last executing test programs:

13.670240051s ago: executing program 1 (id=1333):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x2}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)

13.669318661s ago: executing program 1 (id=1334):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0xb, 0x7, 0x5, 0x8, 0x5, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="fc00000000000200000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000002940)={'team0\x00', <r3=>0x0})
r4 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_GET_MR_FOR_DEST(r4, 0x114, 0x7, &(0x7f0000000340)={@phonet={0x23, 0x33, 0x4, 0xe}, {&(0x7f0000002bc0)=""/114, 0x72}, &(0x7f0000002c40), 0x10}, 0xa0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000029c0)={'syztnl1\x00', &(0x7f0000002980)={'sit0\x00', <r5=>0x0, 0x10, 0x7, 0x0, 0xfff, {{0x7, 0x4, 0x3, 0x2f, 0x1c, 0x66, 0x0, 0x2, 0x4, 0x0, @empty, @broadcast, {[@ra={0x94, 0x4}, @noop]}}}}})
sendmmsg$inet(r0, &(0x7f0000002b00)=[{{&(0x7f0000000200)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000001480)=[{&(0x7f0000001340)="aaa638d593339cc9667ceaf885e5fef67128d0de25675b88e24f2513f00b3c6dadeedfeaf633daadc5e0e5116a25ae5ceaf83b39e887f12951f50841ccaebc714973197bbbe8cfaee850becea46a49455978539e05aed37d90d083a5198857d87fee2ee16add752ca10520ac8650caf0069d154ce47c2121e1ad880ccc2b78cccd5f8af91a7b4c564016250e137dbd93518578e4be869401f595a0cd022d407e3f47df2966efee188b9cd4dd3bf540eb844ec852141e1e6eb00309fc8e45ebba5cf50658a85cb0f6d02b44dc3269f851acd53a496a548bfdd9911b26", 0xdc}, {&(0x7f0000000280)="7d6e36058aa343fc2699d9296bdcd91938b8f3316c3ecfdbbdb9fd3516384ebea2c2ef955a73ab980a240aa6dbb3f6b130133c6398eb56ea84f283484b94ff62fbb3b812af03d3b286ecbfabea42357a2e8c0bff96512bc17a0eafb8dd29421261617b0050f292f5a5113426", 0x6c}, {&(0x7f0000001440)="514ee763f05842d7ecf7bb0d0ae47b126d95e99aa480c5bfc34fb78faea19d2153d808cb80a44cca582ccefe66a7fb8e6e8872812dfa9051b85bb82122894286", 0x40}], 0x3, &(0x7f00000014c0)=ANY=[@ANYBLOB="14000000000000000000000002000000090000000000000060008ce2000000000000000007000000440aad7febeb07c410fd441c5511e00000015c82690c0a01010000000006e00000010000000607236b000000007f000001ac1414aa00000000ac1414aaac1414bbac1e01010a01010289074df1ccc316"], 0x78}}, {{0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000001540)="73a1c5c54fe721aa2bfafe", 0xb}, {&(0x7f0000001580)="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", 0x800}], 0x2}}, {{&(0x7f00000025c0)={0x2, 0x4e23, @rand_addr=0x64010102}, 0x10, &(0x7f0000002900)=[{&(0x7f0000002600)="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", 0xfa}, {&(0x7f0000002700)="910b529068ea67b9ac906a174845b7955e563f94", 0x14}, {&(0x7f0000002740)="a7911d1c5020c5dc5acdb2d7863e98035f5587ed145e8bb56ae86e853c0bd17a3775dfdabbb7ef896af3e355a8e0d123909b4852d7bd994de828008edb9badbf23263378720f90eccfa1cd265ac072caff259e7e58506e60a75db3c1760f89266068fce30b3f5dbc94151bf5ee2995e4349c0ffa3d0ecab852e7b677f65abda7b0d65c5a0aca473e5db0511fa46ac6fab8408a0cf014c6", 0x97}, {&(0x7f0000002800)="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", 0xfe}], 0x4, &(0x7f0000002a00)=[@ip_ttl={{0x14}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @dev={0xac, 0x14, 0x14, 0x13}, @rand_addr=0x64010101}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x4}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}, @ip_ttl={{0x14, 0x0, 0x2, 0x600000}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x7}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @multicast1, @private=0xa010100}}}], 0xd0}}], 0x3, 0x4000803)
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r7, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r7, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r7, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r7, 0x11a, 0x2, &(0x7f00000000c0)=@ccm_128={{0x304}, "723e08df8c8b8a86", "bdcc707b30e3c37cfe84d8d4bb4d47d0", '^.\al', "955788b9c460caac"}, 0x28)
sendto$inet6(r7, &(0x7f0000000140)="ff0300", 0x3, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), r7)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r8, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r8, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)

13.1353222s ago: executing program 3 (id=1346):
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x840, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x2000c850, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6}]})
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="6c00000000010104000000000000000002000000240001801400018008000100e000000108000200e00000010c000280050001000000000024000280140001800800010000010000080002007f0000010c"], 0x6c}}, 0x0)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYRES8=r2, @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000", @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
listxattr(0x0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES16=r5], 0x28}, 0x1, 0x0, 0x0, 0x4008840}, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
r7 = dup2(r6, r0)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')

12.820658979s ago: executing program 1 (id=1347):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000a40)=@raw={'raw\x00', 0x4001, 0x3, 0x218, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1a8, 0x240, 0x240, 0x1a8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@local, @remote, 0xffffffff, 0x0, 'wg1\x00', 'veth0_to_bridge\x00', {0xff}, {}, 0x84, 0x3, 0x11}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x1, 0x1e01, 0x2, 0x84]}, {0xffffffffffffffff, [0x6, 0xb2cc575b459b5b33, 0x4, 0x5, 0x20], 0x6, 0x3}}}}, {{@ip={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffffff, 0x12ee6d772310561e, 'bond_slave_0\x00', 'ip6gre0\x00', {0xff}, {0xff}, 0x67, 0x2, 0x40}, 0x0, 0x70, 0xb0}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x0, 0x0, 0x100]}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x278)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)={0x15, 0x65, 0xffff, 0x0, 0x8, '9P2000.u'}, 0x15)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000001340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x310)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, &(0x7f0000000980)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)

12.311820936s ago: executing program 3 (id=1354):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="07df9a6bc6ccce7df952ecb38402cc52066c87992c4ea5ff2e34c473b0212ac22e466f5b1276cd033ea11d2fe4e0293b4967128f9e961e8fbdbba048af22573cbe8e50276c1baabb5882fd358e8981d7743ddcf13d65ec74372eee0fb93cbdeb3825dd82b3a3833e1eb8350d02dac291bf5e130db737665f8748f2b5475df9ecb3fb2b97b4b74e9933ad3ded6d5739cfbe0350c44fb5f5257b6cb36d", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = socket$nl_route(0x10, 0x3, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
epoll_create(0x7)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_mempolicy(0x2002, &(0x7f0000000000)=0x9, 0x9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'veth0_macvtap\x00'})
socket$l2tp6(0xa, 0x2, 0x73)
socket(0x11, 0x800000003, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
getsockopt$bt_BT_SECURITY(0xffffffffffffffff, 0x29, 0x7, 0x0, 0x2054dfff)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x13, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="660a00000000000000000600000000009500000000000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000040)={0x8, 'vlan0\x00', {'team_slave_1\x00'}, 0x8})
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000005440), 0x26, 0x75c, &(0x7f0000005480)="$eJzs3M1rHGUYAPBnptmkH9GNIPhxEKGFFko3SXNpT40Xb4VCwWsNm0kImWRDdlO7sWDrWajNRUEQ9ezRq1DqH+BNCgreBdEaD+JlZTablMZsum3Sbkl/P5jO+87H+zxPd3izAzsTwAvr7eKfJGI4Ii5FRLmzPY2IwXbrcMSNjePW71+PgYhqEq3W5T+S4rRYb5W3xko662PRPiVej4i7pYjTH/8/br25Oj+V59lypz/aWFgarTdXz8wtTM1ms9ni+MT5sXMTE+fGJh5Zw2s91nrivfNHbv/47traT981br01cCaJyXbdsVFbtcdhHsvG/0kpJrdtX3wawfoo6XcCAAD0pPiefyii+F4fpSjHoXYLAAAAOEhaQy0AAADgwEui3xkAAAAAT9fm7wDW71+vbi7P8vcHv78TESM7xR9oP0MccThKEXF0PXnoyYRk4zTYkxs3I+LO5Pbr75viCruxx7HHtvUffkZ6cI+jsx/uFPPP5E7zT7o1/8QO88/A5rsT9qj7/Pcg/qEu89+lHmN8/+Ubpa7xb0a8ObBT/GQrftIl/vs9xr+19sntbvtaX0ec3PHvT/JQrF3eDzE5M5fv+vqBu/+eurdb/Ue7xU92r3+px/o/XP9rvttcUsQ/dXz3z3+n+MU18WknjzQibnfWRX9tW4zjCz//sFv90xGtJ/n8v+qx/l+/HbrW46EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQlkbEcCRpZaudppVKxLGIeDWOpnmt3jg9U1tZnC72RYxEKZ2Zy7OxiChv9JOiP95uP+if3dafiIhXfjmyEXQuzyrVWj7d7+IBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYciwihiNJKxGRRsTf5TStVCIGejh36BnkBwAAAOyTkX4nAAAAADx17v8BAADg4HvS+/9kn/MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADrRLFy8WS2v9/vVq0Z++2lyZr109M53V5ysLK9VKtba8VJmt1WbzrFKtLTxqvLxWWxo/HyvXRhtZvTFab65eWaitLDauzC1MzWZXstIzqQoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDHNdxekrQSEWm7naaVSsRLETESpWRmLs/GIuLliLhXLg0V/fF+Jw0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMC+qzdX56fyPFt+bhqDncyel3w0NPa/8dFzf4X3eWICAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKAv6s3V+ak8z5br/c4EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/kp/SyKiWE6WTwxv3zuY/FNuryPigy8uf3ZtqtFYHi+2/7m1vfF5Z/vZfuQPAAAAL4QLj3Pw5n365n08AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAr+rN1fmpPM+W99a4EM3VVtLlmH7XCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPJn/AgAA///3Y8EX")
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0xe, &(0x7f0000000040)=0x2, 0xf6)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a00000004000000000100003102000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)

12.167573689s ago: executing program 3 (id=1356):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001340)=@newtaction={0x898, 0x30, 0x12f, 0x0, 0x0, {}, [{0x884, 0x1, [@m_police={0x880, 0x1, 0x0, 0x0, {{0xb}, {0x854, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xed0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xf802, 0xdf, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9f1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x254b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x10001, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}}}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xffffffffffffffff}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x2}}}}]}]}, 0x898}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="180000000000000000000000959800001801000020a0702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1000000004000000040000000200000000000000", @ANYRES32=0x1, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000030000000000000000000000000000000000000000000000b5a810d6b4799f7383aac0806973ab60a5c55f01f4f152"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000040010300000000000085000000710000009500000000000000a6029d58159200955c38d7422a60fe32f67ef1ae4c2cd480e240e98428a15ecbb1936b17339a658021646e8536aa89c58b900680e769c3480054d74d0ad5bf3a7abf5f38b7dce17f4db9662228b1f314395e42720caaff2bb7ac5009ca8e7c3dd54de5cbd949a3b56b9086796fbb4c6e40cdb8b3763a5153df1cb89600b17696d201c5246e28866c010990d739ac8fea12"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
socket(0x25, 0x800, 0x8)
setsockopt$inet_tcp_int(r4, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000200000001"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008bd6000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_link_settings={0x2}})
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000100)='cdg\x00', 0x4)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = dup2(r4, r8)
sendmmsg$inet(r9, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)="316f825a3d29f96a2093a917017b4cd30000000000000035ed313e19d6dd", 0x1e}, {&(0x7f0000000640)}], 0x2}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000300)="d0", 0x1}], 0x1}}], 0x2, 0x0)
sendmsg$TIPC_NL_SOCK_GET(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[], 0x2b8}}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r10}, 0x10)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
uname(&(0x7f00000003c0)=""/89)

12.075569747s ago: executing program 3 (id=1357):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0xa37, 0x2)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f0000001840)={0x401, 0x0, "02bffe9d69b22eff1d85f86f15d252c58e66bd8372dee8e56d05e4c9ae5b090bbefb55c87f56faa972cff6fd30a84b4c67d7eb5a7cb91a9f9f6ee848971a1381ffbe9a0923e8e9615cf1f12dca4d02c04bc7daa4df20bdb6097fa881b9abfee7f79bdd0df4db199f5da989f0d1ae2b0726545390738fb178c4d9c60b97181843b72f31a278d5580cf97ebf9eab7fda57b956f300000e9a34f4d540626e74b5ab450e539ab4d9c09fbc3051c34b8cb081f08ebdc2e69f3bc9dc21716d2ec195c1c19e5e8b94ef7a1659c141f9797681c42eefb14bd5284006fbafa4766f6975faf6f3fc7bf2ee6c4e7f0a8c627edd14ef6edcf6604bb585b600"})
setsockopt$inet_sctp6_SCTP_EVENTS(r3, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x2}, 0xe)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)

12.074883278s ago: executing program 3 (id=1358):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000380)='sched_kthread_stop_ret\x00', r1}, 0x18)
pipe2$9p(&(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x3}]}}]}, 0x3c}}, 0x0)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$inet_udp(0x2, 0x2, 0x0)
close(r6)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010005f3f770005000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(r5, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r4, 0x0, r6, 0x0, 0x4ffe2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00'}, 0x10)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

11.533086637s ago: executing program 2 (id=1371):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r0, 0x1)

11.460976074s ago: executing program 2 (id=1374):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000400001afc0000000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x3c, r3, 0x431, 0x0, 0x0, {}, [@ETHTOOL_A_PAUSE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_PAUSE_TX={0x5}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x1}]}, 0x3c}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/route\x00')
close(r4)

11.236162335s ago: executing program 2 (id=1377):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="07df9a6bc6ccce7df952ecb38402cc52066c87992c4ea5ff2e34c473b0212ac22e466f5b1276cd033ea11d2fe4e0293b4967128f9e961e8fbdbba048af22573cbe8e50276c1baabb5882fd358e8981d7743ddcf13d65ec74372eee0fb93cbdeb3825dd82b3a3833e1eb8350d02dac291bf5e130db737665f8748f2b5475df9ecb3fb2b97b4b74e9933ad3ded6d5739cfbe0350c44fb5f5257b6c", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = socket$nl_route(0x10, 0x3, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_mempolicy(0x2002, &(0x7f0000000000)=0x9, 0x9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'veth0_macvtap\x00'})
socket$l2tp6(0xa, 0x2, 0x73)
socket(0x11, 0x800000003, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002d80)=@newqdisc={0x2c, 0x24, 0xf0b, 0x1000000, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x3}]}, 0x2c}}, 0x0)
getsockopt$bt_BT_SECURITY(0xffffffffffffffff, 0x29, 0x7, 0x0, 0x2054dfff)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000040)={0x8, 'vlan0\x00', {'team_slave_1\x00'}, 0x8})
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000005440), 0x26, 0x75c, &(0x7f0000005480)="$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")
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0xe, &(0x7f0000000040)=0x2, 0xf6)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a00000004000000000100003102000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)

11.205670278s ago: executing program 3 (id=1378):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000540)='binfmt_misc\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r1, 0x0, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000009c0)={'vcan0\x00', <r2=>0x0})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x6, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r4}, &(0x7f0000000180), &(0x7f0000000100)=r3}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r4, &(0x7f0000000300), &(0x7f0000000040)=""/10}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700905cbdb75d63f16b00", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00'}, 0x10)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r5, &(0x7f0000000080)={0x1d, r2}, 0x18)
sendmsg$can_j1939(r5, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f00)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r8, {}, {0x2}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0xc4}, 0x0)

10.96105727s ago: executing program 2 (id=1381):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000680), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
mmap(&(0x7f0000261000/0xc00000)=nil, 0xc00000, 0x3000003, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mremap(&(0x7f0000c6a000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f00002a0000/0x4000)=nil)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)

10.931348093s ago: executing program 2 (id=1382):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = syz_open_dev$usbfs(&(0x7f0000000080), 0xa37, 0x2)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r4, 0x8108551b, &(0x7f0000001840)={0x401, 0x0, "02bffe9d69b22eff1d85f86f15d252c58e66bd8372dee8e56d05e4c9ae5b090bbefb55c87f56faa972cff6fd30a84b4c67d7eb5a7cb91a9f9f6ee848971a1381ffbe9a0923e8e9615cf1f12dca4d02c04bc7daa4df20bdb6097fa881b9abfee7f79bdd0df4db199f5da989f0d1ae2b0726545390738fb178c4d9c60b97181843b72f31a278d5580cf97ebf9eab7fda57b956f300000e9a34f4d540626e74b5ab450e539ab4d9c09fbc3051c34b8cb081f08ebdc2e69f3bc9dc21716d2ec195c1c19e5e8b94ef7a1659c141f9797681c42eefb14bd5284006fbafa4766f6975faf6f3fc7bf2ee6c4e7f0a8c627edd14ef6edcf6604bb585b600"})
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)

