last executing test programs:

1.258887365s ago: executing program 2 (id=321):
r0 = getuid()
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'caif0\x00', @multicast})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@user_xattr}, {@mblk_io_submit}, {@resuid={'resuid', 0x3d, r0}}, {@norecovery}]}, 0x8, 0x44d, &(0x7f0000000cc0)="$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")
r2 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x4e24, 0x4, @loopback}], 0x1c)
setsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000080)=@assoc_value={0x0, 0x265}, 0x8)
setsockopt$inet6_IPV6_DSTOPTS(r2, 0x29, 0x3b, &(0x7f0000000480)=ANY=[@ANYBLOB="211d00000000000007e6"], 0xf0)
sendto$inet6(r2, &(0x7f0000000040)="00d8", 0x20a00, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write$P9_RREAD(r4, &(0x7f0000000580)=ANY=[@ANYBLOB="a000000075020095000000e34a888bad6c22dcb43a375185af1585651f6bf8b50adacd3ad1844943de54cd643c0c39c6d9bc2cc024e7099e09acff7bcd803a6887c09ac5aaadf5a75c5b20161ae4a7a129844322662fc865be98b6891a5b3e2127ef1bc89e9c525d2726db1158ffe5985a81b78ae27296557ec6f206c958fa6b76f9e943987e5962ad9a6509bae99f27c3c09f0bb01c2fecdb1f"], 0xa0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa1", @ANYRES32=r5, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r6, 0x0, 0xf7}, 0x18)
r7 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r7, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x2}, 0x8)
sendto$inet6(r7, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
shutdown(r7, 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r8, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r8, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
syz_emit_ethernet(0x2a, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$eJzs3T9oJFUcB/DvzO565m6RUxtB/AMiooFwdoJNbBQCEoKIoEJExEZJhJhgl1jZWGitksomiJ3RUtIEG0WwipoiNoIGC4OFFiu7k0hMVqNu3Dkynw9MZibz3vzesPN9u83sBmisq0mmk7SSTCbpJCmON7i7Wq4e7q5PbM8nvd4TPxWDdtV+5ajflSRrSR5KslUWeamdrGw+s/fLzmP3vbncuff9zacnxnqRh/b3dh8/eG/2jY9mHlz54qsfZotMp/un6zp/xZD/tYvklv+j2HWiaNc9Av6Judc+/Lqf+1uT3DPIfydlqhfvraUbtjp54N2/6vv2j1/ePs6xAuev1+v03wPXekDjlEm6KcqpJNV2WU5NVZ/hv2ldLl9eXHp18sXF5YUX6p6pgPPSTXYf/eTSx1dO5P/7VpV/4OLq5//JuY1v+9sHrbpHA4zFHdWqn//J51bvj/xD48g/NJf8Q3PJPzSX/ENzyT80l/zDBdb5+8PyD80l/9Bc8g/NdTz/AECz9C7V/QQyUJe65x8AAAAAAAAAAAAAAAAAAOC09Ynt+aNlXDU/eyfZfyRJe1j91uD3iJMbB38v/1z0m/2hqLqN5Nm7RjzBiD6o+enrm76rt/7nd9Zbf3UhWXs9ybV2+/T9Vxzef//dzWcc7zw/YoF/qTix//BT461/0m8b9daf2Uk+7c8/14bNP2VuG6yHzz/ds79i+Uyv/DriCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABib3wMAAP//+kBtTA==")
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)

892.332213ms ago: executing program 4 (id=330):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c0000003a00090027bd70000000000004"], 0x1c}, 0x1, 0x0, 0x0, 0x42804}, 0x84)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r0}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1600000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000001ec0), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
open(0x0, 0x64842, 0x86)
sendmsg$TIPC_NL_PUBL_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[], 0x44}}, 0x4000040)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='kfree\x00', r3, 0x0, 0x8ffffffff}, 0x18)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioprio_set$pid(0x2, 0x0, 0x4007)

848.704504ms ago: executing program 4 (id=332):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f00000001c0), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', 0xffffffffffffffff, 0x0, 0xae6}, 0x18)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDDELIO(r2, 0x4b34, 0x3bf)
ioctl$KDDISABIO(r2, 0x4b37)

804.438884ms ago: executing program 4 (id=334):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0x14, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0xe4ff}, 0x14}}, 0x0)

757.789065ms ago: executing program 4 (id=337):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000000000}, 0x18)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000280)={@remote}, 0x14)

755.546325ms ago: executing program 3 (id=338):
waitid(0x2, 0xffffffffffffffff, 0x0, 0x80000000, 0x0)

694.691636ms ago: executing program 3 (id=340):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffff9, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x60, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x30, 0x2, [@TCA_BASIC_EMATCHES={0x2c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x20, 0x2, 0x0, 0x1, [@TCF_EM_META={0x1c, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x4}, [@TCA_EM_META_RVALUE={0x4}, @TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x1}, {0x5, 0x40}}}]}}]}]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x200002, &(0x7f0000000300)={[{@fat=@check_strict}, {@dots}, {@fat=@quiet}, {@fat=@errors_remount}, {@fat=@debug}, {@nodots}, {@dots}, {@fat=@flush}, {}, {@dots}]}, 0x3, 0x25f, &(0x7f0000000440)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
prctl$PR_MCE_KILL(0x21, 0x1, 0x2)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000014000100000000000000048598eb3555f29a81ec"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
msync(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x6)

693.081287ms ago: executing program 4 (id=342):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0xd, 0x1, 0x10000}, 0x1c)
sendmmsg$sock(r1, &(0x7f0000000800), 0x0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)=ANY=[@ANYRES64=r1], 0x48)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000600)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000840)=ANY=[@ANYBLOB="d843bc582b28bc423b2f000000001b58000000", @ANYRES16=0x0, @ANYBLOB="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"], 0x58}, 0x1, 0x0, 0x0, 0x2c840}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRES8=r0, @ANYRES32=r1], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r3, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r4}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r5 = inotify_init1(0x0)
fstatfs(r5, &(0x7f00000003c0)=""/59)

