  203.570211][T12466] veth0_macvtap: entered promiscuous mode
[  203.580904][T12466] veth1_macvtap: entered promiscuous mode
[  203.593481][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.604129][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.614596][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.625096][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.634921][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.645979][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.655840][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.666264][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.676675][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.687195][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.697083][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.707684][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.718353][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.729126][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.739101][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.750237][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.760155][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  203.770731][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.785610][T12466] batman_adv: batadv0: Interface activated: batadv_slave_0
[  203.812643][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.823152][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.833108][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.845155][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.855340][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.866457][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.869568][T12578] loop3: detected capacity change from 0 to 164
[  203.876263][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.892935][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.903499][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.914021][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.923829][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.935046][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.944987][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.955463][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.965968][T12466] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  203.976412][T12466] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  203.988643][T12466] batman_adv: batadv0: Interface activated: batadv_slave_1
[  204.008384][T12466] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  204.017236][T12466] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  204.018450][T12577] program syz.0.3230 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  204.026202][T12466] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  204.044380][T12466] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  204.107950][T12587] loop1: detected capacity change from 0 to 512
[  204.122374][T12587] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.3197: casefold flag without casefold feature
[  204.136580][T12587] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.3197: couldn't read orphan inode 15 (err -117)
[  204.149746][T12587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.227127][T12466] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.310374][T12605] loop1: detected capacity change from 0 to 512
[  204.348497][T12605] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.374697][T12605] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.389797][T12605] program syz.1.3238 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  204.428314][T12466] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.470928][T12618] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  204.477675][T12618] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  204.485410][T12618] vhci_hcd vhci_hcd.0: Device attached
[  204.521380][T12618] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3244'.
[  204.557709][T12619] vhci_hcd: connection closed
[  204.557831][ T3359] vhci_hcd: stop threads
[  204.566916][ T3359] vhci_hcd: release socket
[  204.571415][ T3359] vhci_hcd: disconnect device
[  204.580355][T12615] loop3: detected capacity change from 0 to 164
[  204.647925][T12625] loop3: detected capacity change from 0 to 1024
[  204.664837][T12625] EXT4-fs: Ignoring removed orlov option
[  204.670617][T12625] EXT4-fs: Ignoring removed nomblk_io_submit option
[  204.701800][T12625] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  204.735158][T12633] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3248'.
[  204.755125][T10955] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.974353][T12655] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  204.980921][T12655] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  204.988500][T12655] vhci_hcd vhci_hcd.0: Device attached
[  205.000718][T12655] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3255'.
[  205.027827][T12656] vhci_hcd: connection closed
[  205.028026][ T3359] vhci_hcd: stop threads
[  205.037015][ T3359] vhci_hcd: release socket
[  205.041438][ T3359] vhci_hcd: disconnect device
[  205.413608][T12665] loop1: detected capacity change from 0 to 128
[  205.422074][T12665] FAULT_INJECTION: forcing a failure.
[  205.422074][T12665] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.435305][T12665] CPU: 0 UID: 0 PID: 12665 Comm: syz.1.3259 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  205.446102][T12665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  205.456421][T12665] Call Trace:
[  205.459695][T12665]  <TASK>
[  205.462610][T12665]  dump_stack_lvl+0xf2/0x150
[  205.467196][T12665]  dump_stack+0x15/0x20
[  205.471443][T12665]  should_fail_ex+0x229/0x230
[  205.476107][T12665]  should_fail+0xb/0x10
[  205.480265][T12665]  should_fail_usercopy+0x1a/0x20
[  205.485508][T12665]  strncpy_from_user+0x25/0x270
[  205.490553][T12665]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  205.496316][T12665]  getname_flags+0xb0/0x3b0
[  205.498659][T12668] loop3: detected capacity change from 0 to 512
[  205.500835][T12665]  __x64_sys_renameat2+0x61/0xa0
[  205.512127][T12665]  x64_sys_call+0x2cf1/0x2d60
[  205.512741][T12668] loop3: detected capacity change from 0 to 764
[  205.516947][T12665]  do_syscall_64+0xc9/0x1c0
[  205.523512][T12668] iso9660: Unknown parameter '>CŹÓcŹU©rÉĄ‚W¶ę'
[  205.527761][T12665]  ? clear_bhb_loop+0x55/0xb0
[  205.527788][T12665]  ? clear_bhb_loop+0x55/0xb0
[  205.536301][   T29] kauditd_printk_skb: 471 callbacks suppressed
[  205.536313][   T29] audit: type=1400 audit(1725675971.214:13241): avc:  denied  { remount } for  pid=12666 comm="syz.3.3257" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  205.538917][T12665]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.552369][   T29] audit: type=1326 audit(1725675971.264:13242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.570081][T12665] RIP: 0033:0x7f1f05f0cef9
[  205.570101][T12665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.570119][T12665] RSP: 002b:00007f1f04b87038 EFLAGS: 00000246
[  205.577753][   T29] audit: type=1326 audit(1725675971.264:13243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.599465][T12665]  ORIG_RAX: 000000000000013c
[  205.599480][T12665] RAX: ffffffffffffffda RBX: 00007f1f060c5f80 RCX: 00007f1f05f0cef9
[  205.599492][T12665] RDX: 0000000000000006 RSI: 0000000020000140 RDI: 0000000000000006
[  205.603942][   T29] audit: type=1326 audit(1725675971.264:13244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.623595][T12665] RBP: 00007f1f04b87090 R08: 0000000000000000 R09: 0000000000000000
[  205.623609][T12665] R10: 0000000020000240 R11: 0000000000000246 R12: 0000000000000001
[  205.623620][T12665] R13: 0000000000000000 R14: 00007f1f060c5f80 R15: 00007fff9080bd08
[  205.623638][T12665]  </TASK>
[  205.727687][   T29] audit: type=1326 audit(1725675971.264:13245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.742350][T12671] loop4: detected capacity change from 0 to 128
[  205.751333][   T29] audit: type=1326 audit(1725675971.264:13246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.782215][   T29] audit: type=1326 audit(1725675971.264:13247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.806309][   T29] audit: type=1326 audit(1725675971.264:13248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.829981][   T29] audit: type=1326 audit(1725675971.264:13249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.854142][   T29] audit: type=1326 audit(1725675971.264:13250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12666 comm="syz.3.3257" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f7de5cef9 code=0x7ffc0000
[  205.922752][T12682] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3265'.
[  206.128341][T12693] loop4: detected capacity change from 0 to 164
[  206.460178][T12711] loop3: detected capacity change from 0 to 1024
[  206.470883][T12711] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.502937][T10955] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  206.522831][T10955] EXT4-fs (loop3): Remounting filesystem read-only
[  206.864434][T12717] FAULT_INJECTION: forcing a failure.
[  206.864434][T12717] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.878226][T12717] CPU: 1 UID: 0 PID: 12717 Comm: syz.0.3277 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  206.889268][T12717] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  206.899332][T12717] Call Trace:
[  206.902607][T12717]  <TASK>
[  206.905574][T12717]  dump_stack_lvl+0xf2/0x150
[  206.910165][T12717]  dump_stack+0x15/0x20
[  206.914380][T12717]  should_fail_ex+0x229/0x230
[  206.919085][T12717]  should_fail+0xb/0x10
[  206.923333][T12717]  should_fail_usercopy+0x1a/0x20
[  206.928411][T12717]  _copy_from_iter+0xd3/0xb00
[  206.933156][T12717]  ? alloc_pages_mpol_noprof+0xd5/0x1e0
[  206.938727][T12717]  copy_page_from_iter+0x14f/0x280
[  206.943867][T12717]  tun_get_user+0x689/0x24b0
[  206.948478][T12717]  ? kstrtoull+0x110/0x140
[  206.952904][T12717]  ? ref_tracker_alloc+0x1f5/0x2f0
[  206.958207][T12717]  tun_chr_write_iter+0x18e/0x240
[  206.963256][T12717]  vfs_write+0x78f/0x900
[  206.967540][T12717]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  206.973242][T12717]  ksys_write+0xeb/0x1b0
[  206.977586][T12717]  __x64_sys_write+0x42/0x50
[  206.982196][T12717]  x64_sys_call+0x27dd/0x2d60
[  206.986947][T12717]  do_syscall_64+0xc9/0x1c0
[  206.991535][T12717]  ? clear_bhb_loop+0x55/0xb0
[  206.996223][T12717]  ? clear_bhb_loop+0x55/0xb0
[  207.000929][T12717]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.006899][T12717] RIP: 0033:0x7f1a87dfb9df
[  207.011307][T12717] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  207.031098][T12717] RSP: 002b:00007f1a86a77000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  207.039561][T12717] RAX: ffffffffffffffda RBX: 00007f1a87fb5f80 RCX: 00007f1a87dfb9df
[  207.047578][T12717] RDX: 000000000000004a RSI: 0000000020000000 RDI: 00000000000000c8
[  207.055566][T12717] RBP: 00007f1a86a77090 R08: 0000000000000000 R09: 0000000000000000
[  207.063540][T12717] R10: 000000000000004a R11: 0000000000000293 R12: 0000000000000001
[  207.071582][T12717] R13: 0000000000000000 R14: 00007f1a87fb5f80 R15: 00007ffd9f840f88
[  207.079834][T12717]  </TASK>
[  207.088582][T12719] batadv0: entered promiscuous mode
[  207.137357][T10955] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.332719][T12732] lo speed is unknown, defaulting to 1000
[  207.430530][T12732] chnl_net:caif_netlink_parms(): no params data found
[  207.475303][T12732] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.482936][T12732] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.492265][T12732] bridge_slave_0: entered allmulticast mode
[  207.499156][T12732] bridge_slave_0: entered promiscuous mode
[  207.508521][T12732] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.516354][T12732] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.524717][T12732] bridge_slave_1: entered allmulticast mode
[  207.533139][T12732] bridge_slave_1: entered promiscuous mode
[  207.553575][T12732] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  207.564577][T12732] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  207.588599][T12732] team0: Port device team_slave_0 added
[  207.596335][T12732] team0: Port device team_slave_1 added
[  207.614096][T12732] batman_adv: batadv0: Adding interface: batadv_slave_0
[  207.621513][T12732] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  207.648254][T12732] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  207.660828][T12732] batman_adv: batadv0: Adding interface: batadv_slave_1
[  207.667948][T12732] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  207.694252][T12732] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  207.721852][T12732] hsr_slave_0: entered promiscuous mode
[  207.728345][T12732] hsr_slave_1: entered promiscuous mode
[  207.734564][T12732] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  207.742767][T12732] Cannot create hsr debugfs directory
[  207.820396][T12732] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.845717][   T35] usb 9-1: enqueue for inactive port 0
[  207.851268][   T35] usb 9-1: enqueue for inactive port 0
[  207.882080][T12732] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.935207][T12732] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.948083][   T35] vhci_hcd: vhci_device speed not set
[  208.003782][T12732] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.030587][T12761] xt_CT: You must specify a L4 protocol and not use inversions on it
[  208.091621][T12732] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  208.109579][T12732] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  208.120103][T12732] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  208.129339][T12732] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  208.146418][T12732] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.153496][T12732] bridge0: port 2(bridge_slave_1) entered forwarding state
[  208.160867][T12732] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.168111][T12732] bridge0: port 1(bridge_slave_0) entered forwarding state
[  208.202364][T12732] 8021q: adding VLAN 0 to HW filter on device bond0
[  208.218180][ T3378] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.230429][ T3378] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.248686][T12732] 8021q: adding VLAN 0 to HW filter on device team0
[  208.262831][   T28] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.269957][   T28] bridge0: port 1(bridge_slave_0) entered forwarding state
[  208.284220][T12773] netlink: 'syz.0.3293': attribute type 2 has an invalid length.