10.914439394s ago: executing program 2 (id=1383):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000540)='binfmt_misc\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r1, 0x0, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000009c0)={'vcan0\x00', <r2=>0x0})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x6, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r4}, &(0x7f0000000180), &(0x7f0000000100)=r3}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r4, &(0x7f0000000300), &(0x7f0000000040)=""/10}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x801, 0x84)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1700905cbdb75d63f16b00", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00'}, 0x10)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r5, &(0x7f0000000080)={0x1d, r2}, 0x18)
sendmsg$can_j1939(r5, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f00)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r8, {}, {0x2}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0xc4}, 0x0)

1.452527956s ago: executing program 4 (id=1444):
r0 = syz_open_procfs(0x0, &(0x7f0000000ec0)='net/vlan/config\x00')
add_key$fscrypt_v1(&(0x7f0000000300), &(0x7f0000000340)={'fscrypt:', @desc4}, &(0x7f0000000380)={0x0, "7dfa3d1fdbe93e8387a2453782510f97509451334302ed21aa7ee1bf891c6fe3224cf8b605a8db311706ef85447366e4a5aeb0c776b4cced3063ae0d7571e052", 0x1a}, 0x48, 0xffffffffffffffff)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00'})
r2 = open(&(0x7f0000000200)='./bus\x00', 0x1612c2, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x200)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1900000004000002080000000800000000c00000", @ANYRES32=r2, @ANYBLOB="1900"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index, 0x0, 0x20000000, 0x20004, 0x0, 0x1, {0x1}})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d0000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
fcntl$dupfd(r5, 0x406, r5)
mq_unlink(&(0x7f0000000200)='\x00')

1.308257359s ago: executing program 0 (id=1445):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x8, 0x0, 0x0)
r4 = openat$cgroup_freezer_state(r2, &(0x7f0000000140), 0x2, 0x0)
r5 = openat$cgroup_procs(r2, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000440)=0x14)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r7, 0x25, &(0x7f0000000000)={0x1})
fcntl$lock(r7, 0x26, &(0x7f0000000180)={0x2, 0x0, 0x8000000008, 0xffffffffffffffff})
r8 = openat$vcsu(0xffffff9c, &(0x7f0000000500), 0x400, 0x0)
r9 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE2(r9, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x119)
writev(r9, &(0x7f0000000780)=[{&(0x7f00000003c0)="0e000000", 0x4}], 0x1)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x14}]}}}]}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x10b}], {0x14}}, 0xf0}}, 0x0)
r12 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0, <r13=>0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x9, 0xe, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5ffc}, [@map_fd={0x18, 0x1, 0x1, 0x0, r0}, @cb_func={0x18, 0xa, 0x4, 0x0, 0x4}, @call={0x85, 0x0, 0x0, 0x46}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x4}, @alu={0x7, 0x1, 0x9, 0xe, 0x4, 0xffffffffffffffe7, 0x1}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x1}, @ldst={0x1, 0x0, 0x3, 0x9, 0x6, 0x10, 0x4}]}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0x9a, &(0x7f0000000300)=""/154, 0x41000, 0x8, '\x00', r6, @fallback=0x1d, r7, 0x8, &(0x7f0000000480)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x0, 0xa, 0x1, 0x1}, 0x10, 0x0, r1, 0x3, &(0x7f0000000680)=[0x1, r0, r0, r0, r8, r0, r0, r12, r13, r0], &(0x7f0000000700)=[{0x2, 0x5, 0xc, 0x3}, {0x3, 0x5, 0x2, 0x3}, {0x4, 0x3, 0x10}], 0x10, 0x0, @void, @value}, 0x94)
write$cgroup_pid(r5, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r4, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r4, &(0x7f0000000080)='THAWED\x00', 0x7)

1.060121052s ago: executing program 4 (id=1447):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)

1.055512312s ago: executing program 0 (id=1448):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe79, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x4e0, 0x0, 0x9403, 0x9a, 0x2e0, 0x2c0, 0x410, 0x3d8, 0x3d8, 0x410, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0xffffffff, 0x1, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@ipv6={@empty, @local, [], [], 'ip6erspan0\x00', 'bridge_slave_1\x00'}, 0x0, 0xd0, 0x130, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@remote}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x540)

1.021246815s ago: executing program 1 (id=1439):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001340)=@newtaction={0x898, 0x30, 0x12f, 0x0, 0x0, {}, [{0x884, 0x1, [@m_police={0x880, 0x1, 0x0, 0x0, {{0xb}, {0x854, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xed0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0xf802, 0xdf, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9f1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x254b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x3]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x10001, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}}}], [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xffffffffffffffff}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x2}}}}]}]}, 0x898}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="180000000000000000000000959800001801000020a0702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1000000004000000040000000200000000000000", @ANYRES32=0x1, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000030000000000000000000000000000000000000000000000b5a810d6b4799f7383aac0806973ab60a5c55f01f4f152"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000040010300000000000085000000710000009500000000000000a6029d58159200955c38d7422a60fe32f67ef1ae4c2cd480e240e98428a15ecbb1936b17339a658021646e8536aa89c58b900680e769c3480054d74d0ad5bf3a7abf5f38b7dce17f4db9662228b1f314395e42720caaff2bb7ac5009ca8e7c3dd54de5cbd949a3b56b9086796fbb4c6e40cdb8b3763a5153df1cb89600b17696d201c5246e28866c010990d739ac8fea12"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
socket(0x25, 0x800, 0x8)
setsockopt$inet_tcp_int(r4, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000200000001"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008bd6000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_link_settings={0x2}})
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000100)='cdg\x00', 0x4)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = dup2(r4, r8)
sendmmsg$inet(r9, &(0x7f0000000dc0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000a00)="316f825a3d29f96a2093a917017b4cd30000000000000035ed313e19d6dd", 0x1e}, {&(0x7f0000000640)}], 0x2}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000300)="d0", 0x1}], 0x1}}], 0x2, 0x0)
sendmsg$TIPC_NL_SOCK_GET(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[], 0x2b8}}, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r10}, 0x10)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="7000000010001fff00"/20, @ANYRES32=0x0], 0x70}}, 0x0)
uname(&(0x7f00000003c0)=""/89)

1.008564177s ago: executing program 0 (id=1449):
r0 = io_uring_setup(0x79af, &(0x7f0000001240))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8990, &(0x7f0000000cc0)='lo:\x96o8\x14d\xa1\xba\xda\xd1\xa0J\x12tQ\xb16\xe3\xd7\\b\x8b\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\xe0\xff\xff\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xeb\xe1\xde\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xfc\xfa 6(%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\a\xf6\xfc\x1d\xd4\x893\xeb)\xc1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00O!\xd2q\xda}\xe2\xa2\xfe\xfd)\\\xdf\x9aN\\\xaeyc\xe4g\xc0\x8a\n\v{\xa9H\\\xd1\x9d')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x2040, 0x0)
fsetxattr$trusted_overlay_redirect(r5, 0x0, 0x0, 0x0, 0xffd7)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r6=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newlink={0x34, 0x10, 0x3, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x2}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18f05a3d00000000000000000000770000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_DROP_PRIVILEGES(r8, 0x4004551e, &(0x7f00000001c0)=0x1)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000200)=@usbdevfs_connect={0x800})
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000000), &(0x7f0000000280)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9}, 0x10)
sendmsg$IPCTNL_MSG_EXP_GET(r3, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)={0x1f0, 0x1, 0x2, 0x401, 0x0, 0x0, {0x7, 0x0, 0x4}, [@CTA_EXPECT_HELP_NAME={0xa, 0x6, 'Q.931\x00'}, @CTA_EXPECT_MASTER={0xb8, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @private2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @empty}}}]}, @CTA_EXPECT_TUPLE={0xb4, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @private=0xa010100}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010102}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x2}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x7}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x3}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x1}, @CTA_EXPECT_MASK={0x44, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010102}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x1d}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}]}, 0x1f0}, 0x1, 0x0, 0x0, 0x4a9b2c3170494cb7}, 0x55)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000180)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@noop, @generic={0x88, 0x2}]}}, @time_exceeded={0xb, 0x3, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x2, 0x0, @broadcast=0xac14140a, @multicast1}}}}}}, 0x0)
ioctl$RTC_SET_TIME(r5, 0x4024700a, &(0x7f00000004c0)={0x33, 0x1d, 0x1, 0x1, 0x9, 0x5, 0x4, 0x13e, 0x1})
close_range(r0, 0xffffffffffffffff, 0x0)

961.975931ms ago: executing program 1 (id=1450):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="07df9a6bc6ccce7df952ecb38402cc52066c87992c4ea5ff2e34c473b0212ac22e466f5b1276cd033ea11d2fe4e0293b4967128f9e961e8fbdbba048af22573cbe8e50276c1baabb5882fd358e8981d7743ddcf13d65ec74372eee0fb93cbdeb3825dd82b3a3833e1eb8350d02dac291bf5e130db737665f8748f2b5475df9ecb3fb2b97b4b74e9933ad3ded6d5739cfbe0350c44fb5f5257b6cb36d", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = socket$nl_route(0x10, 0x3, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
epoll_create(0x7)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_mempolicy(0x2002, &(0x7f0000000000)=0x9, 0x9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'veth0_macvtap\x00'})
socket$l2tp6(0xa, 0x2, 0x73)
socket(0x11, 0x800000003, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002d80)=@newqdisc={0x2c, 0x24, 0xf0b, 0x1000000, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x3}]}, 0x2c}}, 0x0)
getsockopt$bt_BT_SECURITY(0xffffffffffffffff, 0x29, 0x7, 0x0, 0x2054dfff)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000040)={0x8, 'vlan0\x00', {'team_slave_1\x00'}, 0x8})
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000005440), 0x26, 0x75c, &(0x7f0000005480)="$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")
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0xe, &(0x7f0000000040)=0x2, 0xf6)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a00000004000000000100003102000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)

915.143146ms ago: executing program 0 (id=1451):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
mmap(&(0x7f0000261000/0xc00000)=nil, 0xc00000, 0x3000003, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mremap(&(0x7f0000c6a000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f00002a0000/0x4000)=nil)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)

888.536288ms ago: executing program 0 (id=1452):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0'}, 0xb)
prctl$PR_SET_MM_AUXV(0x23, 0xc, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000008000000008fda3b4f4b1bae01eb5aca9a8c11a9244cc70e05ea91b6356fc12c749ffc5c5865322e431366baf172192b8ff7d6000000000000000000"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000200)=0xb6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x4, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f00000003c0), 0x5, r3}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000001040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$USBDEVFS_DROP_PRIVILEGES(0xffffffffffffffff, 0x4004551e, &(0x7f0000000180)=0x4ba54771)
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0x80045515, &(0x7f0000001200)={{{0x1, 0x1}}, 0x0, 0x2, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000002900)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
unshare(0x2040400)
vmsplice(r4, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x51, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d90000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
connect$inet6(r7, &(0x7f0000000340)={0xa, 0x0, 0x0, @private1}, 0x1c)
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000100)={0xb}, 0x0, 0x0)
shutdown(r7, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x10, 0x6, &(0x7f0000000140)=ANY=[@ANYBLOB="050000000000000071111d000000000085100000020000008500001f0000000095000007000000009500a5050000e344be86fd66f79cc32a0df5ad55ee62cb8d4733dbe74a370f1dcf"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffe96, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

742.855491ms ago: executing program 1 (id=1454):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000014c0)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000140)='8', 0x1}], 0x1, &(0x7f00000000c0)=[@rights={{0x18, 0x1, 0x1, [r1, r1]}}], 0x18}}], 0x1, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x39000, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x548, &(0x7f0000000b40)="$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")
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)

240.133058ms ago: executing program 4 (id=1455):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
mmap(&(0x7f0000261000/0xc00000)=nil, 0xc00000, 0x3000003, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x0)

109.46652ms ago: executing program 4 (id=1456):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000b80)={'filter\x00', 0x4, 0x4, 0x3e8, 0x0, 0x0, 0x200, 0x300, 0x300, 0x300, 0x4, 0x0, {[{{@arp={@remote, @broadcast, 0x0, 0x0, 0xfd, 0x0, {@mac=@link_local={0x2}, {[0xff]}}, {@mac}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0xc, 0x4}}}, {{@uncond, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x0, 0x40}}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {@mac}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_vlan\x00', 'ipvlan1\x00'}, 0xc0, 0x100}, @unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x2, 0x8}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438)

84.364102ms ago: executing program 4 (id=1457):
r0 = io_uring_setup(0x79af, &(0x7f0000001240))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, 0x0, &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x8990, &(0x7f0000000cc0)='lo:\x96o8\x14d\xa1\xba\xda\xd1\xa0J\x12tQ\xb16\xe3\xd7\\b\x8b\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\xff\xe6\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\xb7l\xed}\xe5\x186\xc5q@n\xb4\xb6s\xb0\x00\xe0\xff\xff\x02\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x01\x00\x00\x00\xd3\r7\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xd5s2\x9cVF\xd5\x18\xfe\x0f\x8f \x01\x00\x00\xb1\x88\xebW_\xa5\xe1\xf6\x8aj\xca\xf8m\xab\xe8\x99\xeb\xe1\xde\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xfc\xfa 6(%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x1f\x9c,\x113\x7f\x03\x93\xe1\xcc\xe7f\r\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02!\xed\xff\xee$\xc89\x8cB0\xd1\xa8\xd4\xe6K0\xe1\xa3TS\x18\xe6x\x1f%P\x9fU)\x83E\n\x90M\r.\x85gn_\xb2\xe9\x8a\x1c\xe3\x93\xd8\xbc\xb6N\xc3\xe1\xafh\xa0iF\xdcq\xf9\x17\xd9i\x844E\x1a\x13\x9a\xe6\xd3\xab:PM\xfbe\xfe9\xd9\x94\x1dx\xd6\x03b\xf7\x10N\xd1\x93\rU\x7fy\x18tE\xf1*\x9a0Z\x9f\xdc{\x13\xf6\xb7\xf7\xe6=\x9cD\x108\x8eS\xa0\xd0\xa7\tn\xd9\xae\xc0\x18~x[\x85Y\xb2\x82w\x150\x97\xba\xe6\xca\xb1\xa3\x02\x14^\xbdZ\xae\xf5/\xcf\xb8\xea8Uw\x92`\"2\x81j\xbb\x87+\x89\xc5<J\x1f\xba\xfc\x90(\x985\x93\xa8\xd4\xf0\xbdTy\x18\xc8\xa0\xbb\x99\x8c\xe0Q\xffCl\xbdX~3\xa1\xa2\xf4\xd9\xf7\xc7\xfb\xce\x959x\xfeW\r\xf0{\xcaT\xecp)=\x9d\xdfG8\xa1\xe3=\xa6\x00\x98\xc1\xb3\x91-\xab\'W\x8al?d<JN\xcb\xd4H\xb0_jO\xf3\x90\xe8/l\xdfg)\x8d#\xfdo\xa9L\xdeA*\xec\xa1\x14,\xe8\x8d^\xb9r=\xc0\x18\xd4\x11dU[Ry\xed\xd6\x97\x8a\xe8\xca\x99\x10\x8e\xc8P\xa3\xae/\xdaof\x06\x7f\xf7\x80$f\b\x92\xae\xeb\xdd\"\x89\xb8\xf0\xc3\b\x00\x00\x00\x00\a\xf6\xfc\x1d\xd4\x893\xeb)\xc1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00O!\xd2q\xda}\xe2\xa2\xfe\xfd)\\\xdf\x9aN\\\xaeyc\xe4g\xc0\x8a\n\v{\xa9H\\\xd1\x9d')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x2040, 0x0)
fsetxattr$trusted_overlay_redirect(r5, 0x0, 0x0, 0x0, 0xffd7)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r6=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=@newlink={0x34, 0x10, 0x3, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x2}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18f05a3d00000000000000000000770000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
ioctl$USBDEVFS_DROP_PRIVILEGES(r8, 0x4004551e, &(0x7f00000001c0)=0x1)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000200)=@usbdevfs_connect={0x800})
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000000), &(0x7f0000000280)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r9}, 0x10)
sendmsg$IPCTNL_MSG_EXP_GET(r3, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)={0x1f8, 0x1, 0x2, 0x401, 0x0, 0x0, {0x7, 0x0, 0x4}, [@CTA_EXPECT_HELP_NAME={0xa, 0x6, 'Q.931\x00'}, @CTA_EXPECT_MASTER={0xc0, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @private2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @empty}}}]}, @CTA_EXPECT_TUPLE={0xb4, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0}, {0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @private=0xa010100}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010102}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x2}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x7}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x3}, @CTA_EXPECT_ZONE={0x6, 0x7, 0x1, 0x0, 0x1}, @CTA_EXPECT_MASK={0x44, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010102}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x1d}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}]}, 0x1f8}, 0x1, 0x0, 0x0, 0x4a9b2c3170494cb7}, 0x55)
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
ioctl$RTC_SET_TIME(r5, 0x4024700a, &(0x7f00000004c0)={0x33, 0x1d, 0x1, 0x1, 0x9, 0x5, 0x4, 0x13e, 0x1})
close_range(r0, 0xffffffffffffffff, 0x0)