641.757338ms ago: executing program 4 (id=343):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaa230180c20000000800450000b00000000000119078000000000000000000004e20009c907801000000000000007b4b143b7461fd777b1c012bd1d0779f49fcdb8f080c26a04883ad5c8c82b8af584cbf2649a50f2dbc43efa8698d0a881c51852e4451b57d037ad3c045942824251d7d17b5191584bcd4fbe40a23424dbcfd56f1375461caaa2f19935e6996c7096ffeeb03000000000000649a3bfbc1f39cb307b3472eb9cdb042d2643fcbb2c5a57df67d544af6e8dafe09"], 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001700)={{r3}, &(0x7f0000001680), &(0x7f00000016c0)='%+9llu \x00'}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000d00)={r2, 0xe0, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000940)=[0x0, 0x0, 0x0, 0x0], ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000980), &(0x7f00000009c0)=[0x0, 0x0, 0x0], 0x0, 0xcb, &(0x7f0000000a00)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000a40), &(0x7f0000000a80), 0x8, 0x86, 0x8, 0x8, &(0x7f0000000380)}}, 0x10)
r5 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000e40)={&(0x7f0000000d40)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x58, 0x58, 0xa, [@type_tag={0x2, 0x0, 0x0, 0x12, 0x4}, @ptr={0x8, 0x0, 0x0, 0x2, 0x5}, @union={0x7, 0x3, 0x0, 0x5, 0x0, 0x239, [{0x2, 0x5, 0x4}, {0x10, 0x0, 0x5}, {0xb, 0x4, 0x80}]}, @decl_tag={0xd, 0x0, 0x0, 0x11, 0x3, 0xa}]}, {0x0, [0x30, 0x5f, 0x30, 0x61, 0x30, 0x0, 0x61, 0x30]}}, &(0x7f0000000dc0)=""/81, 0x7a, 0x51, 0x0, 0x1}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001080)={0x6, 0x38, &(0x7f0000000780)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x3}, {}, {}, [@btf_id={0x18, 0xb, 0x3, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x5}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @jmp={0x5, 0x1, 0xb, 0xa, 0xb, 0xfffffffffffffffe, 0x10}, @alu={0x4, 0x1, 0x5, 0x4, 0x5, 0x80, 0xffffffffffffffff}, @jmp={0x5, 0x0, 0x3, 0x4, 0x3, 0x0, 0xfffffffffffffffc}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x1}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000003c0)='GPL\x00', 0xffff, 0x3d, &(0x7f0000000400)=""/61, 0x41100, 0x10, '\x00', r4, 0x25, r5, 0x8, &(0x7f0000000e80)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000ec0)={0x2, 0xf, 0x40000005}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000f00)=[0xffffffffffffffff], &(0x7f0000000f80)=[{0x0, 0x2, 0x5, 0xa}], 0x10, 0x749b}, 0x94)
r6 = open(&(0x7f00000002c0)='./file0\x00', 0x1491ff, 0x22)
fcntl$setlease(r6, 0x400, 0x0)
r7 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r7, 0x400, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x41000}, 0x94)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
recvmmsg(r1, &(0x7f0000002500)=[{{0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f0000000b00)=""/155, 0x9b}], 0x1, 0x0, 0x600}, 0xa499}], 0x1, 0x10000, 0x0)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x10, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r9, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r10}, 0x10)
bind$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f00000000c0)={0x0, 0xf5, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

593.799889ms ago: executing program 3 (id=346):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000480)='kmem_cache_free\x00', r1}, 0x18)
r2 = socket$kcm(0x11, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000001340)=@hci={0x1f, 0xc00, 0xe}, 0x80, &(0x7f0000002540)=[{&(0x7f00000006c0)='b', 0x10}], 0x1}, 0x0)

536.44652ms ago: executing program 3 (id=348):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0x14, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0xe4ff}, 0x14}}, 0x0)

480.233431ms ago: executing program 3 (id=351):
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x4200, 0x0)

443.996671ms ago: executing program 3 (id=354):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000400"/15], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = creat(&(0x7f0000000300)='./file0\x00', 0x28)
write$qrtrtun(r5, &(0x7f0000003280)="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", 0xfffffffffffffd29)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r7 = accept(r2, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r6, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

414.374162ms ago: executing program 1 (id=356):
r0 = socket$unix(0x1, 0x1, 0x0)
openat2(0xffffffffffffffff, 0x0, 0x0, 0x0)
connect$unix(r0, &(0x7f0000fce000)=@file={0x1, './file0\x00'}, 0x6e)

387.910103ms ago: executing program 2 (id=357):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
pipe2$9p(&(0x7f00000001c0), 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDDELIO(r3, 0x4b34, 0x3bf)
ioctl$KDDISABIO(r3, 0x4b37)

370.858393ms ago: executing program 0 (id=358):
r0 = socket$inet6(0x10, 0x3, 0x0) (async)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000080), &(0x7f0000000180)=r2}, 0xfffffffffffffc1d) (async)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x200000, 0x1000}, 0x20) (async)
msgrcv(0x0, 0x0, 0x0, 0x1, 0x3000)
sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000001500)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f1c46b7b31afdc1338d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade", 0x55}], 0x1}, 0x0)

370.685153ms ago: executing program 1 (id=359):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x2}, 0x18)
setsockopt$packet_fanout(r0, 0x107, 0x12, 0x0, 0x0)
close(r0)

337.128924ms ago: executing program 1 (id=360):
r0 = syz_io_uring_complete(0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x13, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000009500"/25], &(0x7f0000000480)='syzkaller\x00', 0x0, 0xfffffffffffffeec, 0x0, 0x0, 0x20, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100000}, 0x94) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x13, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000009500"/25], &(0x7f0000000480)='syzkaller\x00', 0x0, 0xfffffffffffffeec, 0x0, 0x0, 0x20, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100000}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000380)="6b5a781a698fbae0151a18de50aa4c8271ed0e0edc7240a2d2ca03756f3cdb5be575937b39a3d9fa53697954abe2f9260435c5e6e3f01a84fc4703742bbf4d1ccb79e785be6122b02551bc1abbe276a1644849b104642a763072afb9cc0f2703e61c22ff17e57e12d2968843bdc3e25cff2d61b0786719339b90f349f276db2b71574ca6125a3ea173183b544f0594dec332aafecd2163643122f24e605e91306c5fbf2a04216c07753542d5d6df2b8ee5f7eea756edecf157d1a7df1ce92c153f066bb510f8f3741cd7", 0xca}, {&(0x7f0000000180)="5432bc0f920f97e8be9e84584f3b53bb648e2a11e1044787b3598bed8a15f9b7976bd4be403c29ab54", 0x29}, {&(0x7f0000000200)="d357fadfaa6abcdff99f84574f56112cf1181c92401c23c534f8f6cda06d4411ec56c8dba79178be6fe28204729bec3bc4ed2b46bcbab1e06e06d1de7c520409f9b59941fb8cb3989994dcd090e5a2af93e988b59d3b34dd3676d21e23679f03cf2d17331914db0e2e0668fc7e52a5a5288c0242ff352b620f0ad7d583374122f2ca751c50b96fc426d360a60a9c17d3c537aa311ec18c0237d102f59a2fd7ef2fb60c6d50d873ea0160", 0xaa}], 0x3)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', <r3=>0x0})
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f00000002c0)={r3, 0x11, 0x0, @broadcast}, 0x10)
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000100)={r3, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}}, 0x10) (async)
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000100)={r3, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xffff}, {0x4, 0xa}, {0x0, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x48080}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xffff}, {0x4, 0xa}, {0x0, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x48080}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYRES64=r1, @ANYRES64=r3], 0x50) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYRES16=0x0, @ANYRES64=r1, @ANYRES64=r3], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001004900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00@\x00'/21], 0x50) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001004900000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00@\x00'/21], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xd, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r8, 0x29, 0x4e, &(0x7f0000000080)=0x3, 0x4)
bind$inet6(r8, &(0x7f0000000300)={0xa, 0x4e22, 0x40e, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x3}, 0x1c)
bind$inet6(r7, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c) (async)
bind$inet6(r7, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x20, r10, 0x6a98047402e98331, 0x0, 0x0, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000850}, 0x0)
r11 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r12=>0x0})
r13 = socket$nl_route(0x10, 0x3, 0x0)
r14 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r15 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r14, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r15}, 0x10)
sendmsg$nl_route(r13, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a00)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r12, @ANYBLOB='\b\x00\n\x00', @ANYRES64=r11], 0xb4}}, 0x0)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x6c, r10, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20010810}, 0x840)