[  208.296825][   T28] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.304064][   T28] bridge0: port 2(bridge_slave_1) entered forwarding state
[  208.393283][T12781] FAULT_INJECTION: forcing a failure.
[  208.393283][T12781] name failslab, interval 1, probability 0, space 0, times 0
[  208.406157][T12781] CPU: 0 UID: 0 PID: 12781 Comm: syz.0.3294 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  208.417009][T12781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  208.427076][T12781] Call Trace:
[  208.430525][T12781]  <TASK>
[  208.433468][T12781]  dump_stack_lvl+0xf2/0x150
[  208.438098][T12781]  dump_stack+0x15/0x20
[  208.442259][T12781]  should_fail_ex+0x229/0x230
[  208.447072][T12781]  ? sidtab_sid2str_get+0xb8/0x140
[  208.452235][T12781]  should_failslab+0x8f/0xb0
[  208.456850][T12781]  __kmalloc_node_track_caller_noprof+0xa6/0x380
[  208.463203][T12781]  kmemdup_noprof+0x2a/0x60
[  208.467869][T12781]  sidtab_sid2str_get+0xb8/0x140
[  208.472942][T12781]  security_sid_to_context_core+0x1eb/0x2f0
[  208.478946][T12781]  security_sid_to_context+0x27/0x30
[  208.484956][T12781]  selinux_secid_to_secctx+0x22/0x30
[  208.485414][T12732] 8021q: adding VLAN 0 to HW filter on device batadv0
[  208.490420][T12781]  security_secid_to_secctx+0x4a/0x80
[  208.503291][T12781]  audit_log_task_context+0x8c/0x1b0
[  208.508709][T12781]  audit_log_task+0xfb/0x180
[  208.513504][T12781]  audit_seccomp+0x68/0x130
[  208.518113][T12781]  __seccomp_filter+0x6fa/0x1180
[  208.523174][T12781]  ? proc_fail_nth_write+0x130/0x160
[  208.528738][T12781]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  208.534556][T12781]  ? vfs_write+0x5a5/0x900
[  208.538987][T12781]  ? __fget_files+0x1da/0x210
[  208.543829][T12781]  __secure_computing+0x9f/0x1c0
[  208.548900][T12781]  syscall_trace_enter+0xd1/0x1f0
[  208.554111][T12781]  ? fpregs_assert_state_consistent+0x83/0xa0
[  208.560412][T12781]  do_syscall_64+0xaa/0x1c0
[  208.565166][T12781]  ? clear_bhb_loop+0x55/0xb0
[  208.569857][T12781]  ? clear_bhb_loop+0x55/0xb0
[  208.574614][T12781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.580552][T12781] RIP: 0033:0x7f1a87dfcef9
[  208.585157][T12781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.605926][T12781] RSP: 002b:00007f1a86a77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  208.614674][T12781] RAX: ffffffffffffffda RBX: 00007f1a87fb5f80 RCX: 00007f1a87dfcef9
[  208.623039][T12781] RDX: 0000000005000000 RSI: 0000000000002000 RDI: 0000000020ff5000
[  208.631155][T12781] RBP: 00007f1a86a77090 R08: 0000000020ffd000 R09: 0000000000000000
[  208.639554][T12781] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  208.647620][T12781] R13: 0000000000000000 R14: 00007f1a87fb5f80 R15: 00007ffd9f840f88
[  208.656196][T12781]  </TASK>
[  208.733844][T12732] veth0_vlan: entered promiscuous mode
[  208.758830][T12732] veth1_vlan: entered promiscuous mode
[  208.767373][T12797] FAULT_INJECTION: forcing a failure.
[  208.767373][T12797] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  208.780754][T12797] CPU: 1 UID: 0 PID: 12797 Comm: syz.2.3297 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  208.782946][T12732] veth0_macvtap: entered promiscuous mode
[  208.791599][T12797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  208.791639][T12797] Call Trace:
[  208.791647][T12797]  <TASK>
[  208.791656][T12797]  dump_stack_lvl+0xf2/0x150
[  208.802630][T12732] veth1_macvtap: entered promiscuous mode
[  208.807761][T12797]  dump_stack+0x15/0x20
[  208.807791][T12797]  should_fail_ex+0x229/0x230
[  208.833650][T12797]  should_fail+0xb/0x10
[  208.837818][T12797]  should_fail_usercopy+0x1a/0x20
[  208.843180][T12797]  strncpy_from_user+0x25/0x270
[  208.846742][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  208.848142][T12797]  ? kmem_cache_alloc_noprof+0x10c/0x290
[  208.858616][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  208.864324][T12797]  getname_flags+0xb0/0x3b0
[  208.874131][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  208.878566][T12797]  __x64_sys_renameat2+0x6e/0xa0
[  208.878614][T12797]  x64_sys_call+0x2cf1/0x2d60
[  208.878637][T12797]  do_syscall_64+0xc9/0x1c0
[  208.878702][T12797]  ? clear_bhb_loop+0x55/0xb0
[  208.878720][T12797]  ? clear_bhb_loop+0x55/0xb0
[  208.878738][T12797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.878796][T12797] RIP: 0033:0x7fdc9edfcef9
[  208.889498][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  208.894191][T12797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.898928][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  208.903365][T12797] RSP: 002b:00007fdc9da77038 EFLAGS: 00000246
[  208.908066][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  208.912680][T12797]  ORIG_RAX: 000000000000013c
[  208.918609][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  208.922953][T12797] RAX: ffffffffffffffda RBX: 00007fdc9efb5f80 RCX: 00007fdc9edfcef9
[  208.932857][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  208.952750][T12797] RDX: 0000000000000006 RSI: 0000000020000000 RDI: 0000000000000006
[  208.952769][T12797] RBP: 00007fdc9da77090 R08: 0000000000000005 R09: 0000000000000000
[  208.952780][T12797] R10: 0000000020000980 R11: 0000000000000246 R12: 0000000000000001
[  208.952791][T12797] R13: 0000000000000000 R14: 00007fdc9efb5f80 R15: 00007ffcb8b11f78
[  208.952810][T12797]  </TASK>
[  209.023345][T12799] block device autoloading is deprecated and will be removed.
[  209.030347][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  209.030367][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.078341][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  209.088985][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.099042][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  209.109654][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.119841][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  209.130659][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.140629][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  209.151076][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.161009][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  209.171558][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.192015][T12732] batman_adv: batadv0: Interface activated: batadv_slave_0
[  209.200711][T12805] xt_CT: You must specify a L4 protocol and not use inversions on it
[  209.206021][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.224635][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.234521][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.245030][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.255080][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.265894][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.275896][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.286519][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.296446][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.306948][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.316765][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.327235][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.337347][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.347861][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.358150][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.368864][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.378990][T12732] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  209.389519][T12732] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  209.403155][T12732] batman_adv: batadv0: Interface activated: batadv_slave_1
[  209.427534][T12732] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  209.436433][T12732] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  209.436581][T12804] program syz.2.3300 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  209.445116][T12732] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  209.445149][T12732] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  209.580497][T12817] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3304'.
[  209.592616][T12818] serio: Serial port ptm0
[  209.593445][T12819] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3305'.
[  209.616623][T12820] FAULT_INJECTION: forcing a failure.