12.858179ms ago: executing program 0 (id=1458):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x8, 0x0, 0x0)
r4 = openat$cgroup_freezer_state(r2, &(0x7f0000000140), 0x2, 0x0)
r5 = openat$cgroup_procs(r2, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000440)=0x14)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r7, 0x25, &(0x7f0000000000)={0x1})
fcntl$lock(r7, 0x26, &(0x7f0000000180)={0x2, 0x0, 0x8000000008, 0xffffffffffffffff})
r8 = openat$vcsu(0xffffff9c, &(0x7f0000000500), 0x400, 0x0)
r9 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE2(r9, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff00"/131], 0x119)
writev(r9, &(0x7f0000000780)=[{&(0x7f00000003c0)="0e000000", 0x4}], 0x1)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
r11 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x14}]}}}]}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x10b}], {0x14}}, 0xf0}}, 0x0)
r12 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x3, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0, <r13=>0xffffffffffffffff}, &(0x7f00000005c0), &(0x7f0000000600)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x9, 0xe, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5ffc}, [@map_fd={0x18, 0x1, 0x1, 0x0, r0}, @cb_func={0x18, 0xa, 0x4, 0x0, 0x4}, @call={0x85, 0x0, 0x0, 0x46}, @btf_id={0x18, 0x6, 0x3, 0x0, 0x4}, @alu={0x7, 0x1, 0x9, 0xe, 0x4, 0xffffffffffffffe7, 0x1}, @btf_id={0x18, 0xb, 0x3, 0x0, 0x1}, @ldst={0x1, 0x0, 0x3, 0x9, 0x6, 0x10, 0x4}]}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0x9a, &(0x7f0000000300)=""/154, 0x41000, 0x8, '\x00', r6, @fallback=0x1d, r7, 0x8, &(0x7f0000000480)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000004c0)={0x0, 0xa, 0x1, 0x1}, 0x10, 0x0, r1, 0x3, &(0x7f0000000680)=[0x1, r0, r0, r0, r8, r0, r0, r12, r13, r0], &(0x7f0000000700)=[{0x2, 0x5, 0xc, 0x3}, {0x3, 0x5, 0x2, 0x3}, {0x4, 0x3, 0x10}], 0x10, 0x0, @void, @value}, 0x94)
write$cgroup_pid(r5, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r4, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r4, &(0x7f0000000080)='THAWED\x00', 0x7)

0s ago: executing program 4 (id=1459):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0'}, 0xb)
prctl$PR_SET_MM_AUXV(0x23, 0xc, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000008000000008fda3b4f4b1bae01eb5aca9a8c11a9244cc70e05ea91b6356fc12c749ffc5c5865322e431366baf172192b8ff7d6000000000000000000"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000200)=0xb6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x4, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f00000003c0), 0x5, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000001040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$USBDEVFS_DROP_PRIVILEGES(0xffffffffffffffff, 0x4004551e, &(0x7f0000000180)=0x4ba54771)
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0x80045515, &(0x7f0000001200)={{{0x1, 0x1}}, 0x0, 0x2, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r4}, 0x18)
pipe(0x0)
unshare(0x2040400)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000040)={0x53, 0x0, 0x6, 0x0, @buffer={0x17, 0x51, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d90000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630b00c145f94cd977", 0x18, 0xffffffffffffffff)
sendto$inet6(r7, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c)
connect$inet6(r7, &(0x7f0000000340)={0xa, 0x0, 0x0, @private1}, 0x1c)
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000100)={0xb}, 0x0, 0x0)
shutdown(r7, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x10, 0x6, &(0x7f0000000140)=ANY=[@ANYBLOB="050000000000000071111d000000000085100000020000008500001f0000000095000007000000009500a5050000e344be86fd66f79cc32a0df5ad55ee62cb8d4733dbe74a370f1dcf"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffe96, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

kernel console output (not intermixed with test programs):

