last executing test programs:

2m31.029319233s ago: executing program 3 (id=3916):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x7, 0x8, 0x5, 0x7, 0x0, 0x5, 0x4001, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x40001, 0x2, @perf_config_ext={0x7fff, 0x1}, 0x100997, 0x7ff, 0x7, 0x6, 0x800084, 0x2, 0x5, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x12011, r3, 0x0)
sigaltstack(&(0x7f0000000040)={0xffffffffffffffff, 0x0, 0xfffffffffffffefa}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
fadvise64(0xffffffffffffffff, 0x0, 0x5, 0x2) (fail_nth: 2)

2m30.52931882s ago: executing program 3 (id=3927):
mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x7}}, {{@in6=@local, 0x0, 0x6c}, 0x0, @in=@local}}, 0xe8)
syz_emit_ethernet(0x3e, &(0x7f0000000500)={@local, @random="f368656e065b", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}}}}, 0x0)

2m30.447780252s ago: executing program 3 (id=3929):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_devices(r1, 0x0, 0x9)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)

2m29.573967845s ago: executing program 3 (id=3947):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f0000000100)={[{@block_validity}, {@user_xattr}, {@journal_dev={'journal_dev', 0x3d, 0x8}}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}]}, 0xfe, 0x4e5, &(0x7f0000000980)="$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")
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd')
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r2}, 0x10)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
r3 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@jqfmt_vfsold}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@noblock_validity}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r5 = socket(0x200000000000011, 0x2, 0xd)
bind$packet(r5, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r7)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r7, 0x8914, &(0x7f0000000200)={'syzkaller0\x00', @random="e5db029ea53c"})
write$cgroup_devices(r6, &(0x7f0000000140)=ANY=[@ANYBLOB="1e000300008c71ef28ff4b"], 0xffdd)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r8}, 0x10)
bpf$MAP_CREATE(0x700000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="1d00000002000000020000000000000001020000", @ANYRES32, @ANYBLOB="055e00fc00000000000000000000000000000000c2e8ef867834ef660766daf2f7fb", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="010000000500"/28], 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=ANY=[@ANYBLOB="0a000000040000009c0000000bf08795df1015d8d3637d2db5fb3d193fa02f2c22a7ada9932713b6725d324e408d7ba23bfaaa20", @ANYRES8=r3, @ANYBLOB="374e58db6e951956418aeb325fe13bdc48a52c3bfc967aa1ba6f4a8d4f6e186faaa77e34ac1704fe67d16223b1c087aa9fdba29338557987a6169d949cb93a3d44d9df4cfdd9008f183bf17410ef06027a0dbc782de386dc2efc838aac07ba87a6bf6091d10a90b8a29a0068967a83cf8f39f2fb4053d6455c791a3ed0442f4acdb8300f47d8b946923f783ce53707f6d7da6b85fc9bbe77ac6c609e78528af2ac1064e44acc6c6a9a9fe8ebca90ea8eb9535398b7dd4b4024d6b7a224588dcd380f1d7d68ae0a4b0d5084d4ed6f15f1726a8b8e4798ca8080430793a39be823b379e280d59cd4", @ANYBLOB="998a321a6a113218bd4907eb01fd191ac1e26bc43e1db0c7db973234dc009adc61e2e4b0a0f2fd2f0fcdee35d0fa8a0c7659108fe084422ec1dbd005d6bc18c7d85e4fbb00842c5b64e78d6d0b0a7831820c67e50b90d24d39f235e8ef541e956a09bd1aeacdfaff3bc8eec7e9315e53f8aed475caf7fd38515c44d61bfaef14c20a81c2f63e8fa8a0f488e6db5e5e25fef3a324f3afa1e3853f3596579ca3b837f8457855ce225bc9acc29f518fda34dc4dc252b762d6b95e17e78684afca300d576828c9d63cc2ae5982ad21"], 0x50)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe4059d1ed18e2292, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
fstatfs(0xffffffffffffffff, 0x0)

2m29.400056117s ago: executing program 3 (id=3951):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000005900)='sys_enter\x00', r0}, 0x18)
msgctl$IPC_RMID(0x0, 0x0)

2m29.025446023s ago: executing program 3 (id=3965):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080)={0x43, 0x3, 0x3, 0x3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x6, 0x10, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100"], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r1}, &(0x7f0000000600), &(0x7f0000000800)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88)

2m29.007173333s ago: executing program 32 (id=3965):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080)={0x43, 0x3, 0x3, 0x3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x6, 0x10, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100"], 0x48)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r1}, &(0x7f0000000600), &(0x7f0000000800)}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88)

3.442134599s ago: executing program 1 (id=6147):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x5, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000380)=0x7ffd)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='tlb_flush\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r4, &(0x7f0000000100)=[{&(0x7f00000003c0)="dbd0b04a21c2ca8877", 0x9}], 0x1)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)

2.925461496s ago: executing program 1 (id=6158):
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4, 0x173}}, './file0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0bff040000020000000000000000000000672bdb9050"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r4}, 0x38)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r5, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000001000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r7=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=@bridge_delneigh={0x28, 0x1c, 0x1, 0x2, 0x0, {0x7, 0x0, 0x0, r7, 0x3, 0xe6, 0x6}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c1}, 0x40c0)
sendmsg$key(r2, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="020300090a00000000000000000000000200060000000e0002"], 0x50}}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x800000000000, 0x0, 0x0, 0x751, 0x7, 0x200000000080], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000200000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000"]}, 0x108)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000100), 0x2, 0x50e, &(0x7f0000000f40)="$eJzs3U9sI1cZAPBvJsnau02bLfQAqNClFBa0WjvxtquqF8qpQqgSokcO25B4oyh2HMVOacIeskfuSFTiBCeOiAMSB6SeuCNxAE5cygGpwArUIHEwmrGdOn+8sbaxnca/n/TkN/Nsf+/FmvesL/K8AKbWjYjYj4grEfF2RCx0zyfdEq93Sva8jx49WDl49GAliXb7rX8meXt2Lvpek3mq+57FiPjeGxE/SI4F/WNEc3dvY7lWq253T5Vb9a1yc3fv9np9ea26Vt2sVO4u3V189c4rlXMb6wv1X394NSJ+99svfvCH/W/8KOvWfLetfxznqTP0ucM4mdmI+M4ogk3ATHc8V57kxU/0Is5TGhGfiYgX8+t/IWbyT/Ooox/TN8fYOwBgFNrthWgv9B8DAJddmufAkrTUzQXMR5qWSp0c3nNxLa01mq1b9xs7m6udXNn1mEvvr9eqi91c4fWYS+6vz1aX8nrvuFatHDu+ExHPRsRPClfz49JKo7Y6yS8+ADDFnjq2/v+n0Fn/AYBLrvhxtTDJfgAA41OcdAcAgLGz/gPA9LH+A8D0sf4DwPSx/gPA9LH+A8BU+e6bb2alfdC9//XqO7s7G413bq9Wmxul+s5KaaWxvVVaazTW8nv21M96v1qjsbX0cuy8W25Vm61yc3fvXr2xs9m6l9/X+151biyjAgAe59kX3v9zEhH7r13NS/Td7//Mtfr5UfcOGKV00h0AJmZm0h0AJubkbl/AtJCPB/q26H3Yd7p4onLce0O9fWrfULh4bn7+E+T/gU81+X+YXk+W//ddHi4D+X+YXu12Ys9/AJgycvwwzYabAfr//7/Y7jsY7v//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcCnN5yVJS929wOcjTUuliKcj4nrMJffXa9XFiHgmIv5UmCtkx0tD7xoCAFxM6d+TiMjKzYWX5o+3Xin8t5A/RsQPf/bWT99dbrW2lyKuJP86PN96r3u+Mon+AwBn6a3TvXW856NHD1Z6ZZz9+fBbnc1Fs7gH3dJpmY3Z/LGY5xqu/TvpHndk31dmziH+/sOI+Nxp40/y3Mj17s6nx+NnsZ8ea/z0SPw0b+s8Zn+Lzx62/OUcegXT4f1s/nn9tOsvjRv54+nXfzGfoT653vx3cGL+Sw/nv5kB89+NYWO8/PtvnzjZXui0PYz4wmzEQe/N++afXvxkQPyXhoz/1+e/9OKgtvbPI27GaeNPjsQqt+pb5ebu3u31+vJada26WancXbq7+OqdVyrlPEdd7mWqT/rHa7eeGRQ/G/+1AfGLZ4z/q0OO/xf/e/v7X35M/K9/5fTP/7nHxM/WxK8NGX/52m+Kg9qy+KtHx99d1s7+/G8NGf+Dv+2tDvlUAGAMmrt7G8u1WnV71JV09CHyShKxP/g5vzrfoIVf/viNMY1rlJW4GN1QuUiVSc9MwKh9fNFPuicAAAAAAAAAAAAAAMAgI/nx0EZEbPtlAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKP3/wAAAP//NjvUFA==")
r8 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r8, 0xc0185879, &(0x7f00000004c0)={0x0, 0xcb8, 0x4, 0x2, 0x0, 0x0, 0x2401})
openat$sndtimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x2042)
connect$pppoe(r0, &(0x7f0000000240)={0x18, 0x0, {0x0, @multicast, 'rose0\x00'}}, 0x1e)

2.770774718s ago: executing program 4 (id=6159):
unshare(0x2040400)
r0 = fsopen(&(0x7f0000000440)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
unshare(0x2000400)
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
fsmount(r0, 0x0, 0x0)

2.65985859s ago: executing program 4 (id=6160):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054)

2.251163966s ago: executing program 1 (id=6161):
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4, 0x173}}, './file0\x00'})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0bff040000020000000000000000000000672bdb9050"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000001000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00'})
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="020300090a00000000000000000000000200060000000e0002"], 0x50}}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x800000000000, 0x0, 0x0, 0x751, 0x7, 0x200000000080], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000200000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000"]}, 0x108)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000100), 0x2, 0x50e, &(0x7f0000000f40)="$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")
r6 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r6, 0xc0185879, &(0x7f00000004c0)={0x0, 0xcb8, 0x4, 0x2, 0x0, 0x0, 0x2401})

2.246836826s ago: executing program 2 (id=6162):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffc01, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001c80)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000f0070000000900010073797a300000000080000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d3c00128014000180090001006c617374000000000400028010000180090001006c61737400000000140001800c000100636f756e746572000400028008000340000001"], 0xc8}, 0x1, 0x0, 0x0, 0x40000}, 0x20050800)

2.201958057s ago: executing program 2 (id=6163):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_TRIM(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x10, 0x3f6, 0x100, 0x70bd27, 0x25dfdbff, "", ["", "", "", "", "", "", "", ""]}, 0x10}}, 0x800)
syz_clone3(&(0x7f0000000580)={0x400, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)

2.173449448s ago: executing program 5 (id=6164):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x600000c, 0x11, 0xffffffffffffffff, 0x180000000)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0xafe6)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
syslog(0x9, 0x0, 0x0)

2.02236423s ago: executing program 2 (id=6165):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\r\x00\x00\x00\x00'], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = epoll_create(0x500)
poll(&(0x7f0000000000)=[{r1, 0x4}], 0x1, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
timerfd_create(0x0, 0x800)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

1.818542713s ago: executing program 2 (id=6168):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000001647ee329ce700000000"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(0xffffffffffffff9c, 0x0, r2, 0x0, 0x256)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="800000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e00000000400002800600010000000000340003800c000100000000000000e2000c00010094040000000000000c00010000010000000000000c000100040000000000000008000500", @ANYRES32, @ANYBLOB="080003"], 0x80}}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r6, 0x0, 0xfffffffffffffffd}, 0x18)
r7 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r7, 0x114, 0x8, &(0x7f00000008c0), 0x4)
bind$inet6(r2, &(0x7f0000000c40)={0xa, 0x4e1e, 0x10001, @loopback, 0x1}, 0x1c)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x20800, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r8}, 0x10)
sendmmsg$inet6(r7, &(0x7f0000000500)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0xff, @private0, 0x6}, 0x1c, &(0x7f0000001fc0)=[{&(0x7f0000000fc0)="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", 0x1000}, {&(0x7f0000000840)="5341c110effecb20c71df4c1ec7a48d06eb14411344c33fdc77d7a2842cae12a5b644e903ee7b7c6ba6245ebc63e3c7e62ec2cafa5ef0bab5b8964b004d8d90e3f2d07a1ed4efd95001a40c162c9ccef217f56779074ed9d945c14bdc9f6c89e6662fadf21f62b8892374f827f858e35d9ff9654ccfbee75b87b65eb", 0x7c}, {&(0x7f0000000900)="25d3dcdc56ad883eab7ab51bbe6c1faedd94df98b78cae9b13ea336b5cbc0a48bba1180c216198e4126b39019a1aa543fd10aa9daf445f849b17000ecbe7200e9c8d925d4d86ad7cc84bd8c2ddb21535996e61ef8f28ab20690544d83264487f4a72e1028b9989df392dede391d33d3e3e675c9ca0c31efb73bc050404f86f60973f702b067a3f9e62b9e8855d9261477cd3fc823c4d214a3600cdb9bfd82d28ee5898186abf4fd22514", 0xaa}, {&(0x7f0000000ac0)="d63c57f658c9e25fb6d6a02cbbfc92107ed552d4028457c0ae6a6290a3958fbe001c210ae414746ae405418b88816052b6e25f1ca400293398ee577153b2eb8688d0ad6ee0ea7e602367a2698e092bdee7ea398abd7543d516a43ed46adda147b04d4bbf3e68a96e5ab872dd746fd7733a9de6a5e9e9b769dc761ff5d11d99ae7000b9b7f7704c987fe96fc936e9870fc7b155a4dcd3a172dfb9a763ae4c2f68929cda44e4322cf1bb597562d50f5e147a394b9a080aa5b61a477e01c6ab2f9f09f9feb10aa4aaeb54498ef776a08c8cccd7273b409690ec7e4db218b15ddf97d302eaebfd8d62e7c0", 0xe9}, {&(0x7f00000009c0)="462233b7be0639fb4177eefddd110511e9d6d31d66875d13bc72ea87f37e697f244b0bc35344888d8e3315170a2f1c53154e9a5de9494974db6b00916fb666d197e7548f05cb99744ba6246469af2608a97c424ccdfeb2cdcde9115e80cbeb1fefcdda2d51", 0x65}, {&(0x7f0000000e80)="e0e7c4c6199ec2078c5236a4d4e7cf6af01a19abf3c422542a34406bbcce2f5a7baf85559a4d038de0d4ff1e81775969578fc9d00d5f6247ff68cb277b72da0de9451f61ed3bdf5ecf2d9129a10df522f2402a79e768bb37fd11623285b18b83249e5f833ff167f4031950c01b583fb5592432f4bff3bc5247aa4e7a60f8243e45443384c59047fbb6b03f6852a437f9084972344bd7b9903572be710b65e60461f33aac2d8a2999fba672a0c5ba8b61b4a2cc4e6356", 0xb6}], 0x6, &(0x7f0000000c80)=[@hopopts={{0x180, 0x29, 0x36, {0x2, 0x2c, '\x00', [@jumbo={0xc2, 0x4, 0x1ff}, @generic={0x16, 0x50, "9a5dcf8da6208a5c8aed450997bd584d72f7b4313a3c068c07243f6148ddc913b351e5db63a4399e1f19f24f6d8fab710101866b079456e62ea473276d6ecd2e60df133731363cc1ad20c188d979fa04"}, @generic={0x6, 0xe0, "79a0c13164b65b68353208ecaa52b49fc917c60c83385cfa31773ba73210d438e6de46d44b03e9ca19c029c6b7e19e777e5adae9953cea623e0900e5cdf4a0a75d300616a8fe7a0a55c2083865e6d1d0f5befe8310d3b8976c07dddf019283efe92bd4d83605a2d858195393cd49e088e506727ad00e191fba1c45e7f14d486c71cee27185b3e626d6623b1b79f5ed0a66e653d0ad52f000d3ddb7b069a86053d1b58e3193e807e9585ee473c76ef86a1fceaad45327b2f32fec8d8ec24194409f61b0ee9cfee3d5f35807e81c9c2230074d73f936353b66653d6b643452a77f"}, @padn={0x1, 0x1, [0x0]}, @padn={0x1, 0x1, [0x0]}, @calipso={0x7, 0x8, {0x2, 0x0, 0x7f, 0x17a1}}, @generic={0x1, 0x1a, "cd00c9310a9ea783ac2c86cfe078ec630aac1015b046f5f30192"}]}}}, @tclass={{0x14, 0x29, 0x43, 0xe7}}, @rthdr={{0x48, 0x29, 0x39, {0x2b, 0x6, 0x2, 0x4, 0x0, [@private1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @remote]}}}], 0x1e0}}], 0x1, 0x2000c000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r9 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000280)="d8000000190081044e81f782db4cb90402200800fd007c05e8fe55a108001e000140cde8dfe90e4190000900ac00060211000000160012000a0002000d48035c3b61c1d67f01282e8d614230a68000a007a290457f01a705000000000000009100005ee4e11b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e603a6a8a9826835d3a71d95667e006dcdf63951f2155e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e971ad9d3ac052f6dfe4f36bcf903ece981e8df37df7f8af2f28f", 0xfcc0}], 0x1}, 0x40000)