312.411224ms ago: executing program 0 (id=361):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@rights={{0x14, 0x1, 0x1, [r0]}}], 0x18}, 0x0)
recvmmsg$unix(r0, &(0x7f0000000380)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)}}], 0x1, 0x2, 0x0)

310.929404ms ago: executing program 2 (id=362):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0x14, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0xe4ff}, 0x14}}, 0x0)

284.994694ms ago: executing program 0 (id=363):
bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x60, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff9ce}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000090000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x10)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40000000010800034000000014480000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c0003801800008008000340000000020c0004260000000000000c7f14000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40000000010800034000000004480000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c000380180000800800034000000002"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

267.193715ms ago: executing program 2 (id=364):
waitid(0x2, 0xffffffffffffffff, 0x0, 0x80000000, 0x0)

234.641656ms ago: executing program 2 (id=365):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='kfree\x00', r1, 0x0, 0x8000000000000}, 0x18)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000280)={@remote}, 0x14)

234.463736ms ago: executing program 1 (id=366):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0xd, 0x1, 0x10000}, 0x1c)
sendmmsg$sock(r1, &(0x7f0000000800), 0x0, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)=ANY=[@ANYRES64=r1], 0x48)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000600)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000840)=ANY=[@ANYBLOB="d843bc582b28bc423b2f000000001b58000000", @ANYRES16=0x0, @ANYBLOB="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"], 0x58}, 0x1, 0x0, 0x0, 0x2c840}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRES8=r0, @ANYRES32=r1], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r3, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r4}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r5 = inotify_init1(0x0)
fstatfs(r5, &(0x7f00000003c0)=""/59)

234.100856ms ago: executing program 0 (id=367):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
mincore(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0)
r1 = socket$kcm(0x10, 0x100000000002, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54}, 0x42)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r2, 0x4)
sendmsg$kcm(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000171300883795c04a31ba377a1b2cc32b38d3740000ffffffffffffffff", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x3000004, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000069000010000000004000050018010000696c6c2500000000002020207b1af8ff00000000bfa1000000000000070100fef7ffffffb702000008000000b703000000400005620000001000000095"], &(0x7f0000000040)='syzkaller\x00', 0xc, 0xfcc, &(0x7f0000001e00)=""/4044, 0x100, 0x28, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x2, 0x1, 0x9, 0x3, 0x75}})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r3}, 0x18)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0))
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f00000001c0)='.\x02\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="636865636b3d7374726963742c756e686964652c63727566742c696f636861727365743d63a08033322c636865636b3d72656c617865642c6e6f6a6f6c6965742c636865636b3d72656c617865642c6e6f6a6f6c6965742c00"], 0x1, 0x57b, &(0x7f0000001080)="$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")
r4 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000140)='syzkaller\x00', &(0x7f0000001140)='\xf1\x95\xb3>-\x8c\xd4M\x01\xfa\xe2{eED\x0e\xaaPV\x11\xff\xb6j\xd4~6\x82^\x9b b', 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000000))
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x303, 0x300}})
ioctl$TCXONC(r0, 0x540a, 0x1)

221.055196ms ago: executing program 2 (id=368):
r0 = getuid()
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'caif0\x00', @multicast})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@user_xattr}, {@mblk_io_submit}, {@resuid={'resuid', 0x3d, r0}}, {@norecovery}]}, 0x8, 0x44d, &(0x7f0000000cc0)="$eJzs28tvG8UfAPDvrp3019cvpiqPPoBAQVQ8kiYtpQcOgEDiABISHMoxJGlV6jaoCRKtKigIlSOqxB1xROIv4AQXBJyQuAJnVKlCubRwMlp7t3FcO01Suw7x5yNtPbM77szXs2PP7mQDGFij2T9JxI6I+C0iRhrZ5QVGGy83Fi9O/714cTqJWu3Nv5J6ueuLF6eLosX7theZckT6aRL72tQ7f/7C6alqdfZcnh9fOPPe+Pz5C8+cOjN1cvbk7NnJY8eOHJ547ujks12JM4vr+t4P5/bvefXtK69PH7/yzk/fJEX8LXF0yWjbveXGy+O1Wper66+dTemk3MeGsCal/JQcqo//kSjFUueNxCuf9LVxQE/VarXafZ0PX6oBm1gS/W4B0B/FD312/Vtsd2nqsSFce7FxAZTFfSPfGkfKkeZlhlqub7tpNCKOX/rny2yL1vsQW3tUKQAw0L7L5j9Pt5v/pdF8X+j/+RpKJSLuiYhdEXE0InZHxL0R9bL3R8QDa6y/dZHk1vlnenVdga1SNv97Pl/bWj7/K2Z/USnluZ31+IeSE6eqs4fyz+RgDG3J8hMr1PH9y79+3ulY8/wv27L6i7lg3o6r5S3L3zMztTB1JzE3u/ZxxN5yu/iTmysBSUTsiYgX1lnHqSe/3t/pWIf4h1f1H3dhnan2VcQTjf6/FC3xF5KV1yfH/xfV2UPjxVlxq59/ufxGp/pv3/+9lfX/trbnfxH/H5Wkeb12fu11XP79s47XlOs9/4eTt5bt+2BqYeHcRMRw8lo9X2neP9lSbnKpfBb/wQPtx/+u/D1Z9fsiIjuJH4yIhyLi4bztj0TEoxFxYIX4f3zpsXfXH39vZfHPrNj/0dL/S4nhaN2TJ4pxme8pnf7h22WVVpaSq+v/I/XUwXzPar7/2rarTeJOPjsAAAD4r0gjYkck6djNdJqOjTX+hn93bEurc/MLT52Ye//sTOMZgUoMpcWdrpGm+6ET+WV9kZ9syR/O7xt/Udpaz49Nz1Vn+h08DLjtHcZ/5s9Sv1sH9JzntWBwGf8wuIx/GFzGPwyuNuPfo2cwINr9/n/Uh3YAd1/L+F9x2c/EADYX1/8wuIx/GFzGPwyk+a1x+4fkN0cijYgN0IzNkoh0QzRDokeJfn8zAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMe/AQAA//9tSOI0")
r2 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x4e24, 0x4, @loopback}], 0x1c)
setsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000080)=@assoc_value={0x0, 0x265}, 0x8)
setsockopt$inet6_IPV6_DSTOPTS(r2, 0x29, 0x3b, &(0x7f0000000480)=ANY=[@ANYBLOB="211d00000000000007e6"], 0xf0)
sendto$inet6(r2, &(0x7f0000000040)="00d8", 0x20a00, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12)
write$P9_RREAD(r4, &(0x7f0000000580)=ANY=[@ANYBLOB="a000000075020095000000e34a888bad6c22dcb43a375185af1585651f6bf8b50adacd3ad1844943de54cd643c0c39c6d9bc2cc024e7099e09acff7bcd803a6887c09ac5aaadf5a75c5b20161ae4a7a129844322662fc865be98b6891a5b3e2127ef1bc89e9c525d2726db1158ffe5985a81b78ae27296557ec6f206c958fa6b76f9e943987e5962ad9a6509bae99f27c3c09f0bb01c2fecdb1f"], 0xa0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa1", @ANYRES32=r5, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r6, 0x0, 0xf7}, 0x18)
r7 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r7, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x2}, 0x8)
sendto$inet6(r7, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c)
shutdown(r7, 0x1)
sendfile(r4, r3, 0x0, 0x3ffff)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r8, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r8, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
syz_emit_ethernet(0x2a, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000012c0), 0xfe, 0x244, &(0x7f0000000400)="$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")
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)