 84.966815][ T5438] total_workingset_refault_anon 81
[   84.966824][ T5438] total_workingset_refault_file 0
[   84.966833][ T5438] total_swap 376832
[   84.966842][ T5438] total_swapcached 16384
[   84.966852][ T5438] total_pgpgin 46500
[   85.076171][ T5438] total_pgpgout 46347
[   85.080268][ T5438] total_pgfault 56656
[   85.084273][ T5438] total_pgmajfault 61
[   85.088295][ T5438] total_inactive_anon 16384
[   85.092823][ T5438] total_active_anon 0
[   85.096931][ T5438] total_inactive_file 610304
[   85.101537][ T5438] total_active_file 0
[   85.105557][ T5438] total_unevictable 0
[   85.109596][ T5438] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.684,pid=5437,uid=0
[   85.124230][ T5438] Memory cgroup out of memory: Killed process 5437 (syz.1.684) total-vm:97352kB, anon-rss:608kB, file-rss:15916kB, shmem-rss:0kB, UID:0 pgtables:104kB oom_score_adj:1000
[   85.172186][ T3264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.302572][ T5489] netlink: 'syz.2.701': attribute type 1 has an invalid length.
[   85.310555][ T5489] netlink: 224 bytes leftover after parsing attributes in process `syz.2.701'.
[   85.343795][ T5437] syz.1.684 (5437) used greatest stack depth: 9016 bytes left
[   85.434290][ T5495] netlink: 'syz.2.702': attribute type 1 has an invalid length.
[   85.442208][ T5495] netlink: 224 bytes leftover after parsing attributes in process `syz.2.702'.
[   85.457400][ T5495] netlink: 132 bytes leftover after parsing attributes in process `syz.2.702'.
[   85.537822][ T5438] syz.1.684 (5438) used greatest stack depth: 7160 bytes left
[   85.552259][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.592140][ T5501] netlink: 'syz.1.705': attribute type 1 has an invalid length.
[   85.599958][ T5501] netlink: 224 bytes leftover after parsing attributes in process `syz.1.705'.
[   85.611397][ T5501] netlink: 132 bytes leftover after parsing attributes in process `syz.1.705'.
[   85.730602][ T5513] loop1: detected capacity change from 0 to 512
[   85.787945][ T5520] bridge1: entered promiscuous mode
[   85.793266][ T5520] bridge1: entered allmulticast mode
[   86.073788][ T5530] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[   86.198391][ T5537] xt_hashlimit: invalid rate
[   86.314604][ T5521] coredump: 399(syz.1.708): written to core: VMAs: 33, size 85356544; core: 56034208 bytes, pos 85372928
[   86.402310][ T5548] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[   86.429617][   T35] hid-generic 0000:0000:0000.001E: unknown main item tag 0x0
[   86.438162][   T35] hid-generic 0000:0000:0000.001E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   86.518305][ T5553] netlink: 'syz.4.723': attribute type 1 has an invalid length.
[   86.526026][ T5553] netlink: 224 bytes leftover after parsing attributes in process `syz.4.723'.
[   86.536763][ T5553] netlink: 132 bytes leftover after parsing attributes in process `syz.4.723'.
[   86.648856][    T9] hid-generic 0000:0000:0000.001F: unknown main item tag 0x0
[   86.662124][    T9] hid-generic 0000:0000:0000.001F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   86.732369][ T5561] syz.1.726[5561] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   86.732495][ T5561] syz.1.726[5561] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   86.743954][ T5561] syz.1.726[5561] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   86.886005][   T35] hid-generic 0000:0000:0000.0020: unknown main item tag 0x0
[   86.912946][   T35] hid-generic 0000:0000:0000.0020: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   86.927461][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   87.012375][ T5579] loop4: detected capacity change from 0 to 2048
[   87.027181][ T5579] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.039534][ T5579] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.097712][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.119282][ T5589] netlink: 'syz.4.735': attribute type 1 has an invalid length.
[   87.127570][ T5589] netlink: 224 bytes leftover after parsing attributes in process `syz.4.735'.
[   87.289211][    T9] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[   87.299201][    T9] hid-generic 0000:0000:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   87.365885][ T5602] syz.4.739[5602] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.365940][ T5602] syz.4.739[5602] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.377924][ T5602] syz.4.739[5602] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.751211][    T9] hid-generic 0000:0000:0000.0022: unknown main item tag 0x0
[   87.772110][    T9] hid-generic 0000:0000:0000.0022: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   87.826068][ T5615] netlink: 'syz.2.745': attribute type 1 has an invalid length.
[   87.856543][ T5617] loop0: detected capacity change from 0 to 2048
[   87.878306][ T5617] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.890738][ T5617] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.907590][ T5625] syz.2.748[5625] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.907705][ T5625] syz.2.748[5625] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.921889][ T5625] syz.2.748[5625] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.971318][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.001304][ T5632] syz.0.750[5632] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   88.302658][ T5656] netlink: 'syz.1.758': attribute type 1 has an invalid length.
[   88.407083][   T29] kauditd_printk_skb: 2748 callbacks suppressed
[   88.407098][   T29] audit: type=1326 audit(1727393664.113:18209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.438523][   T29] audit: type=1326 audit(1727393664.113:18210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.463260][   T29] audit: type=1326 audit(1727393664.113:18211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.487012][   T29] audit: type=1326 audit(1727393664.113:18212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.510811][   T29] audit: type=1326 audit(1727393664.113:18213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.534634][   T29] audit: type=1326 audit(1727393664.113:18214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.559859][   T29] audit: type=1326 audit(1727393664.113:18215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.583727][   T29] audit: type=1326 audit(1727393664.113:18216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.608035][   T29] audit: type=1326 audit(1727393664.113:18217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.632624][   T29] audit: type=1326 audit(1727393664.113:18218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5659 comm="syz.1.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[   88.676312][ T5669] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[   88.974204][ T5698] bridge1: entered promiscuous mode
[   88.979911][ T5698] bridge1: entered allmulticast mode
[   89.114925][ T5704] coredump: 65(syz.4.773): written to core: VMAs: 3, size 12439552; core: 6867 bytes, pos 12443648
[   89.127953][ T5703] siw: device registration error -23
[   89.134735][ T5703] netlink: 'syz.4.773': attribute type 2 has an invalid length.
[   89.134977][   T35] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[   89.155742][   T35] hid-generic 0000:0000:0000.0023: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   89.181423][ T5710] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[   89.382921][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   89.437950][ T5731] bridge1: entered promiscuous mode
[   89.443296][ T5731] bridge1: entered allmulticast mode
[   89.498151][ T5733] loop0: detected capacity change from 0 to 2048
[   89.542719][ T5733] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.564813][ T5733] ext4 filesystem being mounted at /141/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.657039][ T5753] xt_hashlimit: invalid rate
[   89.673041][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.569106][ T5910] __nla_validate_parse: 5 callbacks suppressed
[   90.569125][ T5910] netlink: 44 bytes leftover after parsing attributes in process `syz.0.799'.
[   90.690078][ T5930] loop1: detected capacity change from 0 to 2048
[   90.720415][ T5930] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.732927][ T5930] ext4 filesystem being mounted at /187/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   90.802895][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.840071][ T5956] lo speed is unknown, defaulting to 1000
[   91.005409][    T9] hid-generic 0000:0000:0000.0024: unknown main item tag 0x0
[   91.013386][    T9] hid-generic 0000:0000:0000.0024: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   91.078424][ T5966] netlink: 'syz.4.807': attribute type 1 has an invalid length.
[   91.086247][ T5966] netlink: 224 bytes leftover after parsing attributes in process `syz.4.807'.
[   91.200775][ T5972] lo speed is unknown, defaulting to 1000
[   91.253320][ T5972] netlink: 'syz.4.810': attribute type 10 has an invalid length.
[   91.261559][ T5972] bridge0: port 3(team0) entered blocking state
[   91.268050][ T5972] bridge0: port 3(team0) entered disabled state
[   91.274773][ T5972] team0: entered allmulticast mode
[   91.280085][ T5972] team_slave_0: entered allmulticast mode
[   91.285979][ T5972] team_slave_1: entered allmulticast mode
[   91.293496][ T5972] team0: entered promiscuous mode
[   91.298678][ T5972] team_slave_0: entered promiscuous mode
[   91.304681][ T5972] team_slave_1: entered promiscuous mode
[   91.311815][ T5972] bridge0: port 3(team0) entered blocking state
[   91.318426][ T5972] bridge0: port 3(team0) entered forwarding state
[   91.346312][   T35] hid-generic 0000:0000:0000.0025: unknown main item tag 0x0
[   91.354409][   T35] hid-generic 0000:0000:0000.0025: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   91.391642][ T5977] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[   91.418023][ T5977] loop3: detected capacity change from 0 to 512
[   91.425419][ T5977] EXT4-fs: Mount option(s) incompatible with ext2
[   91.472173][ T5984] loop4: detected capacity change from 0 to 2048
[   91.488502][ T5984] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.501353][ T5984] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.568715][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.710255][ T6001] netlink: 'syz.1.820': attribute type 1 has an invalid length.
[   91.718018][ T6001] netlink: 224 bytes leftover after parsing attributes in process `syz.1.820'.
[   92.443121][ T6014] xt_hashlimit: invalid rate
[   92.480904][ T6018] bpf_get_probe_write_proto: 26 callbacks suppressed
[   92.480957][ T6018] syz.4.826[6018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.487914][ T6018] syz.4.826[6018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.499639][ T6018] syz.4.826[6018] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.539687][ T6024] bridge1: entered promiscuous mode
[   92.543141][ T6022] loop2: detected capacity change from 0 to 2048
[   92.551207][ T6024] bridge1: entered allmulticast mode
[   92.567094][ T6022] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.580624][ T6022] ext4 filesystem being mounted at /198/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.637338][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.697510][ T6036] netlink: 'syz.2.834': attribute type 1 has an invalid length.
[   92.705458][ T6036] netlink: 224 bytes leftover after parsing attributes in process `syz.2.834'.
[   92.716494][ T6036] netlink: 132 bytes leftover after parsing attributes in process `syz.2.834'.
[   92.732239][ T6041] syz.1.835[6041] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.732382][ T6041] syz.1.835[6041] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.743753][ T6041] syz.1.835[6041] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   92.810101][ T6046] loop2: detected capacity change from 0 to 256
[   92.831742][ T6046] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[   92.842033][ T6046] FAT-fs (loop2): Filesystem has been set read-only
[   92.849044][ T6046] netlink: 8 bytes leftover after parsing attributes in process `syz.2.837'.
[   92.974764][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   93.271512][ T6054] syz.0.840[6054] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.271628][ T6054] syz.0.840[6054] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.283125][ T6054] syz.0.840[6054] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   93.321832][ T6058] loop0: detected capacity change from 0 to 2048
[   93.347239][ T6058] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.359850][ T6058] ext4 filesystem being mounted at /152/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.415769][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.435331][   T29] kauditd_printk_skb: 493 callbacks suppressed
[   93.435351][   T29] audit: type=1326 audit(1727393669.133:18712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.465374][   T29] audit: type=1326 audit(1727393669.133:18713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.489783][   T29] audit: type=1326 audit(1727393669.143:18714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.513609][   T29] audit: type=1326 audit(1727393669.143:18715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.537586][   T29] audit: type=1326 audit(1727393669.143:18716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.561296][   T29] audit: type=1326 audit(1727393669.143:18717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.585516][   T29] audit: type=1326 audit(1727393669.143:18718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.600440][ T6065] bridge1: entered promiscuous mode
[   93.609471][   T29] audit: type=1326 audit(1727393669.143:18719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.609509][   T29] audit: type=1326 audit(1727393669.143:18720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.614911][ T6065] bridge1: entered allmulticast mode
[   93.638269][   T29] audit: type=1326 audit(1727393669.143:18721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6062 comm="syz.0.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[   93.723490][ T6072] 9pnet_fd: Insufficient options for proto=fd
[   93.941024][ T6093] xt_hashlimit: invalid rate
[   93.992145][ T6095] loop1: detected capacity change from 0 to 2048
[   94.007738][ T6095] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.020748][ T6095] ext4 filesystem being mounted at /199/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.081492][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.136681][ T6105] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[   94.559747][ T6111] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[   94.583576][ T6113] netlink: 'syz.4.860': attribute type 1 has an invalid length.
[   94.591343][ T6113] netlink: 224 bytes leftover after parsing attributes in process `syz.4.860'.
[   94.694466][   T35] hid-generic 0000:0000:0000.0026: unknown main item tag 0x0
[   94.703426][   T35] hid-generic 0000:0000:0000.0026: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   94.764824][ T6126] loop0: detected capacity change from 0 to 2048
[   94.779078][ T6126] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.796893][ T6126] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.854450][ T6139] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[   94.865778][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.887659][ T6142] netlink: 'syz.0.872': attribute type 1 has an invalid length.
[   94.895396][ T6142] netlink: 224 bytes leftover after parsing attributes in process `syz.0.872'.
[   94.906591][ T6142] netlink: 132 bytes leftover after parsing attributes in process `syz.0.872'.
[   95.012763][ T6148] netlink: 'syz.3.874': attribute type 1 has an invalid length.
[   95.088685][    T9] hid-generic 0000:0000:0000.0027: unknown main item tag 0x0
[   95.098093][    T9] hid-generic 0000:0000:0000.0027: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   95.114822][ T6159] loop3: detected capacity change from 0 to 512
[   95.123166][ T6159] EXT4-fs (loop3): orphan cleanup on readonly fs
[   95.130488][ T6159] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.878: bg 0: block 248: padding at end of block bitmap is not set
[   95.145038][ T6159] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.878: Failed to acquire dquot type 1
[   95.158072][ T6162] vhci_hcd: default hub control req: 2000 v0000 i0000 l0
[   95.159755][ T6159] EXT4-fs (loop3): 1 truncate cleaned up
[   95.171711][ T6159] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.226744][ T6159] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.242422][ T6169] loop1: detected capacity change from 0 to 512
[   95.251102][ T6169] EXT4-fs (loop1): orphan cleanup on readonly fs
[   95.258506][ T6169] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.881: bg 0: block 248: padding at end of block bitmap is not set
[   95.260116][ T6171] bridge1: entered promiscuous mode
[   95.273317][ T6169] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.881: Failed to acquire dquot type 1
[   95.278529][ T6171] bridge1: entered allmulticast mode
[   95.291139][ T6169] EXT4-fs (loop1): 1 truncate cleaned up
[   95.309322][ T6169] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.327883][ T6169] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.658156][ T6183] loop2: detected capacity change from 0 to 512
[   95.666889][ T6183] EXT4-fs (loop2): orphan cleanup on readonly fs
[   95.674260][ T6183] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.885: bg 0: block 248: padding at end of block bitmap is not set
[   95.682524][ T6186] netlink: 'syz.4.886': attribute type 1 has an invalid length.
[   95.690885][ T6183] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.885: Failed to acquire dquot type 1
[   95.696730][ T6186] __nla_validate_parse: 3 callbacks suppressed
[   95.696748][ T6186] netlink: 224 bytes leftover after parsing attributes in process `syz.4.886'.
[   95.710799][ T6183] EXT4-fs (loop2): 1 truncate cleaned up
[   95.728694][ T6186] netlink: 132 bytes leftover after parsing attributes in process `syz.4.886'.
[   95.732179][ T6183] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.763661][ T6183] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.783562][ T6188] netlink: 4 bytes leftover after parsing attributes in process `syz.2.887'.
[   95.807123][ T6188] lo speed is unknown, defaulting to 1000
[   95.870417][ T6192] lo speed is unknown, defaulting to 1000
[   96.155749][ T6206] loop2: detected capacity change from 0 to 2048
[   96.167505][ T6206] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.181729][ T6206] x_tables: duplicate underflow at hook 3
[   96.194959][ T6211] syz.1.894[6211] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   96.213415][ T3341] hid-generic 0000:0000:0000.0028: unknown main item tag 0x0
[   96.233601][ T3341] hid-generic 0000:0000:0000.0028: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   96.248658][ T6215] xt_hashlimit: invalid rate
[   96.290453][ T6218] bridge1: entered promiscuous mode
[   96.293887][ T6220] loop1: detected capacity change from 0 to 1024
[   96.296080][ T6218] bridge1: entered allmulticast mode
[   96.311754][ T6220] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities
[   96.336278][ T6220] loop1: detected capacity change from 0 to 4096
[   96.345545][ T6220] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   96.419972][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.450770][ T6228] netlink: 'syz.1.899': attribute type 1 has an invalid length.
[   96.458762][ T6228] netlink: 224 bytes leftover after parsing attributes in process `syz.1.899'.
[   96.469647][ T6228] netlink: 132 bytes leftover after parsing attributes in process `syz.1.899'.
[   96.573380][ T6233] loop1: detected capacity change from 0 to 1024
[   96.575388][ T6234] netlink: 'syz.3.902': attribute type 10 has an invalid length.
[   96.581124][ T6233] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (4096), stripe is disabled
[   96.598547][ T6233] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   96.606818][ T6233] EXT4-fs (loop1): orphan cleanup on readonly fs
[   96.608845][ T6234] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[   96.613821][ T6233] EXT4-fs error (device loop1): __ext4_get_inode_loc:4403: comm syz.1.903: Invalid inode table block 0 in block_group 0
[   96.636935][ T6233] EXT4-fs (loop1): Remounting filesystem read-only
[   96.643694][ T6233] EXT4-fs (loop1): 1 truncate cleaned up
[   96.650466][ T6233] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   96.663024][ T6233] SELinux: (dev loop1, type ext4) getxattr errno 5
[   96.670090][ T6233] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.859994][  T985] hid-generic 0000:0000:0000.0029: unknown main item tag 0x0
[   96.870467][  T985] hid-generic 0000:0000:0000.0029: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   96.905233][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.959809][ T6258] bridge1: entered promiscuous mode
[   96.965245][ T6258] bridge1: entered allmulticast mode
[   97.476549][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   97.571797][ T6346] xt_hashlimit: invalid rate
[   97.649187][ T6361] FAULT_INJECTION: forcing a failure.
[   97.649187][ T6361] name failslab, interval 1, probability 0, space 0, times 0
[   97.662156][ T6361] CPU: 0 UID: 0 PID: 6361 Comm: syz.1.922 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[   97.674544][ T6361] Tainted: [W]=WARN
[   97.678372][ T6361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   97.688505][ T6361] Call Trace:
[   97.691868][ T6361]  <TASK>
[   97.694855][ T6361]  dump_stack_lvl+0xf2/0x150
[   97.699625][ T6361]  dump_stack+0x15/0x20
[   97.703848][ T6361]  should_fail_ex+0x223/0x230
[   97.708624][ T6361]  ? audit_log_start+0x34c/0x6b0
[   97.713612][ T6361]  should_failslab+0x8f/0xb0
[   97.718243][ T6361]  kmem_cache_alloc_noprof+0x4c/0x290
[   97.723687][ T6361]  audit_log_start+0x34c/0x6b0