[  209.616623][T12820] name failslab, interval 1, probability 0, space 0, times 0
[  209.629332][T12820] CPU: 1 UID: 0 PID: 12820 Comm: syz.0.3303 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  209.640198][T12820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  209.650255][T12820] Call Trace:
[  209.653596][T12820]  <TASK>
[  209.656601][T12820]  dump_stack_lvl+0xf2/0x150
[  209.661200][T12820]  dump_stack+0x15/0x20
[  209.665623][T12820]  should_fail_ex+0x229/0x230
[  209.670314][T12820]  ? __alloc_skb+0x10b/0x310
[  209.675094][T12820]  should_failslab+0x8f/0xb0
[  209.679736][T12820]  kmem_cache_alloc_node_noprof+0x51/0x2b0
[  209.685672][T12820]  __alloc_skb+0x10b/0x310
[  209.690197][T12820]  netlink_alloc_large_skb+0xad/0xe0
[  209.695496][T12820]  netlink_sendmsg+0x3b4/0x6e0
[  209.700318][T12820]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.705893][T12820]  __sock_sendmsg+0x140/0x180
[  209.710734][T12820]  ____sys_sendmsg+0x312/0x410
[  209.715614][T12820]  __sys_sendmsg+0x1e9/0x280
[  209.720239][T12820]  __x64_sys_sendmsg+0x46/0x50
[  209.725051][T12820]  x64_sys_call+0x2689/0x2d60
[  209.729771][T12820]  do_syscall_64+0xc9/0x1c0
[  209.734282][T12820]  ? clear_bhb_loop+0x55/0xb0
[  209.738958][T12820]  ? clear_bhb_loop+0x55/0xb0
[  209.743843][T12820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.749749][T12820] RIP: 0033:0x7f1a87dfcef9
[  209.754201][T12820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.774077][T12820] RSP: 002b:00007f1a86a56038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  209.782682][T12820] RAX: ffffffffffffffda RBX: 00007f1a87fb6058 RCX: 00007f1a87dfcef9
[  209.790820][T12820] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 000000000000000a
[  209.798900][T12820] RBP: 00007f1a86a56090 R08: 0000000000000000 R09: 0000000000000000
[  209.806925][T12820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  209.814904][T12820] R13: 0000000000000000 R14: 00007f1a87fb6058 R15: 00007ffd9f840f88
[  209.822886][T12820]  </TASK>
[  209.843749][T12824] loop3: detected capacity change from 0 to 512
[  209.877200][T12824] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.902636][T12824] ext4 filesystem being mounted at /0/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  209.941209][T12824] x_tables: ip_tables: osf match: only valid for protocol 6
[  210.119970][T12840] loop4: detected capacity change from 0 to 512
[  210.147698][T12840] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.164945][T12840] ext4 filesystem being mounted at /79/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.178315][T12840] program syz.4.3312 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  210.200748][T11912] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.411693][T12848] netlink: 'syz.0.3314': attribute type 1 has an invalid length.
[  210.419745][T12848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3314'.
[  210.468372][T12732] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.525606][T12858] batadv0: entered promiscuous mode
[  210.551059][   T29] kauditd_printk_skb: 297 callbacks suppressed
[  210.551112][   T29] audit: type=1326 audit(1725675976.274:13547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12862 comm="syz.0.3320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.590364][   T29] audit: type=1326 audit(1725675976.314:13548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12862 comm="syz.0.3320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.614635][   T29] audit: type=1326 audit(1725675976.314:13549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12862 comm="syz.0.3320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.642528][   T29] audit: type=1326 audit(1725675976.314:13550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12862 comm="syz.0.3320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.681158][   T29] audit: type=1400 audit(1725675976.404:13551): avc:  denied  { read } for  pid=12867 comm="syz.0.3323" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  210.701254][   T29] audit: type=1326 audit(1725675976.404:13552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12867 comm="syz.0.3323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.726867][   T29] audit: type=1326 audit(1725675976.404:13553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12867 comm="syz.0.3323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.752298][   T29] audit: type=1326 audit(1725675976.404:13554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12867 comm="syz.0.3323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.777028][   T29] audit: type=1326 audit(1725675976.404:13555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12867 comm="syz.0.3323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.802048][   T29] audit: type=1326 audit(1725675976.404:13556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12867 comm="syz.0.3323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  210.899373][T12876] vlan2: entered promiscuous mode
[  210.936414][T12881] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3328'.
[  211.190394][T12895] loop4: detected capacity change from 0 to 128
[  211.220985][T12899] xt_CT: You must specify a L4 protocol and not use inversions on it
[  211.469153][T12911] FAULT_INJECTION: forcing a failure.
[  211.469153][T12911] name failslab, interval 1, probability 0, space 0, times 0
[  211.490404][T12911] CPU: 0 UID: 0 PID: 12911 Comm: syz.3.3341 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  211.501500][T12911] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  211.511567][T12911] Call Trace:
[  211.514974][T12911]  <TASK>
[  211.518142][T12911]  dump_stack_lvl+0xf2/0x150
[  211.522758][T12911]  dump_stack+0x15/0x20
[  211.527028][T12911]  should_fail_ex+0x229/0x230
[  211.531855][T12911]  ? do_handle_open+0x321/0x570
[  211.536800][T12911]  should_failslab+0x8f/0xb0
[  211.541493][T12911]  __kmalloc_noprof+0xa5/0x370
[  211.546278][T12911]  do_handle_open+0x321/0x570
[  211.550962][T12911]  __x64_sys_open_by_handle_at+0x46/0x50
[  211.556705][T12911]  x64_sys_call+0x2909/0x2d60
[  211.561398][T12911]  do_syscall_64+0xc9/0x1c0
[  211.565919][T12911]  ? clear_bhb_loop+0x55/0xb0
[  211.570609][T12911]  ? clear_bhb_loop+0x55/0xb0
[  211.575409][T12911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.581480][T12911] RIP: 0033:0x7f7ed13dcef9
[  211.585907][T12911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.606138][T12911] RSP: 002b:00007f7ed0057038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  211.614652][T12911] RAX: ffffffffffffffda RBX: 00007f7ed1595f80 RCX: 00007f7ed13dcef9
[  211.622885][T12911] RDX: 0000000000009e4b RSI: 0000000020000640 RDI: 0000000000000005
[  211.630869][T12911] RBP: 00007f7ed0057090 R08: 0000000000000000 R09: 0000000000000000
[  211.638831][T12911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  211.646873][T12911] R13: 0000000000000000 R14: 00007f7ed1595f80 R15: 00007ffdcccecdf8
[  211.654937][T12911]  </TASK>
[  211.709348][T12913] program syz.2.3342 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  211.804176][T12939] xt_CT: You must specify a L4 protocol and not use inversions on it
[  211.872851][T12950] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[  211.887923][T12950] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  211.896156][T12950] vhci_hcd vhci_hcd.0: Device attached
[  211.920688][T12954] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  211.927228][T12954] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  211.934850][T12954] vhci_hcd vhci_hcd.0: Device attached
[  211.943784][T12950] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3351'.
[  211.961539][T12962] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  211.962193][T12954] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3352'.
[  211.972485][T12951] vhci_hcd: connection closed
[  211.982183][ T3359] vhci_hcd: stop threads
[  211.991275][ T3359] vhci_hcd: release socket
[  211.995754][ T3359] vhci_hcd: disconnect device
[  212.036047][T12957] vhci_hcd: connection closed
[  212.036303][ T3286] vhci_hcd: stop threads
[  212.045264][ T3286] vhci_hcd: release socket
[  212.049746][ T3286] vhci_hcd: disconnect device
[  212.061090][T12968] bridge0: port 3(vlan2) entered blocking state
[  212.067488][T12968] bridge0: port 3(vlan2) entered disabled state
[  212.078083][T12968] vlan2: entered allmulticast mode
[  212.093777][T12968] vlan2: left allmulticast mode
[  212.167661][T12976] xt_CT: You must specify a L4 protocol and not use inversions on it
[  212.207232][T12979] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3360'.
[  212.248631][T12979] xt_CT: You must specify a L4 protocol and not use inversions on it
[  212.269020][T12974] loop3: detected capacity change from 0 to 164
[  212.571497][T13001] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.593546][T13003] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.608267][T13001] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  212.619151][T13003] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  212.687785][T13009] FAULT_INJECTION: forcing a failure.
[  212.687785][T13009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.700913][T13009] CPU: 0 UID: 0 PID: 13009 Comm: syz.0.3371 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  212.711693][T13009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  212.721764][T13009] Call Trace:
[  212.725043][T13009]  <TASK>
[  212.727973][T13009]  dump_stack_lvl+0xf2/0x150
[  212.732570][T13009]  dump_stack+0x15/0x20
[  212.736749][T13009]  should_fail_ex+0x229/0x230
[  212.741924][T13009]  should_fail+0xb/0x10
[  212.746083][T13009]  should_fail_usercopy+0x1a/0x20
[  212.751127][T13009]  _copy_from_user+0x1e/0xd0
[  212.755724][T13009]  copy_msghdr_from_user+0x54/0x2a0
[  212.760966][T13009]  __sys_sendmsg+0x17d/0x280
[  212.765642][T13009]  ? native_tss_update_io_bitmap+0x17b/0x200
[  212.771638][T13009]  __x64_sys_sendmsg+0x46/0x50
[  212.776470][T13009]  x64_sys_call+0x2689/0x2d60
[  212.781285][T13009]  do_syscall_64+0xc9/0x1c0
[  212.785901][T13009]  ? clear_bhb_loop+0x55/0xb0
[  212.790582][T13009]  ? clear_bhb_loop+0x55/0xb0
[  212.795273][T13009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.801238][T13009] RIP: 0033:0x7f1a87dfcef9
[  212.805643][T13009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.825369][T13009] RSP: 002b:00007f1a86a77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  212.833841][T13009] RAX: ffffffffffffffda RBX: 00007f1a87fb5f80 RCX: 00007f1a87dfcef9
[  212.841805][T13009] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000004
[  212.849819][T13009] RBP: 00007f1a86a77090 R08: 0000000000000000 R09: 0000000000000000
[  212.857961][T13009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.865953][T13009] R13: 0000000000000000 R14: 00007f1a87fb5f80 R15: 00007ffd9f840f88
[  212.874106][T13009]  </TASK>
[  213.024207][T13021] batadv0: entered promiscuous mode
[  213.052641][T13023] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  213.083231][T13025] xt_CT: You must specify a L4 protocol and not use inversions on it
[  213.093712][T13027] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3379'.
[  213.206940][T13040] all: renamed from bridge_slave_0 (while UP)
[  213.299148][T13047] loop3: detected capacity change from 0 to 164
[  213.346961][T13055] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3390'.