184.754027ms ago: executing program 1 (id=369):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@noquota}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x2, 0x4f3, &(0x7f0000000700)="$eJzs3c9vG0sdAPDvOnGTtHk4Dzg8nsSjgofSCmonDW0jDiVICE6VKOXCKYTEiaI4cRQ7bRNVKBV/ABLil+DEiQsSZ4SE+icgpEpwRwiBKmjLgQNgtM6ahtRJnNc4buPPR5ru7M7ufmfqeOzZWXkD6FsXI2ImIgYi4nJEFLLtuSzFzm5K93v29MF8mpJoDN35WxJJtq11riRbXsgOG46Ir30l4lvJy3FrW9src5VKeSNbL9VX10u1re0ry6tzS+Wl8trM1OT16RvT16YnTqytN7/05x9+9+dfvvmbz9774+xfL307rdZoVra3HZ3Y6XC/3abnm/8XLYMRsXGcYK+xgaw9+V5XBACAjqTf8T8cEZ+MiOc/6XVtAAAAgG5ofGE0/pVENAAAAIAzK9e8BzbJFbN7AUYjlysWd+/h/Wicz1WqtfpnFqubawu798qORT63uFwpT2T3Co9FPknXJ5v5F+tX961PRcTbEfH9wkhzvThfrSz0+uIHAAAA9IkL+8b//yjsjv8BAACAM2as1xUAAAAAus74HwAAAM6+A8f/yeDpVgQAAADohq/eupWmRuv51wt3tzZXqnevLJRrK8XVzfnifHVjvbhUrS41f7Nv9ajzVarV9c/F2ub9Ur1cq5dqW9uzq9XNtfps87nes+VG4VSaBQAAAOzx9ice/SGJiJ3PjzRT6lxWlj/68Jnu1g7optzxdk+6VQ/g9A30ugJAz7jBF/pXB2N84Iw7YmD/g33rx7xsAAAAvA7GP/ZK8//mA+ENZiAP/cv8P/Qv8//Qv8z/Q58bOnqX4YMKfnvCdQEAALpmtJmSXDGbCxyNXK5YjHir+ViAfLK4XClPRMSHIuL3hfxQuj7Z60oDAAAAAAAAAAAAAAAAAAAAAAAAwBum0UiiAQAAAJxpEbm/JNmD/McL74/uvz5wLvlnobmMiHs/vfOj+3P1+sZkuv3v/9te/3G2/WprS+obp3wlAwAAAGhpjdNb43gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOEnPnj6Yb6XTjPvkixEx1i7+YAw3l8O/KkTE+edJDO45LomIgROIv/MwIt5pFz9JqxVjWS32x89FxEiP4184gfjQzx6l/c9M+v7L73v/5eJic9n+/TeYpVf15OJB/V+u1f81+7l2/d9bh596uJV59/EvSy+VFrL4DyPeHWzf/7TiJ+3in+u8jd/8+vb2QWWNn0WMH/H5k8Yv1VfXS7Wt7SvLq3NL5aXy2tTU5PXpG9PXpidKi8uVcvZv2xjf+/iv/3NQ/LT959vG3+1/D2x/RLzfYfv//fj+048cEv/Sp9q//u8cEj/9m/h09jmQlo+38ju7+b3e+8Xv3jus/QsHtP/Q1z8iLnXY/su3v/OnDncFAE5BbWt7Za5SKW90JTPStTPLpJnq2lH7pN8TP3CI/Kn8kch0M3M7ew2PfXgPOyUAAKArXnzp319yjAkeAAAAAAAAAAAAAAAAAAAA4JV0/UfIhv7/lwWGe9dUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBD/TcAAP//V7HNuw==")
lstat(&(0x7f0000000680)='./file1\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

124.522658ms ago: executing program 0 (id=370):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x2}, 0x18)
setsockopt$packet_fanout(r0, 0x107, 0x12, 0x0, 0x0)
close(r0)

87.226798ms ago: executing program 0 (id=371):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0700000004000000000000000100000028"], 0x50) (async, rerun: 64)
r1 = socket$inet(0xa, 0x801, 0x84) (rerun: 64)
listen(r1, 0x8) (async, rerun: 32)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0x1c, &(0x7f0000000140)=[@in6={0xa, 0x4e20, 0x207, @mcast2, 0x3}]}, &(0x7f00000001c0)=0x10) (rerun: 32)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x7}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r3)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="bbfb2bbd7000fddbdf21670000000800c400020000000800c3"], 0x24}}, 0x0) (async)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) (async)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYRESDEC], 0x48) (async)
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000380), &(0x7f00000003c0)='./file0\x00', 0x8, 0x1) (async)
r7 = socket$inet_smc(0x2b, 0x1, 0x0) (async)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001"], 0x50)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r8, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r9, 0x0, 0x7}, 0x18) (async)
r11 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200), 0x20080, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r11, 0x3312, 0x7)
setsockopt$inet_tcp_TCP_CONGESTION(r7, 0x6, 0xd, &(0x7f0000000040)='cubic', 0x4) (async)
setsockopt$inet_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) (async)
connect$inet(r7, &(0x7f0000000280)={0x2, 0x0, @loopback}, 0x10) (async)
close(r7) (async)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="000000621b889b3e05ab125795fe50cacfbf3e0000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r12}, 0x10) (async)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]}) (async)
fsync(0xffffffffffffffff) (async)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00') (async, rerun: 32)
r13 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001cc0)=ANY=[@ANYBLOB="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", @ANYRES8=r6, @ANYRES16=r3, @ANYRESHEX=r10, @ANYRES16, @ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x94) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='target_sequencer_start\x00', r13, 0x0, 0x20003}, 0xf3) (async)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)