[   97.728619][ T6361]  audit_seccomp+0x4b/0x130
[   97.733211][ T6361]  __seccomp_filter+0x6fa/0x1180
[   97.738227][ T6361]  ? proc_fail_nth_write+0x12a/0x150
[   97.743750][ T6361]  ? __pfx_proc_fail_nth_write+0x10/0x10
[   97.749435][ T6361]  ? vfs_write+0x580/0x910
[   97.754023][ T6361]  ? __fget_files+0x1d4/0x210
[   97.758926][ T6361]  __secure_computing+0x9f/0x1c0
[   97.764336][ T6361]  syscall_trace_enter+0xd1/0x1f0
[   97.769580][ T6361]  ? fpregs_assert_state_consistent+0x83/0xa0
[   97.775841][ T6361]  do_syscall_64+0xaa/0x1c0
[   97.780400][ T6361]  ? clear_bhb_loop+0x55/0xb0
[   97.785126][ T6361]  ? clear_bhb_loop+0x55/0xb0
[   97.789888][ T6361]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.795817][ T6361] RIP: 0033:0x7f1cbd16df39
[   97.800369][ T6361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.820186][ T6361] RSP: 002b:00007f1cbbde7038 EFLAGS: 00000246 ORIG_RAX: 000000000000011e
[   97.828735][ T6361] RAX: ffffffffffffffda RBX: 00007f1cbd325f80 RCX: 00007f1cbd16df39
[   97.837023][ T6361] RDX: 0000000020007000 RSI: 0000000000000000 RDI: 0000000000000003
[   97.845282][ T6361] RBP: 00007f1cbbde7090 R08: 0000000000000000 R09: 0000000000000000
[   97.853555][ T6361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   97.861773][ T6361] R13: 0000000000000000 R14: 00007f1cbd325f80 R15: 00007ffd991fb318
[   97.870126][ T6361]  </TASK>
[   97.901121][ T6386] loop4: detected capacity change from 0 to 1024
[   97.915916][ T6386] EXT4-fs: Ignoring removed orlov option
[   97.918291][ T6391] netlink: 4 bytes leftover after parsing attributes in process `syz.1.925'.
[   97.921711][ T6386] EXT4-fs: Ignoring removed nomblk_io_submit option
[   97.939862][ T6390] openvswitch: netlink: ct_state flags 00001eac unsupported
[   97.948060][ T6391] loop1: detected capacity change from 0 to 128
[   97.985293][ T6398] bpf_get_probe_write_proto: 8 callbacks suppressed
[   97.985309][ T6398] syz.2.926[6398] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.995821][ T6401] syz.1.927[6401] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   97.999410][ T6398] syz.2.926[6398] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.020524][ T6398] syz.2.926[6398] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.031324][ T6401] syz.1.927[6401] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.053515][ T6401] syz.1.927[6401] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.081592][ T6409] netlink: 'syz.2.928': attribute type 1 has an invalid length.
[   98.100638][ T6409] netlink: 224 bytes leftover after parsing attributes in process `syz.2.928'.
[   98.112738][ T6412] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(12)
[   98.119560][ T6412] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   98.127236][ T6412] vhci_hcd vhci_hcd.0: Device attached
[   98.135774][ T6413] vhci_hcd: connection closed
[   98.136094][ T1698] vhci_hcd: stop threads
[   98.145216][ T1698] vhci_hcd: release socket
[   98.149812][ T1698] vhci_hcd: disconnect device
[   98.314986][ T6438] loop2: detected capacity change from 0 to 1024
[   98.361959][ T6454] bridge1: entered promiscuous mode
[   98.367506][ T6454] bridge1: entered allmulticast mode
[   98.472880][   T29] kauditd_printk_skb: 290 callbacks suppressed
[   98.472957][   T29] audit: type=1326 audit(1727397769.174:19002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6463 comm="syz.2.935" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f42f7df39 code=0x0
[   98.577237][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   98.634980][   T29] audit: type=1326 audit(1727397769.334:19003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   98.665750][   T29] audit: type=1326 audit(1727397769.334:19004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   98.678947][ T6471] syz.1.938[6471] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.689585][   T29] audit: type=1326 audit(1727397769.334:19005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   98.692796][ T6471] syz.1.938[6471] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.701015][   T29] audit: type=1326 audit(1727397769.334:19006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   98.729130][ T6471] syz.1.938[6471] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   98.736037][   T29] audit: type=1326 audit(1727397769.334:19007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   98.795688][   T29] audit: type=1326 audit(1727397769.334:19008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   98.819384][   T29] audit: type=1326 audit(1727397769.334:19009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   98.842833][   T29] audit: type=1326 audit(1727397769.334:19010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   98.866438][   T29] audit: type=1326 audit(1727397769.334:19011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6468 comm="syz.4.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[   99.036458][ T6482] syz.1.943[6482] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   99.212508][ T6494] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[   99.321642][ T6500] netlink: 'syz.2.949': attribute type 1 has an invalid length.
[   99.329390][ T6500] netlink: 224 bytes leftover after parsing attributes in process `syz.2.949'.
[   99.428151][ T6503] lo speed is unknown, defaulting to 1000
[  100.054046][ T6577] loop3: detected capacity change from 0 to 1024
[  100.062655][ T6577] EXT4-fs: Ignoring removed i_version option
[  100.071292][ T6577] EXT4-fs: Ignoring removed bh option
[  100.077261][ T6577] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  100.113506][ T6577] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  100.139475][ T6577] EXT4-fs (loop3): mount failed
[  100.163245][ T6577] ALSA: seq fatal error: cannot create timer (-22)
[  100.205014][ T6602] bridge1: entered promiscuous mode
[  100.210351][ T6602] bridge1: entered allmulticast mode
[  100.366750][ T6631] capability: warning: `syz.3.964' uses 32-bit capabilities (legacy support in use)
[  100.427630][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  100.456884][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  100.861007][ T6694] loop4: detected capacity change from 0 to 512
[  100.877721][ T6694] EXT4-fs mount: 2 callbacks suppressed
[  100.877761][ T6694] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.895946][ T6694] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.917739][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.174743][ T6710] xt_hashlimit: invalid rate
[  101.267590][ T6711] loop0: detected capacity change from 0 to 1024
[  101.274489][ T6711] EXT4-fs: test_dummy_encryption option not supported
[  101.330852][ T6714] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  101.401092][ T6717] syz.3.974 uses obsolete (PF_INET,SOCK_PACKET)
[  101.565394][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  101.645647][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  101.840168][ T6730] FAULT_INJECTION: forcing a failure.
[  101.840168][ T6730] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  101.853636][ T6730] CPU: 1 UID: 0 PID: 6730 Comm: syz.3.980 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  101.865447][ T6730] Tainted: [W]=WARN
[  101.869345][ T6730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  101.879535][ T6730] Call Trace:
[  101.882822][ T6730]  <TASK>
[  101.885853][ T6730]  dump_stack_lvl+0xf2/0x150
[  101.890493][ T6730]  dump_stack+0x15/0x20
[  101.894709][ T6730]  should_fail_ex+0x223/0x230
[  101.899453][ T6730]  should_fail+0xb/0x10
[  101.903658][ T6730]  should_fail_usercopy+0x1a/0x20
[  101.908777][ T6730]  _copy_from_user+0x1e/0xd0
[  101.913407][ T6730]  copy_msghdr_from_user+0x54/0x2a0
[  101.918698][ T6730]  __sys_sendmsg+0x171/0x270
[  101.923326][ T6730]  __x64_sys_sendmsg+0x46/0x50
[  101.928164][ T6730]  x64_sys_call+0x2689/0x2d60
[  101.933048][ T6730]  do_syscall_64+0xc9/0x1c0
[  101.937596][ T6730]  ? clear_bhb_loop+0x55/0xb0
[  101.942322][ T6730]  ? clear_bhb_loop+0x55/0xb0
[  101.947099][ T6730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  101.953096][ T6730] RIP: 0033:0x7fd8df3fdf39
[  101.957636][ T6730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  101.977315][ T6730] RSP: 002b:00007fd8de071038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  101.985743][ T6730] RAX: ffffffffffffffda RBX: 00007fd8df5b5f80 RCX: 00007fd8df3fdf39
[  101.993803][ T6730] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000005
[  102.001859][ T6730] RBP: 00007fd8de071090 R08: 0000000000000000 R09: 0000000000000000
[  102.009843][ T6730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  102.017829][ T6730] R13: 0000000000000000 R14: 00007fd8df5b5f80 R15: 00007ffe0835a4c8
[  102.025818][ T6730]  </TASK>
[  102.100295][ T6743] Driver unsupported XDP return value 0 on prog  (id 596) dev N/A, expect packet loss!
[  102.114279][ T6743] netlink: 12 bytes leftover after parsing attributes in process `syz.3.984'.
[  102.143354][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  102.290635][ T6777] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  102.937411][ T6883] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  102.947320][ T6883] SELinux: failed to load policy
[  102.987984][ T6891] netlink: 32 bytes leftover after parsing attributes in process `syz.1.995'.
[  103.083622][ T6907] loop1: detected capacity change from 0 to 2048
[  103.106413][ T6907]  loop1: p1 < > p4
[  103.111235][ T6907] loop1: p4 size 8388608 extends beyond EOD, truncated
[  103.113678][ T6918] FAULT_INJECTION: forcing a failure.
[  103.113678][ T6918] name failslab, interval 1, probability 0, space 0, times 0
[  103.131007][ T6918] CPU: 0 UID: 0 PID: 6918 Comm: syz.0.1001 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  103.143162][ T6918] Tainted: [W]=WARN
[  103.147024][ T6918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  103.157267][ T6918] Call Trace:
[  103.160569][ T6918]  <TASK>
[  103.163527][ T6918]  dump_stack_lvl+0xf2/0x150
[  103.168220][ T6918]  dump_stack+0x15/0x20
[  103.172594][ T6918]  should_fail_ex+0x223/0x230
[  103.177353][ T6918]  ? scsi_ioctl_reset+0xda/0x4b0
[  103.182341][ T6918]  should_failslab+0x8f/0xb0
[  103.187032][ T6918]  __kmalloc_noprof+0xa5/0x370
[  103.191901][ T6918]  scsi_ioctl_reset+0xda/0x4b0
[  103.196733][ T6918]  scsi_ioctl+0x7b6/0x1540
[  103.201255][ T6918]  ? scsi_block_when_processing_errors+0x18e/0x1c0
[  103.208357][ T6918]  sg_ioctl+0xd00/0x1870
[  103.212708][ T6918]  ? __pfx_sg_ioctl+0x10/0x10
[  103.217417][ T6918]  __se_sys_ioctl+0xcd/0x140
[  103.222144][ T6918]  __x64_sys_ioctl+0x43/0x50
[  103.226757][ T6918]  x64_sys_call+0x15cc/0x2d60
[  103.231586][ T6918]  do_syscall_64+0xc9/0x1c0
[  103.236920][ T6918]  ? clear_bhb_loop+0x55/0xb0
[  103.242417][ T6918]  ? clear_bhb_loop+0x55/0xb0
[  103.247224][ T6918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.253151][ T6918] RIP: 0033:0x7fd6381ddf39
[  103.258185][ T6918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  103.278157][ T6918] RSP: 002b:00007fd636e57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  103.286596][ T6918] RAX: ffffffffffffffda RBX: 00007fd638395f80 RCX: 00007fd6381ddf39
[  103.295457][ T6918] RDX: 0000000020000000 RSI: 0000000000002284 RDI: 0000000000000008
[  103.304183][ T6918] RBP: 00007fd636e57090 R08: 0000000000000000 R09: 0000000000000000
[  103.312336][ T6918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.320587][ T6918] R13: 0000000000000000 R14: 00007fd638395f80 R15: 00007ffd10aaed58
[  103.328589][ T6918]  </TASK>
[  103.335432][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  103.362946][ T6928] netlink: 'syz.2.1002': attribute type 10 has an invalid length.
[  103.370976][ T6928] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1002'.
[  103.382147][ T6928] bridge0: port 3(ipvlan0) entered blocking state
[  103.382248][ T6907] SELinux:  policydb magic number 0x75622f2e does not match expected magic number 0xf97cff8c
[  103.388701][ T6928] bridge0: port 3(ipvlan0) entered disabled state
[  103.399365][ T6907] SELinux: failed to load policy
[  103.406020][ T6928] ipvlan0: entered allmulticast mode
[  103.416348][ T6928] veth0_vlan: entered allmulticast mode
[  103.422734][ T6928] ipvlan0: left allmulticast mode
[  103.428071][ T6928] veth0_vlan: left allmulticast mode
[  103.435012][ T6928] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[  103.476710][ T6937] netlink: 'syz.2.1004': attribute type 1 has an invalid length.
[  103.484657][ T6937] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1004'.
[  103.496112][ T6937] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1004'.
[  103.527100][ T6942] xt_hashlimit: invalid rate
[  103.572781][ T6944] netlink: 'syz.0.1006': attribute type 1 has an invalid length.
[  103.580743][ T6944] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1006'.
[  103.662304][ T6953] FAULT_INJECTION: forcing a failure.
[  103.662304][ T6953] name failslab, interval 1, probability 0, space 0, times 0
[  103.675045][ T6953] CPU: 0 UID: 0 PID: 6953 Comm: syz.2.1009 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  103.686887][ T6953] Tainted: [W]=WARN
[  103.690750][ T6953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  103.701005][ T6953] Call Trace:
[  103.704292][ T6953]  <TASK>
[  103.707261][ T6953]  dump_stack_lvl+0xf2/0x150
[  103.711885][ T6953]  dump_stack+0x15/0x20
[  103.716150][ T6953]  should_fail_ex+0x223/0x230
[  103.720866][ T6953]  ? getname_flags+0x81/0x3b0
[  103.725633][ T6953]  should_failslab+0x8f/0xb0
[  103.730441][ T6953]  kmem_cache_alloc_noprof+0x4c/0x290
[  103.735901][ T6953]  getname_flags+0x81/0x3b0
[  103.740446][ T6953]  getname+0x17/0x20
[  103.744478][ T6953]  do_sys_openat2+0x67/0x120
[  103.749170][ T6953]  __x64_sys_openat+0xf3/0x120
[  103.754054][ T6953]  x64_sys_call+0x1025/0x2d60
[  103.758752][ T6953]  do_syscall_64+0xc9/0x1c0
[  103.763338][ T6953]  ? clear_bhb_loop+0x55/0xb0
[  103.768108][ T6953]  ? clear_bhb_loop+0x55/0xb0
[  103.772853][ T6953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  103.778784][ T6953] RIP: 0033:0x7f7f42f7c8d0
[  103.783309][ T6953] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 19 8f 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 6c 8f 02 00 8b 44
[  103.802954][ T6953] RSP: 002b:00007f7f41bf0b70 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  103.811439][ T6953] RAX: ffffffffffffffda RBX: 0000000000101301 RCX: 00007f7f42f7c8d0
[  103.819497][ T6953] RDX: 0000000000101301 RSI: 00007f7f41bf0c10 RDI: 00000000ffffff9c
[  103.827557][ T6953] RBP: 00007f7f41bf0c10 R08: 0000000000000000 R09: 0000000000000000
[  103.835552][ T6953] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  103.843672][ T6953] R13: 0000000000000000 R14: 00007f7f43135f80 R15: 00007fff10b63d98
[  103.851682][ T6953]  </TASK>
[  103.871634][   T29] kauditd_printk_skb: 98 callbacks suppressed
[  103.871652][   T29] audit: type=1400 audit(1727397774.574:19109): avc:  denied  { unmount } for  pid=3265 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  103.898453][   T29] audit: type=1400 audit(1727397774.604:19110): avc:  denied  { create } for  pid=6959 comm="syz.2.1012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  103.961915][ T6962] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1013'.
[  103.973213][   T29] audit: type=1400 audit(1727397774.674:19111): avc:  denied  { append } for  pid=6961 comm="syz.0.1013" name="001" dev="devtmpfs" ino=144 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  103.998919][ T6962] vhci_hcd: default hub control req: ff03 v0010 i0005 l5
[  104.013953][ T6969] bridge1: entered promiscuous mode
[  104.019350][ T6969] bridge1: entered allmulticast mode
[  104.117509][ T6970] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1015'.
[  104.131087][ T6975] xt_hashlimit: invalid rate
[  104.138259][ T6973] bridge1: entered promiscuous mode
[  104.143508][ T6973] bridge1: entered allmulticast mode
[  104.205154][   T29] audit: type=1326 audit(1727397774.904:19112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6979 comm="syz.3.1019" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd8df3fdf39 code=0x0
[  104.262597][   T29] audit: type=1326 audit(1727397774.964:19113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6981 comm="syz.0.1020" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x0
[  104.309915][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  104.357842][   T29] audit: type=1326 audit(1727397775.064:19114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6984 comm="syz.4.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  104.381959][   T29] audit: type=1326 audit(1727397775.064:19115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6984 comm="syz.4.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  104.405628][   T29] audit: type=1326 audit(1727397775.064:19116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6984 comm="syz.4.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  104.429350][   T29] audit: type=1326 audit(1727397775.064:19117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6984 comm="syz.4.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  104.441297][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  104.453159][   T29] audit: type=1326 audit(1727397775.064:19118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6984 comm="syz.4.1021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  104.822739][ T7001] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7001 comm=syz.2.1027
[  105.054045][ T7006] netlink: 'syz.3.1028': attribute type 1 has an invalid length.
[  105.062227][ T7006] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1028'.
[  105.073129][ T7006] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1028'.
[  105.121753][ T7010] bpf_get_probe_write_proto: 11 callbacks suppressed
[  105.121769][ T7010] syz.0.1030[7010] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.128644][ T7010] syz.0.1030[7010] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.140427][ T7010] syz.0.1030[7010] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  105.173271][ T7012] loop0: detected capacity change from 0 to 256
[  105.191808][ T7012] vfat: Unknown parameter 'nnonumtail'
[  105.194457][ T7014] SELinux: failed to load policy
[  105.222053][ T7018] FAULT_INJECTION: forcing a failure.
[  105.222053][ T7018] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.235454][ T7018] CPU: 1 UID: 0 PID: 7018 Comm: syz.0.1033 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  105.247367][ T7018] Tainted: [W]=WARN
[  105.251242][ T7018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  105.261458][ T7018] Call Trace:
[  105.264807][ T7018]  <TASK>
[  105.267816][ T7018]  dump_stack_lvl+0xf2/0x150
[  105.272546][ T7018]  dump_stack+0x15/0x20
[  105.276851][ T7018]  should_fail_ex+0x223/0x230
[  105.281582][ T7018]  should_fail+0xb/0x10
[  105.285913][ T7018]  should_fail_usercopy+0x1a/0x20
[  105.291228][ T7018]  _copy_from_user+0x1e/0xd0
[  105.295866][ T7018]  copy_msghdr_from_user+0x54/0x2a0
[  105.301259][ T7018]  __sys_sendmmsg+0x21a/0x500
[  105.306003][ T7018]  __x64_sys_sendmmsg+0x57/0x70
[  105.310909][ T7018]  x64_sys_call+0xa49/0x2d60
[  105.315540][ T7018]  do_syscall_64+0xc9/0x1c0
[  105.320081][ T7018]  ? clear_bhb_loop+0x55/0xb0
[  105.324778][ T7018]  ? clear_bhb_loop+0x55/0xb0
[  105.329648][ T7018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.335669][ T7018] RIP: 0033:0x7fd6381ddf39
[  105.340122][ T7018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.359961][ T7018] RSP: 002b:00007fd636e57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  105.364443][ T7021] loop4: detected capacity change from 0 to 512
[  105.368628][ T7018] RAX: ffffffffffffffda RBX: 00007fd638395f80 RCX: 00007fd6381ddf39
[  105.368649][ T7018] RDX: 0000000000000001 RSI: 0000000020003ac0 RDI: 0000000000000003
[  105.368665][ T7018] RBP: 00007fd636e57090 R08: 0000000000000000 R09: 0000000000000000
[  105.368681][ T7018] R10: 0000000024000081 R11: 0000000000000246 R12: 0000000000000001
[  105.407714][ T7018] R13: 0000000000000000 R14: 00007fd638395f80 R15: 00007ffd10aaed58
[  105.415779][ T7018]  </TASK>
[  105.427890][ T7021] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.441707][ T7021] ext4 filesystem being mounted at /79/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.468654][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.484665][ T7030] lo speed is unknown, defaulting to 1000
[  105.494264][ T7032] loop4: detected capacity change from 0 to 512
[  105.502657][ T7032] EXT4-fs: Ignoring removed orlov option
[  105.510371][ T7032] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e040e09c, mo2=0102]
[  105.519974][ T7032] System zones: 1-12
[  105.524329][ T7032] EXT4-fs error (device loop4): ext4_orphan_get:1388: inode #15: comm syz.4.1039: casefold flag without casefold feature
[  105.539443][ T7032] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.1039: couldn't read orphan inode 15 (err -117)
[  105.551987][ T7032] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.568801][ T7032] netlink: 'syz.4.1039': attribute type 4 has an invalid length.
[  105.593440][ T7032] netlink: 'syz.4.1039': attribute type 4 has an invalid length.
[  105.629332][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.682619][ T7039] loop2: detected capacity change from 0 to 512
[  105.691480][ T7040] netlink: 'syz.1.1042': attribute type 1 has an invalid length.
[  105.703263][ T7039] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  105.716089][ T7039] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.731535][ T7039] bond_slave_0: entered promiscuous mode
[  105.738878][ T7039] bond_slave_0: left promiscuous mode
[  105.756261][ T7048] bridge1: entered promiscuous mode
[  105.761810][ T7048] bridge1: entered allmulticast mode
[  105.821222][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  105.873945][ T7063] loop4: detected capacity change from 0 to 512