1.818239773s ago: executing program 5 (id=6169):
r0 = syz_io_uring_setup(0x3c5b, &(0x7f00000002c0)={0x0, 0x79af, 0x1, 0x208000, 0x40024e}, &(0x7f0000000680)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x44, 0x4007, @fd_index=0x2, 0x106, 0x0, 0x0, 0x2, 0x1})
io_uring_enter(r0, 0x627, 0x4c1, 0x43, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000240)=0x6, 0x4)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r5}, 0x10)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x300)

1.718875184s ago: executing program 4 (id=6170):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
syz_open_pts(r0, 0x0)

1.698460854s ago: executing program 4 (id=6171):
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xa, @void, @value}, 0x94)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x13df, 0x202)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x4, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10)
clock_nanosleep(0xfffffff2, 0xca9a3b, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
r3 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x14)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f00000002c0)={'erspan0\x00', &(0x7f00000004c0)={'syztnl0\x00', 0x0, 0x1, 0x8000, 0x8, 0x10000, {{0x11, 0x4, 0x2, 0x6, 0x44, 0x64, 0x0, 0xff, 0x4, 0x0, @loopback, @multicast1, {[@generic={0x44, 0x6, "70000bcd"}, @lsrr={0x83, 0x27, 0xd7, [@multicast2, @remote, @multicast1, @loopback, @multicast2, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
fcntl$setsig(r3, 0xa, 0x13)
fcntl$setlease(r3, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280))
timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000240), 0x8080, &(0x7f0000000300)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000d00)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x200000000c40, 0x0, 0x0, 0x200000000c70, 0x200000000ca0], 0x11, 0x0, &(0x7f0000000c40)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x11}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0x108)
msgsnd(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="03"], 0x0, 0x0)

1.592023896s ago: executing program 1 (id=6174):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r1, 0x0, 0x0)
recvmsg(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0)

1.312619911s ago: executing program 0 (id=6180):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x600000c, 0x11, 0xffffffffffffffff, 0x180000000)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0xafe6)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
syslog(0x9, 0x0, 0x0)

1.237282051s ago: executing program 0 (id=6181):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
syz_open_pts(r0, 0x0)

1.218564012s ago: executing program 0 (id=6182):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x16, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES16=r0, @ANYRES64=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000380)='kmem_cache_free\x00', r1}, 0x18)
syz_emit_ethernet(0x76, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000540)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@user_xattr}, {@nojournal_checksum}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x83, 0x451, &(0x7f0000000fc0)="$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")
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r2}, 0x18)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x4, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r4, &(0x7f0000002280)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x2, 0x1000, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x2, 0x2, 0x8016, 0x66, 0x0, 0x8b, 0x6c, 0x0, @private=0xa010100, @broadcast}, "3297e3ba"}}, 0xfdef)

1.126328533s ago: executing program 0 (id=6183):
r0 = eventfd2(0x0, 0x0)
write$eventfd(r0, &(0x7f0000000140)=0xfffffffffffffff8, 0x8)
write$eventfd(r0, &(0x7f0000000040)=0x8, 0x8)

947.390965ms ago: executing program 5 (id=6184):
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4, 0x173}}, './file0\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$key(0xf, 0x3, 0x2)
r3 = socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0bff040000020000000000000000000000672bdb9050"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r4}, 0x38)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r5, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000001000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r7=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=@bridge_delneigh={0x28, 0x1c, 0x1, 0x2, 0x0, {0x7, 0x0, 0x0, r7, 0x3, 0xe6, 0x6}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c1}, 0x40c0)
sendmsg$key(r2, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="020300090a00000000000000000000000200060000000e0002"], 0x50}}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x800000000000, 0x0, 0x0, 0x751, 0x7, 0x200000000080], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000200000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000"]}, 0x108)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000100), 0x2, 0x50e, &(0x7f0000000f40)="$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")
r8 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r8, 0xc0185879, &(0x7f00000004c0)={0x0, 0xcb8, 0x4, 0x2, 0x0, 0x0, 0x2401})
openat$sndtimer(0xffffffffffffff9c, &(0x7f00000002c0), 0x2042)
connect$pppoe(r0, &(0x7f0000000240)={0x18, 0x0, {0x0, @multicast, 'rose0\x00'}}, 0x1e)

892.747006ms ago: executing program 2 (id=6185):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054)

891.516226ms ago: executing program 5 (id=6186):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="d82400002800010002000008000000"], 0x24d8}], 0x1}, 0x40004)

862.163487ms ago: executing program 5 (id=6187):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)

823.528558ms ago: executing program 5 (id=6188):
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0xb76e}, 0x100002, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xa, @void, @value}, 0x94)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r2 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x13df, 0x202)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x4, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
clock_nanosleep(0xfffffff2, 0xca9a3b, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe)
r4 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x14)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f00000002c0)={'erspan0\x00', &(0x7f00000004c0)={'syztnl0\x00', 0x0, 0x1, 0x8000, 0x8, 0x10000, {{0x11, 0x4, 0x2, 0x6, 0x44, 0x64, 0x0, 0xff, 0x4, 0x0, @loopback, @multicast1, {[@generic={0x44, 0x6, "70000bcd"}, @lsrr={0x83, 0x27, 0xd7, [@multicast2, @remote, @multicast1, @loopback, @multicast2, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
fcntl$setsig(r4, 0xa, 0x13)
fcntl$setlease(r4, 0x400, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000280))
truncate(&(0x7f0000000040)='./file0\x00', 0x8)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000240), 0x8080, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000d00)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x200000000c40, 0x0, 0x0, 0x200000000c70, 0x200000000ca0], 0x11, 0x0, &(0x7f0000000c40)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x11}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0x108)
msgsnd(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="03"], 0x0, 0x0)

775.270678ms ago: executing program 4 (id=6189):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\r\x00\x00\x00\x00'], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = epoll_create(0x500)
poll(&(0x7f0000000000)=[{r1, 0x4}], 0x1, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
timerfd_create(0x0, 0x800)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

774.778558ms ago: executing program 4 (id=6190):
open(&(0x7f0000000000)='./file1\x00', 0x14927e, 0x9)
socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000540)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$inet6_icmp(0xa, 0x2, 0x3a)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x74, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_TUPLE_REPLY={0x1c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}]}]}, 0x74}}, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$LOOP_CTL_GET_FREE(r5, 0x4c82)
syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, r6)

687.086979ms ago: executing program 1 (id=6191):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x600000c, 0x11, 0xffffffffffffffff, 0x180000000)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0xafe6)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
syslog(0x9, 0x0, 0x0)

632.072181ms ago: executing program 1 (id=6192):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r3)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054)

172.973187ms ago: executing program 0 (id=6193):
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4, 0x173}}, './file0\x00'})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0bff040000020000000000000000000000672bdb9050"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x2}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000001000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1a00fe00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00'})
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="020300090a00000000000000000000000200060000000e0002"], 0x50}}, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x800000000000, 0x0, 0x0, 0x751, 0x7, 0x200000000080], 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000200000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000"]}, 0x108)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000100), 0x2, 0x50e, &(0x7f0000000f40)="$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")
r6 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r6, 0xc0185879, &(0x7f00000004c0)={0x0, 0xcb8, 0x4, 0x2, 0x0, 0x0, 0x2401})

676.52µs ago: executing program 2 (id=6194):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x5, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x18)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000380)=0x7ffd)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='tlb_flush\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r4, &(0x7f0000000100)=[{&(0x7f00000003c0)="dbd0b04a21c2ca8877", 0x9}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x38, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)

0s ago: executing program 0 (id=6195):
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x600000c, 0x11, 0xffffffffffffffff, 0x180000000)
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000040)={0xa, 0xa, @local}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000080)="a2", 0xff0e}], 0x4, 0x0, 0x0, 0xa6820000}, 0xafe6)
sendmsg$inet(r0, &(0x7f00000005c0)={&(0x7f0000000280)={0x2, 0x8, @remote}, 0x10, 0x0}, 0x900000000008080)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x6}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syslog(0x9, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYRES32=r3], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r4, 0x0, 0xffffffffffffffff}, 0x18)
syslog(0x2, &(0x7f00000003c0)=""/166, 0xa6)
mremap(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1000, 0x0, &(0x7f00008b5000/0x1000)=nil)

kernel console output (not intermixed with test programs):