[  213.424637][T13063] loop4: detected capacity change from 0 to 512
[  213.432886][T13063] EXT4-fs: Ignoring removed bh option
[  213.445567][T13063] EXT4-fs (loop4): 1 truncate cleaned up
[  213.451635][T13063] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.009287][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.016792][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.024489][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.032732][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.034917][T13061] syz.3.3389 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  214.040183][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.054235][T13061] CPU: 0 UID: 0 PID: 13061 Comm: syz.3.3389 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  214.061711][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.072392][T13061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  214.072407][T13061] Call Trace:
[  214.072416][T13061]  <TASK>
[  214.079777][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.089782][T13061]  dump_stack_lvl+0xf2/0x150
[  214.093065][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.095976][T13061]  dump_stack+0x15/0x20
[  214.103338][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.107895][T13061]  dump_header+0x83/0x2d0
[  214.107926][T13061]  oom_kill_process+0x341/0x4c0
[  214.107955][T13061]  out_of_memory+0x9af/0xbe0
[  214.108054][T13061]  ? __rcu_read_unlock+0x4e/0x70
[  214.108082][T13061]  mem_cgroup_out_of_memory+0x13e/0x190
[  214.108115][T13061]  try_charge_memcg+0x51b/0x810
[  214.108145][T13061]  obj_cgroup_charge_pages+0xbd/0x1a0
[  214.108231][T13061]  __memcg_kmem_charge_page+0x9d/0x170
[  214.108259][T13061]  __alloc_pages_noprof+0x1bc/0x360
[  214.108297][T13061]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  214.108435][T13061]  alloc_pages_noprof+0xe1/0x100
[  214.108515][T13061]  __vmalloc_node_range_noprof+0x736/0xec0
[  214.108548][T13061]  __kvmalloc_node_noprof+0x121/0x170
[  214.108570][T13061]  ? ip_set_alloc+0x1f/0x30
[  214.108593][T13061]  ip_set_alloc+0x1f/0x30
[  214.108620][T13061]  hash_netiface_create+0x273/0x730
[  214.108648][T13061]  ? __nla_parse+0x40/0x60
[  214.108675][T13061]  ? __pfx_hash_netiface_create+0x10/0x10
[  214.108745][T13061]  ip_set_create+0x359/0x8a0
[  214.108773][T13061]  ? strnstr+0xf1/0x100
[  214.108808][T13061]  ? __nla_parse+0x40/0x60
[  214.116369][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.120389][T13061]  nfnetlink_rcv_msg+0x4a9/0x570
[  214.127869][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.132193][T13061]  netlink_rcv_skb+0x12c/0x230
[  214.137052][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.141632][T13061]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  214.146678][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.152157][T13061]  nfnetlink_rcv+0x16c/0x15e0
[  214.157647][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.162367][T13061]  ? kmem_cache_free+0xd8/0x280
[  214.162400][T13061]  ? nlmon_xmit+0x51/0x60
[  214.167891][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.173039][T13061]  ? __kfree_skb+0x102/0x150
[  214.178384][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.183267][T13061]  ? consume_skb+0x57/0x180
[  214.189066][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.194483][T13061]  ? nlmon_xmit+0x51/0x60
[  214.199092][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.203416][T13061]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  214.209294][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.212995][T13061]  ? __dev_queue_xmit+0xb86/0x1fe0
[  214.218712][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.223285][T13061]  ? ref_tracker_free+0x3a5/0x410
[  214.227566][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.232439][T13061]  ? __dev_queue_xmit+0x161/0x1fe0
[  214.240018][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.244897][T13061]  ? __netlink_deliver_tap+0x495/0x4c0
[  214.252344][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.257055][T13061]  netlink_unicast+0x599/0x670
[  214.257108][T13061]  netlink_sendmsg+0x5cc/0x6e0
[  214.257135][T13061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.257173][T13061]  __sock_sendmsg+0x140/0x180
[  214.257208][T13061]  ____sys_sendmsg+0x312/0x410
[  214.257238][T13061]  __sys_sendmsg+0x1e9/0x280
[  214.257335][T13061]  ? futex_wait+0x18e/0x1c0
[  214.257375][T13061]  __x64_sys_sendmsg+0x46/0x50
[  214.257402][T13061]  x64_sys_call+0x2689/0x2d60
[  214.257507][T13061]  do_syscall_64+0xc9/0x1c0
[  214.257529][T13061]  ? clear_bhb_loop+0x55/0xb0
[  214.257550][T13061]  ? clear_bhb_loop+0x55/0xb0
[  214.257632][T13061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.257667][T13061] RIP: 0033:0x7f7ed13dcef9
[  214.257717][T13061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.257742][T13061] RSP: 002b:00007f7ed0036038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.257763][T13061] RAX: ffffffffffffffda RBX: 00007f7ed1596058 RCX: 00007f7ed13dcef9
[  214.257775][T13061] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000c
[  214.257788][T13061] RBP: 00007f7ed144f046 R08: 0000000000000000 R09: 0000000000000000
[  214.257803][T13061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  214.257817][T13061] R13: 0000000000000000 R14: 00007f7ed1596058 R15: 00007ffdcccecdf8
[  214.265178][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.270606][T13061]  </TASK>
[  214.271340][T13061] memory: usage 307200kB, limit 307200kB, failcnt 123
[  214.278078][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.282711][T13061] memory+swap: usage 307756kB, limit 9007199254740988kB, failcnt 0
[  214.290748][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.294987][T13061] kmem: usage 306932kB, limit 9007199254740988kB, failcnt 0
[  214.299323][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.299343][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.306713][T13061] Memory cgroup stats for /syz3:
[  214.306864][T13061] cache 241664
[  214.311389][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.318738][T13061] rss 0
[  214.318745][T13061] shmem 0
[  214.318750][T13061] mapped_file 241664
[  214.318758][T13061] dirty 241664
[  214.318763][T13061] writeback 0
[  214.318769][T13061] workingset_refault_anon 45
[  214.318834][T13061] workingset_refault_file 2527
[  214.318842][T13061] swap 569344
[  214.318849][T13061] swapcached 32768
[  214.318856][T13061] pgpgin 282530
[  214.318863][T13061] pgpgout 282463
[  214.318870][T13061] pgfault 200549
[  214.318876][T13061] pgmajfault 22
[  214.318883][T13061] inactive_anon 32768
[  214.318891][T13061] active_anon 0
[  214.318898][T13061] inactive_file 241664
[  214.318906][T13061] active_file 0
[  214.318912][T13061] unevictable 0
[  214.318919][T13061] hierarchical_memory_limit 314572800
[  214.318954][T13061] hierarchical_memsw_limit 9223372036854771712
[  214.318964][T13061] total_cache 241664
[  214.318972][T13061] total_rss 0
[  214.318979][T13061] total_shmem 0
[  214.318987][T13061] total_mapped_file 241664
[  214.318995][T13061] total_dirty 241664
[  214.319003][T13061] total_writeback 0
[  214.319009][T13061] total_workingset_refault_anon 45
[  214.319018][T13061] total_workingset_refault_file 2527
[  214.319026][T13061] total_swap 569344
[  214.319034][T13061] total_swapcached 32768
[  214.319041][T13061] total_pgpgin 282530
[  214.319073][T13061] total_pgpgout 282463
[  214.319081][T13061] total_pgfault 200549
[  214.319089][T13061] total_pgmajfault 22
[  214.319097][T13061] total_inactive_anon 32768
[  214.319105][T13061] total_active_anon 0
[  214.319113][T13061] total_inactive_file 241664
[  214.319143][T13061] total_active_file 0
[  214.319149][T13061] total_unevictable 0
[  214.319156][T13061] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.2457,pid=10548,uid=0
[  214.319219][T13061] Memory cgroup out of memory: Killed process 10549 (syz.3.2457) total-vm:87068kB, anon-rss:568kB, file-rss:16296kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000
[  214.820831][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.828989][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.837793][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.845600][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.852974][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.861034][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.868428][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.875990][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.883507][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.891608][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.899091][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.906487][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.913856][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.921883][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.929334][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.936909][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.944349][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.952686][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.960283][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.967807][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.975263][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.983378][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.990820][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  214.998206][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.006005][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.013414][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.020831][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.028398][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.036479][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.043891][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.051310][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.058875][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.067067][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.074480][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.081901][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.089399][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.097382][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.104760][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.112219][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.119664][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.127614][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.135218][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.142857][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.150253][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.158504][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.165989][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.173503][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.180905][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.189051][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.196457][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.203894][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.211308][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.219467][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.226872][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.234258][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.241795][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.249828][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.257391][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.264778][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.272169][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.280244][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.287954][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.295344][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.302874][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.310937][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.318437][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.325930][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.333316][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.341507][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.348951][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.356814][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.364366][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.372639][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.380037][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.387449][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.394837][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.402847][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.410313][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.417706][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.425086][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.433238][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.440792][ T3474] hid-generic 6365:8001:0001.0013: unknown main item tag 0x0