0s ago: executing program 1 (id=372):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x174, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x1}, {0x0, 0x1}, {0x0, 0xb}}, [@filter_kind_options=@f_flower={{0xb}, {0x54, 0x2, [@TCA_FLOWER_KEY_CVLAN_ID={0x6, 0x4d, 0xfa7}, @TCA_FLOWER_KEY_ETH_DST={0xa}, @TCA_FLOWER_KEY_ICMPV4_CODE_MASK={0x5}, @TCA_FLOWER_KEY_ARP_SIP_MASK={0x8, 0x3a, 0xffffffff}, @TCA_FLOWER_KEY_IPV6_SRC_MASK={0x14, 0xf, [0xff000000, 0x0, 0xffffffff, 0xffffff00]}, @TCA_FLOWER_KEY_UDP_DST_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_MPLS_LABEL={0x8, 0x46, 0xa1}]}}, @TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0xe0, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x3}, @TCA_BPF_ACT={0xcc, 0x1, [@m_ctinfo={0xc8, 0x19, 0x0, 0x0, {{0xb}, {0x4}, {0x99, 0x6, "ed5c1eb99390e7d0a8730c2f4ad7eab8a255351b763e5585c30ef05596ff09fd3ea6975074d4baa7805a08bfdd7f7fa2634cbcdbba1c88eea89d70023a7b9d8d2a94daf79fa1e5bffdc60fbea174f1aa7372acb7f356da638e68d8cc0dfa35b1ef1879e8526f439300c841829ae601a7811d02b21fcc5aaa7951b03466f8a1800a4b912630d3eb9f282786ef340f4e3cb08280f71f"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}]}, 0x174}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400}) (fail_nth: 3)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.152' (ED25519) to the list of known hosts.
[   33.346500][   T29] audit: type=1400 audit(1758952771.714:62): avc:  denied  { mounton } for  pid=3289 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   33.347529][ T3289] cgroup: Unknown subsys name 'net'
[   33.369234][   T29] audit: type=1400 audit(1758952771.714:63): avc:  denied  { mount } for  pid=3289 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   33.396593][   T29] audit: type=1400 audit(1758952771.754:64): avc:  denied  { unmount } for  pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   33.493820][ T3289] cgroup: Unknown subsys name 'cpuset'
[   33.500067][ T3289] cgroup: Unknown subsys name 'rlimit'
[   33.650885][   T29] audit: type=1400 audit(1758952772.014:65): avc:  denied  { setattr } for  pid=3289 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   33.675443][   T29] audit: type=1400 audit(1758952772.014:66): avc:  denied  { create } for  pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.695966][   T29] audit: type=1400 audit(1758952772.014:67): avc:  denied  { write } for  pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.716310][   T29] audit: type=1400 audit(1758952772.014:68): avc:  denied  { read } for  pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   33.736657][   T29] audit: type=1400 audit(1758952772.024:69): avc:  denied  { mounton } for  pid=3289 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   33.761434][   T29] audit: type=1400 audit(1758952772.024:70): avc:  denied  { mount } for  pid=3289 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   33.769817][ T3292] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   33.793472][   T29] audit: type=1400 audit(1758952772.164:71): avc:  denied  { relabelto } for  pid=3292 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   33.823932][ T3289] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   34.933512][ T3300] chnl_net:caif_netlink_parms(): no params data found
[   35.002841][ T3307] chnl_net:caif_netlink_parms(): no params data found
[   35.067610][ T3299] chnl_net:caif_netlink_parms(): no params data found
[   35.096111][ T3300] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.103211][ T3300] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.110346][ T3300] bridge_slave_0: entered allmulticast mode
[   35.116863][ T3300] bridge_slave_0: entered promiscuous mode
[   35.125159][ T3300] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.132203][ T3300] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.139328][ T3300] bridge_slave_1: entered allmulticast mode
[   35.145727][ T3300] bridge_slave_1: entered promiscuous mode
[   35.171593][ T3309] chnl_net:caif_netlink_parms(): no params data found
[   35.184831][ T3307] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.191926][ T3307] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.199192][ T3307] bridge_slave_0: entered allmulticast mode
[   35.205502][ T3307] bridge_slave_0: entered promiscuous mode
[   35.223345][ T3307] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.230407][ T3307] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.237593][ T3307] bridge_slave_1: entered allmulticast mode
[   35.244208][ T3307] bridge_slave_1: entered promiscuous mode
[   35.250398][ T3308] chnl_net:caif_netlink_parms(): no params data found
[   35.265201][ T3300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.290344][ T3300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.309263][ T3307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.333892][ T3307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.363606][ T3299] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.370789][ T3299] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.377928][ T3299] bridge_slave_0: entered allmulticast mode
[   35.384388][ T3299] bridge_slave_0: entered promiscuous mode
[   35.391362][ T3300] team0: Port device team_slave_0 added
[   35.408349][ T3299] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.415515][ T3299] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.422581][ T3299] bridge_slave_1: entered allmulticast mode
[   35.429122][ T3299] bridge_slave_1: entered promiscuous mode
[   35.435921][ T3300] team0: Port device team_slave_1 added
[   35.451849][ T3307] team0: Port device team_slave_0 added
[   35.470764][ T3309] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.477886][ T3309] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.485195][ T3309] bridge_slave_0: entered allmulticast mode
[   35.491722][ T3309] bridge_slave_0: entered promiscuous mode
[   35.498879][ T3307] team0: Port device team_slave_1 added
[   35.509891][ T3308] bridge0: port 1(bridge_slave_0) entered blocking state
[   35.517021][ T3308] bridge0: port 1(bridge_slave_0) entered disabled state
[   35.524148][ T3308] bridge_slave_0: entered allmulticast mode
[   35.530526][ T3308] bridge_slave_0: entered promiscuous mode
[   35.543177][ T3299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.552337][ T3309] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.559468][ T3309] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.566570][ T3309] bridge_slave_1: entered allmulticast mode
[   35.573049][ T3309] bridge_slave_1: entered promiscuous mode
[   35.587443][ T3308] bridge0: port 2(bridge_slave_1) entered blocking state
[   35.594526][ T3308] bridge0: port 2(bridge_slave_1) entered disabled state
[   35.601593][ T3308] bridge_slave_1: entered allmulticast mode
[   35.608097][ T3308] bridge_slave_1: entered promiscuous mode
[   35.614625][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.621558][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.647474][ T3300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.659097][ T3299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.673944][ T3309] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.692332][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.699306][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.725363][ T3300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.741733][ T3309] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.751095][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.758098][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.784036][ T3307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.795172][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_1
[   35.802194][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.828137][ T3307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   35.864769][ T3308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   35.875643][ T3308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   35.885382][ T3299] team0: Port device team_slave_0 added
[   35.892527][ T3299] team0: Port device team_slave_1 added
[   35.899292][ T3309] team0: Port device team_slave_0 added
[   35.917052][ T3309] team0: Port device team_slave_1 added
[   35.948796][ T3299] batman_adv: batadv0: Adding interface: batadv_slave_0
[   35.955817][ T3299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   35.981748][ T3299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   35.993277][ T3308] team0: Port device team_slave_0 added