lobal tag 0xe
[  314.339178][ T3404] hid-generic 0003:0285:0002.0001: item 0 2 1 14 parsing failed
[  314.350318][ T3404] hid-generic 0003:0285:0002.0001: probe with driver hid-generic failed with error -22
[  314.463475][T16141] syzkaller1: entered promiscuous mode
[  314.469003][T16141] syzkaller1: entered allmulticast mode
[  314.479017][T16141] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.4937'.
[  314.514012][   T29] kauditd_printk_skb: 863 callbacks suppressed
[  314.514030][   T29] audit: type=1326 audit(2000000256.710:29447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.543986][   T29] audit: type=1326 audit(2000000256.710:29448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.571304][T16149] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4939'.
[  314.581935][T16149] netlink: zone id is out of range
[  314.588934][T16149] netlink: zone id is out of range
[  314.594103][   T29] audit: type=1326 audit(2000000256.790:29449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.617840][T16149] netlink: zone id is out of range
[  314.617848][   T29] audit: type=1326 audit(2000000256.790:29450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.623341][T16149] netlink: del zone limit has 8 unknown bytes
[  314.646578][   T29] audit: type=1326 audit(2000000256.790:29451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.680605][   T29] audit: type=1326 audit(2000000256.850:29452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.704277][   T29] audit: type=1326 audit(2000000256.850:29453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.728202][   T29] audit: type=1326 audit(2000000256.850:29454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.751925][   T29] audit: type=1326 audit(2000000256.850:29455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.775566][   T29] audit: type=1326 audit(2000000256.850:29456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16138 comm="syz.1.4935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  314.994865][T16181] netlink: 9412 bytes leftover after parsing attributes in process `syz.2.4949'.
[  315.419041][T16207] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4959'.
[  315.429913][T16207] netlink: zone id is out of range
[  315.436312][T16207] netlink: zone id is out of range
[  315.441499][T16207] netlink: zone id is out of range
[  315.447897][T16207] netlink: del zone limit has 8 unknown bytes
[  315.829228][T16239] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4973'.
[  315.838776][T16239] netlink: zone id is out of range
[  315.990347][T16257] netlink: 180 bytes leftover after parsing attributes in process `syz.1.4977'.
[  317.058407][T16304] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.4999'.
[  317.152342][T16311] block device autoloading is deprecated and will be removed.
[  317.259962][T16312] loop5: detected capacity change from 0 to 512
[  317.267139][T16312] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  317.277659][T16312] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.5001: invalid block
[  317.290067][T16312] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.5001: invalid indirect mapped block 4294967295 (level 1)
[  317.306599][T16312] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.5001: invalid indirect mapped block 4294967295 (level 1)
[  317.321051][T16312] EXT4-fs (loop5): 2 truncates cleaned up
[  317.327456][T16312] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.342274][T16312] EXT4-fs error (device loop5): ext4_get_parent:1834: inode #11: comm syz.5.5001: bad parent inode number: 3
[  317.745649][T16330] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5008'.
[  317.971576][T13708] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.426441][T16358] lo speed is unknown, defaulting to 1000
[  318.943783][T16381] block device autoloading is deprecated and will be removed.
[  318.956064][T16383] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5027'.
[  319.018977][T16396] netlink: 272 bytes leftover after parsing attributes in process `syz.5.5033'.
[  319.167064][T16380] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  319.175787][T16380] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  319.443848][T16429] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5045'.
[  319.530754][T16435] netlink: 56 bytes leftover after parsing attributes in process `syz.4.5048'.
[  319.554936][   T29] kauditd_printk_skb: 679 callbacks suppressed
[  319.554953][   T29] audit: type=1400 audit(2000000261.750:30136): avc:  denied  { getopt } for  pid=16434 comm="syz.4.5048" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  319.669026][T16441] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5050'.
[  319.678443][T16441] net_ratelimit: 12 callbacks suppressed
[  319.678458][T16441] netlink: zone id is out of range
[  319.691356][T16441] netlink: zone id is out of range
[  319.696931][T16441] netlink: del zone limit has 8 unknown bytes
[  319.803444][T16450] netlink: 'syz.0.5054': attribute type 10 has an invalid length.
[  319.825431][T16450] batman_adv: batadv0: Adding interface: team0
[  319.831658][T16450] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  319.856997][T16450] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  319.871129][T16450] netlink: 'syz.0.5054': attribute type 10 has an invalid length.
[  319.879210][T16450] netlink: 2 bytes leftover after parsing attributes in process `syz.0.5054'.
[  319.890048][T16450] team0: entered promiscuous mode
[  319.895186][T16450] team_slave_0: entered promiscuous mode
[  319.901002][T16450] team_slave_1: entered promiscuous mode
[  319.908613][T16450] 8021q: adding VLAN 0 to HW filter on device team0
[  319.915823][T16450] batman_adv: batadv0: Interface activated: team0
[  319.922338][T16450] batman_adv: batadv0: Interface deactivated: team0
[  319.929234][T16450] batman_adv: batadv0: Removing interface: team0
[  319.937486][T16453] netlink: 76 bytes leftover after parsing attributes in process `syz.0.5054'.
[  319.947466][T16450] bridge0: port 3(team0) entered blocking state
[  319.953834][T16450] bridge0: port 3(team0) entered disabled state
[  319.963192][T16450] team0: entered allmulticast mode
[  319.968502][T16450] team_slave_0: entered allmulticast mode
[  319.974380][T16450] team_slave_1: entered allmulticast mode
[  320.031727][   T29] audit: type=1326 audit(2000000262.220:30137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16460 comm="syz.1.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  320.055533][   T29] audit: type=1326 audit(2000000262.220:30138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16460 comm="syz.1.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  320.079228][   T29] audit: type=1326 audit(2000000262.220:30139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16460 comm="syz.1.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  320.088318][T16464] hub 1-0:1.0: USB hub found
[  320.102964][   T29] audit: type=1326 audit(2000000262.220:30140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16460 comm="syz.1.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  320.131420][   T29] audit: type=1326 audit(2000000262.220:30141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16460 comm="syz.1.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  320.131924][T16464] hub 1-0:1.0: 8 ports detected
[  320.159442][   T29] audit: type=1400 audit(2000000262.280:30143): avc:  denied  { mount } for  pid=16460 comm="syz.1.5059" name="/" dev="ramfs" ino=50125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  320.182557][   T29] audit: type=1326 audit(2000000262.220:30142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16460 comm="syz.1.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  320.206175][   T29] audit: type=1326 audit(2000000262.310:30144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16460 comm="syz.1.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  320.230050][   T29] audit: type=1326 audit(2000000262.310:30145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16460 comm="syz.1.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  320.257208][T16467] block device autoloading is deprecated and will be removed.
[  320.364114][T16469] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5062'.
[  320.373519][T16469] netlink: zone id is out of range
[  320.378638][T16469] netlink: zone id is out of range
[  320.384068][T16469] netlink: del zone limit has 8 unknown bytes
[  320.395983][T16469] loop1: detected capacity change from 0 to 512
[  320.402721][T16469] journal_path: Non-blockdev passed as './bus'
[  320.408979][T16469] EXT4-fs: error: could not find journal device path
[  320.532561][T16481] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5068'.
[  320.551122][T16481] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5068'.
[  322.101153][T16513] loop1: detected capacity change from 0 to 1024
[  322.125195][T16513] EXT4-fs: dax option not supported
[  322.138063][T16518] FAULT_INJECTION: forcing a failure.
[  322.138063][T16518] name failslab, interval 1, probability 0, space 0, times 0
[  322.150802][T16518] CPU: 0 UID: 0 PID: 16518 Comm: syz.4.5079 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  322.150838][T16518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  322.150854][T16518] Call Trace:
[  322.150863][T16518]  <TASK>
[  322.150873][T16518]  __dump_stack+0x1d/0x30
[  322.150897][T16518]  dump_stack_lvl+0xe8/0x140
[  322.150925][T16518]  dump_stack+0x15/0x1b
[  322.150977][T16518]  should_fail_ex+0x265/0x280
[  322.151018][T16518]  should_failslab+0x8c/0xb0
[  322.151048][T16518]  kmem_cache_alloc_noprof+0x50/0x310
[  322.151082][T16518]  ? copy_fs_struct+0x31/0x110
[  322.151192][T16518]  copy_fs_struct+0x31/0x110
[  322.151234][T16518]  copy_fs+0x58/0xf0
[  322.151259][T16518]  copy_process+0xc6e/0x1fe0
[  322.151355][T16518]  kernel_clone+0x16c/0x5b0
[  322.151381][T16518]  ? vfs_write+0x75e/0x8e0
[  322.151475][T16518]  __x64_sys_clone+0xe6/0x120
[  322.151518][T16518]  x64_sys_call+0x2c59/0x2fb0
[  322.151562][T16518]  do_syscall_64+0xd2/0x200
[  322.151588][T16518]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  322.151638][T16518]  ? clear_bhb_loop+0x40/0x90
[  322.151701][T16518]  ? clear_bhb_loop+0x40/0x90
[  322.151729][T16518]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.151757][T16518] RIP: 0033:0x7f87304ee929
[  322.151776][T16518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.151806][T16518] RSP: 002b:00007f872eb56fe8 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[  322.151830][T16518] RAX: ffffffffffffffda RBX: 00007f8730715fa0 RCX: 00007f87304ee929
[  322.151842][T16518] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000400
[  322.151854][T16518] RBP: 00007f872eb57090 R08: 0000000000000000 R09: 0000000000000000
[  322.151866][T16518] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000001
[  322.151877][T16518] R13: 0000000000000000 R14: 00007f8730715fa0 R15: 00007ffdaa9d6ad8
[  322.151904][T16518]  </TASK>
[  322.152523][T16519] FAULT_INJECTION: forcing a failure.
[  322.152523][T16519] name failslab, interval 1, probability 0, space 0, times 0
[  322.360930][T16519] CPU: 0 UID: 0 PID: 16519 Comm: syz.0.5081 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  322.360968][T16519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  322.361112][T16519] Call Trace:
[  322.361119][T16519]  <TASK>
[  322.361127][T16519]  __dump_stack+0x1d/0x30
[  322.361153][T16519]  dump_stack_lvl+0xe8/0x140
[  322.361203][T16519]  dump_stack+0x15/0x1b
[  322.361219][T16519]  should_fail_ex+0x265/0x280
[  322.361288][T16519]  should_failslab+0x8c/0xb0
[  322.361375][T16519]  kmem_cache_alloc_lru_noprof+0x55/0x310
[  322.361403][T16519]  ? __d_alloc+0x3d/0x350
[  322.361439][T16519]  __d_alloc+0x3d/0x350
[  322.361471][T16519]  ? mpol_shared_policy_init+0xbd/0x4c0
[  322.361570][T16519]  d_alloc_pseudo+0x1e/0x80
[  322.361681][T16519]  alloc_file_pseudo+0x71/0x160
[  322.361721][T16519]  __shmem_file_setup+0x1de/0x210
[  322.361829][T16519]  shmem_file_setup+0x3b/0x50
[  322.361866][T16519]  __se_sys_memfd_create+0x2c3/0x590
[  322.361901][T16519]  __x64_sys_memfd_create+0x31/0x40
[  322.361985][T16519]  x64_sys_call+0x122f/0x2fb0
[  322.362026][T16519]  do_syscall_64+0xd2/0x200
[  322.362099][T16519]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  322.362133][T16519]  ? clear_bhb_loop+0x40/0x90
[  322.362162][T16519]  ? clear_bhb_loop+0x40/0x90
[  322.362192][T16519]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.362351][T16519] RIP: 0033:0x7f923a53e929
[  322.362407][T16519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.362425][T16519] RSP: 002b:00007f9238ba6d68 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  322.362443][T16519] RAX: ffffffffffffffda RBX: 0000000000004030 RCX: 00007f923a53e929
[  322.362458][T16519] RDX: 00007f9238ba6dec RSI: 0000000000000000 RDI: 00007f923a5c14cc
[  322.362474][T16519] RBP: 0000200000004040 R08: 00007f9238ba6b07 R09: 0000000000000000
[  322.362489][T16519] R10: 000000000000000a R11: 0000000000000202 R12: 0000000000000001
[  322.362504][T16519] R13: 00007f9238ba6dec R14: 00007f9238ba6df0 R15: 00007fff0ad6ba58
[  322.362550][T16519]  </TASK>
[  322.756999][T16530] lo speed is unknown, defaulting to 1000
[  323.608794][T16546] loop1: detected capacity change from 0 to 512
[  323.689342][T16546] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  323.715901][T16546] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.5086: invalid block
[  323.728687][T16546] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5086: invalid indirect mapped block 4294967295 (level 1)
[  323.744220][T16546] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5086: invalid indirect mapped block 4294967295 (level 1)
[  323.759039][T16546] EXT4-fs (loop1): 2 truncates cleaned up
[  323.765678][T16546] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.834701][T16546] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  324.228606][T10970] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.265221][T16574] __nla_validate_parse: 6 callbacks suppressed
[  324.265242][T16574] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5100'.
[  324.283017][T16574] netlink: zone id is out of range
[  324.288320][T16574] netlink: zone id is out of range
[  324.294218][T16574] netlink: zone id is out of range
[  324.299375][T16574] netlink: zone id is out of range
[  324.368189][T16581] loop1: detected capacity change from 0 to 128
[  324.387610][T16581] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  324.434518][T16581] ext4 filesystem being mounted at /444/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  324.487762][T10970] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  324.543193][T16595] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5108'.
[  324.603731][T16597] vhci_hcd: invalid port number 236
[  324.848990][T16614] loop1: detected capacity change from 0 to 1024
[  324.859485][T16614] EXT4-fs: dax option not supported
[  325.066816][   T29] kauditd_printk_skb: 311 callbacks suppressed
[  325.066834][   T29] audit: type=1326 audit(2000000267.260:30457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.118104][   T29] audit: type=1326 audit(2000000267.290:30458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.141932][   T29] audit: type=1326 audit(2000000267.290:30459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.165522][   T29] audit: type=1326 audit(2000000267.290:30460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.189168][   T29] audit: type=1326 audit(2000000267.290:30461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.212943][   T29] audit: type=1326 audit(2000000267.290:30462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.236528][   T29] audit: type=1326 audit(2000000267.290:30463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.260125][   T29] audit: type=1326 audit(2000000267.300:30464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.283731][   T29] audit: type=1326 audit(2000000267.300:30465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.307465][   T29] audit: type=1326 audit(2000000267.300:30466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16617 comm="syz.4.5116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  325.348522][T16620] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5116'.
[  325.401118][T16625] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.5125'.
[  325.872366][T16650] net_ratelimit: 6 callbacks suppressed
[  325.872450][T16650] Set syz1 is full, maxelem 65536 reached
[  325.988835][T16655] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5127'.
[  326.027733][T16655] loop1: detected capacity change from 0 to 512
[  326.036184][T16655] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  326.064660][T16655] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.5127: invalid block
[  326.077102][T16655] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5127: invalid indirect mapped block 4294967295 (level 1)
[  326.091420][T16655] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.5127: invalid indirect mapped block 4294967295 (level 1)
[  326.105956][T16655] EXT4-fs (loop1): 2 truncates cleaned up
[  326.112647][T16655] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  326.456707][T16655] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  326.498672][T16668] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5135'.
[  326.508742][T16668] netlink: zone id is out of range
[  326.515759][T16668] netlink: zone id is out of range
[  326.523708][T16668] netlink: zone id is out of range