[  105.881411][ T7063] EXT4-fs: Ignoring removed orlov option
[  105.894290][ T7066] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  105.900956][ T7066] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  105.908660][ T7066] vhci_hcd vhci_hcd.0: Device attached
[  105.918704][ T7063] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e040e09c, mo2=0102]
[  105.928038][ T7063] System zones: 1-12
[  105.932720][ T7069] vhci_hcd: connection closed
[  105.933061][   T11] vhci_hcd: stop threads
[  105.942215][   T11] vhci_hcd: release socket
[  105.946865][   T11] vhci_hcd: disconnect device
[  105.955770][ T7063] EXT4-fs error (device loop4): ext4_orphan_get:1388: inode #15: comm syz.4.1049: casefold flag without casefold feature
[  105.969863][ T7063] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.1049: couldn't read orphan inode 15 (err -117)
[  105.982614][ T7063] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.010626][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.033899][ T3339] hid-generic 0000:0000:0000.002A: unknown main item tag 0x0
[  106.044935][ T3339] hid-generic 0000:0000:0000.002A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  106.135166][ T7107] lo speed is unknown, defaulting to 1000
[  106.169327][ T7111] bridge0: port 4(vlan2) entered blocking state
[  106.175777][ T7111] bridge0: port 4(vlan2) entered disabled state
[  106.182403][ T7111] vlan2: entered allmulticast mode
[  106.190276][ T7111] vlan2: left allmulticast mode
[  106.267009][ T7124] netlink: 'syz.4.1056': attribute type 1 has an invalid length.
[  106.382583][ T7137] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  106.517407][ T7161] loop4: detected capacity change from 0 to 1024
[  106.524510][ T7161] EXT4-fs: Ignoring removed nobh option
[  106.558209][ T7161] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #2: comm syz.4.1063: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  106.590693][ T7161] EXT4-fs (loop4): get root inode failed
[  106.596952][ T7161] EXT4-fs (loop4): mount failed
[  106.621866][ T7179] netlink: 'syz.2.1065': attribute type 1 has an invalid length.
[  106.632332][ T7161] loop4: detected capacity change from 0 to 2048
[  106.718456][ T7211] netlink: 'syz.1.1067': attribute type 1 has an invalid length.
[  106.760070][ T7161] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.809822][ T7226] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  106.819401][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.842191][ T7228] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  106.849066][ T7228] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  106.856983][ T7228] vhci_hcd vhci_hcd.0: Device attached
[  106.864159][ T7231] vhci_hcd: connection closed
[  106.864729][  T242] vhci_hcd: stop threads
[  106.873797][  T242] vhci_hcd: release socket
[  106.878345][  T242] vhci_hcd: disconnect device
[  106.878709][ T7234] loop4: detected capacity change from 0 to 2048
[  106.898524][ T7234] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  106.932199][ T7234] futex_wake_op: syz.4.1073 tries to shift op by -1; fix this program
[  106.950552][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.150731][ T7268] loop4: detected capacity change from 0 to 2048
[  107.183423][ T7268] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.217499][ T7268] futex_wake_op: syz.4.1081 tries to shift op by -1; fix this program
[  107.239482][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.268548][ T7286] bridge0: port 4(vlan2) entered blocking state
[  107.275029][ T7286] bridge0: port 4(vlan2) entered disabled state
[  107.281739][ T7286] vlan2: entered allmulticast mode
[  107.289715][ T7286] vlan2: left allmulticast mode
[  107.389557][ T7302] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  107.432362][ T7308] geneve0: entered promiscuous mode
[  107.503505][    C1] net_ratelimit: 1 callbacks suppressed
[  107.503532][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  107.564236][ T7328] lo speed is unknown, defaulting to 1000
[  107.945247][ T7394] __nla_validate_parse: 11 callbacks suppressed
[  107.945319][ T7394] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1091'.
[  107.997818][ T3407] hid-generic 0000:0000:0000.002B: unknown main item tag 0x0
[  108.007307][ T3407] hid-generic 0000:0000:0000.002B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  108.084896][ T7407] syz.3.1097[7407] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.085007][ T7407] syz.3.1097[7407] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.096789][ T7407] syz.3.1097[7407] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  108.292363][ T7418] loop2: detected capacity change from 0 to 512
[  108.310428][ T7418] EXT4-fs: Ignoring removed orlov option
[  108.317493][ T7418] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e040e09c, mo2=0102]
[  108.325974][ T7418] System zones: 1-12
[  108.330397][ T7418] EXT4-fs error (device loop2): ext4_orphan_get:1388: inode #15: comm syz.2.1100: casefold flag without casefold feature
[  108.343549][ T7418] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1100: couldn't read orphan inode 15 (err -117)
[  108.357665][ T7418] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.372387][ T3339] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  108.382323][ T3339] hid-generic 0000:0000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  108.392625][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.450363][ T7430] validate_nla: 3 callbacks suppressed
[  108.450379][ T7430] netlink: 'syz.0.1105': attribute type 1 has an invalid length.
[  108.451154][ T7427] bridge1: entered promiscuous mode
[  108.455956][ T7430] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1105'.
[  108.463742][ T7427] bridge1: entered allmulticast mode
[  108.672588][ T7448] netlink: 'syz.4.1113': attribute type 1 has an invalid length.
[  108.680695][ T7448] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1113'.
[  108.693409][ T7448] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1113'.
[  108.740949][ T7460] loop3: detected capacity change from 0 to 2048
[  108.757084][ T7460] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.770982][ T7460] ext4 filesystem being mounted at /234/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.824024][ T3264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.861888][ T7466] netlink: 'syz.4.1117': attribute type 1 has an invalid length.
[  108.870124][ T7466] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1117'.
[  108.912100][ T7470] bridge1: entered promiscuous mode
[  108.917683][ T7470] bridge1: entered allmulticast mode
[  108.943248][   T29] kauditd_printk_skb: 443 callbacks suppressed
[  108.943266][   T29] audit: type=1326 audit(1727397779.644:19562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7471 comm="syz.1.1121" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x0
[  109.049664][ T7479] FAULT_INJECTION: forcing a failure.
[  109.049664][ T7479] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.058927][   T29] audit: type=1400 audit(1727397779.754:19563): avc:  denied  { sqpoll } for  pid=7481 comm="syz.2.1124" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  109.063066][ T7479] CPU: 1 UID: 0 PID: 7479 Comm: syz.4.1123 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  109.094232][ T7479] Tainted: [W]=WARN
[  109.098062][ T7479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  109.108316][ T7479] Call Trace:
[  109.111741][ T7479]  <TASK>
[  109.114696][ T7479]  dump_stack_lvl+0xf2/0x150
[  109.119460][ T7479]  dump_stack+0x15/0x20
[  109.123712][ T7479]  should_fail_ex+0x223/0x230
[  109.128440][ T7479]  should_fail+0xb/0x10
[  109.132689][ T7479]  should_fail_usercopy+0x1a/0x20
[  109.137805][ T7479]  _copy_from_iter+0xd3/0xd20
[  109.142510][ T7479]  ? rep_movs_alternative+0x4a/0x70
[  109.147763][ T7479]  ? _copy_from_iter+0x161/0xd20
[  109.152749][ T7479]  copy_page_from_iter+0x14f/0x280
[  109.157976][ T7479]  skb_copy_datagram_from_iter+0x224/0x460
[  109.163814][ T7479]  tun_get_user+0xb7c/0x24e0
[  109.168447][ T7479]  ? kstrtoull+0x110/0x140
[  109.172908][ T7479]  ? ref_tracker_alloc+0x1f5/0x2f0
[  109.178165][ T7479]  ? avc_policy_seqno+0x15/0x20
[  109.183053][ T7479]  tun_chr_write_iter+0x188/0x240
[  109.188126][ T7479]  vfs_write+0x76a/0x910
[  109.192495][ T7479]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  109.198211][ T7479]  ksys_write+0xeb/0x1b0
[  109.202505][ T7479]  __x64_sys_write+0x42/0x50
[  109.207205][ T7479]  x64_sys_call+0x27dd/0x2d60
[  109.211939][ T7479]  do_syscall_64+0xc9/0x1c0
[  109.216551][ T7479]  ? clear_bhb_loop+0x55/0xb0
[  109.221425][ T7479]  ? clear_bhb_loop+0x55/0xb0
[  109.226151][ T7479]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.232149][ T7479] RIP: 0033:0x7f2b2baedf39
[  109.236769][ T7479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.256529][ T7479] RSP: 002b:00007f2b2a761038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  109.264996][ T7479] RAX: ffffffffffffffda RBX: 00007f2b2bca5f80 RCX: 00007f2b2baedf39
[  109.273188][ T7479] RDX: 000000000000fdef RSI: 0000000020000300 RDI: 00000000000000c8
[  109.281287][ T7479] RBP: 00007f2b2a761090 R08: 0000000000000000 R09: 0000000000000000
[  109.289330][ T7479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.297335][ T7479] R13: 0000000000000000 R14: 00007f2b2bca5f80 R15: 00007ffd82ac5de8
[  109.305328][ T7479]  </TASK>
[  109.361325][   T29] audit: type=1326 audit(1727397780.064:19564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7491 comm="syz.4.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  109.387230][   T29] audit: type=1326 audit(1727397780.064:19565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7491 comm="syz.4.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  109.410915][   T29] audit: type=1326 audit(1727397780.064:19566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7491 comm="syz.4.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  109.434773][   T29] audit: type=1326 audit(1727397780.064:19567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7491 comm="syz.4.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  109.458945][   T29] audit: type=1326 audit(1727397780.064:19568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7491 comm="syz.4.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  109.482588][   T29] audit: type=1326 audit(1727397780.064:19569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7491 comm="syz.4.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  109.506374][   T29] audit: type=1326 audit(1727397780.064:19570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7491 comm="syz.4.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  109.530102][   T29] audit: type=1326 audit(1727397780.064:19571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7491 comm="syz.4.1127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f2b2baedf39 code=0x7ffc0000
[  109.559818][ T7501] syz.0.1128[7501] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.560105][ T7501] syz.0.1128[7501] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.572189][ T7501] syz.0.1128[7501] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.803281][ T7527] FAULT_INJECTION: forcing a failure.
[  109.803281][ T7527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.828558][ T7527] CPU: 0 UID: 0 PID: 7527 Comm: syz.1.1141 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  109.840406][ T7527] Tainted: [W]=WARN
[  109.844272][ T7527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  109.854575][ T7527] Call Trace:
[  109.857965][ T7527]  <TASK>
[  109.860987][ T7527]  dump_stack_lvl+0xf2/0x150
[  109.865921][ T7527]  dump_stack+0x15/0x20
[  109.870166][ T7527]  should_fail_ex+0x223/0x230
[  109.874870][ T7527]  should_fail+0xb/0x10
[  109.879129][ T7527]  should_fail_usercopy+0x1a/0x20
[  109.884247][ T7527]  _copy_from_user+0x1e/0xd0
[  109.888895][ T7527]  copy_msghdr_from_user+0x54/0x2a0
[  109.894189][ T7527]  __sys_sendmsg+0x171/0x270
[  109.898829][ T7527]  __x64_sys_sendmsg+0x46/0x50
[  109.903630][ T7527]  x64_sys_call+0x2689/0x2d60
[  109.908336][ T7527]  do_syscall_64+0xc9/0x1c0
[  109.912901][ T7527]  ? clear_bhb_loop+0x55/0xb0
[  109.917697][ T7527]  ? clear_bhb_loop+0x55/0xb0
[  109.922507][ T7527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.928473][ T7527] RIP: 0033:0x7f1cbd16df39
[  109.932893][ T7527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.952627][ T7527] RSP: 002b:00007f1cbbde7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  109.961127][ T7527] RAX: ffffffffffffffda RBX: 00007f1cbd325f80 RCX: 00007f1cbd16df39
[  109.969204][ T7527] RDX: 0000000000000004 RSI: 0000000020000400 RDI: 0000000000000004
[  109.977185][ T7527] RBP: 00007f1cbbde7090 R08: 0000000000000000 R09: 0000000000000000
[  109.985231][ T7527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.993228][ T7527] R13: 0000000000000000 R14: 00007f1cbd325f80 R15: 00007ffd991fb318
[  110.001220][ T7527]  </TASK>
[  110.026754][ T3341] hid-generic 0000:0000:0000.002D: unknown main item tag 0x0
[  110.034673][ T3341] hid-generic 0000:0000:0000.002D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  110.061567][ T7538] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  110.144927][ T7546] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(12)
[  110.151614][ T7546] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  110.159298][ T7546] vhci_hcd vhci_hcd.0: Device attached
[  110.168843][ T7547] vhci_hcd: connection closed
[  110.169638][  T242] vhci_hcd: stop threads
[  110.178765][  T242] vhci_hcd: release socket
[  110.183340][  T242] vhci_hcd: disconnect device
[  110.189124][ T7553] loop3: detected capacity change from 0 to 256
[  110.355363][ T7569] infiniband Syz1: RDMA CMA: cma_listen_on_dev, error -98
[  110.419727][ T7571] netlink: 'syz.4.1157': attribute type 1 has an invalid length.
[  110.427604][ T7571] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1157'.
[  110.440141][ T7571] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1157'.
[  110.534180][ T7574] syz.4.1158[7574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.534303][ T7574] syz.4.1158[7574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.547338][ T7574] syz.4.1158[7574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.553397][ T7576] loop3: detected capacity change from 0 to 2048
[  110.594085][ T7574] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.606600][ T7574] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.634379][ T7579] loop3: detected capacity change from 0 to 512
[  110.641503][ T7579] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  110.654759][ T7579] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  110.676481][ T7579] EXT4-fs (loop3): 1 orphan inode deleted
[  110.682373][ T7579] EXT4-fs (loop3): 1 truncate cleaned up
[  110.689017][ T7579] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.702414][ T7579] syz.3.1160[7579] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.702557][ T7579] syz.3.1160[7579] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.747765][ T3264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.780806][  T985] hid-generic 0000:0000:0000.002E: unknown main item tag 0x0
[  110.788842][  T985] hid-generic 0000:0000:0000.002E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  110.849423][ T7590] syz.3.1163[7590] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.849477][ T7590] syz.3.1163[7590] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.860933][ T7590] syz.3.1163[7590] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.959924][ T7597] FAULT_INJECTION: forcing a failure.
[  110.959924][ T7597] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  110.984523][ T7597] CPU: 0 UID: 0 PID: 7597 Comm: syz.1.1166 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  110.996373][ T7597] Tainted: [W]=WARN
[  111.000190][ T7597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  111.010480][ T7597] Call Trace:
[  111.013994][ T7597]  <TASK>
[  111.017005][ T7597]  dump_stack_lvl+0xf2/0x150
[  111.021742][ T7597]  dump_stack+0x15/0x20
[  111.026018][ T7597]  should_fail_ex+0x223/0x230
[  111.030826][ T7597]  should_fail+0xb/0x10
[  111.035072][ T7597]  should_fail_usercopy+0x1a/0x20
[  111.040199][ T7597]  _copy_from_user+0x1e/0xd0
[  111.044920][ T7597]  copy_msghdr_from_user+0x54/0x2a0
[  111.050261][ T7597]  __sys_sendmsg+0x171/0x270
[  111.054964][ T7597]  __x64_sys_sendmsg+0x46/0x50
[  111.059761][ T7597]  x64_sys_call+0x2689/0x2d60
[  111.064561][ T7597]  do_syscall_64+0xc9/0x1c0
[  111.069198][ T7597]  ? clear_bhb_loop+0x55/0xb0
[  111.073916][ T7597]  ? clear_bhb_loop+0x55/0xb0
[  111.078644][ T7597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.079280][ T7599] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  111.084615][ T7597] RIP: 0033:0x7f1cbd16df39
[  111.097681][ T7597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.117271][ T7601] netlink: 'syz.0.1168': attribute type 1 has an invalid length.
[  111.117326][ T7597] RSP: 002b:00007f1cbbde7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  111.125088][ T7601] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1168'.
[  111.133520][ T7597] RAX: ffffffffffffffda RBX: 00007f1cbd325f80 RCX: 00007f1cbd16df39
[  111.133588][ T7597] RDX: 0000000000000000 RSI: 00000000200012c0 RDI: 0000000000000005
[  111.133603][ T7597] RBP: 00007f1cbbde7090 R08: 0000000000000000 R09: 0000000000000000
[  111.133616][ T7597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  111.133628][ T7597] R13: 0000000000000000 R14: 00007f1cbd325f80 R15: 00007ffd991fb318
[  111.133647][ T7597]  </TASK>
[  111.189941][ T7601] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1168'.
[  111.260960][ T7606] loop4: detected capacity change from 0 to 2048
[  111.277239][ T7606] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.289485][ T7606] ext4 filesystem being mounted at /117/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.350161][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.389854][ T7614] loop4: detected capacity change from 0 to 512
[  111.398662][ T7614] EXT4-fs (loop4): orphan cleanup on readonly fs
[  111.406216][ T7614] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1173: bg 0: block 248: padding at end of block bitmap is not set
[  111.421850][ T7614] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.1173: Failed to acquire dquot type 1
[  111.433908][ T7614] EXT4-fs (loop4): 1 truncate cleaned up
[  111.437094][ T7614] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  111.442842][ T3339] hid-generic 0000:0000:0000.002F: unknown main item tag 0x0
[  111.465499][ T3339] hid-generic 0000:0000:0000.002F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  111.477598][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.574440][ T7630] FAULT_INJECTION: forcing a failure.
[  111.574440][ T7630] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.587676][ T7630] CPU: 1 UID: 0 PID: 7630 Comm: syz.3.1180 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  111.599648][ T7630] Tainted: [W]=WARN
[  111.603569][ T7630] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  111.613682][ T7630] Call Trace:
[  111.617057][ T7630]  <TASK>
[  111.620032][ T7630]  dump_stack_lvl+0xf2/0x150
[  111.624672][ T7630]  dump_stack+0x15/0x20
[  111.628958][ T7630]  should_fail_ex+0x223/0x230
[  111.633660][ T7630]  should_fail+0xb/0x10
[  111.637837][ T7630]  should_fail_usercopy+0x1a/0x20
[  111.642893][ T7630]  _copy_from_user+0x1e/0xd0
[  111.647501][ T7630]  do_arpt_set_ctl+0x42f/0xa20
[  111.652316][ T7630]  ? kstrtoull+0x110/0x140
[  111.656761][ T7630]  ? tcp_release_cb+0xfe/0x380
[  111.661682][ T7630]  ? _raw_spin_unlock_bh+0x36/0x40
[  111.666877][ T7630]  nf_setsockopt+0x195/0x1b0
[  111.671506][ T7630]  ip_setsockopt+0xea/0x100
[  111.676102][ T7630]  tcp_setsockopt+0x93/0xb0
[  111.680702][ T7630]  sock_common_setsockopt+0x64/0x80
[  111.685970][ T7630]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  111.691955][ T7630]  __sys_setsockopt+0x1cc/0x240
[  111.696825][ T7630]  __x64_sys_setsockopt+0x66/0x80
[  111.701889][ T7630]  x64_sys_call+0x278d/0x2d60
[  111.706592][ T7630]  do_syscall_64+0xc9/0x1c0
[  111.711219][ T7630]  ? clear_bhb_loop+0x55/0xb0
[  111.716020][ T7630]  ? clear_bhb_loop+0x55/0xb0
[  111.720811][ T7630]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.726800][ T7630] RIP: 0033:0x7fd8df3fdf39
[  111.731241][ T7630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.751065][ T7630] RSP: 002b:00007fd8de071038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  111.759507][ T7630] RAX: ffffffffffffffda RBX: 00007fd8df5b5f80 RCX: 00007fd8df3fdf39
[  111.767574][ T7630] RDX: 0000000000000060 RSI: 0000000000000000 RDI: 0000000000000003
[  111.775643][ T7630] RBP: 00007fd8de071090 R08: 0000000000000438 R09: 0000000000000000
[  111.783722][ T7630] R10: 0000000020000b80 R11: 0000000000000246 R12: 0000000000000001
[  111.791772][ T7630] R13: 0000000000000000 R14: 00007fd8df5b5f80 R15: 00007ffe0835a4c8
[  111.799838][ T7630]  </TASK>
[  111.831198][ T7639] netlink: 'syz.0.1181': attribute type 1 has an invalid length.
[  111.837698][ T7638] bridge1: entered promiscuous mode
[  111.839046][ T7639] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1181'.
[  111.844288][ T7638] bridge1: entered allmulticast mode
[  111.972838][ T7643] loop3: detected capacity change from 0 to 2048
[  111.997109][ T7643] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.011319][ T7643] ext4 filesystem being mounted at /253/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.078015][ T3264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.124897][ T7661] syz.3.1190[7661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.124971][ T7661] syz.3.1190[7661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.165691][ T7666] netlink: 'syz.1.1191': attribute type 1 has an invalid length.
[  112.298374][ T7675] bridge1: entered promiscuous mode