[  215.984155][T13063] loop4: detected capacity change from 512 to 64
[  215.990774][ T3474] hid-generic 6365:8001:0001.0013: hidraw0: <UNKNOWN> HID v5.0a Device [syz1] on syz0
[  216.006555][   T29] kauditd_printk_skb: 365 callbacks suppressed
[  216.006569][   T29] audit: type=1400 audit(1725675981.734:13922): avc:  denied  { relabelfrom } for  pid=13076 comm="syz.2.3397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  216.033287][   T29] audit: type=1400 audit(1725675981.734:13923): avc:  denied  { relabelto } for  pid=13076 comm="syz.2.3397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  217.007969][   T30] oom_reaper: reaped process 10549 (syz.3.2457), now anon-rss:16kB, file-rss:15180kB, shmem-rss:0kB
[  217.008147][   T29] audit: type=1400 audit(1725675982.734:13924): avc:  denied  { unlink } for  pid=11912 comm="syz-executor" name="bus" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  217.024776][T13061] syz.3.3389 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  217.055554][T13061] CPU: 0 UID: 0 PID: 13061 Comm: syz.3.3389 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  217.055803][T11912] EXT4-fs error (device loop4): ext4_lookup:1815: inode #2: comm syz-executor: deleted inode referenced: 11
[  217.066334][T13061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  217.066347][T13061] Call Trace:
[  217.066354][T13061]  <TASK>
[  217.066362][T13061]  dump_stack_lvl+0xf2/0x150
[  217.066387][T13061]  dump_stack+0x15/0x20
[  217.103418][T13061]  dump_header+0x83/0x2d0
[  217.107770][T13061]  oom_kill_process+0x341/0x4c0
[  217.112645][T13061]  out_of_memory+0x9af/0xbe0
[  217.117250][T13061]  ? __rcu_read_unlock+0x4e/0x70
[  217.122253][T13061]  mem_cgroup_out_of_memory+0x13e/0x190
[  217.127814][T13061]  try_charge_memcg+0x51b/0x810
[  217.132670][T13061]  obj_cgroup_charge_pages+0xbd/0x1a0
[  217.138196][T13061]  __memcg_kmem_charge_page+0x9d/0x170
[  217.143733][T13061]  __alloc_pages_noprof+0x1bc/0x360
[  217.148935][T13061]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  217.154302][T13061]  alloc_pages_noprof+0xe1/0x100
[  217.159281][T13061]  __vmalloc_node_range_noprof+0x736/0xec0
[  217.165221][T13061]  __kvmalloc_node_noprof+0x121/0x170
[  217.170662][T13061]  ? ip_set_alloc+0x1f/0x30
[  217.175278][T13061]  ip_set_alloc+0x1f/0x30
[  217.179877][T13061]  hash_netiface_create+0x273/0x730
[  217.185177][T13061]  ? __nla_parse+0x40/0x60
[  217.189766][T13061]  ? __pfx_hash_netiface_create+0x10/0x10
[  217.195558][T13061]  ip_set_create+0x359/0x8a0
[  217.200150][T13061]  ? strnstr+0xf1/0x100
[  217.204332][T13061]  ? __nla_parse+0x40/0x60
[  217.208791][T13061]  nfnetlink_rcv_msg+0x4a9/0x570
[  217.213853][T13061]  netlink_rcv_skb+0x12c/0x230
[  217.218628][T13061]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  217.224189][T13061]  nfnetlink_rcv+0x16c/0x15e0
[  217.228864][T13061]  ? kmem_cache_free+0xd8/0x280
[  217.233785][T13061]  ? nlmon_xmit+0x51/0x60
[  217.238243][T13061]  ? __kfree_skb+0x102/0x150
[  217.242847][T13061]  ? consume_skb+0x57/0x180
[  217.247437][T13061]  ? nlmon_xmit+0x51/0x60
[  217.251848][T13061]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  217.257148][T13061]  ? __dev_queue_xmit+0xb86/0x1fe0
[  217.262256][T13061]  ? ref_tracker_free+0x3a5/0x410
[  217.267296][T13061]  ? __dev_queue_xmit+0x161/0x1fe0
[  217.272550][T13061]  ? __netlink_deliver_tap+0x495/0x4c0
[  217.278215][T13061]  netlink_unicast+0x599/0x670
[  217.282981][T13061]  netlink_sendmsg+0x5cc/0x6e0
[  217.287747][T13061]  ? __pfx_netlink_sendmsg+0x10/0x10
[  217.293167][T13061]  __sock_sendmsg+0x140/0x180
[  217.297912][T13061]  ____sys_sendmsg+0x312/0x410
[  217.302694][T13061]  __sys_sendmsg+0x1e9/0x280
[  217.307426][T13061]  ? futex_wait+0x18e/0x1c0
[  217.311936][T13061]  __x64_sys_sendmsg+0x46/0x50
[  217.316717][T13061]  x64_sys_call+0x2689/0x2d60
[  217.321432][T13061]  do_syscall_64+0xc9/0x1c0
[  217.325928][T13061]  ? clear_bhb_loop+0x55/0xb0
[  217.330641][T13061]  ? clear_bhb_loop+0x55/0xb0
[  217.335305][T13061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.341197][T13061] RIP: 0033:0x7f7ed13dcef9
[  217.345605][T13061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.365287][T13061] RSP: 002b:00007f7ed0036038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  217.374810][T13061] RAX: ffffffffffffffda RBX: 00007f7ed1596058 RCX: 00007f7ed13dcef9
[  217.382772][T13061] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000c
[  217.390812][T13061] RBP: 00007f7ed144f046 R08: 0000000000000000 R09: 0000000000000000
[  217.398770][T13061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  217.406729][T13061] R13: 0000000000000000 R14: 00007f7ed1596058 R15: 00007ffdcccecdf8
[  217.414700][T13061]  </TASK>
[  217.418956][T13061] memory: usage 307200kB, limit 307200kB, failcnt 5746
[  217.425967][T13061] memory+swap: usage 307580kB, limit 9007199254740988kB, failcnt 0
[  217.433964][T13061] kmem: usage 307164kB, limit 9007199254740988kB, failcnt 0
[  217.441699][T13061] Memory cgroup stats for /syz3:
[  217.441902][T13061] cache 8192
[  217.450160][T13061] rss 0
[  217.452944][T13061] shmem 0
[  217.455903][T13061] mapped_file 8192
[  217.459607][T13061] dirty 8192
[  217.462796][T13061] writeback 16384
[  217.466536][T13061] workingset_refault_anon 110
[  217.471196][T13061] workingset_refault_file 2735
[  217.476277][T13061] swap 389120
[  217.479790][T13061] swapcached 28672
[  217.483507][T13061] pgpgin 282818
[  217.487031][T13061] pgpgout 282809
[  217.490564][T13061] pgfault 200628
[  217.494201][T13061] pgmajfault 61
[  217.497670][T13061] inactive_anon 24576
[  217.501809][T13061] active_anon 4096
[  217.505654][T13061] inactive_file 8192
[  217.509556][T13061] active_file 0
[  217.513094][T13061] unevictable 0
[  217.516742][T13061] hierarchical_memory_limit 314572800
[  217.522191][T13061] hierarchical_memsw_limit 9223372036854771712
[  217.528519][T13061] total_cache 8192
[  217.532230][T13061] total_rss 0
[  217.535522][T13061] total_shmem 0
[  217.539107][T13061] total_mapped_file 8192
[  217.543460][T13061] total_dirty 8192
[  217.547507][T13061] total_writeback 16384
[  217.551830][T13061] total_workingset_refault_anon 110
[  217.557170][T13061] total_workingset_refault_file 2735
[  217.562788][T13061] total_swap 389120
[  217.566805][T13061] total_swapcached 28672
[  217.571410][T13061] total_pgpgin 282818
[  217.575917][T13061] total_pgpgout 282809
[  217.580308][T13061] total_pgfault 200628
[  217.584516][T13061] total_pgmajfault 61
[  217.588711][T13061] total_inactive_anon 24576
[  217.594078][T13061] total_active_anon 4096
[  217.598514][T13061] total_inactive_file 8192
[  217.599446][T13077] IPv6: NLM_F_CREATE should be specified when creating new route
[  217.603029][T13061] total_active_file 0
[  217.615024][T13061] total_unevictable 0
[  217.619070][T13061] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.502,pid=5252,uid=0
[  217.634027][T13061] Memory cgroup out of memory: Killed process 5253 (syz.3.502) total-vm:87068kB, anon-rss:568kB, file-rss:16296kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000
[  217.647127][T11912] EXT4-fs error (device loop4): ext4_lookup:1815: inode #2: comm syz-executor: deleted inode referenced: 11
[  217.987969][T13084] loop1: detected capacity change from 0 to 164
[  219.959525][   T30] oom_reaper: reaped process 5253 (syz.3.502), now anon-rss:84kB, file-rss:15108kB, shmem-rss:0kB
[  219.994467][T12732] syz-executor invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  220.005551][T12732] CPU: 1 UID: 0 PID: 12732 Comm: syz-executor Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  220.016712][T12732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  220.026844][T12732] Call Trace:
[  220.030124][T12732]  <TASK>
[  220.033050][T12732]  dump_stack_lvl+0xf2/0x150
[  220.037658][T12732]  dump_stack+0x15/0x20
[  220.041928][T12732]  dump_header+0x83/0x2d0
[  220.046326][T12732]  oom_kill_process+0x341/0x4c0
[  220.051226][T12732]  out_of_memory+0x9af/0xbe0
[  220.056380][T12732]  ? __rcu_read_unlock+0x4e/0x70
[  220.061502][T12732]  mem_cgroup_out_of_memory+0x13e/0x190
[  220.067058][T12732]  try_charge_memcg+0x51b/0x810
[  220.072054][T12732]  mem_cgroup_swapin_charge_folio+0x107/0x1a0
[  220.078120][T12732]  __read_swap_cache_async+0x2b7/0x520
[  220.083636][T12732]  swap_cluster_readahead+0x276/0x3f0
[  220.089028][T12732]  swapin_readahead+0xe4/0x760
[  220.093802][T12732]  ? __filemap_get_folio+0x420/0x5b0
[  220.099100][T12732]  ? swap_cache_get_folio+0x77/0x210
[  220.104477][T12732]  do_swap_page+0x3da/0x1ef0
[  220.109102][T12732]  ? hrtimer_start_range_ns+0x53d/0x580
[  220.114707][T12732]  ? hrtimer_try_to_cancel+0x106/0x1d0
[  220.120201][T12732]  ? __rcu_read_lock+0x36/0x50
[  220.125027][T12732]  ? pte_offset_map_nolock+0x124/0x1d0
[  220.130574][T12732]  handle_mm_fault+0x8cb/0x2a30
[  220.135437][T12732]  exc_page_fault+0x3b9/0x650
[  220.140122][T12732]  asm_exc_page_fault+0x26/0x30
[  220.145291][T12732] RIP: 0033:0x7f7ed140efa5
[  220.149712][T12732] Code: 00 00 00 00 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 9e 15 15 00 00 74 14 b8 e6 00 00 00 0f 05 f7 d8 <c3> 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 89 74
[  220.169403][T12732] RSP: 002b:00007ffdccced148 EFLAGS: 00010246
[  220.175479][T12732] RAX: 0000000000000000 RBX: 000000000000002f RCX: 00007f7ed140efa3
[  220.183526][T12732] RDX: 00007ffdccced160 RSI: 0000000000000000 RDI: 0000000000000000
[  220.191494][T12732] RBP: 00007ffdccced1bc R08: 000000000189df73 R09: 7fffffffffffffff
[  220.199539][T12732] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000032
[  220.207504][T12732] R13: 0000000000034bd9 R14: 0000000000034142 R15: 00007ffdccced210
[  220.215481][T12732]  </TASK>
[  220.219338][T12732] memory: usage 307200kB, limit 307200kB, failcnt 12134
[  220.226293][T12732] memory+swap: usage 307496kB, limit 9007199254740988kB, failcnt 0
[  220.234260][T12732] kmem: usage 307160kB, limit 9007199254740988kB, failcnt 0
[  220.241604][T12732] Memory cgroup stats for /syz3:
[  220.242757][T12732] cache 8192
[  220.250962][T12732] rss 0
[  220.253810][T12732] shmem 0
[  220.256769][T12732] mapped_file 8192
[  220.260522][T12732] dirty 8192
[  220.263753][T12732] writeback 16384
[  220.267391][T12732] workingset_refault_anon 114
[  220.272106][T12732] workingset_refault_file 2735
[  220.276979][T12732] swap 303104
[  220.280256][T12732] swapcached 32768
[  220.283970][T12732] pgpgin 282822
[  220.287447][T12732] pgpgout 282812
[  220.290978][T12732] pgfault 200631
[  220.294612][T12732] pgmajfault 63
[  220.298095][T12732] inactive_anon 8192
[  220.301977][T12732] active_anon 24576
[  220.305879][T12732] inactive_file 0
[  220.309590][T12732] active_file 8192
[  220.313293][T12732] unevictable 0
[  220.316871][T12732] hierarchical_memory_limit 314572800
[  220.322223][T12732] hierarchical_memsw_limit 9223372036854771712
[  220.328389][T12732] total_cache 8192
[  220.332341][T12732] total_rss 0
[  220.335677][T12732] total_shmem 0
[  220.339160][T12732] total_mapped_file 8192
[  220.343386][T12732] total_dirty 8192
[  220.347146][T12732] total_writeback 16384
[  220.351315][T12732] total_workingset_refault_anon 114
[  220.356630][T12732] total_workingset_refault_file 2735
[  220.361941][T12732] total_swap 303104
[  220.365806][T12732] total_swapcached 32768
[  220.370105][T12732] total_pgpgin 282822
[  220.374086][T12732] total_pgpgout 282812
[  220.378343][T12732] total_pgfault 200631
[  220.382420][T12732] total_pgmajfault 63
[  220.386402][T12732] total_inactive_anon 8192
[  220.390808][T12732] total_active_anon 24576
[  220.395132][T12732] total_inactive_file 0
[  220.399486][T12732] total_active_file 8192
[  220.403716][T12732] total_unevictable 0
[  220.407700][T12732] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.3389,pid=13052,uid=0
[  220.422771][T12732] Memory cgroup out of memory: Killed process 13052 (syz.3.3389) total-vm:87200kB, anon-rss:568kB, file-rss:16168kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000