[  326.528854][T16668] netlink: zone id is out of range
[  326.555723][T16668] netlink: zone id is out of range
[  326.569923][T16668] netlink: del zone limit has 8 unknown bytes
[  326.629381][T10970] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.936255][T16703] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5141'.
[  327.753311][T16709] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5150'.
[  328.228505][T16728] netlink: 56 bytes leftover after parsing attributes in process `syz.5.5160'.
[  328.240895][T16726] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5156'.
[  328.256772][T16728] tmpfs: Bad value for 'mpol'
[  328.322434][T16739] netlink: zone id is out of range
[  328.327686][T16739] netlink: zone id is out of range
[  328.334564][T16739] netlink: del zone limit has 8 unknown bytes
[  329.046587][T16768] netlink: 'syz.0.5175': attribute type 21 has an invalid length.
[  329.055905][T16768] netlink: 'syz.0.5175': attribute type 4 has an invalid length.
[  329.932940][T16800] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[  330.066232][T16807] __nla_validate_parse: 3 callbacks suppressed
[  330.066246][T16807] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.5190'.
[  330.095075][   T29] kauditd_printk_skb: 915 callbacks suppressed
[  330.095093][   T29] audit: type=1400 audit(2000000272.290:31382): avc:  denied  { open } for  pid=16804 comm="syz.1.5189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  330.120913][   T29] audit: type=1400 audit(2000000272.290:31383): avc:  denied  { kernel } for  pid=16804 comm="syz.1.5189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  330.161154][   T29] audit: type=1400 audit(2000000272.350:31384): avc:  denied  { execmem } for  pid=16808 comm="syz.0.5191" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  330.274879][   T29] audit: type=1400 audit(2000000272.460:31385): avc:  denied  { create } for  pid=16810 comm="syz.5.5192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  330.294806][   T29] audit: type=1400 audit(2000000272.460:31386): avc:  denied  { setopt } for  pid=16810 comm="syz.5.5192" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  330.315538][   T29] audit: type=1400 audit(2000000272.460:31387): avc:  denied  { create } for  pid=16810 comm="syz.5.5192" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  330.479231][T16816] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5191'.
[  330.739217][T16821] 9pnet_fd: Insufficient options for proto=fd
[  331.012512][   T29] audit: type=1400 audit(2000000272.670:31388): avc:  denied  { read } for  pid=16808 comm="syz.0.5191" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  331.035318][   T29] audit: type=1400 audit(2000000272.680:31389): avc:  denied  { firmware_load } for  pid=16808 comm="syz.0.5191" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1
[  331.060449][   T29] audit: type=1400 audit(2000000272.700:31390): avc:  denied  { remount } for  pid=16808 comm="syz.0.5191" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  331.080484][   T29] audit: type=1400 audit(2000000272.700:31391): avc:  denied  { create } for  pid=16808 comm="syz.0.5191" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  331.196328][T16830] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5197'.
[  331.223116][T16830] net_ratelimit: 9 callbacks suppressed
[  331.223135][T16830] netlink: zone id is out of range
[  331.265429][T16833] loop1: detected capacity change from 0 to 512
[  331.272984][T16830] netlink: zone id is out of range
[  331.288323][T16830] netlink: del zone limit has 8 unknown bytes
[  331.292680][T16833] EXT4-fs: Invalid journal IO priority (must be 0-7)
[  331.375022][T16840] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5201'.
[  331.402922][T16840] netlink: zone id is out of range
[  331.408220][T16840] netlink: zone id is out of range
[  331.442907][T16840] netlink: zone id is out of range
[  331.448148][T16840] netlink: zone id is out of range
[  331.453407][T16840] netlink: zone id is out of range
[  331.458539][T16840] netlink: zone id is out of range
[  331.463717][T16840] netlink: zone id is out of range
[  331.613182][T16856] netlink: 180 bytes leftover after parsing attributes in process `syz.1.5205'.
[  331.725423][T16859] 9pnet_fd: Insufficient options for proto=fd
[  332.542466][T16867] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5210'.
[  332.578555][T16869] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5211'.
[  333.008970][T16880] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.5215'.
[  333.102981][T16885] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5217'.
[  333.195364][T16893] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5209'.
[  333.282406][T16896] 9pnet_fd: Insufficient options for proto=fd
[  333.928233][T16915] netlink: 'syz.4.5228': attribute type 1 has an invalid length.
[  333.936098][T16915] netlink: 'syz.4.5228': attribute type 2 has an invalid length.
[  334.894305][T16944] 9pnet_fd: Insufficient options for proto=fd
[  335.059727][T16951] netlink: 'syz.0.5240': attribute type 1 has an invalid length.
[  335.067572][T16951] netlink: 'syz.0.5240': attribute type 2 has an invalid length.
[  335.143200][T16957] __nla_validate_parse: 2 callbacks suppressed
[  335.143221][T16957] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5243'.
[  335.312877][   T29] kauditd_printk_skb: 618 callbacks suppressed
[  335.312895][   T29] audit: type=1400 audit(2000000277.500:32010): avc:  denied  { create } for  pid=16954 comm="syz.0.5242" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  335.339643][   T29] audit: type=1400 audit(2000000277.500:32011): avc:  denied  { write } for  pid=16954 comm="syz.0.5242" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  335.360094][   T29] audit: type=1400 audit(2000000277.500:32012): avc:  denied  { nlmsg_write } for  pid=16954 comm="syz.0.5242" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  335.381036][   T29] audit: type=1326 audit(2000000277.500:32013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16954 comm="syz.0.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a53e929 code=0x7ffc0000
[  335.381753][T16960] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5242'.
[  335.404735][   T29] audit: type=1326 audit(2000000277.500:32014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16954 comm="syz.0.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a53e929 code=0x7ffc0000
[  335.437554][   T29] audit: type=1326 audit(2000000277.500:32015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16954 comm="syz.0.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f923a53e929 code=0x7ffc0000
[  335.461233][   T29] audit: type=1326 audit(2000000277.500:32016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16954 comm="syz.0.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a53e929 code=0x7ffc0000
[  335.473556][T16963] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5244'.
[  335.484854][   T29] audit: type=1326 audit(2000000277.500:32017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16954 comm="syz.0.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a53e929 code=0x7ffc0000
[  335.517445][   T29] audit: type=1326 audit(2000000277.500:32018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16954 comm="syz.0.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f923a53e929 code=0x7ffc0000
[  335.541091][   T29] audit: type=1326 audit(2000000277.500:32019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16954 comm="syz.0.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f923a53e929 code=0x7ffc0000
[  335.863746][T16987] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.5254'.
[  336.242163][T16997] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5256'.
[  337.223516][T17012] 9pnet_fd: Insufficient options for proto=fd
[  337.263982][T17016] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5264'.
[  337.274991][T17016] net_ratelimit: 23 callbacks suppressed
[  337.275007][T17016] netlink: zone id is out of range
[  337.286493][T17016] netlink: zone id is out of range
[  337.291961][T17016] netlink: zone id is out of range
[  337.297234][T17016] netlink: zone id is out of range
[  337.302455][T17016] netlink: zone id is out of range
[  337.307633][T17016] netlink: zone id is out of range
[  337.312877][T17016] netlink: zone id is out of range
[  337.318013][T17016] netlink: zone id is out of range
[  337.323929][T17016] netlink: del zone limit has 8 unknown bytes
[  337.376518][T17021] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5266'.
[  337.387808][T17021] netlink: zone id is out of range
[  337.701925][T17042] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5273'.
[  337.828235][T17048] 9pnet_fd: Insufficient options for proto=fd
[  337.982387][T17059] block device autoloading is deprecated and will be removed.
[  338.442354][T17073] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.5286'.
[  338.476799][T17077] netlink: 'syz.0.5287': attribute type 1 has an invalid length.
[  338.484855][T17077] netlink: 'syz.0.5287': attribute type 2 has an invalid length.
[  338.554452][T17086] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5291'.
[  338.832892][T17111] netlink: 'syz.2.5301': attribute type 1 has an invalid length.
[  338.840737][T17111] netlink: 'syz.2.5301': attribute type 2 has an invalid length.
[  339.292494][T17128] program syz.5.5309 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  339.528324][T17139] 9pnet_fd: Insufficient options for proto=fd
[  340.162509][T17172] FAULT_INJECTION: forcing a failure.
[  340.162509][T17172] name failslab, interval 1, probability 0, space 0, times 0
[  340.162946][T17173] __nla_validate_parse: 6 callbacks suppressed
[  340.162964][T17173] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5323'.
[  340.175697][T17172] CPU: 0 UID: 0 PID: 17172 Comm: +}[@ Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  340.175747][T17172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  340.175768][T17172] Call Trace:
[  340.175777][T17172]  <TASK>
[  340.175790][T17172]  __dump_stack+0x1d/0x30
[  340.175847][T17172]  dump_stack_lvl+0xe8/0x140
[  340.175876][T17172]  dump_stack+0x15/0x1b
[  340.175939][T17172]  should_fail_ex+0x265/0x280
[  340.176046][T17172]  ? p9_client_stat+0x5a/0x200
[  340.176071][T17172]  should_failslab+0x8c/0xb0
[  340.176105][T17172]  __kmalloc_cache_noprof+0x4c/0x320
[  340.176149][T17172]  p9_client_stat+0x5a/0x200
[  340.176178][T17172]  v9fs_vfs_getattr+0x143/0x260
[  340.176242][T17172]  vfs_getattr_nosec+0x143/0x1e0
[  340.176280][T17172]  vfs_statx+0x113/0x390
[  340.176340][T17172]  vfs_fstatat+0x115/0x170
[  340.176376][T17172]  __se_sys_newfstatat+0x55/0x260
[  340.176440][T17172]  ? __bpf_trace_sys_enter+0x10/0x30
[  340.176482][T17172]  ? trace_sys_enter+0xd0/0x110
[  340.176520][T17172]  __x64_sys_newfstatat+0x55/0x70
[  340.176560][T17172]  x64_sys_call+0x2c22/0x2fb0
[  340.176665][T17172]  do_syscall_64+0xd2/0x200
[  340.176696][T17172]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  340.176733][T17172]  ? clear_bhb_loop+0x40/0x90
[  340.176764][T17172]  ? clear_bhb_loop+0x40/0x90
[  340.176833][T17172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.176863][T17172] RIP: 0033:0x7fb70050e929
[  340.176886][T17172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.176912][T17172] RSP: 002b:00007fb6feb77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  340.176945][T17172] RAX: ffffffffffffffda RBX: 00007fb700735fa0 RCX: 00007fb70050e929
[  340.176963][T17172] RDX: 0000000000000000 RSI: 0000200000000700 RDI: ffffffffffffff9c
[  340.177025][T17172] RBP: 00007fb6feb77090 R08: 0000000000000000 R09: 0000000000000000
[  340.177042][T17172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  340.177060][T17172] R13: 0000000000000000 R14: 00007fb700735fa0 R15: 00007ffc0977b0a8
[  340.177088][T17172]  </TASK>
[  340.283058][T17175] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5327'.
[  340.338123][T17177] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5328'.
[  340.399115][   T29] kauditd_printk_skb: 880 callbacks suppressed
[  340.399136][   T29] audit: type=1326 audit(2000000282.590:32900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f87304e58e7 code=0x7ffc0000
[  340.454796][   T29] audit: type=1326 audit(2000000282.600:32901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f873048ab19 code=0x7ffc0000
[  340.478341][   T29] audit: type=1326 audit(2000000282.600:32902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f87304e58e7 code=0x7ffc0000
[  340.501983][   T29] audit: type=1326 audit(2000000282.600:32903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f873048ab19 code=0x7ffc0000
[  340.525726][   T29] audit: type=1326 audit(2000000282.600:32904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  340.549349][   T29] audit: type=1326 audit(2000000282.600:32905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  340.572986][   T29] audit: type=1326 audit(2000000282.630:32906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f87304e58e7 code=0x7ffc0000
[  340.596495][   T29] audit: type=1326 audit(2000000282.630:32907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f873048ab19 code=0x7ffc0000
[  340.620031][   T29] audit: type=1326 audit(2000000282.630:32908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17174 comm="syz.4.5327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  340.665763][T17192] netlink: 'syz.5.5332': attribute type 1 has an invalid length.
[  340.673705][T17192] netlink: 'syz.5.5332': attribute type 2 has an invalid length.
[  340.702429][   T29] audit: type=1326 audit(2000000282.890:32909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17195 comm="syz.2.5333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb70050e929 code=0x7ffc0000
[  340.843100][T17207] netlink: 180 bytes leftover after parsing attributes in process `syz.5.5335'.
[  340.944265][T17215] 9pnet_fd: Insufficient options for proto=fd
[  341.689486][T17222] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.5341'.
[  341.750480][T17233] netlink: 'syz.0.5345': attribute type 1 has an invalid length.
[  341.758421][T17233] netlink: 'syz.0.5345': attribute type 2 has an invalid length.
[  341.839700][T17239] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.5348'.
[  341.927046][T17246] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.5346'.
[  342.078596][T17262] netlink: 180 bytes leftover after parsing attributes in process `syz.5.5354'.
[  342.100806][T17261] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.5356'.
[  342.171366][T17274] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.5361'.
[  342.841532][T17291] net_ratelimit: 41 callbacks suppressed
[  342.841551][T17291] netlink: zone id is out of range
[  342.863885][T17291] netlink: zone id is out of range
[  342.869116][T17291] netlink: zone id is out of range
[  342.881717][T17291] netlink: del zone limit has 8 unknown bytes
[  343.001112][T17310] xt_hashlimit: max too large, truncated to 1048576
[  343.020984][T17306] netlink: zone id is out of range
[  343.031585][T17306] netlink: zone id is out of range
[  343.038480][T17306] netlink: del zone limit has 8 unknown bytes
[  343.118084][T17329] netlink: zone id is out of range
[  343.123625][T17329] netlink: zone id is out of range
[  343.131066][T17329] netlink: zone id is out of range
[  344.171005][T17358] 9pnet_fd: Insufficient options for proto=fd
[  344.307884][T17375] random: crng reseeded on system resumption
[  344.316034][T17381] netlink: 'syz.5.5403': attribute type 1 has an invalid length.
[  345.657857][   T29] kauditd_printk_skb: 491 callbacks suppressed
[  345.657877][   T29] audit: type=1326 audit(2000000287.850:33401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17405 comm="syz.4.5412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  345.690201][   T29] audit: type=1326 audit(2000000287.890:33402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17405 comm="syz.4.5412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  345.972343][T17422] 9pnet_fd: Insufficient options for proto=fd
[  345.978563][T17432] __nla_validate_parse: 9 callbacks suppressed
[  345.978580][T17432] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.5422'.
[  346.036874][T17438] netlink: 'syz.0.5425': attribute type 1 has an invalid length.
[  346.037328][   T29] audit: type=1400 audit(2000000288.230:33403): avc:  denied  { create } for  pid=17435 comm="syz.5.5424" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  346.044671][T17438] netlink: 'syz.0.5425': attribute type 2 has an invalid length.
[  346.080138][   T29] audit: type=1400 audit(2000000288.270:33404): avc:  denied  { write } for  pid=17435 comm="syz.5.5424" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  346.222093][   T29] audit: type=1326 audit(2000000288.410:33405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17453 comm="syz.5.5433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  346.245797][   T29] audit: type=1326 audit(2000000288.410:33406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17453 comm="syz.5.5433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  346.269431][   T29] audit: type=1326 audit(2000000288.410:33407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17453 comm="syz.5.5433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  346.309844][   T29] audit: type=1326 audit(2000000288.410:33408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17453 comm="syz.5.5433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  346.333755][   T29] audit: type=1326 audit(2000000288.410:33409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17453 comm="syz.5.5433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  346.357542][   T29] audit: type=1326 audit(2000000288.410:33410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17453 comm="syz.5.5433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  346.445960][T17463] netlink: 'syz.5.5436': attribute type 1 has an invalid length.