[   36.013508][ T3309] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.020449][ T3309] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.046475][ T3309] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.065576][ T3299] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.072533][ T3299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.098582][ T3299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.110030][ T3308] team0: Port device team_slave_1 added
[   36.117712][ T3300] hsr_slave_0: entered promiscuous mode
[   36.123674][ T3300] hsr_slave_1: entered promiscuous mode
[   36.131486][ T3307] hsr_slave_0: entered promiscuous mode
[   36.137496][ T3307] hsr_slave_1: entered promiscuous mode
[   36.143246][ T3307] debugfs: 'hsr0' already exists in 'hsr'
[   36.148960][ T3307] Cannot create hsr debugfs directory
[   36.154727][ T3309] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.161686][ T3309] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.187601][ T3309] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.210509][ T3308] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.217457][ T3308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.243408][ T3308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.255035][ T3308] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.261967][ T3308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.287926][ T3308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.337308][ T3299] hsr_slave_0: entered promiscuous mode
[   36.344333][ T3299] hsr_slave_1: entered promiscuous mode
[   36.350153][ T3299] debugfs: 'hsr0' already exists in 'hsr'
[   36.355906][ T3299] Cannot create hsr debugfs directory
[   36.386260][ T3308] hsr_slave_0: entered promiscuous mode
[   36.392207][ T3308] hsr_slave_1: entered promiscuous mode
[   36.398178][ T3308] debugfs: 'hsr0' already exists in 'hsr'
[   36.403928][ T3308] Cannot create hsr debugfs directory
[   36.445378][ T3309] hsr_slave_0: entered promiscuous mode
[   36.451452][ T3309] hsr_slave_1: entered promiscuous mode
[   36.457472][ T3309] debugfs: 'hsr0' already exists in 'hsr'
[   36.463227][ T3309] Cannot create hsr debugfs directory
[   36.611487][ T3307] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   36.624080][ T3307] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   36.634783][ T3307] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   36.645581][ T3307] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   36.663399][ T3300] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   36.681224][ T3300] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   36.694803][ T3300] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   36.703441][ T3300] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   36.723115][ T3299] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   36.731889][ T3299] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   36.746099][ T3299] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   36.757002][ T3299] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   36.782062][ T3308] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   36.793298][ T3308] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   36.802477][ T3308] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   36.812129][ T3308] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   36.852077][ T3309] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   36.861291][ T3309] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   36.870540][ T3309] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   36.881686][ T3309] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   36.911430][ T3307] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.934821][ T3307] 8021q: adding VLAN 0 to HW filter on device team0
[   36.947737][ T3300] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.957811][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.964923][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.978653][ T3299] 8021q: adding VLAN 0 to HW filter on device bond0
[   36.990804][ T3300] 8021q: adding VLAN 0 to HW filter on device team0
[   37.002782][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.009842][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.020728][   T31] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.027799][   T31] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.049203][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.056374][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.065621][ T3299] 8021q: adding VLAN 0 to HW filter on device team0
[   37.094241][ T3308] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.114445][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.121493][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.144668][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.151826][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.161658][ T3308] 8021q: adding VLAN 0 to HW filter on device team0
[   37.174293][ T3309] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.188320][   T37] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.195413][   T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.208734][   T31] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.215808][   T31] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.227135][ T3309] 8021q: adding VLAN 0 to HW filter on device team0
[   37.246410][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.253564][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.263629][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.270694][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.279762][ T3299] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.315832][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.344257][ T3309] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.390896][ T3300] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.436754][ T3299] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.466711][ T3309] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.490251][ T3307] veth0_vlan: entered promiscuous mode
[   37.505972][ T3308] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.527029][ T3307] veth1_vlan: entered promiscuous mode
[   37.582288][ T3307] veth0_macvtap: entered promiscuous mode
[   37.594474][ T3300] veth0_vlan: entered promiscuous mode
[   37.610607][ T3307] veth1_macvtap: entered promiscuous mode
[   37.620499][ T3300] veth1_vlan: entered promiscuous mode
[   37.627086][ T3299] veth0_vlan: entered promiscuous mode
[   37.646157][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.656235][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.682008][ T3308] veth0_vlan: entered promiscuous mode
[   37.689797][ T3299] veth1_vlan: entered promiscuous mode
[   37.699559][   T31] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.712186][ T3308] veth1_vlan: entered promiscuous mode
[   37.719992][ T3441] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.739438][ T3300] veth0_macvtap: entered promiscuous mode
[   37.747828][ T3299] veth0_macvtap: entered promiscuous mode
[   37.755066][ T3299] veth1_macvtap: entered promiscuous mode
[   37.761222][ T3441] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.770005][ T3441] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.788839][ T3300] veth1_macvtap: entered promiscuous mode
[   37.808548][ T3309] veth0_vlan: entered promiscuous mode
[   37.819335][ T3308] veth0_macvtap: entered promiscuous mode
[   37.832180][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.845290][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.845796][ T3307] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   37.854017][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.875721][ T3308] veth1_macvtap: entered promiscuous mode
[   37.882525][ T3309] veth1_vlan: entered promiscuous mode
[   37.893560][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.902264][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.939382][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.956219][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.986296][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.999931][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.007783][ T3309] veth0_macvtap: entered promiscuous mode
[   38.018361][ T3476] netlink: 4380 bytes leftover after parsing attributes in process `syz.3.4'.
[   38.023081][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.039020][ T3309] veth1_macvtap: entered promiscuous mode