[  220.486655][   T29] audit: type=1326 audit(1725675986.214:13925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13088 comm="syz.0.3402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  220.530419][   T29] audit: type=1326 audit(1725675986.234:13926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13088 comm="syz.0.3402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  220.554716][   T29] audit: type=1326 audit(1725675986.234:13927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13088 comm="syz.0.3402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  220.579176][   T29] audit: type=1326 audit(1725675986.234:13928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13088 comm="syz.0.3402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  220.603062][   T29] audit: type=1326 audit(1725675986.234:13929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13088 comm="syz.0.3402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  220.627261][   T29] audit: type=1326 audit(1725675986.234:13930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13088 comm="syz.0.3402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  220.651086][   T29] audit: type=1326 audit(1725675986.234:13931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13088 comm="syz.0.3402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  220.715044][T13094] loop3: detected capacity change from 0 to 1024
[  220.725790][T13094] EXT4-fs: Mount option(s) incompatible with ext3
[  220.738019][ T1324] kworker/u8:5: attempt to access beyond end of device
[  220.738019][ T1324] loop4: rw=1, sector=72, nr_sectors = 2 limit=64
[  220.740653][T13102] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  220.751914][ T1324] EXT4-fs warning (device loop4): ext4_end_bio:346: I/O error 10 writing to inode 15 starting block 36)
[  220.773348][ T1324] Buffer I/O error on device loop4, logical block 36
[  220.783247][ T3286] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.784345][T11912] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.829842][T13100] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  220.829842][T13100]    program syz.1.3407 not setting count and/or reply_len properly
[  220.899442][ T3286] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.939239][ T3286] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.975297][T13108] lo speed is unknown, defaulting to 1000
[  221.022193][ T3286] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.061638][T13128] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3415'.
[  221.067189][T13108] chnl_net:caif_netlink_parms(): no params data found
[  221.101871][   T29] kauditd_printk_skb: 143 callbacks suppressed
[  221.101900][   T29] audit: type=1326 audit(1725675986.824:14075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.133137][   T29] audit: type=1326 audit(1725675986.834:14076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.148709][T13132] program syz.2.3416 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  221.157438][   T29] audit: type=1326 audit(1725675986.834:14077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.189976][   T29] audit: type=1326 audit(1725675986.834:14078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.213731][   T29] audit: type=1326 audit(1725675986.834:14079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.237774][   T29] audit: type=1326 audit(1725675986.834:14080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.261565][   T29] audit: type=1326 audit(1725675986.834:14081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.286059][   T29] audit: type=1326 audit(1725675986.834:14082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.309735][   T29] audit: type=1326 audit(1725675986.834:14083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.333842][   T29] audit: type=1326 audit(1725675986.834:14084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13131 comm="syz.2.3416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc9edfcef9 code=0x7ffc0000
[  221.367658][T13108] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.374791][T13108] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.388307][T13108] bridge_slave_0: entered allmulticast mode
[  221.395123][T13108] bridge_slave_0: entered promiscuous mode
[  221.399494][T13137] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  221.402818][T13108] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.417708][T13108] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.424967][T13108] bridge_slave_1: entered allmulticast mode
[  221.431955][T13108] bridge_slave_1: entered promiscuous mode
[  221.440201][T13138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3418'.
[  221.480142][T13108] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  221.480382][ T3286] bridge_slave_1: left allmulticast mode
[  221.480397][ T3286] bridge_slave_1: left promiscuous mode
[  221.480557][ T3286] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.493328][ T3286] bridge_slave_0: left allmulticast mode
[  221.515427][ T3286] bridge_slave_0: left promiscuous mode
[  221.521134][ T3286] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.649033][ T3286] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  221.659471][ T3286] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  221.669686][ T3286] bond0 (unregistering): Released all slaves
[  221.678952][T13108] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  221.688148][T13144] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3421'.
[  221.697299][T13146] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3422'.
[  221.744055][T13158] loop1: detected capacity change from 0 to 512
[  221.744309][T13108] team0: Port device team_slave_0 added
[  221.755207][T13157] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  221.760654][T13108] team0: Port device team_slave_1 added
[  221.774409][T13154] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  221.780944][T13154] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  221.788538][ T3286] hsr_slave_0: left promiscuous mode
[  221.788683][T13154] vhci_hcd vhci_hcd.0: Device attached
[  221.800511][ T3286] hsr_slave_1: left promiscuous mode
[  221.809016][ T3286] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  221.809582][T13154] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3424'.
[  221.816493][ T3286] batman_adv: batadv0: Removing interface: batadv_slave_0
[  221.833510][ T3286] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  221.835198][T13158] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.841003][ T3286] batman_adv: batadv0: Removing interface: batadv_slave_1
[  221.861185][T13158] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.872531][ T3286] veth1_macvtap: left promiscuous mode
[  221.878065][ T3286] veth0_macvtap: left promiscuous mode
[  221.883651][ T3286] veth1_vlan: left promiscuous mode
[  221.889837][ T3286] veth0_vlan: left promiscuous mode
[  221.969455][ T3286] team0 (unregistering): Port device team_slave_1 removed
[  221.979353][ T3286] team0 (unregistering): Port device team_slave_0 removed
[  222.048318][T13108] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.055629][T13108] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.081915][T13108] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.082165][    T8] usb 1-1: new low-speed USB device number 6 using vhci_hcd
[  222.083236][T12466] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.087382][T13108] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.087397][T13108] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.087419][T13108] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.099982][T13174] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3)
[  222.171440][T13174] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  222.171655][T13174] vhci_hcd vhci_hcd.0: Device attached
[  222.172221][T13159] vhci_hcd: connection reset by peer
[  222.172347][ T3359] vhci_hcd: stop threads
[  222.172355][ T3359] vhci_hcd: release socket
[  222.172366][ T3359] vhci_hcd: disconnect device
[  222.194333][T13108] hsr_slave_0: entered promiscuous mode
[  222.217902][T13108] hsr_slave_1: entered promiscuous mode
[  222.224007][T13108] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  222.232127][T13108] Cannot create hsr debugfs directory
[  222.240897][T13174] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3428'.
[  222.266010][T13175] vhci_hcd: connection closed
[  222.266172][ T3359] vhci_hcd: stop threads
[  222.275202][ T3359] vhci_hcd: release socket
[  222.279870][ T3359] vhci_hcd: disconnect device
[  222.569294][T13108] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  222.578136][T13108] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  222.586622][T13108] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  222.595114][T13108] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  222.638133][T13108] 8021q: adding VLAN 0 to HW filter on device bond0
[  222.652702][T13108] 8021q: adding VLAN 0 to HW filter on device team0
[  222.662778][ T3286] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.669897][ T3286] bridge0: port 1(bridge_slave_0) entered forwarding state
[  222.682377][ T3286] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.689533][ T3286] bridge0: port 2(bridge_slave_1) entered forwarding state
[  222.703910][T13192] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  222.782975][T13108] 8021q: adding VLAN 0 to HW filter on device batadv0
[  222.791189][T13202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3437'.
[  222.897725][T13216] loop1: detected capacity change from 0 to 512
[  222.917034][T13216] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.932225][T13216] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.962493][T13216] program syz.1.3440 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  222.989973][T12466] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.050890][T13108] veth0_vlan: entered promiscuous mode
[  223.074811][T13108] veth1_vlan: entered promiscuous mode
[  223.100134][T13232] loop3: detected capacity change from 0 to 164
[  223.116378][T13108] veth0_macvtap: entered promiscuous mode
[  223.128535][T13108] veth1_macvtap: entered promiscuous mode
[  223.141913][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.152466][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.163048][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.173547][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.183445][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.194607][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.204695][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.215272][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.225711][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.236250][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.246063][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.257126][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.266957][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.277477][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.288199][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.298718][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.308571][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.319753][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.329586][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.340054][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.358371][T13108] batman_adv: batadv0: Interface activated: batadv_slave_0
[  223.368074][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.379209][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.389165][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.399733][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.410332][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.420855][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.430834][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.442010][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.451918][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.462466][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.473060][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.483626][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.493528][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.504893][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.514732][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.525405][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.536127][T13108] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  223.546661][T13108] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  223.564432][T13108] batman_adv: batadv0: Interface activated: batadv_slave_1
[  223.587209][T13108] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  223.597375][T13108] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  223.606594][T13108] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  223.615478][T13108] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.757838][T13255] loop4: detected capacity change from 0 to 512
[  223.774815][T13250] FAULT_INJECTION: forcing a failure.