[  346.453782][T17463] netlink: 'syz.5.5436': attribute type 2 has an invalid length.
[  346.586181][T17474] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.5441'.
[  346.795873][T17488] netlink: 'syz.1.5448': attribute type 1 has an invalid length.
[  346.803701][T17488] netlink: 'syz.1.5448': attribute type 2 has an invalid length.
[  347.155859][T17512] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5456'.
[  347.380270][T17515] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  347.457957][T17515] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  347.825928][T17533] netlink: 'syz.4.5466': attribute type 1 has an invalid length.
[  347.833013][T17534] IPv6: NLM_F_CREATE should be specified when creating new route
[  347.833749][T17533] netlink: 'syz.4.5466': attribute type 2 has an invalid length.
[  347.891178][T17540] netlink: 'syz.5.5470': attribute type 1 has an invalid length.
[  347.899085][T17540] netlink: 224 bytes leftover after parsing attributes in process `syz.5.5470'.
[  348.065905][T17557] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5478'.
[  348.198752][T17568] netlink: 'syz.2.5482': attribute type 1 has an invalid length.
[  348.260671][T17572] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.5484'.
[  348.299458][T17572] net_ratelimit: 16 callbacks suppressed
[  348.299475][T17572] netlink: zone id is out of range
[  348.310557][T17572] netlink: zone id is out of range
[  348.317563][T17572] netlink: zone id is out of range
[  348.326242][T17572] netlink: del zone limit has 8 unknown bytes
[  348.452041][T17587] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5489'.
[  348.637945][T17592] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5488'.
[  348.772691][T17596] netlink: 224 bytes leftover after parsing attributes in process `syz.2.5492'.
[  349.740419][T17629] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5502'.
[  349.889918][T17637] FAULT_INJECTION: forcing a failure.
[  349.889918][T17637] name failslab, interval 1, probability 0, space 0, times 0
[  349.902621][T17637] CPU: 1 UID: 0 PID: 17637 Comm: syz.1.5508 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  349.902658][T17637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  349.902674][T17637] Call Trace:
[  349.902697][T17637]  <TASK>
[  349.902706][T17637]  __dump_stack+0x1d/0x30
[  349.902727][T17637]  dump_stack_lvl+0xe8/0x140
[  349.902745][T17637]  dump_stack+0x15/0x1b
[  349.902760][T17637]  should_fail_ex+0x265/0x280
[  349.902810][T17637]  should_failslab+0x8c/0xb0
[  349.902836][T17637]  kmem_cache_alloc_noprof+0x50/0x310
[  349.902871][T17637]  ? alloc_empty_file+0x76/0x200
[  349.902942][T17637]  alloc_empty_file+0x76/0x200
[  349.902969][T17637]  alloc_file_pseudo+0xc6/0x160
[  349.903032][T17637]  __shmem_file_setup+0x1de/0x210
[  349.903069][T17637]  shmem_file_setup+0x3b/0x50
[  349.903098][T17637]  __se_sys_memfd_create+0x2c3/0x590
[  349.903184][T17637]  __x64_sys_memfd_create+0x31/0x40
[  349.903218][T17637]  x64_sys_call+0x122f/0x2fb0
[  349.903313][T17637]  do_syscall_64+0xd2/0x200
[  349.903340][T17637]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  349.903374][T17637]  ? clear_bhb_loop+0x40/0x90
[  349.903401][T17637]  ? clear_bhb_loop+0x40/0x90
[  349.903430][T17637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.903471][T17637] RIP: 0033:0x7ffacc75e929
[  349.903485][T17637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  349.903502][T17637] RSP: 002b:00007ffacadc6e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  349.903526][T17637] RAX: ffffffffffffffda RBX: 0000000000000722 RCX: 00007ffacc75e929
[  349.903541][T17637] RDX: 00007ffacadc6ef0 RSI: 0000000000000000 RDI: 00007ffacc7e14cc
[  349.903557][T17637] RBP: 0000200000002640 R08: 00007ffacadc6bb7 R09: 00007ffacadc6e40
[  349.903653][T17637] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000780
[  349.903669][T17637] R13: 00007ffacadc6ef0 R14: 00007ffacadc6eb0 R15: 0000200000000300
[  349.903693][T17637]  </TASK>
[  350.774362][T17656] 9pnet_fd: Insufficient options for proto=fd
[  350.785483][T17655] netlink: zone id is out of range
[  350.792058][T17655] netlink: zone id is out of range
[  350.797435][T17655] netlink: zone id is out of range
[  350.802754][T17655] netlink: del zone limit has 8 unknown bytes
[  351.352218][   T29] kauditd_printk_skb: 273 callbacks suppressed
[  351.352236][   T29] audit: type=1326 audit(2000000293.540:33684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.382277][   T29] audit: type=1326 audit(2000000293.540:33685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.405923][   T29] audit: type=1326 audit(2000000293.540:33686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.429429][   T29] audit: type=1326 audit(2000000293.540:33687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.453018][   T29] audit: type=1326 audit(2000000293.540:33688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.476688][   T29] audit: type=1326 audit(2000000293.540:33689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.503751][   T29] audit: type=1326 audit(2000000293.540:33690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.508007][T17677] __nla_validate_parse: 3 callbacks suppressed
[  351.508028][T17677] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5521'.
[  351.527329][   T29] audit: type=1326 audit(2000000293.540:33691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.566267][   T29] audit: type=1326 audit(2000000293.540:33692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.655731][   T29] audit: type=1326 audit(2000000293.740:33693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.5.5521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  351.710296][T17678] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5522'.
[  352.192526][T17704] 9pnet_fd: Insufficient options for proto=fd
[  352.545350][T17714] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.5534'.
[  352.948960][T17722] netlink: 9412 bytes leftover after parsing attributes in process `syz.5.5535'.
[  352.962834][T17724] Illegal XDP return value 4294967262 on prog  (id 2990) dev N/A, expect packet loss!
[  353.919728][T17743] validate_nla: 4 callbacks suppressed
[  353.919744][T17743] netlink: 'syz.2.5544': attribute type 1 has an invalid length.
[  353.933138][T17743] netlink: 224 bytes leftover after parsing attributes in process `syz.2.5544'.
[  354.418342][T17754] 9pnet_fd: Insufficient options for proto=fd
[  354.945150][T17771] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5555'.
[  355.029245][T17779] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5558'.
[  355.056568][T17779] bridge0: port 3(macvlan2) entered blocking state
[  355.063252][T17779] bridge0: port 3(macvlan2) entered disabled state
[  355.071589][T17779] macvlan2: entered allmulticast mode
[  355.077096][T17779] bridge0: entered allmulticast mode
[  355.083912][T17779] macvlan2: left allmulticast mode
[  355.089150][T17779] bridge0: left allmulticast mode
[  355.277250][T17787] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5560'.
[  355.819650][T17796] netlink: 180 bytes leftover after parsing attributes in process `syz.0.5562'.
[  355.847778][T17799] block device autoloading is deprecated and will be removed.
[  356.165907][T17816] 9pnet_fd: Insufficient options for proto=fd
[  356.407306][   T29] kauditd_printk_skb: 206 callbacks suppressed
[  356.407324][   T29] audit: type=1326 audit(2000000298.600:33900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17801 comm="syz.4.5568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.437560][   T29] audit: type=1326 audit(2000000298.630:33901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17801 comm="syz.4.5568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.630999][   T29] audit: type=1326 audit(2000000298.820:33902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17821 comm="syz.4.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.654823][   T29] audit: type=1326 audit(2000000298.820:33903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17821 comm="syz.4.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.678544][   T29] audit: type=1326 audit(2000000298.820:33904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17821 comm="syz.4.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.702222][   T29] audit: type=1326 audit(2000000298.820:33905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17821 comm="syz.4.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.725902][   T29] audit: type=1326 audit(2000000298.820:33906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17821 comm="syz.4.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.749612][   T29] audit: type=1326 audit(2000000298.820:33907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17821 comm="syz.4.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.773240][   T29] audit: type=1326 audit(2000000298.820:33908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17821 comm="syz.4.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.773283][   T29] audit: type=1326 audit(2000000298.820:33909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17821 comm="syz.4.5574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  356.818832][T17828] FAULT_INJECTION: forcing a failure.
[  356.818832][T17828] name failslab, interval 1, probability 0, space 0, times 0
[  356.833365][T17828] CPU: 0 UID: 0 PID: 17828 Comm: syz.5.5576 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  356.833392][T17828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  356.833405][T17828] Call Trace:
[  356.833410][T17828]  <TASK>
[  356.833419][T17828]  __dump_stack+0x1d/0x30
[  356.833444][T17828]  dump_stack_lvl+0xe8/0x140
[  356.833469][T17828]  dump_stack+0x15/0x1b
[  356.833489][T17828]  should_fail_ex+0x265/0x280
[  356.833579][T17828]  should_failslab+0x8c/0xb0
[  356.833608][T17828]  kmem_cache_alloc_noprof+0x50/0x310
[  356.833720][T17828]  ? skb_clone+0x151/0x1f0
[  356.833748][T17828]  skb_clone+0x151/0x1f0
[  356.833775][T17828]  __netlink_deliver_tap+0x2c9/0x500
[  356.833805][T17828]  netlink_unicast+0x64c/0x670
[  356.833854][T17828]  netlink_sendmsg+0x58b/0x6b0
[  356.833884][T17828]  ? __pfx_netlink_sendmsg+0x10/0x10
[  356.833913][T17828]  __sock_sendmsg+0x142/0x180
[  356.833942][T17828]  ____sys_sendmsg+0x31e/0x4e0
[  356.833994][T17828]  ___sys_sendmsg+0x17b/0x1d0
[  356.834039][T17828]  __x64_sys_sendmsg+0xd4/0x160
[  356.834072][T17828]  x64_sys_call+0x2999/0x2fb0
[  356.834095][T17828]  do_syscall_64+0xd2/0x200
[  356.834116][T17828]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  356.834168][T17828]  ? clear_bhb_loop+0x40/0x90
[  356.834216][T17828]  ? clear_bhb_loop+0x40/0x90
[  356.834238][T17828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.834258][T17828] RIP: 0033:0x7fa9389fe929
[  356.834342][T17828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.834364][T17828] RSP: 002b:00007fa937067038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  356.834383][T17828] RAX: ffffffffffffffda RBX: 00007fa938c25fa0 RCX: 00007fa9389fe929
[  356.834395][T17828] RDX: 0000000000004054 RSI: 00002000000002c0 RDI: 0000000000000005
[  356.834407][T17828] RBP: 00007fa937067090 R08: 0000000000000000 R09: 0000000000000000
[  356.834419][T17828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  356.834431][T17828] R13: 0000000000000000 R14: 00007fa938c25fa0 R15: 00007ffde5bc5b58
[  356.834522][T17828]  </TASK>
[  357.081629][T17828] team_slave_0: entered promiscuous mode
[  357.087435][T17828] team_slave_1: entered promiscuous mode
[  357.113524][T17828] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  357.123526][T17828] team0: Device macvtap1 is already an upper device of the team interface
[  357.167485][T17836] netlink: 'syz.2.5579': attribute type 1 has an invalid length.
[  357.175422][T17836] netlink: 224 bytes leftover after parsing attributes in process `syz.2.5579'.
[  357.187271][T17828] team_slave_0: left promiscuous mode
[  357.192691][T17828] team_slave_1: left promiscuous mode
[  357.478219][T17844] lo speed is unknown, defaulting to 1000
[  358.109641][T17850] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5584'.
[  358.776861][T17850] bridge0: port 3(macvlan0) entered blocking state
[  358.783556][T17850] bridge0: port 3(macvlan0) entered disabled state
[  358.803403][T17850] macvlan0: entered allmulticast mode
[  358.808829][T17850] bridge0: entered allmulticast mode
[  358.824006][T17850] macvlan0: left allmulticast mode
[  358.829228][T17850] bridge0: left allmulticast mode
[  358.875904][T17860] netlink: 'syz.0.5587': attribute type 1 has an invalid length.
[  358.883754][T17860] netlink: 224 bytes leftover after parsing attributes in process `syz.0.5587'.
[  359.093026][T17866] 9pnet_fd: Insufficient options for proto=fd
[  359.105721][T17874] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5588'.
[  359.680563][T17888] netlink: 'syz.5.5596': attribute type 1 has an invalid length.
[  359.688463][T17888] netlink: 224 bytes leftover after parsing attributes in process `syz.5.5596'.
[  359.793898][T17898] netlink: 'syz.2.5599': attribute type 1 has an invalid length.
[  359.801720][T17898] netlink: 224 bytes leftover after parsing attributes in process `syz.2.5599'.
[  359.938889][T17914] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.5603'.
[  360.149787][T17923] netlink: 72 bytes leftover after parsing attributes in process `syz.4.5609'.
[  360.734212][T17960] netlink: 'syz.1.5625': attribute type 1 has an invalid length.
[  360.742036][T17960] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5625'.
[  360.746781][T17961] block device autoloading is deprecated and will be removed.
[  360.857410][T17974] block device autoloading is deprecated and will be removed.
[  360.870895][T17976] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5631'.
[  360.882751][T17976] bridge0: port 3(macvlan2) entered blocking state
[  360.889494][T17976] bridge0: port 3(macvlan2) entered disabled state
[  360.896453][T17976] macvlan2: entered allmulticast mode
[  360.901962][T17976] bridge0: entered allmulticast mode
[  360.913050][T17976] macvlan2: left allmulticast mode
[  360.918231][T17976] bridge0: left allmulticast mode
[  361.039955][T17984] lo speed is unknown, defaulting to 1000
[  361.111716][T17990] FAULT_INJECTION: forcing a failure.
[  361.111716][T17990] name failslab, interval 1, probability 0, space 0, times 0
[  361.124540][T17990] CPU: 0 UID: 0 PID: 17990 Comm: syz.1.5637 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  361.124598][T17990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  361.124614][T17990] Call Trace:
[  361.124664][T17990]  <TASK>
[  361.124672][T17990]  __dump_stack+0x1d/0x30
[  361.124693][T17990]  dump_stack_lvl+0xe8/0x140
[  361.124716][T17990]  dump_stack+0x15/0x1b
[  361.124737][T17990]  should_fail_ex+0x265/0x280
[  361.124840][T17990]  should_failslab+0x8c/0xb0
[  361.124943][T17990]  kmem_cache_alloc_noprof+0x50/0x310
[  361.125024][T17990]  ? getname_flags+0x80/0x3b0
[  361.125055][T17990]  getname_flags+0x80/0x3b0
[  361.125089][T17990]  user_path_at+0x28/0x130
[  361.125129][T17990]  __se_sys_mount+0x25b/0x2e0
[  361.125154][T17990]  ? fput+0x8f/0xc0
[  361.125206][T17990]  __x64_sys_mount+0x67/0x80
[  361.125233][T17990]  x64_sys_call+0xd36/0x2fb0
[  361.125270][T17990]  do_syscall_64+0xd2/0x200
[  361.125339][T17990]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  361.125366][T17990]  ? clear_bhb_loop+0x40/0x90
[  361.125436][T17990]  ? clear_bhb_loop+0x40/0x90
[  361.125503][T17990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  361.125532][T17990] RIP: 0033:0x7ffacc75e929
[  361.125577][T17990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  361.125596][T17990] RSP: 002b:00007ffacadc7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  361.125617][T17990] RAX: ffffffffffffffda RBX: 00007ffacc985fa0 RCX: 00007ffacc75e929
[  361.125648][T17990] RDX: 0000000000000000 RSI: 0000200000000440 RDI: 00002000000000c0
[  361.125664][T17990] RBP: 00007ffacadc7090 R08: 0000000000000000 R09: 0000000000000000
[  361.125680][T17990] R10: 00000000008c7c88 R11: 0000000000000246 R12: 0000000000000001
[  361.125693][T17990] R13: 0000000000000000 R14: 00007ffacc985fa0 R15: 00007fffe2665db8
[  361.125718][T17990]  </TASK>
[  361.606271][T17994] loop1: detected capacity change from 0 to 1024
[  361.651986][T17994] EXT4-fs: dax option not supported
[  361.709154][   T29] kauditd_printk_skb: 348 callbacks suppressed
[  361.709247][   T29] audit: type=1326 audit(2000000303.900:34258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  361.887714][T17999] netlink: 'syz.0.5640': attribute type 1 has an invalid length.