[  112.303641][ T7675] bridge1: entered allmulticast mode
[  112.434771][ T7687] loop2: detected capacity change from 0 to 2048
[  112.447201][ T7687] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.459471][ T7687] ext4 filesystem being mounted at /269/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.510205][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.626513][ T7707] FAULT_INJECTION: forcing a failure.
[  112.626513][ T7707] name failslab, interval 1, probability 0, space 0, times 0
[  112.639331][ T7707] CPU: 1 UID: 0 PID: 7707 Comm: syz.1.1204 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  112.651300][ T7707] Tainted: [W]=WARN
[  112.655564][ T7707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  112.665671][ T7707] Call Trace:
[  112.669327][ T7707]  <TASK>
[  112.672271][ T7707]  dump_stack_lvl+0xf2/0x150
[  112.677043][ T7707]  dump_stack+0x15/0x20
[  112.681230][ T7707]  should_fail_ex+0x223/0x230
[  112.686135][ T7707]  ? security_inode_alloc+0x32/0x100
[  112.691436][ T7707]  should_failslab+0x8f/0xb0
[  112.696075][ T7707]  kmem_cache_alloc_noprof+0x4c/0x290
[  112.701545][ T7707]  security_inode_alloc+0x32/0x100
[  112.706725][ T7707]  inode_init_always+0x439/0x480
[  112.711706][ T7707]  alloc_inode+0x7d/0x160
[  112.716081][ T7707]  new_inode_pseudo+0x15/0x20
[  112.720775][ T7707]  create_pipe_files+0x42/0x3b0
[  112.725930][ T7707]  __do_pipe_flags+0x46/0x190
[  112.730799][ T7707]  do_pipe2+0x64/0x130
[  112.734904][ T7707]  __x64_sys_pipe2+0x30/0x40
[  112.739570][ T7707]  x64_sys_call+0x65f/0x2d60
[  112.744225][ T7707]  do_syscall_64+0xc9/0x1c0
[  112.748825][ T7707]  ? clear_bhb_loop+0x55/0xb0
[  112.753571][ T7707]  ? clear_bhb_loop+0x55/0xb0
[  112.758438][ T7707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.764419][ T7707] RIP: 0033:0x7f1cbd16df39
[  112.768949][ T7707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.788786][ T7707] RSP: 002b:00007f1cbbde7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000125
[  112.797325][ T7707] RAX: ffffffffffffffda RBX: 00007f1cbd325f80 RCX: 00007f1cbd16df39
[  112.805533][ T7707] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  112.813587][ T7707] RBP: 00007f1cbbde7090 R08: 0000000000000000 R09: 0000000000000000
[  112.821797][ T7707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.829945][ T7707] R13: 0000000000000000 R14: 00007f1cbd325f80 R15: 00007ffd991fb318
[  112.838012][ T7707]  </TASK>
[  112.988138][ T7734] bridge1: entered promiscuous mode
[  112.993442][ T7734] bridge1: entered allmulticast mode
[  113.337657][    T9] hid-generic 0000:0000:0000.0030: unknown main item tag 0x0
[  113.345934][    T9] hid-generic 0000:0000:0000.0030: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  113.434212][ T7834] lo speed is unknown, defaulting to 1000
[  113.742625][ T7855] cgroup: fork rejected by pids controller in /syz4
[  113.946288][   T29] kauditd_printk_skb: 178 callbacks suppressed
[  113.946309][   T29] audit: type=1326 audit(1727397784.654:19748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1cbd16ca1f code=0x7ffc0000
[  113.951594][ T7911] loop1: detected capacity change from 0 to 2048
[  113.952636][   T29] audit: type=1326 audit(1727397784.654:19749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1cbd16dfc7 code=0x7ffc0000
[  114.006263][   T29] audit: type=1326 audit(1727397784.654:19750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1cbd16c8d0 code=0x7ffc0000
[  114.017479][ T7911] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.029900][   T29] audit: type=1326 audit(1727397784.654:19751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1cbd16db3b code=0x7ffc0000
[  114.031304][   T29] audit: type=1326 audit(1727397784.684:19752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1cbd16cbca code=0x7ffc0000
[  114.043706][ T7911] ext4 filesystem being mounted at /268/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.065605][   T29] audit: type=1326 audit(1727397784.684:19753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1cbd16cbca code=0x7ffc0000
[  114.065651][   T29] audit: type=1326 audit(1727397784.684:19754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f1cbd16c7d7 code=0x7ffc0000
[  114.065678][   T29] audit: type=1326 audit(1727397784.684:19755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f1cbd16f6da code=0x7ffc0000
[  114.171547][   T29] audit: type=1326 audit(1727397784.804:19756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1cbd16c8d0 code=0x7ffc0000
[  114.195339][   T29] audit: type=1326 audit(1727397784.804:19757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7910 comm="syz.1.1217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f1cbd16ccb7 code=0x7ffc0000
[  114.219459][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.309336][    T9] hid-generic 0000:0000:0000.0031: unknown main item tag 0x0
[  114.317379][    T9] hid-generic 0000:0000:0000.0031: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  114.412803][ T3339] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  114.422012][ T3339] hid-generic 0000:0000:0000.0032: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  114.668597][ T3339] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  114.676584][ T3339] hid-generic 0000:0000:0000.0033: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  114.690213][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  114.824892][ T7962] bridge1: entered promiscuous mode
[  114.830313][ T7962] bridge1: entered allmulticast mode
[  115.234182][ T8012] FAULT_INJECTION: forcing a failure.
[  115.234182][ T8012] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.247606][ T8012] CPU: 0 UID: 0 PID: 8012 Comm: syz.2.1240 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  115.260287][ T8012] Tainted: [W]=WARN
[  115.264123][ T8012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  115.274295][ T8012] Call Trace:
[  115.277599][ T8012]  <TASK>
[  115.280581][ T8012]  dump_stack_lvl+0xf2/0x150
[  115.285270][ T8012]  dump_stack+0x15/0x20
[  115.289633][ T8012]  should_fail_ex+0x223/0x230
[  115.294533][ T8012]  should_fail+0xb/0x10
[  115.298760][ T8012]  should_fail_usercopy+0x1a/0x20
[  115.303914][ T8012]  _copy_from_user+0x1e/0xd0
[  115.308599][ T8012]  usbdev_ioctl+0x1450/0x3e00
[  115.313421][ T8012]  ? do_vfs_ioctl+0x96e/0x1530
[  115.318666][ T8012]  ? selinux_file_ioctl+0x2f7/0x380
[  115.324067][ T8012]  ? __fget_files+0x1d4/0x210
[  115.328823][ T8012]  ? __pfx_usbdev_ioctl+0x10/0x10
[  115.333915][ T8012]  __se_sys_ioctl+0xcd/0x140
[  115.338742][ T8012]  __x64_sys_ioctl+0x43/0x50
[  115.343466][ T8012]  x64_sys_call+0x15cc/0x2d60
[  115.348201][ T8012]  do_syscall_64+0xc9/0x1c0
[  115.352929][ T8012]  ? clear_bhb_loop+0x55/0xb0
[  115.357794][ T8012]  ? clear_bhb_loop+0x55/0xb0
[  115.362527][ T8012]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.368541][ T8012] RIP: 0033:0x7f7f42f7df39
[  115.373177][ T8012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.393229][ T8012] RSP: 002b:00007f7f41bf1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  115.401726][ T8012] RAX: ffffffffffffffda RBX: 00007f7f43135f80 RCX: 00007f7f42f7df39
[  115.409804][ T8012] RDX: 0000000020000000 RSI: 00000000c0105512 RDI: 0000000000000003
[  115.417856][ T8012] RBP: 00007f7f41bf1090 R08: 0000000000000000 R09: 0000000000000000
[  115.426254][ T8012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.434389][ T8012] R13: 0000000000000000 R14: 00007f7f43135f80 R15: 00007fff10b63d98
[  115.442409][ T8012]  </TASK>
[  115.477258][ T8039] netlink: 'syz.2.1241': attribute type 1 has an invalid length.
[  115.485171][ T8039] __nla_validate_parse: 3 callbacks suppressed
[  115.485189][ T8039] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1241'.
[  115.485396][ T8041] hub 9-0:1.0: USB hub found
[  115.493437][ T8039] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1241'.
[  115.510008][ T8041] hub 9-0:1.0: 8 ports detected
[  115.603775][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  115.637416][ T8096] bridge1: entered promiscuous mode
[  115.642731][ T8096] bridge1: entered allmulticast mode
[  115.887847][ T8137] netlink: 'syz.2.1251': attribute type 1 has an invalid length.
[  115.896645][ T8137] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1251'.
[  115.907984][ T8137] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1251'.
[  116.201964][ T8161] lo speed is unknown, defaulting to 1000
[  116.457273][ T8175] hub 9-0:1.0: USB hub found
[  116.462136][ T8175] hub 9-0:1.0: 8 ports detected
[  116.517715][ T8178] FAULT_INJECTION: forcing a failure.
[  116.517715][ T8178] name failslab, interval 1, probability 0, space 0, times 0
[  116.530769][ T8178] CPU: 1 UID: 0 PID: 8178 Comm: syz.3.1264 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  116.542729][ T8178] Tainted: [W]=WARN
[  116.546581][ T8178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  116.556872][ T8178] Call Trace:
[  116.559175][ T8179] lo speed is unknown, defaulting to 1000
[  116.560159][ T8178]  <TASK>
[  116.560176][ T8178]  dump_stack_lvl+0xf2/0x150
[  116.573470][ T8178]  dump_stack+0x15/0x20
[  116.577831][ T8178]  should_fail_ex+0x223/0x230
[  116.582689][ T8178]  ? alloc_empty_file+0xd0/0x2f0
[  116.587774][ T8178]  should_failslab+0x8f/0xb0
[  116.592479][ T8178]  kmem_cache_alloc_noprof+0x4c/0x290
[  116.598048][ T8178]  alloc_empty_file+0xd0/0x2f0
[  116.602927][ T8178]  path_openat+0x6a/0x1fa0
[  116.607448][ T8178]  ? terminate_walk+0x260/0x280
[  116.612359][ T8178]  ? path_openat+0x1a5a/0x1fa0
[  116.617196][ T8178]  ? _parse_integer_limit+0x167/0x180
[  116.622665][ T8178]  do_filp_open+0xf7/0x200
[  116.627157][ T8178]  alloc_bprm+0xd5/0x740
[  116.631496][ T8178]  ? should_fail_ex+0xd7/0x230
[  116.636512][ T8178]  do_execveat_common+0x134/0x800
[  116.642005][ T8178]  ? getname_flags+0x15a/0x3b0
[  116.646942][ T8178]  __x64_sys_execveat+0x75/0x90
[  116.651834][ T8178]  x64_sys_call+0x8ae/0x2d60
[  116.656548][ T8178]  do_syscall_64+0xc9/0x1c0
[  116.661118][ T8178]  ? clear_bhb_loop+0x55/0xb0
[  116.666361][ T8178]  ? clear_bhb_loop+0x55/0xb0
[  116.671109][ T8178]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.677048][ T8178] RIP: 0033:0x7fd8df3fdf39
[  116.682178][ T8178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.702392][ T8178] RSP: 002b:00007fd8de071038 EFLAGS: 00000246 ORIG_RAX: 0000000000000142
[  116.710877][ T8178] RAX: ffffffffffffffda RBX: 00007fd8df5b5f80 RCX: 00007fd8df3fdf39
[  116.718917][ T8178] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  116.727007][ T8178] RBP: 00007fd8de071090 R08: 0000000000001000 R09: 0000000000000000
[  116.735106][ T8178] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.743151][ T8178] R13: 0000000000000000 R14: 00007fd8df5b5f80 R15: 00007ffe0835a4c8
[  116.751279][ T8178]  </TASK>
[  116.817648][ T8188] netlink: 'syz.3.1268': attribute type 1 has an invalid length.
[  116.825662][ T8188] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1268'.
[  116.827286][ T8186] lo speed is unknown, defaulting to 1000
[  116.843252][ T8188] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1268'.
[  116.984398][ T8204] loop1: detected capacity change from 0 to 2048
[  117.011329][ T8204] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.030402][ T8204] ext4 filesystem being mounted at /276/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.109199][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  117.124856][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.135207][ T8219] netlink: 'syz.4.1280': attribute type 1 has an invalid length.
[  117.143063][ T8219] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1280'.
[  117.153684][ T8219] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1280'.
[  117.314086][ T8238] loop4: detected capacity change from 0 to 2048
[  117.315489][ T8240] netlink: 'syz.1.1289': attribute type 1 has an invalid length.
[  117.328353][ T8240] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1289'.
[  117.339183][ T8238] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.339726][ T8240] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1289'.
[  117.351582][ T8238] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.416128][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.444298][ T8244] lo speed is unknown, defaulting to 1000
[  117.637335][ T8248] bridge0: port 3(team0) entered disabled state
[  117.643778][ T8248] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.651049][ T8248] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.759095][ T8248] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  117.773637][ T8248] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  117.820368][ T8274] netlink: 'syz.3.1295': attribute type 1 has an invalid length.
[  117.850825][ T8248] geneve0: left promiscuous mode
[  117.858100][ T8248] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.867280][ T8248] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.876304][ T8248] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  117.885474][ T8248] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  118.104320][ T8293] loop1: detected capacity change from 0 to 2048
[  118.122753][ T8293] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.135037][ T8293] ext4 filesystem being mounted at /282/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.147372][ T8300] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  118.204883][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.226103][ T8304] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  118.278089][ T8308] loop1: detected capacity change from 0 to 2048
[  118.297007][ T8308] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.309530][ T8308] ext4 filesystem being mounted at /285/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.377425][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.413670][ T8318] netlink: 'syz.1.1310': attribute type 1 has an invalid length.
[  118.441070][ T8322] netlink: 'syz.4.1312': attribute type 1 has an invalid length.
[  118.511503][ T8324] netlink: 'syz.1.1313': attribute type 1 has an invalid length.
[  118.603537][ T8329] loop1: detected capacity change from 0 to 2048
[  118.617232][ T8329] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.629643][ T8329] ext4 filesystem being mounted at /289/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.687087][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.710008][ T8333] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  118.783270][ T8341] lo speed is unknown, defaulting to 1000
[  118.960016][ T8352] netlink: 'syz.3.1324': attribute type 1 has an invalid length.
[  119.063155][ T8358] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(11)
[  119.069809][ T8358] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  119.077408][ T8358] vhci_hcd vhci_hcd.0: Device attached
[  119.084285][ T8359] vhci_hcd: connection closed
[  119.085366][  T242] vhci_hcd: stop threads
[  119.094806][  T242] vhci_hcd: release socket
[  119.099484][  T242] vhci_hcd: disconnect device
[  119.105811][   T29] kauditd_printk_skb: 468 callbacks suppressed
[  119.105828][   T29] audit: type=1326 audit(1727397789.804:20226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.112394][ T8362] loop1: detected capacity change from 0 to 2048
[  119.135886][   T29] audit: type=1326 audit(1727397789.804:20227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.166175][   T29] audit: type=1326 audit(1727397789.804:20228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.189817][   T29] audit: type=1326 audit(1727397789.804:20229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.197387][ T8362] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  119.213540][   T29] audit: type=1326 audit(1727397789.804:20230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.227825][ T8362] ext4 filesystem being mounted at /295/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.249321][   T29] audit: type=1326 audit(1727397789.804:20231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.283336][   T29] audit: type=1326 audit(1727397789.804:20232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.308674][   T29] audit: type=1326 audit(1727397789.804:20233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.332321][   T29] audit: type=1326 audit(1727397789.804:20234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.356031][   T29] audit: type=1326 audit(1727397789.804:20235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8361 comm="syz.1.1328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1cbd16df39 code=0x7ffc0000
[  119.392395][ T3265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.413200][ T8366] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  119.505400][ T8378] lo speed is unknown, defaulting to 1000
[  119.592775][ T3341] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  119.602681][ T3341] hid-generic 0000:0000:0000.0034: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  119.694454][ T8389] bpf_get_probe_write_proto: 4 callbacks suppressed
[  119.694527][ T8389] syz.2.1339[8389] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  119.701398][ T8389] syz.2.1339[8389] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  119.713060][ T8389] syz.2.1339[8389] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  119.749459][ T8395] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  119.750265][ T8394] loop0: detected capacity change from 0 to 2048
[  119.793270][ T8398] loop3: detected capacity change from 0 to 2048
[  119.808455][ T8389] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  119.837343][ T8389] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  120.031790][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  120.418631][ T8493] lo speed is unknown, defaulting to 1000
[  120.658364][ T8529] validate_nla: 3 callbacks suppressed
[  120.658418][ T8529] netlink: 'syz.2.1352': attribute type 1 has an invalid length.
[  120.671775][ T8529] __nla_validate_parse: 16 callbacks suppressed
[  120.671791][ T8529] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1352'.
[  120.688587][ T8529] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1352'.
[  120.793942][ T8547] netlink: 'syz.2.1353': attribute type 1 has an invalid length.
[  120.801951][ T8547] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1353'.
[  120.817925][ T8547] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1353'.
[  120.853723][ T8554] loop3: detected capacity change from 0 to 2048
[  120.867017][ T8554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  120.879524][ T8554] ext4 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.961659][ T8569] loop2: detected capacity change from 0 to 2048
[  120.973239][ T3264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.990581][ T8569] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.002956][ T8569] ext4 filesystem being mounted at /303/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.072521][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.134060][ T8587] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1358'.
[  121.189817][ T8592] lo speed is unknown, defaulting to 1000
[  121.344430][ T8251] hid-generic 0000:0000:0000.0035: unknown main item tag 0x0
[  121.354117][ T8251] hid-generic 0000:0000:0000.0035: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  121.397089][ T8597] netlink: 'syz.4.1364': attribute type 1 has an invalid length.
[  121.405132][ T8597] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1364'.
[  121.421019][ T8597] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1364'.
[  121.443971][ T8600] netlink: 'syz.2.1365': attribute type 1 has an invalid length.
[  121.452314][ T8600] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1365'.
[  121.463335][ T8600] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1365'.
[  121.522728][ T8602] loop4: detected capacity change from 0 to 2048
[  121.549874][ T8602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.563063][ T8602] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.628515][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.682052][ T8621] lo speed is unknown, defaulting to 1000
[  121.705077][ T8623] lo speed is unknown, defaulting to 1000
[  121.911070][ T8251] hid-generic 0000:0000:0000.0036: unknown main item tag 0x0
[  121.922636][ T8251] hid-generic 0000:0000:0000.0036: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  121.953358][ T8633] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1378'.
[  122.021376][ T8635] loop2: detected capacity change from 0 to 2048
[  122.049141][ T8635] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.063317][ T8635] ext4 filesystem being mounted at /315/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.179969][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.398621][ T8649] loop0: detected capacity change from 0 to 2048
[  122.417397][ T8649] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.431388][ T8649] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.489091][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.527649][ T8655] syz.0.1386[8655] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  122.527703][ T8655] syz.0.1386[8655] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  122.540690][ T8655] syz.0.1386[8655] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  122.616376][ T8656] netlink: 'syz.0.1386': attribute type 10 has an invalid length.
[  122.646533][ T8656] bond0: (slave netdevsim1): Enslaving as an active interface with an up link
[  123.378473][ T8663] netlink: 'syz.0.1389': attribute type 1 has an invalid length.
[  123.905128][ T8670] loop4: detected capacity change from 0 to 1024
[  123.918057][ T8670] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.930591][ T8670] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.363149][ T8678] lo speed is unknown, defaulting to 1000
[  124.522823][ T8681] netlink: 'syz.0.1394': attribute type 1 has an invalid length.
[  124.599302][   T29] kauditd_printk_skb: 2301 callbacks suppressed