[  223.774815][T13250] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.787949][T13250] CPU: 0 UID: 0 PID: 13250 Comm: syz.2.3453 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  223.798851][T13250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  223.809034][T13250] Call Trace:
[  223.812329][T13250]  <TASK>
[  223.815255][T13250]  dump_stack_lvl+0xf2/0x150
[  223.819911][T13250]  dump_stack+0x15/0x20
[  223.824092][T13250]  should_fail_ex+0x229/0x230
[  223.828890][T13250]  should_fail+0xb/0x10
[  223.833059][T13250]  should_fail_usercopy+0x1a/0x20
[  223.838249][T13250]  _copy_to_user+0x1e/0xa0
[  223.842665][T13250]  store_msg+0x4e/0xf0
[  223.846742][T13250]  do_mq_timedreceive+0x4ba/0x6e0
[  223.852000][T13250]  __x64_sys_mq_timedreceive+0xca/0x150
[  223.857783][T13250]  x64_sys_call+0xccf/0x2d60
[  223.862419][T13250]  do_syscall_64+0xc9/0x1c0
[  223.866987][T13250]  ? clear_bhb_loop+0x55/0xb0
[  223.871671][T13250]  ? clear_bhb_loop+0x55/0xb0
[  223.876353][T13250]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.882273][T13250] RIP: 0033:0x7fdc9edfcef9
[  223.886686][T13250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.906890][T13250] RSP: 002b:00007fdc9da56038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f3
[  223.915395][T13250] RAX: ffffffffffffffda RBX: 00007fdc9efb6058 RCX: 00007fdc9edfcef9
[  223.923381][T13250] RDX: 00000000000000c4 RSI: 0000000020000180 RDI: 0000000000000006
[  223.931363][T13250] RBP: 00007fdc9da56090 R08: 0000000000000000 R09: 0000000000000000
[  223.939427][T13250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.947409][T13250] R13: 0000000000000000 R14: 00007fdc9efb6058 R15: 00007ffcb8b11f78
[  223.955744][T13250]  </TASK>
[  223.972454][T13255] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.985735][T13255] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.007991][T13255] program syz.4.3410 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  224.041405][T13108] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.082108][T13260] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  224.119417][T13262] loop4: detected capacity change from 0 to 512
[  224.167822][T13262] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.195689][T13262] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.243961][T13262] program syz.4.3455 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  224.317990][T13108] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.335472][T13272] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  224.373476][T13272] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3460'.
[  224.476132][T13279] ': renamed from veth1_macvtap (while UP)
[  224.737545][T13288] loop4: detected capacity change from 0 to 128
[  224.786869][T13288] syz.4.3465: attempt to access beyond end of device
[  224.786869][T13288] loop4: rw=0, sector=121, nr_sectors = 119 limit=128
[  224.912796][ T1324] kworker/u8:5: attempt to access beyond end of device
[  224.912796][ T1324] loop4: rw=1, sector=241, nr_sectors = 800 limit=128
[  225.291976][T13311] netlink: 128 bytes leftover after parsing attributes in process `syz.2.3473'.
[  225.359529][T13300] loop3: detected capacity change from 0 to 512
[  225.398810][T13300] EXT4-fs (loop3): too many log groups per flexible block group
[  225.406682][T13300] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  225.435848][T13300] EXT4-fs (loop3): mount failed
[  225.661501][T13330] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  226.132638][T13338] loop3: detected capacity change from 0 to 8192
[  226.153295][T13338] vfat: Unknown parameter '00000000000000000000007184467440737095516150xffffffffffffffff0xffffffffffffffff˙'
[  226.267309][   T29] kauditd_printk_skb: 312 callbacks suppressed
[  226.267383][   T29] audit: type=1400 audit(1725675991.994:14397): avc:  denied  { listen } for  pid=13341 comm="syz.2.3485" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  226.453678][T13358] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  226.529654][   T29] audit: type=1326 audit(1725675992.254:14398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.553409][   T29] audit: type=1326 audit(1725675992.254:14399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.577134][   T29] audit: type=1326 audit(1725675992.254:14400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.600917][   T29] audit: type=1326 audit(1725675992.254:14401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.624784][   T29] audit: type=1326 audit(1725675992.254:14402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.648700][   T29] audit: type=1326 audit(1725675992.254:14403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.672570][   T29] audit: type=1326 audit(1725675992.254:14404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.696277][   T29] audit: type=1326 audit(1725675992.254:14405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.719954][   T29] audit: type=1326 audit(1725675992.254:14406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13361 comm="syz.3.3494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7ed13dcef9 code=0x7ffc0000
[  226.826047][T13375] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  226.832593][T13375] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  226.840606][T13375] vhci_hcd vhci_hcd.0: Device attached
[  226.880787][T13379] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3498'.
[  226.936675][T13376] vhci_hcd: connection closed
[  226.936836][ T3359] vhci_hcd: stop threads
[  226.945898][ T3359] vhci_hcd: release socket
[  226.950401][ T3359] vhci_hcd: disconnect device
[  227.115646][    T8] usb 1-1: enqueue for inactive port 0
[  227.123098][    T8] usb 1-1: enqueue for inactive port 0
[  227.214809][    T8] vhci_hcd: vhci_device speed not set
[  227.602372][T13406] program syz.1.3509 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  227.610038][T13399] loop4: detected capacity change from 0 to 1024
[  227.620454][T13399] EXT4-fs: Mount option(s) incompatible with ext3
[  227.843634][T13421] lo speed is unknown, defaulting to 1000
[  227.974913][T13433] No such timeout policy "syz1"
[  228.376738][T13402] syz.2.3507 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[  228.391104][T13402] CPU: 1 UID: 0 PID: 13402 Comm: syz.2.3507 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  228.402124][T13402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  228.412296][T13402] Call Trace:
[  228.415566][T13402]  <TASK>
[  228.418489][T13402]  dump_stack_lvl+0xf2/0x150
[  228.423096][T13402]  dump_stack+0x15/0x20
[  228.427332][T13402]  dump_header+0x83/0x2d0
[  228.431860][T13402]  oom_kill_process+0x341/0x4c0
[  228.436782][T13402]  out_of_memory+0x9af/0xbe0
[  228.441406][T13402]  ? __rcu_read_unlock+0x4e/0x70
[  228.446522][T13402]  mem_cgroup_out_of_memory+0x13e/0x190
[  228.452143][T13402]  try_charge_memcg+0x51b/0x810
[  228.457011][T13402]  obj_cgroup_charge_pages+0xbd/0x1a0
[  228.462373][T13402]  __memcg_kmem_charge_page+0x9d/0x170
[  228.467894][T13402]  __alloc_pages_noprof+0x1bc/0x360
[  228.473094][T13402]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  228.478643][T13402]  alloc_pages_noprof+0xe1/0x100
[  228.483835][T13402]  __vmalloc_node_range_noprof+0x736/0xec0
[  228.489827][T13402]  __kvmalloc_node_noprof+0x121/0x170
[  228.495300][T13402]  ? ip_set_alloc+0x1f/0x30
[  228.499976][T13402]  ip_set_alloc+0x1f/0x30
[  228.504362][T13402]  hash_netiface_create+0x273/0x730
[  228.509664][T13402]  ? __nla_parse+0x40/0x60
[  228.514156][T13402]  ? __pfx_hash_netiface_create+0x10/0x10
[  228.519963][T13402]  ip_set_create+0x359/0x8a0
[  228.524543][T13402]  ? strnstr+0xf1/0x100
[  228.528688][T13402]  ? __nla_parse+0x40/0x60
[  228.533109][T13402]  nfnetlink_rcv_msg+0x4a9/0x570
[  228.538097][T13402]  netlink_rcv_skb+0x12c/0x230
[  228.542929][T13402]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  228.548549][T13402]  nfnetlink_rcv+0x16c/0x15e0
[  228.553248][T13402]  ? kmem_cache_free+0xd8/0x280
[  228.558100][T13402]  ? nlmon_xmit+0x51/0x60
[  228.562418][T13402]  ? __kfree_skb+0x102/0x150
[  228.567176][T13402]  ? consume_skb+0x57/0x180
[  228.571801][T13402]  ? nlmon_xmit+0x51/0x60
[  228.576160][T13402]  ? dev_hard_start_xmit+0x3c1/0x3f0
[  228.581650][T13402]  ? __dev_queue_xmit+0xb86/0x1fe0
[  228.586767][T13402]  ? ref_tracker_free+0x3a5/0x410
[  228.591802][T13402]  ? __rcu_read_unlock+0x4e/0x70
[  228.596740][T13402]  ? __dev_queue_xmit+0x161/0x1fe0
[  228.601876][T13402]  ? __netlink_deliver_tap+0x495/0x4c0
[  228.607459][T13402]  netlink_unicast+0x599/0x670
[  228.612355][T13402]  netlink_sendmsg+0x5cc/0x6e0
[  228.617157][T13402]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.622556][T13402]  __sock_sendmsg+0x140/0x180
[  228.627586][T13402]  ____sys_sendmsg+0x312/0x410
[  228.632495][T13402]  __sys_sendmsg+0x1e9/0x280
[  228.637178][T13402]  ? futex_wait+0x18e/0x1c0
[  228.641767][T13402]  __x64_sys_sendmsg+0x46/0x50
[  228.646666][T13402]  x64_sys_call+0x2689/0x2d60
[  228.651361][T13402]  do_syscall_64+0xc9/0x1c0
[  228.655905][T13402]  ? clear_bhb_loop+0x55/0xb0
[  228.659421][T13442] program syz.1.3522 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  228.660702][T13402]  ? clear_bhb_loop+0x55/0xb0
[  228.674549][T13402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.680571][T13402] RIP: 0033:0x7fdc9edfcef9