[  361.903084][   T29] audit: type=1326 audit(2000000303.930:34259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  361.926829][   T29] audit: type=1326 audit(2000000303.930:34260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  361.950486][   T29] audit: type=1326 audit(2000000303.930:34261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  361.974152][   T29] audit: type=1326 audit(2000000303.930:34262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  361.997874][   T29] audit: type=1326 audit(2000000303.930:34263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  362.021790][   T29] audit: type=1326 audit(2000000303.930:34264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  362.045759][   T29] audit: type=1326 audit(2000000303.940:34265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  362.069714][   T29] audit: type=1326 audit(2000000303.940:34266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  362.093627][   T29] audit: type=1326 audit(2000000303.940:34267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17993 comm="syz.1.5638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  362.392281][T18035] netlink: 'syz.5.5654': attribute type 1 has an invalid length.
[  362.400170][T18035] __nla_validate_parse: 3 callbacks suppressed
[  362.400187][T18035] netlink: 224 bytes leftover after parsing attributes in process `syz.5.5654'.
[  362.542467][T18045] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5651'.
[  362.623016][T18050] loop1: detected capacity change from 0 to 512
[  362.630113][T18050] EXT4-fs: Invalid journal IO priority (must be 0-7)
[  362.650560][T18052] capability: warning: `syz.5.5660' uses 32-bit capabilities (legacy support in use)
[  363.062477][T18067] netlink: 'syz.1.5667': attribute type 1 has an invalid length.
[  363.070381][T18067] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5667'.
[  363.251353][T18079] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5670'.
[  363.446740][T18098] netlink: 64 bytes leftover after parsing attributes in process `syz.1.5679'.
[  363.636073][T18107] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5678'.
[  363.713958][T18108] 9pnet_fd: Insufficient options for proto=fd
[  364.692459][T18112] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5682'.
[  364.973891][T18121] 9pnet_fd: Insufficient options for proto=fd
[  365.203934][T18138] team_slave_0: entered promiscuous mode
[  365.209649][T18138] team_slave_1: entered promiscuous mode
[  365.228569][T18138] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  365.240442][T18138] team0: Device macvtap1 is already an upper device of the team interface
[  365.249891][T18138] team_slave_0: left promiscuous mode
[  365.255322][T18138] team_slave_1: left promiscuous mode
[  365.713369][T18154] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5697'.
[  366.418819][T18159] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5698'.
[  366.790483][   T29] kauditd_printk_skb: 523 callbacks suppressed
[  366.790499][   T29] audit: type=1326 audit(2000000308.980:34791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  366.841660][   T29] audit: type=1326 audit(2000000309.020:34792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  366.865388][   T29] audit: type=1326 audit(2000000309.020:34793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  366.889160][   T29] audit: type=1326 audit(2000000309.020:34794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  366.912882][   T29] audit: type=1326 audit(2000000309.020:34795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  366.936467][   T29] audit: type=1326 audit(2000000309.020:34796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  366.960172][   T29] audit: type=1326 audit(2000000309.020:34797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  366.983770][   T29] audit: type=1326 audit(2000000309.020:34798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  367.007460][   T29] audit: type=1326 audit(2000000309.020:34799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  367.031109][   T29] audit: type=1326 audit(2000000309.020:34800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18184 comm="syz.1.5709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  367.106334][T18188] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.5709'.
[  367.655241][T18218] netlink: 56 bytes leftover after parsing attributes in process `syz.0.5723'.
[  367.930469][T18234] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5725'.
[  368.987756][T18245] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5732'.
[  369.193827][T18250] netlink: 180 bytes leftover after parsing attributes in process `syz.0.5733'.
[  369.342709][T18256] netlink: 56 bytes leftover after parsing attributes in process `syz.4.5736'.
[  369.514158][T18262] 9pnet_fd: Insufficient options for proto=fd
[  370.645232][T18283] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5745'.
[  371.221186][T18295] netlink: 56 bytes leftover after parsing attributes in process `syz.1.5751'.
[  371.455590][T18306] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5756'.
[  371.700610][T18316] SELinux: security_context_str_to_sid (ð) failed with errno=-22
[  371.739460][T18316] tap0: tun_chr_ioctl cmd 1074025677
[  371.749572][T18316] tap0: linktype set to 821
[  371.760323][T18316] tap0: tun_chr_ioctl cmd 35111
[  371.800746][   T29] kauditd_printk_skb: 89 callbacks suppressed
[  371.800765][   T29] audit: type=1400 audit(2000000313.990:34888): avc:  denied  { bind } for  pid=18299 comm="syz.5.5753" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  372.130416][T18329] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5763'.
[  372.536446][T18333] block device autoloading is deprecated and will be removed.
[  372.795329][   T29] audit: type=1326 audit(2000000314.960:34889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18326 comm="syz.1.5764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  372.819167][   T29] audit: type=1326 audit(2000000314.960:34890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18326 comm="syz.1.5764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  373.141069][   T29] audit: type=1326 audit(2000000315.330:34891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18349 comm="syz.1.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  373.164829][   T29] audit: type=1326 audit(2000000315.330:34892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18349 comm="syz.1.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  373.188470][   T29] audit: type=1326 audit(2000000315.330:34893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18349 comm="syz.1.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  373.212148][   T29] audit: type=1326 audit(2000000315.330:34894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18349 comm="syz.1.5772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7ffacc75e929 code=0x7ffc0000
[  373.545513][T18366] xt_CT: You must specify a L4 protocol and not use inversions on it
[  373.549500][T18366] xt_TPROXY: Can be used only with -p tcp or -p udp
[  373.593789][T18367] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5775'.
[  374.433921][   T29] audit: type=1326 audit(2000000316.620:34895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18378 comm="syz.4.5782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  374.457621][   T29] audit: type=1326 audit(2000000316.620:34896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18378 comm="syz.4.5782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  374.481419][   T29] audit: type=1326 audit(2000000316.630:34897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18378 comm="syz.4.5782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  374.590099][T18382] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5782'.
[  374.636048][T18388] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.5786'.
[  374.690812][T18392] syzkaller1: entered promiscuous mode
[  374.696441][T18392] syzkaller1: entered allmulticast mode
[  374.974655][T18409] netlink: 180 bytes leftover after parsing attributes in process `syz.0.5793'.
[  375.095691][T18414] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5796'.
[  375.156104][T18418] netlink: 9412 bytes leftover after parsing attributes in process `syz.5.5798'.
[  375.215599][T18424] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5799'.
[  375.532106][T18428] lo speed is unknown, defaulting to 1000
[  375.544061][T18448] xt_TPROXY: Can be used only with -p tcp or -p udp
[  375.712189][T18428] chnl_net:caif_netlink_parms(): no params data found
[  375.880091][T18428] bridge0: port 1(bridge_slave_0) entered blocking state
[  375.887278][T18428] bridge0: port 1(bridge_slave_0) entered disabled state
[  375.946442][T18428] bridge_slave_0: entered allmulticast mode
[  375.963386][T18428] bridge_slave_0: entered promiscuous mode
[  375.973499][T18428] bridge0: port 2(bridge_slave_1) entered blocking state
[  375.980609][T18428] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.987986][T18428] bridge_slave_1: entered allmulticast mode
[  375.998676][T18428] bridge_slave_1: entered promiscuous mode
[  376.136414][T18428] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  376.147420][T18428] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  376.169507][T18428] team0: Port device team_slave_0 added
[  376.179257][T18428] team0: Port device team_slave_1 added
[  376.224604][T18428] batman_adv: batadv0: Adding interface: batadv_slave_0
[  376.231793][T18428] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  376.257921][T18428] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  376.273237][T18477] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5814'.
[  376.563615][T18428] batman_adv: batadv0: Adding interface: batadv_slave_1
[  376.570633][T18428] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  376.596759][T18428] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  376.936466][T18428] hsr_slave_0: entered promiscuous mode
[  376.952533][T18428] hsr_slave_1: entered promiscuous mode
[  376.990819][T18428] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  377.001774][T18490] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5818'.
[  377.042772][T18428] Cannot create hsr debugfs directory
[  377.139543][T18491] 9pnet_fd: Insufficient options for proto=fd
[  377.516210][T18428] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  377.525774][T18428] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  377.535838][T18428] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  377.545273][T18428] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  377.592618][T18428] 8021q: adding VLAN 0 to HW filter on device bond0
[  377.608220][T18428] 8021q: adding VLAN 0 to HW filter on device team0
[  377.620834][T18502] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5821'.
[  377.629286][ T3746] bridge0: port 1(bridge_slave_0) entered blocking state
[  377.637041][ T3746] bridge0: port 1(bridge_slave_0) entered forwarding state
[  377.651003][ T3751] bridge0: port 2(bridge_slave_1) entered blocking state
[  377.658098][ T3751] bridge0: port 2(bridge_slave_1) entered forwarding state
[  377.696923][   T29] kauditd_printk_skb: 257 callbacks suppressed
[  377.696939][   T29] audit: type=1400 audit(2000000319.890:35155): avc:  denied  { read } for  pid=18501 comm="syz.4.5821" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  377.726775][   T29] audit: type=1400 audit(2000000319.890:35156): avc:  denied  { open } for  pid=18501 comm="syz.4.5821" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  377.804186][T18428] 8021q: adding VLAN 0 to HW filter on device batadv0
[  377.866996][   T29] audit: type=1400 audit(2000000320.060:35157): avc:  denied  { read } for  pid=18515 comm="syz.0.5825" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  377.890456][   T29] audit: type=1400 audit(2000000320.060:35158): avc:  denied  { open } for  pid=18515 comm="syz.0.5825" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  377.928062][   T29] audit: type=1400 audit(2000000320.110:35159): avc:  denied  { cpu } for  pid=18515 comm="syz.0.5825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1
[  377.970790][   T29] audit: type=1400 audit(2000000000.040:35160): avc:  denied  { bind } for  pid=18530 comm="syz.4.5829" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  377.994725][   T29] audit: type=1400 audit(2000000000.070:35161): avc:  denied  { listen } for  pid=18530 comm="syz.4.5829" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  377.995973][T18428] veth0_vlan: entered promiscuous mode
[  378.026499][   T29] audit: type=1400 audit(2000000000.090:35162): avc:  denied  { read } for  pid=18530 comm="syz.4.5829" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  378.050663][T18428] veth1_vlan: entered promiscuous mode
[  378.070272][T18428] veth0_macvtap: entered promiscuous mode
[  378.101774][T18428] veth1_macvtap: entered promiscuous mode
[  378.119258][T18428] batman_adv: batadv0: Interface activated: batadv_slave_0
[  378.158631][T18428] batman_adv: batadv0: Interface activated: batadv_slave_1
[  378.173629][T18428] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  378.182531][T18428] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  378.191344][T18428] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  378.200154][T18428] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  378.298611][T18540] 9pnet_fd: Insufficient options for proto=fd
[  378.325948][   T29] audit: type=1400 audit(2000000000.380:35163): avc:  denied  { mounton } for  pid=18428 comm="syz-executor" path="/root/syzkaller.uOl0ch/syz-tmp" dev="sda1" ino=2059 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  378.350768][   T29] audit: type=1400 audit(2000000000.380:35164): avc:  denied  { mount } for  pid=18428 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  378.971659][T18560] FAULT_INJECTION: forcing a failure.
[  378.971659][T18560] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  378.984838][T18560] CPU: 1 UID: 0 PID: 18560 Comm: syz.5.5837 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  378.984865][T18560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  378.984877][T18560] Call Trace:
[  378.984883][T18560]  <TASK>
[  378.984892][T18560]  __dump_stack+0x1d/0x30
[  378.984976][T18560]  dump_stack_lvl+0xe8/0x140
[  378.984997][T18560]  dump_stack+0x15/0x1b
[  378.985018][T18560]  should_fail_ex+0x265/0x280
[  378.985057][T18560]  should_fail+0xb/0x20
[  378.985162][T18560]  should_fail_usercopy+0x1a/0x20
[  378.985187][T18560]  _copy_to_user+0x20/0xa0
[  378.985217][T18560]  put_timespec64+0x63/0xb0
[  378.985238][T18560]  __x64_sys_sched_rr_get_interval+0x47/0x70
[  378.985337][T18560]  x64_sys_call+0x18a0/0x2fb0
[  378.985361][T18560]  do_syscall_64+0xd2/0x200
[  378.985386][T18560]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  378.985418][T18560]  ? clear_bhb_loop+0x40/0x90
[  378.985440][T18560]  ? clear_bhb_loop+0x40/0x90
[  378.985484][T18560]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  378.985511][T18560] RIP: 0033:0x7fa9389fe929
[  378.985530][T18560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  378.985553][T18560] RSP: 002b:00007fa937067038 EFLAGS: 00000246 ORIG_RAX: 0000000000000094
[  378.985574][T18560] RAX: ffffffffffffffda RBX: 00007fa938c25fa0 RCX: 00007fa9389fe929
[  378.985586][T18560] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000000
[  378.985635][T18560] RBP: 00007fa937067090 R08: 0000000000000000 R09: 0000000000000000
[  378.985651][T18560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  378.985667][T18560] R13: 0000000000000000 R14: 00007fa938c25fa0 R15: 00007ffde5bc5b58
[  378.985703][T18560]  </TASK>
[  379.337081][T18565] __nla_validate_parse: 1 callbacks suppressed
[  379.337094][T18565] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5839'.
[  379.386767][T18569] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5841'.
[  379.589373][T18582] 9pnet_fd: Insufficient options for proto=fd
[  379.662675][T18584] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.5846'.
[  380.441553][T10462] syz_tun (unregistering): left allmulticast mode
[  380.465141][T18610] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5854'.
[  380.543399][T18612] lo speed is unknown, defaulting to 1000
[  380.681660][T18612] chnl_net:caif_netlink_parms(): no params data found
[  380.728443][T18612] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.735595][T18612] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.742776][T18612] bridge_slave_0: entered allmulticast mode
[  380.749285][T18612] bridge_slave_0: entered promiscuous mode
[  380.756235][T18612] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.763357][T18612] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.770761][T18612] bridge_slave_1: entered allmulticast mode
[  380.777479][T18612] bridge_slave_1: entered promiscuous mode
[  380.805937][T18612] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  380.819073][ T3752] team0: left allmulticast mode
[  380.824085][ T3752] team_slave_0: left allmulticast mode
[  380.829643][ T3752] team_slave_1: left allmulticast mode
[  380.835310][ T3752] bridge0: port 3(team0) entered disabled state
[  380.842552][ T3752] bridge_slave_1: left allmulticast mode
[  380.848266][ T3752] bridge_slave_1: left promiscuous mode
[  380.854021][ T3752] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.862287][ T3752] bridge_slave_0: left allmulticast mode
[  380.868117][ T3752] bridge_slave_0: left promiscuous mode
[  380.874340][ T3752] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.049169][ T3752] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  381.061875][ T3752] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  381.071788][ T3752] bond0 (unregistering): Released all slaves
[  381.083767][T18612] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  381.117414][T18612] team0: Port device team_slave_0 added
[  381.132541][T18612] team0: Port device team_slave_1 added
[  381.181819][T18612] batman_adv: batadv0: Adding interface: batadv_slave_0