[   38.060782][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.063284][ T3476] netlink: 4380 bytes leftover after parsing attributes in process `syz.3.4'.
[   38.081577][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.092397][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.114638][   T51] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.135222][   T51] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.161855][   T51] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.172890][   T51] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.192679][ T3490] FAULT_INJECTION: forcing a failure.
[   38.192679][ T3490] name failslab, interval 1, probability 0, space 0, times 1
[   38.205489][ T3490] CPU: 0 UID: 0 PID: 3490 Comm: syz.2.3 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   38.205513][ T3490] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   38.205527][ T3490] Call Trace:
[   38.205534][ T3490]  <TASK>
[   38.205541][ T3490]  __dump_stack+0x1d/0x30
[   38.205569][ T3490]  dump_stack_lvl+0xe8/0x140
[   38.205585][ T3490]  dump_stack+0x15/0x1b
[   38.205599][ T3490]  should_fail_ex+0x265/0x280
[   38.205668][ T3490]  should_failslab+0x8c/0xb0
[   38.205692][ T3490]  __kmalloc_noprof+0xa5/0x3e0
[   38.205770][ T3490]  ? security_prepare_creds+0x52/0x120
[   38.205790][ T3490]  security_prepare_creds+0x52/0x120
[   38.205810][ T3490]  prepare_creds+0x34a/0x4c0
[   38.205896][ T3490]  lookup_user_key+0x12a/0xd10
[   38.205995][ T3490]  ? __pfx_lookup_user_key_possessed+0x10/0x10
[   38.206024][ T3490]  __se_sys_add_key+0x263/0x350
[   38.206095][ T3490]  __x64_sys_add_key+0x67/0x80
[   38.206121][ T3490]  x64_sys_call+0x28c4/0x2ff0
[   38.206205][ T3490]  do_syscall_64+0xd2/0x200
[   38.206230][ T3490]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   38.206254][ T3490]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   38.206287][ T3490]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.206397][ T3490] RIP: 0033:0x7fd291cfeec9
[   38.206410][ T3490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.206426][ T3490] RSP: 002b:00007fd290767038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f8
[   38.206446][ T3490] RAX: ffffffffffffffda RBX: 00007fd291f55fa0 RCX: 00007fd291cfeec9
[   38.206457][ T3490] RDX: 0000200000000480 RSI: 0000000000000000 RDI: 0000200000000240
[   38.206479][ T3490] RBP: 00007fd290767090 R08: ffffffffffffffff R09: 0000000000000000
[   38.206491][ T3490] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[   38.206501][ T3490] R13: 00007fd291f56038 R14: 00007fd291f55fa0 R15: 00007fff9201c048
[   38.206521][ T3490]  </TASK>
[   38.212093][   T51] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.373499][   T29] kauditd_printk_skb: 60 callbacks suppressed
[   38.373515][   T29] audit: type=1400 audit(1758952776.734:132): avc:  denied  { relabelfrom } for  pid=3495 comm="syz.2.10" name="" dev="pipefs" ino=3892 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[   38.388857][   T51] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.392993][   T29] audit: type=1326 audit(1758952776.734:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3495 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd291cfeec9 code=0x7ffc0000
[   38.401091][   T51] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.403960][   T29] audit: type=1326 audit(1758952776.734:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3495 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7fd291cfeec9 code=0x7ffc0000
[   38.413635][   T51] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.418691][   T29] audit: type=1326 audit(1758952776.734:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3495 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd291cfeec9 code=0x7ffc0000
[   38.536297][   T29] audit: type=1326 audit(1758952776.744:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3495 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fd291cfeec9 code=0x7ffc0000
[   38.539953][   T51] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.559495][   T29] audit: type=1326 audit(1758952776.744:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3495 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd291cfeec9 code=0x7ffc0000
[   38.585913][ T3506] program syz.1.9 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   38.591465][   T29] audit: type=1326 audit(1758952776.744:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3495 comm="syz.2.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd291cfeec9 code=0x7ffc0000
[   38.652958][   T29] audit: type=1400 audit(1758952776.944:139): avc:  denied  { create } for  pid=3491 comm="syz.1.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   38.672352][   T29] audit: type=1400 audit(1758952776.944:140): avc:  denied  { connect } for  pid=3491 comm="syz.1.9" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   38.691722][   T29] audit: type=1400 audit(1758952776.944:141): avc:  denied  { write } for  pid=3491 comm="syz.1.9" path="socket:[4873]" dev="sockfs" ino=4873 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   38.716937][   T51] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.747022][   T51] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.812793][ T3510] SELinux:  policydb magic number 0x4c5047 does not match expected magic number 0xf97cff8c
[   38.823337][ T3510] SELinux: failed to load policy
[   38.861508][ T3519] mmap: syz.4.15 (3519) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   38.954557][ T3525] FAULT_INJECTION: forcing a failure.
[   38.954557][ T3525] name failslab, interval 1, probability 0, space 0, times 0
[   38.967274][ T3525] CPU: 1 UID: 0 PID: 3525 Comm: syz.4.16 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   38.967337][ T3525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   38.967348][ T3525] Call Trace:
[   38.967353][ T3525]  <TASK>
[   38.967359][ T3525]  __dump_stack+0x1d/0x30
[   38.967408][ T3525]  dump_stack_lvl+0xe8/0x140
[   38.967431][ T3525]  dump_stack+0x15/0x1b
[   38.967451][ T3525]  should_fail_ex+0x265/0x280
[   38.967562][ T3525]  ? allocate_file_region_entries+0xd2/0x310
[   38.967587][ T3525]  should_failslab+0x8c/0xb0
[   38.967660][ T3525]  __kmalloc_cache_noprof+0x4c/0x320
[   38.967759][ T3525]  ? __pfx_workingset_update_node+0x10/0x10
[   38.967780][ T3525]  allocate_file_region_entries+0xd2/0x310
[   38.967810][ T3525]  region_chg+0x232/0x2d0
[   38.967836][ T3525]  alloc_hugetlb_folio+0x312/0x1070
[   38.967934][ T3525]  hugetlb_fault+0xd71/0x1b50
[   38.967961][ T3525]  handle_mm_fault+0x1861/0x2c20
[   38.968102][ T3525]  ? mtree_load+0x324/0x4d0
[   38.968135][ T3525]  ? try_grab_folio+0x75/0x170
[   38.968180][ T3525]  ? down_read+0x77/0xe0
[   38.968212][ T3525]  __get_user_pages+0x102e/0x1fa0
[   38.968247][ T3525]  faultin_page_range+0x107/0x4e0
[   38.968274][ T3525]  madvise_do_behavior+0x197/0x970
[   38.968350][ T3525]  ? 0xffffffff81000000
[   38.968364][ T3525]  ? __rcu_read_unlock+0x4f/0x70
[   38.968437][ T3525]  do_madvise+0x10e/0x190
[   38.968472][ T3525]  __x64_sys_madvise+0x64/0x80
[   38.968501][ T3525]  x64_sys_call+0x1f1a/0x2ff0
[   38.968577][ T3525]  do_syscall_64+0xd2/0x200
[   38.968609][ T3525]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   38.968663][ T3525]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   38.968690][ T3525]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   38.968711][ T3525] RIP: 0033:0x7f0ba95aeec9
[   38.968725][ T3525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   38.968744][ T3525] RSP: 002b:00007f0ba8017038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   38.968763][ T3525] RAX: ffffffffffffffda RBX: 00007f0ba9805fa0 RCX: 00007f0ba95aeec9
[   38.968776][ T3525] RDX: 0000000000000017 RSI: 0000000000800000 RDI: 00002000000ec000
[   38.968787][ T3525] RBP: 00007f0ba8017090 R08: 0000000000000000 R09: 0000000000000000
[   38.968838][ T3525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.968850][ T3525] R13: 00007f0ba9806038 R14: 00007f0ba9805fa0 R15: 00007ffc4383adc8
[   38.968868][ T3525]  </TASK>
[   39.238001][ T3528] loop2: detected capacity change from 0 to 512
[   39.338454][ T3528] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.444386][ T3537] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3537 comm=syz.0.20
[   39.458386][ T3528] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.484116][ T3538] dummy0: entered promiscuous mode
[   39.489270][ T3538] macsec1: entered promiscuous mode