[  228.685034][T13402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.704649][T13402] RSP: 002b:00007fdc9da56038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  228.713072][T13402] RAX: ffffffffffffffda RBX: 00007fdc9efb6058 RCX: 00007fdc9edfcef9
[  228.721033][T13402] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000c
[  228.729061][T13402] RBP: 00007fdc9ee6f046 R08: 0000000000000000 R09: 0000000000000000
[  228.737210][T13402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  228.745167][T13402] R13: 0000000000000000 R14: 00007fdc9efb6058 R15: 00007ffcb8b11f78
[  228.753163][T13402]  </TASK>
[  228.757396][T13402] memory: usage 307200kB, limit 307200kB, failcnt 165
[  228.764170][T13402] memory+swap: usage 307592kB, limit 9007199254740988kB, failcnt 0
[  228.772208][T13402] kmem: usage 307072kB, limit 9007199254740988kB, failcnt 0
[  228.779570][T13402] Memory cgroup stats for /syz2:
[  228.779674][T13402] cache 118784
[  228.788418][T13402] rss 0
[  228.791163][T13402] shmem 0
[  228.794160][T13402] mapped_file 118784
[  228.799467][T13402] dirty 118784
[  228.802941][T13402] writeback 0
[  228.806363][T13402] workingset_refault_anon 79
[  228.810931][T13402] workingset_refault_file 32
[  228.815515][T13402] swap 401408
[  228.819585][T13402] swapcached 12288
[  228.823640][T13402] pgpgin 306093
[  228.827123][T13402] pgpgout 306061
[  228.830786][T13402] pgfault 293664
[  228.834330][T13402] pgmajfault 30
[  228.837878][T13402] inactive_anon 12288
[  228.841861][T13402] active_anon 0
[  228.845327][T13402] inactive_file 118784
[  228.849803][T13402] active_file 0
[  228.853497][T13402] unevictable 0
[  228.856948][T13402] hierarchical_memory_limit 314572800
[  228.862415][T13402] hierarchical_memsw_limit 9223372036854771712
[  228.868587][T13402] total_cache 118784
[  228.872582][T13402] total_rss 0
[  228.876723][T13402] total_shmem 0
[  228.880359][T13402] total_mapped_file 118784
[  228.884853][T13402] total_dirty 118784
[  228.888849][T13402] total_writeback 0
[  228.892638][T13402] total_workingset_refault_anon 79
[  228.897746][T13402] total_workingset_refault_file 32
[  228.902944][T13402] total_swap 401408
[  228.907208][T13402] total_swapcached 12288
[  228.911444][T13402] total_pgpgin 306093
[  228.915460][T13402] total_pgpgout 306061
[  228.919553][T13402] total_pgfault 293664
[  228.923632][T13402] total_pgmajfault 30
[  228.927620][T13402] total_inactive_anon 12288
[  228.932128][T13402] total_active_anon 0
[  228.936786][T13402] total_inactive_file 118784
[  228.941462][T13402] total_active_file 0
[  228.945511][T13402] total_unevictable 0
[  228.949525][T13402] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz2,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.1972,pid=9360,uid=0
[  228.964884][T13402] Memory cgroup out of memory: Killed process 9361 (syz.2.1972) total-vm:87068kB, anon-rss:696kB, file-rss:16296kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000
[  230.486020][T13446] loop4: detected capacity change from 0 to 1024
[  230.630017][T13446] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  230.706737][T13458] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  230.713281][T13458] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  230.721180][T13458] vhci_hcd vhci_hcd.0: Device attached
[  230.781188][T13464] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=16144 sclass=netlink_route_socket pid=13464 comm=syz.1.3530
[  230.819245][T13108] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.829190][T13458] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3528'.
[  230.886689][T13459] vhci_hcd: connection closed
[  230.886947][ T1324] vhci_hcd: stop threads
[  230.895991][ T1324] vhci_hcd: release socket
[  230.900419][ T1324] vhci_hcd: disconnect device
[  230.946343][T13476] program syz.1.3535 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  230.946446][   T24] vhci_hcd: vhci_device speed not set
[  230.968573][T13477] loop4: detected capacity change from 0 to 512
[  231.004704][T13477] EXT4-fs warning (device loop4): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[  231.037535][T13477] EXT4-fs (loop4): mount failed
[  231.049187][   T30] oom_reaper: reaped process 9361 (syz.2.1972), now anon-rss:20kB, file-rss:15180kB, shmem-rss:0kB
[  231.102993][T13487] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pid=13487 comm=syz.1.3536
[  231.119625][T13487] sctp: [Deprecated]: syz.1.3536 (pid 13487) Use of int in max_burst socket option deprecated.
[  231.119625][T13487] Use struct sctp_assoc_value instead
[  231.278695][   T29] kauditd_printk_skb: 286 callbacks suppressed
[  231.278711][   T29] audit: type=1326 audit(1725675997.004:14693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  231.316106][   T29] audit: type=1326 audit(1725675997.034:14694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  231.339820][   T29] audit: type=1326 audit(1725675997.034:14695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  231.363688][   T29] audit: type=1326 audit(1725675997.034:14696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  231.387424][   T29] audit: type=1326 audit(1725675997.034:14697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1a87dfee17 code=0x7ffc0000
[  231.410933][   T29] audit: type=1326 audit(1725675997.034:14698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1a87dfed8c code=0x7ffc0000
[  231.434429][   T29] audit: type=1326 audit(1725675997.034:14699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1a87dfecc4 code=0x7ffc0000
[  231.458332][   T29] audit: type=1326 audit(1725675997.034:14700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1a87dfecc4 code=0x7ffc0000
[  231.482030][   T29] audit: type=1326 audit(1725675997.034:14701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1a87dfbb8a code=0x7ffc0000
[  231.506549][   T29] audit: type=1326 audit(1725675997.034:14702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13489 comm="syz.0.3539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a87dfcef9 code=0x7ffc0000
[  231.835638][T13496] ==================================================================
[  231.843780][T13496] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64
[  231.853607][T13496] 
[  231.855929][T13496] read-write to 0xffffffff866079c0 of 8 bytes by interrupt on cpu 0:
[  231.863999][T13496]  tick_do_update_jiffies64+0x112/0x1b0
[  231.869568][T13496]  tick_nohz_handler+0x7c/0x2d0
[  231.874421][T13496]  __hrtimer_run_queues+0x20d/0x5e0
[  231.879619][T13496]  hrtimer_interrupt+0x210/0x7b0
[  231.884582][T13496]  __sysvec_apic_timer_interrupt+0x5c/0x1a0
[  231.890490][T13496]  sysvec_apic_timer_interrupt+0x6e/0x80
[  231.896130][T13496]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  231.902124][T13496]  __sanitizer_cov_trace_switch+0x6/0x120
[  231.907887][T13496]  mtree_load+0x24a/0x4e0
[  231.912212][T13496]  __se_sys_move_pages+0x107f/0x1610
[  231.917489][T13496]  __x64_sys_move_pages+0x78/0x90
[  231.922695][T13496]  x64_sys_call+0x2c15/0x2d60
[  231.927391][T13496]  do_syscall_64+0xc9/0x1c0
[  231.931919][T13496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.937839][T13496] 
[  231.940156][T13496] read to 0xffffffff866079c0 of 8 bytes by task 13496 on cpu 1:
[  231.947790][T13496]  mem_cgroup_flush_stats_ratelimited+0x29/0x100
[  231.954137][T13496]  count_shadow_nodes+0x6b/0x230
[  231.959103][T13496]  do_shrink_slab+0x5a/0x680
[  231.963702][T13496]  shrink_slab+0x4ea/0x850
[  231.968114][T13496]  shrink_node+0x64f/0x1d40
[  231.972616][T13496]  do_try_to_free_pages+0x3c6/0xc50
[  231.977812][T13496]  try_to_free_mem_cgroup_pages+0x1f3/0x4f0
[  231.983711][T13496]  try_charge_memcg+0x2bc/0x810
[  231.988560][T13496]  obj_cgroup_charge_pages+0xbd/0x1a0
[  231.993933][T13496]  __memcg_kmem_charge_page+0x9d/0x170
[  231.999563][T13496]  __alloc_pages_noprof+0x1bc/0x360
[  232.004797][T13496]  alloc_pages_mpol_noprof+0xb1/0x1e0
[  232.010164][T13496]  alloc_pages_noprof+0xe1/0x100
[  232.015106][T13496]  __vmalloc_node_range_noprof+0x736/0xec0
[  232.020992][T13496]  __kvmalloc_node_noprof+0x121/0x170
[  232.026356][T13496]  ip_set_alloc+0x1f/0x30
[  232.030678][T13496]  hash_netiface_create+0x273/0x730
[  232.035872][T13496]  ip_set_create+0x359/0x8a0
[  232.040460][T13496]  nfnetlink_rcv_msg+0x4a9/0x570
[  232.045393][T13496]  netlink_rcv_skb+0x12c/0x230
[  232.050237][T13496]  nfnetlink_rcv+0x16c/0x15e0
[  232.054929][T13496]  netlink_unicast+0x599/0x670
[  232.059683][T13496]  netlink_sendmsg+0x5cc/0x6e0
[  232.064449][T13496]  __sock_sendmsg+0x140/0x180
[  232.069123][T13496]  ____sys_sendmsg+0x312/0x410
[  232.073969][T13496]  __sys_sendmsg+0x1e9/0x280
[  232.078553][T13496]  __x64_sys_sendmsg+0x46/0x50
[  232.083316][T13496]  x64_sys_call+0x2689/0x2d60
[  232.088001][T13496]  do_syscall_64+0xc9/0x1c0
[  232.092495][T13496]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.098396][T13496] 
[  232.100710][T13496] value changed: 0x00000000ffffe52f -> 0x00000000ffffe530
[  232.107897][T13496] 
[  232.110219][T13496] Reported by Kernel Concurrency Sanitizer on:
[  232.116363][T13496] CPU: 1 UID: 0 PID: 13496 Comm: syz.3.3540 Not tainted 6.11.0-rc6-syzkaller-00183-gb831f83e40a2 #0
[  232.127115][T13496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  232.137158][T13496] ==================================================================