[  381.188944][T18612] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  381.215107][T18612] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  381.254000][ T3752] hsr_slave_0: left promiscuous mode
[  381.260001][ T3752] hsr_slave_1: left promiscuous mode
[  381.265982][ T3752] batman_adv: batadv0: Removing interface: batadv_slave_0
[  381.294865][ T3752] batman_adv: batadv0: Removing interface: batadv_slave_1
[  381.368396][ T3752] team_slave_1 (unregistering): left promiscuous mode
[  381.377638][ T3752] team0 (unregistering): Port device team_slave_1 removed
[  381.396279][ T3752] team_slave_0 (unregistering): left promiscuous mode
[  381.422350][ T3752] team0 (unregistering): Port device team_slave_0 removed
[  381.479780][T18612] batman_adv: batadv0: Adding interface: batadv_slave_1
[  381.486863][T18612] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  381.512985][T18612] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  381.574907][T18612] hsr_slave_0: entered promiscuous mode
[  381.591441][T18612] hsr_slave_1: entered promiscuous mode
[  381.601230][T18612] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  381.621192][T18612] Cannot create hsr debugfs directory
[  381.860834][T18662] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5862'.
[  382.974695][T18664] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5865'.
[  383.057508][   T29] kauditd_printk_skb: 909 callbacks suppressed
[  383.057526][   T29] audit: type=1400 audit(2000000005.130:36074): avc:  denied  { create } for  pid=18669 comm="syz.5.5868" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  383.093939][T18670] bond1: entered promiscuous mode
[  383.099024][T18670] bond1: entered allmulticast mode
[  383.113118][T18670] 8021q: adding VLAN 0 to HW filter on device bond1
[  383.123628][T18670] bond1 (unregistering): Released all slaves
[  383.245720][T18674] IPv6: Can't replace route, no match found
[  383.269155][   T29] audit: type=1326 audit(2000000005.340:36075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.307928][   T29] audit: type=1326 audit(2000000005.370:36076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.331688][   T29] audit: type=1326 audit(2000000005.370:36077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.355618][   T29] audit: type=1326 audit(2000000005.370:36078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.379331][   T29] audit: type=1326 audit(2000000005.370:36079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.403288][   T29] audit: type=1326 audit(2000000005.370:36080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.427000][   T29] audit: type=1326 audit(2000000005.370:36081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.427041][   T29] audit: type=1326 audit(2000000005.370:36082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.427117][   T29] audit: type=1326 audit(2000000005.370:36083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18675 comm="syz.4.5870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  383.454616][T18681] netlink: 9412 bytes leftover after parsing attributes in process `syz.4.5870'.
[  383.550586][T18612] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  383.562249][T18612] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  383.574400][T18612] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  383.604294][T18612] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  383.732506][T18706] FAULT_INJECTION: forcing a failure.
[  383.732506][T18706] name failslab, interval 1, probability 0, space 0, times 0
[  383.745423][T18706] CPU: 0 UID: 0 PID: 18706 Comm: syz.1.5879 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  383.745455][T18706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  383.745544][T18706] Call Trace:
[  383.745552][T18706]  <TASK>
[  383.745559][T18706]  __dump_stack+0x1d/0x30
[  383.745580][T18706]  dump_stack_lvl+0xe8/0x140
[  383.745636][T18706]  dump_stack+0x15/0x1b
[  383.745656][T18706]  should_fail_ex+0x265/0x280
[  383.745694][T18706]  should_failslab+0x8c/0xb0
[  383.745727][T18706]  kmem_cache_alloc_noprof+0x50/0x310
[  383.745762][T18706]  ? sk_prot_alloc+0x3f/0x190
[  383.745786][T18706]  ? should_failslab+0x8c/0xb0
[  383.745816][T18706]  sk_prot_alloc+0x3f/0x190
[  383.745863][T18706]  sk_alloc+0x34/0x360
[  383.745899][T18706]  inet_create+0x3c0/0x780
[  383.746002][T18706]  __sock_create+0x2ec/0x5b0
[  383.746045][T18706]  sock_create_kern+0x38/0x50
[  383.746143][T18706]  mptcp_subflow_create_socket+0x84/0x630
[  383.746176][T18706]  ? avc_has_perm_noaudit+0x1b1/0x200
[  383.746267][T18706]  __mptcp_nmpc_sk+0xb3/0x3b0
[  383.746289][T18706]  mptcp_connect+0x58/0x7e0
[  383.746323][T18706]  __inet_stream_connect+0x169/0x7e0
[  383.746348][T18706]  ? _raw_spin_unlock_bh+0x36/0x40
[  383.746382][T18706]  ? release_sock+0x116/0x150
[  383.746411][T18706]  ? _raw_spin_unlock_bh+0x36/0x40
[  383.746444][T18706]  ? lock_sock_nested+0x112/0x140
[  383.746559][T18706]  ? selinux_netlbl_socket_connect+0x115/0x130
[  383.746614][T18706]  inet_stream_connect+0x44/0x70
[  383.746653][T18706]  ? __pfx_inet_stream_connect+0x10/0x10
[  383.746680][T18706]  __sys_connect+0x1ef/0x2b0
[  383.746745][T18706]  __x64_sys_connect+0x3f/0x50
[  383.746781][T18706]  x64_sys_call+0x1daa/0x2fb0
[  383.746803][T18706]  do_syscall_64+0xd2/0x200
[  383.746823][T18706]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  383.746854][T18706]  ? clear_bhb_loop+0x40/0x90
[  383.746903][T18706]  ? clear_bhb_loop+0x40/0x90
[  383.746933][T18706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.746962][T18706] RIP: 0033:0x7f30e63de929
[  383.746981][T18706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.747062][T18706] RSP: 002b:00007f30e4a47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  383.747149][T18706] RAX: ffffffffffffffda RBX: 00007f30e6605fa0 RCX: 00007f30e63de929
[  383.747165][T18706] RDX: 0000000000000010 RSI: 00002000000009c0 RDI: 0000000000000007
[  383.747177][T18706] RBP: 00007f30e4a47090 R08: 0000000000000000 R09: 0000000000000000
[  383.747275][T18706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.747287][T18706] R13: 0000000000000000 R14: 00007f30e6605fa0 R15: 00007ffe32f370d8
[  383.747365][T18706]  </TASK>
[  383.757800][T18612] 8021q: adding VLAN 0 to HW filter on device bond0
[  383.792746][T18708] netlink: 'syz.1.5880': attribute type 1 has an invalid length.
[  383.854520][T18704] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  383.857717][T18708] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5880'.
[  383.881309][T18612] 8021q: adding VLAN 0 to HW filter on device team0
[  383.913018][T18704] SELinux: failed to load policy
[  383.922373][ T3751] bridge0: port 1(bridge_slave_0) entered blocking state
[  383.990351][T18716] netlink: 'syz.1.5883': attribute type 1 has an invalid length.
[  383.994045][ T3751] bridge0: port 1(bridge_slave_0) entered forwarding state
[  384.088366][T18716] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5883'.
[  384.107898][ T3746] bridge0: port 2(bridge_slave_1) entered blocking state
[  384.115062][ T3746] bridge0: port 2(bridge_slave_1) entered forwarding state
[  384.280255][T18612] 8021q: adding VLAN 0 to HW filter on device batadv0
[  384.439875][T18612] veth0_vlan: entered promiscuous mode
[  384.450739][T18612] veth1_vlan: entered promiscuous mode
[  384.472551][T18612] veth0_macvtap: entered promiscuous mode
[  384.481957][T18612] veth1_macvtap: entered promiscuous mode
[  384.496784][T18612] batman_adv: batadv0: Interface activated: batadv_slave_0
[  384.510745][T18612] batman_adv: batadv0: Interface activated: batadv_slave_1
[  384.520938][T18612] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  384.529808][T18612] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  384.538604][T18612] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  384.547463][T18612] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  384.605015][T18749] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5856'.
[  384.905933][T18754] vhci_hcd: invalid port number 96
[  384.911135][T18754] vhci_hcd: default hub control req: 0000 vfffc i0060 l0
[  385.088300][T18767] netlink: 9412 bytes leftover after parsing attributes in process `syz.5.5897'.
[  385.257321][T18776] random: crng reseeded on system resumption
[  385.270120][T18776] bridge_slave_0: left allmulticast mode
[  385.275849][T18776] bridge_slave_0: left promiscuous mode
[  385.281542][T18776] bridge0: port 1(bridge_slave_0) entered disabled state
[  385.292700][T18776] bridge_slave_1: left allmulticast mode
[  385.298392][T18776] bridge_slave_1: left promiscuous mode
[  385.304275][T18776] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.315343][T18776] bond0: (slave bond_slave_0): Releasing backup interface
[  385.324578][T18776] bond0: (slave bond_slave_1): Releasing backup interface
[  385.333975][T18776] team0: Port device team_slave_0 removed
[  385.341164][T18776] team0: Port device team_slave_1 removed
[  385.347180][T18776] batman_adv: batadv0: Removing interface: batadv_slave_0
[  385.355342][T18776] batman_adv: batadv0: Removing interface: batadv_slave_1
[  385.437485][T18790] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  385.468451][T18792] netlink: 'syz.4.5906': attribute type 1 has an invalid length.
[  385.476378][T18792] netlink: 224 bytes leftover after parsing attributes in process `syz.4.5906'.
[  385.540565][T18796] netlink: 'syz.4.5908': attribute type 13 has an invalid length.
[  385.554788][T18796] macsec1: entered promiscuous mode
[  385.560110][T18796] ip6gretap0: entered promiscuous mode
[  385.568930][T18796] ip6gretap0: left promiscuous mode
[  385.824445][T18809] FAULT_INJECTION: forcing a failure.
[  385.824445][T18809] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  385.837731][T18809] CPU: 1 UID: 0 PID: 18809 Comm: syz.4.5912 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  385.837799][T18809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  385.837811][T18809] Call Trace:
[  385.837816][T18809]  <TASK>
[  385.837824][T18809]  __dump_stack+0x1d/0x30
[  385.837849][T18809]  dump_stack_lvl+0xe8/0x140
[  385.837937][T18809]  dump_stack+0x15/0x1b
[  385.837952][T18809]  should_fail_ex+0x265/0x280
[  385.837984][T18809]  should_fail+0xb/0x20
[  385.838019][T18809]  should_fail_usercopy+0x1a/0x20
[  385.838059][T18809]  _copy_to_iter+0x24b/0xe30
[  385.838079][T18809]  ? bpf_bprintf_prepare+0xc42/0xd50
[  385.838198][T18809]  copy_page_to_iter+0x18f/0x2d0
[  385.838227][T18809]  shmem_file_read_iter+0x2d6/0x540
[  385.838260][T18809]  do_iter_readv_writev+0x41e/0x4c0
[  385.838290][T18809]  vfs_readv+0x1ea/0x690
[  385.838323][T18809]  __x64_sys_preadv+0xfd/0x1c0
[  385.838408][T18809]  x64_sys_call+0x1503/0x2fb0
[  385.838462][T18809]  do_syscall_64+0xd2/0x200
[  385.838488][T18809]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  385.838517][T18809]  ? clear_bhb_loop+0x40/0x90
[  385.838601][T18809]  ? clear_bhb_loop+0x40/0x90
[  385.838695][T18809]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.838718][T18809] RIP: 0033:0x7f87304ee929
[  385.838737][T18809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.838760][T18809] RSP: 002b:00007f872eb36038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  385.838790][T18809] RAX: ffffffffffffffda RBX: 00007f8730716080 RCX: 00007f87304ee929
[  385.838803][T18809] RDX: 000000000000003e RSI: 00002000000015c0 RDI: 0000000000000003
[  385.838818][T18809] RBP: 00007f872eb36090 R08: 0000000000000000 R09: 0000000000000000
[  385.838902][T18809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  385.838913][T18809] R13: 0000000000000001 R14: 00007f8730716080 R15: 00007ffdaa9d6ad8
[  385.838932][T18809]  </TASK>
[  386.294833][T18820] netlink: 'syz.1.5918': attribute type 1 has an invalid length.
[  386.302860][T18820] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5918'.
[  386.542433][T18822] lo speed is unknown, defaulting to 1000
[  386.637912][ T3747] bridge_slave_1: left promiscuous mode
[  386.643734][ T3747] bridge0: port 2(bridge_slave_1) entered disabled state
[  386.662491][ T3747] bridge_slave_0: left allmulticast mode
[  386.668187][ T3747] bridge_slave_0: left promiscuous mode
[  386.673973][ T3747] bridge0: port 1(bridge_slave_0) entered disabled state
[  386.790528][ T3747] bond1 (unregistering): (slave gretap1): Releasing active interface
[  386.935630][ T3747] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  386.952649][ T3747] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  387.010787][ T3747] bond0 (unregistering): Released all slaves
[  387.035606][ T3747] bond1 (unregistering): Released all slaves
[  387.078395][ T3747] bond2 (unregistering): Released all slaves
[  387.467517][T18865] block device autoloading is deprecated and will be removed.
[  387.501756][T18869] netlink: 'syz.1.5933': attribute type 1 has an invalid length.
[  387.509614][T18869] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5933'.
[  387.520485][ T3747] hsr_slave_0: left promiscuous mode
[  387.529062][ T3747] hsr_slave_1: left promiscuous mode
[  387.569434][ T3747] team0 (unregistering): Port device team_slave_1 removed
[  387.575822][T18863] 9pnet_fd: Insufficient options for proto=fd
[  387.583004][ T3747] team0 (unregistering): Port device team_slave_0 removed
[  387.593152][ T3746] smc: removing ib device syz!
[  387.623839][T18822] chnl_net:caif_netlink_parms(): no params data found
[  387.743965][T18822] bridge0: port 1(bridge_slave_0) entered blocking state
[  387.751140][T18822] bridge0: port 1(bridge_slave_0) entered disabled state
[  387.778523][T18822] bridge_slave_0: entered allmulticast mode
[  387.789685][T18822] bridge_slave_0: entered promiscuous mode
[  387.811531][T18822] bridge0: port 2(bridge_slave_1) entered blocking state
[  387.818921][T18822] bridge0: port 2(bridge_slave_1) entered disabled state
[  387.836333][T18822] bridge_slave_1: entered allmulticast mode
[  387.842990][T18822] bridge_slave_1: entered promiscuous mode
[  387.890647][T18822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  387.911393][T18822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  387.950707][T18822] team0: Port device team_slave_0 added
[  387.961643][T18822] team0: Port device team_slave_1 added
[  388.001763][T18822] batman_adv: batadv0: Adding interface: batadv_slave_0
[  388.007301][   T29] kauditd_printk_skb: 1520 callbacks suppressed
[  388.007319][   T29] audit: type=1400 audit(2000000010.157:37604): avc:  denied  { listen } for  pid=18884 comm="syz.1.5938" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  388.008977][T18822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  388.015447][   T29] audit: type=1400 audit(2000000010.177:37605): avc:  denied  { accept } for  pid=18884 comm="syz.1.5938" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  388.034793][T18822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  388.091970][T18822] batman_adv: batadv0: Adding interface: batadv_slave_1
[  388.098955][T18822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  388.125042][T18822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  388.248906][T18886] lo speed is unknown, defaulting to 1000
[  388.345506][   T29] audit: type=1326 audit(2000000010.475:37606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18890 comm="syz.0.5940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  388.369218][   T29] audit: type=1326 audit(2000000010.475:37607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18890 comm="syz.0.5940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  388.392938][   T29] audit: type=1326 audit(2000000010.485:37608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18890 comm="syz.0.5940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  388.408372][T18822] hsr_slave_0: entered promiscuous mode
[  388.419026][   T29] audit: type=1326 audit(2000000010.598:37609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18890 comm="syz.0.5940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  388.445944][   T29] audit: type=1326 audit(2000000010.598:37610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18890 comm="syz.0.5940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  388.476554][T18822] hsr_slave_1: entered promiscuous mode
[  388.483315][T18822] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  388.490900][T18822] Cannot create hsr debugfs directory
[  388.566065][   T29] audit: type=1326 audit(2000000010.741:37611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18894 comm="syz.4.5941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  388.589766][   T29] audit: type=1326 audit(2000000010.741:37612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18894 comm="syz.4.5941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  388.613440][   T29] audit: type=1326 audit(2000000010.741:37613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18894 comm="syz.4.5941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87304ee929 code=0x7ffc0000
[  388.640142][T18896] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5939'.
[  389.328976][T18921] netlink: 180 bytes leftover after parsing attributes in process `syz.5.5949'.
[  389.437297][T18822] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  389.476302][T18822] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  389.495858][T18822] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  389.527803][T18822] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  389.704115][T18822] 8021q: adding VLAN 0 to HW filter on device bond0
[  389.741701][T18822] 8021q: adding VLAN 0 to HW filter on device team0