[  124.599323][   T29] audit: type=1326 audit(1727397795.304:22537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.629337][   T29] audit: type=1326 audit(1727397795.304:22538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.631187][ T8683] loop0: detected capacity change from 0 to 2048
[  124.653225][   T29] audit: type=1326 audit(1727397795.304:22539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.683265][   T29] audit: type=1326 audit(1727397795.304:22540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.706900][   T29] audit: type=1326 audit(1727397795.304:22541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.730379][   T29] audit: type=1326 audit(1727397795.304:22542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.753902][   T29] audit: type=1326 audit(1727397795.304:22543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.758214][ T8683] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.777499][   T29] audit: type=1326 audit(1727397795.304:22544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.777566][   T29] audit: type=1326 audit(1727397795.304:22545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.791849][ T8683] ext4 filesystem being mounted at /246/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.813211][   T29] audit: type=1326 audit(1727397795.304:22546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8682 comm="syz.0.1395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  124.888625][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.932503][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.975303][ T8695] netlink: 'syz.4.1400': attribute type 1 has an invalid length.
[  125.068430][ T8700] syz.0.1402[8700] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.068507][ T8700] syz.0.1402[8700] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.080095][ T8700] syz.0.1402[8700] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  125.105368][ T8700] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  125.125447][ T8700] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  125.760179][ T8711] loop0: detected capacity change from 0 to 1024
[  125.787505][ T8711] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.799864][ T8711] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.983374][ T8717] loop4: detected capacity change from 0 to 2048
[  125.997449][ T8717] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.009776][ T8717] ext4 filesystem being mounted at /182/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.066311][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.538333][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.948541][ T8738] syz.4.1416[8738] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.948650][ T8738] syz.4.1416[8738] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.960539][ T8738] syz.4.1416[8738] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.983999][ T8738] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.004483][ T8738] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.534429][ T8743] lo speed is unknown, defaulting to 1000
[  127.693534][ T8747] netlink: 'syz.4.1419': attribute type 1 has an invalid length.
[  127.701440][ T8747] __nla_validate_parse: 7 callbacks suppressed
[  127.701497][ T8747] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1419'.
[  127.718221][ T8747] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1419'.
[  127.927935][ T8749] loop4: detected capacity change from 0 to 1024
[  127.947350][ T8749] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.959725][ T8749] ext4 filesystem being mounted at /188/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.450463][ T8763] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  128.703862][ T5198] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.739273][ T8789] lo speed is unknown, defaulting to 1000
[  130.398680][   T29] kauditd_printk_skb: 182 callbacks suppressed
[  130.398704][   T29] audit: type=1326 audit(1727397801.104:22729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.443452][ T8796] loop0: detected capacity change from 0 to 2048
[  130.451137][   T29] audit: type=1326 audit(1727397801.144:22730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.475032][   T29] audit: type=1326 audit(1727397801.144:22731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.498746][   T29] audit: type=1326 audit(1727397801.144:22732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.522303][   T29] audit: type=1326 audit(1727397801.144:22733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.546228][   T29] audit: type=1326 audit(1727397801.144:22734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.552756][ T8798] lo speed is unknown, defaulting to 1000
[  130.569845][   T29] audit: type=1326 audit(1727397801.144:22735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.599324][   T29] audit: type=1326 audit(1727397801.144:22736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.623024][   T29] audit: type=1326 audit(1727397801.144:22737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.639004][ T8798] chnl_net:caif_netlink_parms(): no params data found
[  130.646573][   T29] audit: type=1326 audit(1727397801.144:22738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8795 comm="syz.0.1438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd6381ddf39 code=0x7ffc0000
[  130.679043][ T8796] ext4 filesystem being mounted at /268/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.708945][ T8798] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.716256][ T8798] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.725001][ T8798] bridge_slave_0: entered allmulticast mode
[  130.732728][ T8798] bridge_slave_0: entered promiscuous mode
[  130.739943][ T8798] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.747087][ T8798] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.754442][ T8798] bridge_slave_1: entered allmulticast mode
[  130.761383][ T8798] bridge_slave_1: entered promiscuous mode
[  130.773144][ T8818] netlink: 'syz.0.1440': attribute type 1 has an invalid length.
[  130.780944][ T8818] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1440'.
[  130.797718][ T8798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  130.807087][ T8818] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1440'.
[  130.817645][ T8798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  130.838190][ T8798] team0: Port device team_slave_0 added
[  130.844984][ T8798] team0: Port device team_slave_1 added
[  130.862078][ T8798] batman_adv: batadv0: Adding interface: batadv_slave_0
[  130.869463][ T8798] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.895646][ T8798] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  130.907129][ T8798] batman_adv: batadv0: Adding interface: batadv_slave_1
[  130.914164][ T8798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.940267][ T8798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  130.972185][ T8798] hsr_slave_0: entered promiscuous mode
[  130.978648][ T8798] hsr_slave_1: entered promiscuous mode
[  130.984700][ T8798] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  130.992329][ T8798] Cannot create hsr debugfs directory
[  131.056991][ T8798] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.109107][ T8798] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.159707][ T8798] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.219161][ T8798] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.290833][ T8798] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  131.299788][ T8798] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  131.309505][ T8798] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  131.319208][ T8798] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  131.335442][ T8798] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.342754][ T8798] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.350274][ T8798] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.357473][ T8798] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.394170][ T8798] 8021q: adding VLAN 0 to HW filter on device bond0
[  131.406588][ T7198] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.414759][ T7198] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.429615][ T8798] 8021q: adding VLAN 0 to HW filter on device team0
[  131.441493][ T1651] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.448755][ T1651] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.460859][  T242] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.468186][  T242] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.550034][ T8798] 8021q: adding VLAN 0 to HW filter on device batadv0
[  131.636293][ T8798] veth0_vlan: entered promiscuous mode
[  131.645486][ T8798] veth1_vlan: entered promiscuous mode
[  131.666856][ T8798] veth0_macvtap: entered promiscuous mode
[  131.675186][ T8798] veth1_macvtap: entered promiscuous mode
[  131.696349][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.706943][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.707851][ T8836] syz.4.1444[8836] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.717107][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.717132][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.717144][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.717158][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.717170][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.717187][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.729378][ T8836] syz.4.1444[8836] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.739550][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.751005][ T8836] syz.4.1444[8836] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.761882][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.761915][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  131.848817][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.850774][ T8798] batman_adv: batadv0: Interface activated: batadv_slave_0
[  131.867070][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.877670][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.887628][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.898798][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.908715][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.920225][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.931072][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.942477][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.952493][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.963075][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.973073][ T8798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  131.983605][ T8798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  131.995467][ T8798] batman_adv: batadv0: Interface activated: batadv_slave_1
[  132.012007][ T8798] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  132.021038][ T8798] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  132.029923][ T8798] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  132.039580][ T8798] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  132.100053][ T8848] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535)
[  132.142749][ T8854] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1439'.
[  132.216459][ T8869] loop1: detected capacity change from 0 to 2048
[  132.255976][ T8869] EXT4-fs mount: 2 callbacks suppressed
[  132.255997][ T8869] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.275890][ T8869] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.283571][ T8849] lo speed is unknown, defaulting to 1000
[  132.398646][ T8798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.435237][ T8849] chnl_net:caif_netlink_parms(): no params data found
[  132.522102][ T8849] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.529453][ T8849] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.537283][ T8849] bridge_slave_0: entered allmulticast mode
[  132.544710][ T8849] bridge_slave_0: entered promiscuous mode
[  132.552696][ T8849] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.560148][ T8849] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.567757][ T8849] bridge_slave_1: entered allmulticast mode
[  132.575293][ T8849] bridge_slave_1: entered promiscuous mode
[  132.609533][ T8888] lo speed is unknown, defaulting to 1000
[  132.617359][ T8849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  132.649810][ T8849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  132.674748][ T8904] loop1: detected capacity change from 0 to 1024
[  132.687468][ T8849] team0: Port device team_slave_0 added
[  132.694878][ T8849] team0: Port device team_slave_1 added
[  132.712539][ T8904] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.726902][ T8904] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.740293][ T8849] batman_adv: batadv0: Adding interface: batadv_slave_0
[  132.747480][ T8849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.773616][ T8849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  132.788585][ T8849] batman_adv: batadv0: Adding interface: batadv_slave_1
[  132.795621][ T8849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.822677][ T8849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  132.875130][ T8849] hsr_slave_0: entered promiscuous mode
[  132.882835][ T8849] hsr_slave_1: entered promiscuous mode
[  132.900239][ T8849] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  132.914926][ T8849] Cannot create hsr debugfs directory
[  133.048064][ T8888] chnl_net:caif_netlink_parms(): no params data found
[  133.135735][ T8888] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.143044][ T8888] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.155849][ T8888] bridge_slave_0: entered allmulticast mode
[  133.164235][ T8997] ==================================================================
[  133.172451][ T8997] BUG: KCSAN: data-race in sg_common_write / sg_finish_rem_req
[  133.181257][ T8997] 
[  133.183678][ T8997] write to 0xffff888126e1131d of 1 bytes by task 8251 on cpu 1:
[  133.191412][ T8997]  sg_finish_rem_req+0x117/0x270
[  133.196564][ T8997]  sg_rq_end_io_usercontext+0x36/0x1c0
[  133.202936][ T8997]  process_scheduled_works+0x483/0x9a0
[  133.208862][ T8997]  worker_thread+0x51d/0x6f0
[  133.213899][ T8997]  kthread+0x1d1/0x210
[  133.218012][ T8997]  ret_from_fork+0x4b/0x60
[  133.222877][ T8997]  ret_from_fork_asm+0x1a/0x30
[  133.227925][ T8997] 
[  133.230352][ T8997] read to 0xffff888126e1131d of 1 bytes by task 8997 on cpu 0:
[  133.239618][ T8997]  sg_common_write+0x659/0x8d0
[  133.244793][ T8997]  sg_new_write+0x82b/0x8e0
[  133.249620][ T8997]  sg_ioctl+0xe22/0x1870
[  133.254068][ T8997]  __se_sys_ioctl+0xcd/0x140
[  133.259689][ T8997]  __x64_sys_ioctl+0x43/0x50
[  133.264679][ T8997]  x64_sys_call+0x15cc/0x2d60
[  133.269566][ T8997]  do_syscall_64+0xc9/0x1c0
[  133.274224][ T8997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.280340][ T8997] 
[  133.282678][ T8997] value changed: 0x01 -> 0x00
[  133.287360][ T8997] 
[  133.289690][ T8997] Reported by Kernel Concurrency Sanitizer on:
[  133.295857][ T8997] CPU: 0 UID: 0 PID: 8997 Comm: syz.4.1459 Tainted: G        W          6.11.0-syzkaller-10669-g11a299a7933e #0
[  133.307772][ T8997] Tainted: [W]=WARN
[  133.311621][ T8997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  133.321775][ T8997] ==================================================================
[  133.330719][ T8888] bridge_slave_0: entered promiscuous mode
SYZFAIL: failed to recv rpc
Connection to 10.128.0.69 closed by remote host.
[  133.338056][ T8888] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.345233][ T8888] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.388267][ T8888] bridge_slave_1: entered allmulticast mode
[  133.394888][ T8888] bridge_slave_1: entered promiscuous mode
[  133.474737][ T8798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.626866][   T11] bridge_slave_1: left allmulticast mode
[  133.632997][   T11] bridge_slave_1: left promiscuous mode
[  133.638781][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.647346][   T11] bridge_slave_0: left allmulticast mode
[  133.653022][   T11] bridge_slave_0: left promiscuous mode
[  133.658936][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.667408][   T11] bridge_slave_1: left allmulticast mode
[  133.673305][   T11] bridge_slave_1: left promiscuous mode
[  133.679594][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.687780][   T11] bridge_slave_0: left allmulticast mode
[  133.693701][   T11] bridge_slave_0: left promiscuous mode
[  133.699430][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.807530][   T11] bond0 (unregistering): Released all slaves
[  133.817118][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  133.827628][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  133.838012][   T11] bond0 (unregistering): Released all slaves
[  133.882172][   T11] hsr_slave_0: left promiscuous mode
[  133.888729][   T11] hsr_slave_1: left promiscuous mode
[  133.894571][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  133.903365][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  133.967119][   T11] team0 (unregistering): Port device team_slave_1 removed
[  133.978090][   T11] team0 (unregistering): Port device team_slave_0 removed
[  134.529499][   T36] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.589543][   T36] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.638386][   T36] bond0: (slave netdevsim1): Releasing backup interface
[  134.647627][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.719251][   T36] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.968094][   T36] bridge_slave_1: left allmulticast mode
[  134.973807][   T36] bridge_slave_1: left promiscuous mode
[  134.979864][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.987802][   T36] bridge_slave_0: left allmulticast mode
[  134.993458][   T36] bridge_slave_0: left promiscuous mode
[  134.999227][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.007228][   T36] team0: left allmulticast mode
[  135.012457][   T36] team_slave_0: left allmulticast mode
[  135.018272][   T36] team_slave_1: left allmulticast mode
[  135.023833][   T36] team0: left promiscuous mode
[  135.028656][   T36] team_slave_0: left promiscuous mode
[  135.034076][   T36] team_slave_1: left promiscuous mode
[  135.039651][   T36] bridge0: port 3(team0) entered disabled state
[  135.046768][   T36] bridge_slave_1: left allmulticast mode
[  135.052524][   T36] bridge_slave_1: left promiscuous mode
[  135.058409][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.066852][   T36] bridge_slave_0: left allmulticast mode
[  135.072798][   T36] bridge_slave_0: left promiscuous mode
[  135.078468][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.278502][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.288898][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.299411][   T36] bond0 (unregistering): Released all slaves
[  135.308937][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.319392][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.329279][   T36] bond0 (unregistering): Released all slaves
[  135.371825][   T36] hsr_slave_0: left promiscuous mode
[  135.378676][   T36] hsr_slave_1: left promiscuous mode
[  135.384823][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  135.392540][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  135.400584][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  135.408882][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  135.421568][   T36] hsr_slave_0: left promiscuous mode
[  135.428844][   T36] hsr_slave_1: left promiscuous mode
[  135.435655][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  135.444125][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  135.454457][   T36] veth1_macvtap: left promiscuous mode
[  135.460318][   T36] veth0_macvtap: left promiscuous mode
[  135.467249][   T36] veth1_vlan: left promiscuous mode
[  135.473456][   T36] veth0_vlan: left promiscuous mode
[  135.557749][   T36] team0 (unregistering): Port device team_slave_1 removed
[  135.568891][   T36] team0 (unregistering): Port device team_slave_0 removed
[  135.636717][   T36] team0 (unregistering): Port device team_slave_1 removed
[  135.647743][   T36] team0 (unregistering): Port device team_slave_0 removed
[  136.329544][   T36] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.378923][   T36] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.429462][   T36] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.498743][   T36] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.569093][   T36] bridge_slave_1: left allmulticast mode
[  136.574776][   T36] bridge_slave_1: left promiscuous mode
[  136.580727][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.588746][   T36] bridge_slave_0: left allmulticast mode
[  136.594598][   T36] bridge_slave_0: left promiscuous mode
[  136.600758][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.709100][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  136.721825][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  136.732934][   T36] bond0 (unregistering): Released all slaves
[  136.770009][   T36] hsr_slave_0: left promiscuous mode
[  136.775977][   T36] hsr_slave_1: left promiscuous mode
[  136.782155][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  136.789702][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  136.797510][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  136.804963][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  136.814708][   T36] veth1_macvtap: left promiscuous mode
[  136.820754][   T36] veth0_macvtap: left promiscuous mode
[  136.826756][   T36] veth1_vlan: left promiscuous mode
[  136.831991][   T36] veth0_vlan: left promiscuous mode
[  136.915109][   T36] team0 (unregistering): Port device team_slave_1 removed
[  136.925230][   T36] team0 (unregistering): Port device team_slave_0 removed