[  389.759468][ T3748] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.766740][ T3748] bridge0: port 1(bridge_slave_0) entered forwarding state
[  389.788985][ T3748] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.796131][ T3748] bridge0: port 2(bridge_slave_1) entered forwarding state
[  389.921871][T18822] 8021q: adding VLAN 0 to HW filter on device batadv0
[  389.982268][T18952] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5958'.
[  391.333083][T18822] veth0_vlan: entered promiscuous mode
[  391.343714][T18822] veth1_vlan: entered promiscuous mode
[  391.370145][T18822] veth0_macvtap: entered promiscuous mode
[  391.378397][T18822] veth1_macvtap: entered promiscuous mode
[  391.391790][T18822] batman_adv: batadv0: Interface activated: batadv_slave_0
[  391.401467][T18822] batman_adv: batadv0: Interface activated: batadv_slave_1
[  391.411725][T19004] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5968'.
[  391.444830][T18822] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  391.453674][T18822] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  391.462453][T18822] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  391.471151][T18822] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  391.885827][T19013] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5975'.
[  391.990540][T19011] 9pnet_fd: Insufficient options for proto=fd
[  392.325846][T19031] netlink: 180 bytes leftover after parsing attributes in process `syz.0.5980'.
[  392.668429][T19046] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5989'.
[  392.799674][T19056] netlink: 9412 bytes leftover after parsing attributes in process `syz.2.5990'.
[  392.898739][   T29] kauditd_printk_skb: 126 callbacks suppressed
[  392.898753][   T29] audit: type=1326 audit(2000000015.167:37740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22481958e7 code=0x7ffc0000
[  392.949252][   T29] audit: type=1326 audit(2000000015.208:37741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f224813ab19 code=0x7ffc0000
[  392.973112][   T29] audit: type=1326 audit(2000000015.208:37742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22481958e7 code=0x7ffc0000
[  392.996695][   T29] audit: type=1326 audit(2000000015.208:37743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f224813ab19 code=0x7ffc0000
[  393.020210][   T29] audit: type=1326 audit(2000000015.208:37744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f224819e929 code=0x7ffc0000
[  393.043688][   T29] audit: type=1326 audit(2000000015.208:37745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22481958e7 code=0x7ffc0000
[  393.067207][   T29] audit: type=1326 audit(2000000015.208:37746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f224813ab19 code=0x7ffc0000
[  393.090747][   T29] audit: type=1326 audit(2000000015.208:37747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f224819e929 code=0x7ffc0000
[  393.114191][   T29] audit: type=1326 audit(2000000015.218:37748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22481958e7 code=0x7ffc0000
[  393.137696][   T29] audit: type=1326 audit(2000000015.218:37749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19049 comm="syz.2.5990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f224813ab19 code=0x7ffc0000
[  393.215080][T19065] netlink: 'syz.0.5993': attribute type 1 has an invalid length.
[  393.223026][T19065] netlink: 224 bytes leftover after parsing attributes in process `syz.0.5993'.
[  393.608665][T19082] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6001'.
[  394.406445][T19075] 9pnet_fd: Insufficient options for proto=fd
[  394.637661][T19096] netlink: 'syz.4.6004': attribute type 1 has an invalid length.
[  394.645524][T19096] netlink: 224 bytes leftover after parsing attributes in process `syz.4.6004'.
[  394.807168][T19112] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6003'.
[  395.067780][T19111] 9pnet_fd: Insufficient options for proto=fd
[  395.847347][T19118] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6012'.
[  395.919942][T19129] netlink: 'syz.0.6016': attribute type 1 has an invalid length.
[  395.927896][T19129] netlink: 224 bytes leftover after parsing attributes in process `syz.0.6016'.
[  396.180223][T19131] 9pnet_fd: Insufficient options for proto=fd
[  396.593300][T19152] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6023'.
[  397.172123][T19157] block device autoloading is deprecated and will be removed.
[  397.327159][T19171] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6033'.
[  397.824547][   T29] kauditd_printk_skb: 341 callbacks suppressed
[  397.824567][   T29] audit: type=1326 audit(2000000020.177:38091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22481958e7 code=0x7ffc0000
[  397.925928][T19198] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6045'.
[  397.982971][   T29] audit: type=1326 audit(2000000020.208:38092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f224813ab19 code=0x7ffc0000
[  398.006567][   T29] audit: type=1326 audit(2000000020.208:38093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22481958e7 code=0x7ffc0000
[  398.030119][   T29] audit: type=1326 audit(2000000020.208:38094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f224813ab19 code=0x7ffc0000
[  398.053656][   T29] audit: type=1326 audit(2000000020.208:38095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f224819e929 code=0x7ffc0000
[  398.077133][   T29] audit: type=1326 audit(2000000020.218:38096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22481958e7 code=0x7ffc0000
[  398.100650][   T29] audit: type=1326 audit(2000000020.218:38097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f224813ab19 code=0x7ffc0000
[  398.124271][   T29] audit: type=1326 audit(2000000020.218:38098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f224819e929 code=0x7ffc0000
[  398.147710][   T29] audit: type=1326 audit(2000000020.228:38099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f22481958e7 code=0x7ffc0000
[  398.171252][   T29] audit: type=1326 audit(2000000020.228:38100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19161 comm="syz.2.6029" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f224813ab19 code=0x7ffc0000
[  398.264097][T19207] bridge_slave_0: default FDB implementation only supports local addresses
[  398.437541][T19226] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6058'.
[  398.475813][T19233] netlink: 180 bytes leftover after parsing attributes in process `syz.0.6054'.
[  399.353400][T19263] netlink: 40 bytes leftover after parsing attributes in process `syz.0.6072'.
[  399.556235][T19269] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6071'.
[  400.688108][T19292] netlink: 180 bytes leftover after parsing attributes in process `syz.1.6083'.
[  401.065651][T19303] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6086'.
[  401.914732][T19336] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6098'.
[  402.911465][T19356] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6105'.
[  403.328063][   T29] kauditd_printk_skb: 333 callbacks suppressed
[  403.328097][   T29] audit: type=1326 audit(2000000025.741:38434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.436061][   T29] audit: type=1326 audit(2000000025.832:38435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.459759][   T29] audit: type=1326 audit(2000000025.832:38436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.483359][   T29] audit: type=1326 audit(2000000025.832:38437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.506939][   T29] audit: type=1326 audit(2000000025.832:38438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.530722][   T29] audit: type=1326 audit(2000000025.832:38439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.554346][   T29] audit: type=1326 audit(2000000025.832:38440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.578092][   T29] audit: type=1326 audit(2000000025.832:38441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.601620][   T29] audit: type=1326 audit(2000000025.852:38442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  403.625254][   T29] audit: type=1326 audit(2000000025.852:38443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19355 comm="syz.0.6106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  404.557421][T19380] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6113'.
[  404.817059][T19382] syzkaller1: entered promiscuous mode
[  404.822632][T19382] syzkaller1: entered allmulticast mode
[  405.313586][T19397] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6119'.
[  406.323746][T19404] bridge_slave_0: left allmulticast mode
[  406.329602][T19404] bridge_slave_0: left promiscuous mode
[  406.335322][T19404] bridge0: port 1(bridge_slave_0) entered disabled state
[  406.344978][T19404] bridge_slave_1: left allmulticast mode
[  406.350681][T19404] bridge_slave_1: left promiscuous mode
[  406.356470][T19404] bridge0: port 2(bridge_slave_1) entered disabled state
[  406.428976][T19404] bond0: (slave bond_slave_0): Releasing backup interface
[  406.446307][T19404] bond0: (slave bond_slave_1): Releasing backup interface
[  406.464197][T19404] team0: Port device team_slave_0 removed
[  406.474428][T19404] team0: Port device team_slave_1 removed
[  406.486693][T19404] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  406.494259][T19404] batman_adv: batadv0: Removing interface: batadv_slave_0
[  406.515846][T19404] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  406.523302][T19404] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.536352][T19410] 9pnet_fd: Insufficient options for proto=fd
[  406.815067][T19414] 9pnet_fd: Insufficient options for proto=fd
[  407.288852][T19426] netlink: 'syz.5.6129': attribute type 1 has an invalid length.
[  407.296965][T19426] netlink: 224 bytes leftover after parsing attributes in process `syz.5.6129'.
[  407.535822][T19431] netlink: 9412 bytes leftover after parsing attributes in process `syz.5.6131'.
[  407.825245][T19437] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6132'.
[  408.293120][   T29] kauditd_printk_skb: 184 callbacks suppressed
[  408.293138][   T29] audit: type=1326 audit(2000000030.752:38628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19429 comm="syz.5.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa9389f58e7 code=0x7ffc0000
[  408.359827][   T29] audit: type=1326 audit(2000000030.782:38629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19429 comm="syz.5.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa93899ab19 code=0x7ffc0000
[  408.383609][   T29] audit: type=1326 audit(2000000030.782:38630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19429 comm="syz.5.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa9389f58e7 code=0x7ffc0000
[  408.407177][   T29] audit: type=1326 audit(2000000030.782:38631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19429 comm="syz.5.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa93899ab19 code=0x7ffc0000
[  408.430781][   T29] audit: type=1326 audit(2000000030.782:38632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19429 comm="syz.5.6131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7fa9389fe929 code=0x7ffc0000
[  408.581912][   T29] audit: type=1326 audit(2000000031.044:38633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19449 comm="syz.1.6137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30e63de929 code=0x7ffc0000
[  408.605745][   T29] audit: type=1326 audit(2000000031.044:38634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19449 comm="syz.1.6137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30e63de929 code=0x7ffc0000
[  408.684802][T19451] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6135'.
[  408.870862][   T29] audit: type=1326 audit(2000000031.326:38635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19449 comm="syz.1.6137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30e63de929 code=0x7ffc0000
[  409.599985][   T29] audit: type=1326 audit(2000000031.326:38636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19449 comm="syz.1.6137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30e63de929 code=0x7ffc0000
[  409.623732][   T29] audit: type=1326 audit(2000000031.729:38637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19449 comm="syz.1.6137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30e63de929 code=0x7ffc0000
[  409.814017][T19464] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.6137'.
[  410.620588][T19460] random: crng reseeded on system resumption
[  411.013634][T19492] syzkaller1: entered promiscuous mode
[  411.019345][T19492] syzkaller1: entered allmulticast mode
[  411.234790][T19506] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6152'.
[  411.390171][T19512] netlink: 9412 bytes leftover after parsing attributes in process `syz.5.6154'.
[  411.453688][T19514] bridge_slave_0: default FDB implementation only supports local addresses
[  411.497822][T19515] lo speed is unknown, defaulting to 1000
[  411.595199][T19514] loop1: detected capacity change from 0 to 512
[  411.658479][T19514] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  411.887517][T19514] ext4 filesystem being mounted at /90/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  411.991675][T19527] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6160'.
[  412.085004][T18428] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  412.567345][T19541] syzkaller1: entered promiscuous mode
[  412.572909][T19541] syzkaller1: entered allmulticast mode
[  412.649850][T19545] loop1: detected capacity change from 0 to 512
[  412.664054][T19548] netlink: 180 bytes leftover after parsing attributes in process `syz.2.6168'.
[  412.694129][T19545] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  412.709796][T19545] ext4 filesystem being mounted at /91/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  412.754638][T18428] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  412.785566][T19550] 9pnet_fd: Insufficient options for proto=fd
[  413.147851][T19575] syzkaller1: entered promiscuous mode
[  413.153634][T19575] syzkaller1: entered allmulticast mode
[  413.490187][T19585] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6187'.
[  413.499238][T19585] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6187'.
[  413.619493][T19590] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6185'.
[  413.871567][T19599] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6192'.
[  414.355115][   T29] kauditd_printk_skb: 252 callbacks suppressed
[  414.355131][   T29] audit: type=1326 audit(2000000036.847:38890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19604 comm="syz.0.6195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  414.355293][T19606] ==================================================================
[  414.361444][   T29] audit: type=1326 audit(2000000036.847:38891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19604 comm="syz.0.6195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  414.384937][T19606] BUG: KCSAN: data-race in memchr / string
[  414.384979][T19606] 
[  414.384986][T19606] write to 0xffffffff88e5385b of 1 bytes by task 29 on cpu 0:
[  414.385006][T19606]  string+0x187/0x220
[  414.385045][T19606]  vsnprintf+0x532/0x890
[  414.385075][T19606]  vscnprintf+0x41/0x90
[  414.444665][T19606]  printk_sprint+0x30/0x2d0
[  414.449185][T19606]  vprintk_store+0x599/0x860
[  414.453788][T19606]  vprintk_emit+0x178/0x650
[  414.458304][T19606]  vprintk_default+0x26/0x30
[  414.462920][T19606]  vprintk+0x1d/0x30
[  414.466849][T19606]  _printk+0x79/0xa0
[  414.470772][T19606]  kauditd_hold_skb+0x1b1/0x1c0
[  414.475640][T19606]  kauditd_send_queue+0x273/0x2c0
[  414.480704][T19606]  kauditd_thread+0x421/0x630
[  414.485396][T19606]  kthread+0x486/0x510
[  414.489478][T19606]  ret_from_fork+0xda/0x150
[  414.494006][T19606]  ret_from_fork_asm+0x1a/0x30
[  414.498782][T19606] 
[  414.501115][T19606] read to 0xffffffff88e5385b of 1 bytes by task 19606 on cpu 1:
[  414.508757][T19606]  memchr+0x28/0x50
[  414.512581][T19606]  _prb_read_valid+0x65d/0x920
[  414.517373][T19606]  prb_read_valid_info+0x66/0x90
[  414.522336][T19606]  do_syslog+0x6e2/0x7e0
[  414.526608][T19606]  __x64_sys_syslog+0x41/0x50
[  414.531325][T19606]  x64_sys_call+0x2ea0/0x2fb0
[  414.536030][T19606]  do_syscall_64+0xd2/0x200
[  414.540551][T19606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.546462][T19606] 
[  414.548793][T19606] value changed: 0x45 -> 0x36
[  414.553494][T19606] 
[  414.555822][T19606] Reported by Kernel Concurrency Sanitizer on:
[  414.562017][T19606] CPU: 1 UID: 0 PID: 19606 Comm: syz.0.6195 Not tainted 6.16.0-rc1-syzkaller-00010-g2c4a1f3fe03e #0 PREEMPT(voluntary) 
[  414.574550][T19606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  414.584623][T19606] ==================================================================
[  414.688350][   T29] audit: type=1326 audit(2000000037.178:38892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19604 comm="syz.0.6195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  414.712207][   T29] audit: type=1326 audit(2000000037.178:38893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19604 comm="syz.0.6195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  414.736588][   T29] audit: type=1326 audit(2000000037.178:38894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19604 comm="syz.0.6195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f964b31e929 code=0x7ffc0000
[  414.760350][   T29] audit: type=1326 audit(2000000037.178:38895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19604 comm="syz.0.6195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f964b31e929 code=0x7ffc0000