[   39.495359][ T3538] macsec1: entered allmulticast mode
[   39.500669][ T3538] dummy0: entered allmulticast mode
[   39.507058][ T3538] dummy0: left allmulticast mode
[   39.512364][ T3538] dummy0: left promiscuous mode
[   39.521518][ T3528] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.17: bg 0: block 289: padding at end of block bitmap is not set
[   39.576753][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.749683][ T3553] loop0: detected capacity change from 0 to 512
[   39.758822][ T3552] loop2: detected capacity change from 0 to 512
[   39.766729][ T3555] netlink: 12 bytes leftover after parsing attributes in process `syz.3.27'.
[   39.787932][ T3553] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.809759][ T3552] =======================================================
[   39.809759][ T3552] WARNING: The mand mount option has been deprecated and
[   39.809759][ T3552]          and is ignored by this kernel. Remove the mand
[   39.809759][ T3552]          option from the mount to silence this warning.
[   39.809759][ T3552] =======================================================
[   39.811731][ T3553] ext4 filesystem being mounted at /2/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.863593][ T3555] netlink: 12 bytes leftover after parsing attributes in process `syz.3.27'.
[   39.939430][ T3552] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   39.958061][ T3563] loop3: detected capacity change from 0 to 512
[   39.969727][ T3553] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.26: bg 0: block 289: padding at end of block bitmap is not set
[   39.999105][ T3563] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   40.031031][ T3568] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   40.040319][ T3568] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   40.041001][ T3563] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.062646][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.075673][ T3563] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.076259][ T3552] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.133588][ T3568] syz.1.30 (3568) used greatest stack depth: 10712 bytes left
[   40.143083][ T3552] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   40.144677][ T3563] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.29: corrupted xattr block 19: overlapping e_value 
[   40.173190][ T3552] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.25: corrupted xattr block 19: overlapping e_value 
[   40.192976][ T3563] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   40.202101][ T3552] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   40.221292][ T3563] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.29: corrupted xattr block 19: overlapping e_value 
[   40.235304][ T3552] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.25: corrupted xattr block 19: overlapping e_value 
[   40.249651][ T3563] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   40.260218][ T3582] FAULT_INJECTION: forcing a failure.
[   40.260218][ T3582] name failslab, interval 1, probability 0, space 0, times 0
[   40.272889][ T3582] CPU: 1 UID: 0 PID: 3582 Comm: syz.1.34 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   40.272991][ T3582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   40.273002][ T3582] Call Trace:
[   40.273007][ T3582]  <TASK>
[   40.273014][ T3582]  __dump_stack+0x1d/0x30
[   40.273083][ T3582]  dump_stack_lvl+0xe8/0x140
[   40.273105][ T3582]  dump_stack+0x15/0x1b
[   40.273144][ T3582]  should_fail_ex+0x265/0x280
[   40.273166][ T3582]  should_failslab+0x8c/0xb0
[   40.273270][ T3582]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[   40.273302][ T3582]  ? kasprintf+0x83/0xb0
[   40.273320][ T3582]  kvasprintf+0x8a/0x110
[   40.273402][ T3582]  ? obj_cgroup_charge_account+0x122/0x1a0
[   40.273461][ T3582]  kasprintf+0x83/0xb0
[   40.273479][ T3582]  ? __memcg_slab_post_alloc_hook+0x44c/0x580
[   40.273560][ T3582]  nf_tables_set_alloc_name+0xaa/0x4b0
[   40.273597][ T3582]  ? nla_strdup+0x78/0xc0
[   40.273624][ T3582]  nf_tables_newset+0xe24/0x14e0
[   40.273656][ T3582]  nfnetlink_rcv+0xb96/0x1690
[   40.273788][ T3582]  netlink_unicast+0x5bd/0x690
[   40.273822][ T3582]  netlink_sendmsg+0x58b/0x6b0
[   40.273910][ T3582]  ? __pfx_netlink_sendmsg+0x10/0x10
[   40.273931][ T3582]  __sock_sendmsg+0x145/0x180
[   40.273957][ T3582]  ____sys_sendmsg+0x31e/0x4e0
[   40.274052][ T3582]  ___sys_sendmsg+0x17b/0x1d0
[   40.274090][ T3582]  __x64_sys_sendmsg+0xd4/0x160
[   40.274119][ T3582]  x64_sys_call+0x191e/0x2ff0
[   40.274182][ T3582]  do_syscall_64+0xd2/0x200
[   40.274213][ T3582]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   40.274255][ T3582]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   40.274278][ T3582]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   40.274316][ T3582] RIP: 0033:0x7f460cceeec9
[   40.274329][ T3582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   40.274402][ T3582] RSP: 002b:00007f460b757038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   40.274419][ T3582] RAX: ffffffffffffffda RBX: 00007f460cf45fa0 RCX: 00007f460cceeec9
[   40.274446][ T3582] RDX: 0000000000000040 RSI: 0000200000009b40 RDI: 0000000000000006
[   40.274460][ T3582] RBP: 00007f460b757090 R08: 0000000000000000 R09: 0000000000000000
[   40.274472][ T3582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   40.274482][ T3582] R13: 00007f460cf46038 R14: 00007f460cf45fa0 R15: 00007fff6fd96b88
[   40.274498][ T3582]  </TASK>
[   40.275533][ T3563] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.29: corrupted xattr block 19: overlapping e_value 
[   40.324660][ T3552] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[   40.374789][ T3589] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=60 sclass=netlink_route_socket pid=3589 comm=syz.1.36
[   40.391268][ T3590] loop0: detected capacity change from 0 to 1024
[   40.527742][ T3594] rdma_rxe: rxe_newlink: failed to add bond0
[   40.566227][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.584735][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.641984][ T3589] infiniband syz2: set active
[   40.646804][ T3589] infiniband syz2: added bond0
[   40.654831][    C1] hrtimer: interrupt took 37310 ns
[   40.668973][ T3590] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   40.709338][ T3603] netlink: 'syz.4.40': attribute type 30 has an invalid length.
[   40.736843][ T3590] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.35: Allocating blocks 449-513 which overlap fs metadata
[   40.770776][ T3604] loop4: detected capacity change from 0 to 2048
[   40.794066][ T3589] RDS/IB: syz2: added
[   40.801408][ T3589] smc: adding ib device syz2 with port count 1
[   40.807687][ T3589] smc:    ib device syz2 port 1 has pnetid 
[   40.883433][ T3611] EXT4-fs (loop0): pa ffff88810724a070: logic 48, phys. 177, len 21
[   40.891576][ T3611] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4
[   41.207978][ T3589] syz.1.36 (3589) used greatest stack depth: 10616 bytes left
[   41.233913][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.267848][ T3635] 9pnet_fd: Insufficient options for proto=fd
[   41.374543][ T3643] syz.1.53 uses obsolete (PF_INET,SOCK_PACKET)
[   41.379714][ T3634] loop0: detected capacity change from 0 to 8192
[   41.453291][ T3606]  loop0: p2 p3 p4
[   41.463390][ T3606] loop0: p2 size 458752 extends beyond EOD, truncated
[   41.482081][ T3606] loop0: p3 size 395700 extends beyond EOD, truncated
[   41.518422][ T3606] loop0: p4 start 117506304 is beyond EOD, truncated
[   41.525791][ T3654] siw: device registration error -23
[   41.541789][ T3657] FAULT_INJECTION: forcing a failure.
[   41.541789][ T3657] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   41.554939][ T3657] CPU: 1 UID: 0 PID: 3657 Comm: syz.4.59 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   41.554968][ T3657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   41.554998][ T3657] Call Trace:
[   41.555004][ T3657]  <TASK>
[   41.555012][ T3657]  __dump_stack+0x1d/0x30
[   41.555032][ T3657]  dump_stack_lvl+0xe8/0x140
[   41.555051][ T3657]  dump_stack+0x15/0x1b
[   41.555065][ T3657]  should_fail_ex+0x265/0x280
[   41.555156][ T3657]  should_fail+0xb/0x20
[   41.555178][ T3657]  should_fail_usercopy+0x1a/0x20
[   41.555248][ T3657]  _copy_from_user+0x1c/0xb0
[   41.555300][ T3657]  ___sys_sendmsg+0xc1/0x1d0
[   41.555389][ T3657]  __x64_sys_sendmsg+0xd4/0x160
[   41.555426][ T3657]  x64_sys_call+0x191e/0x2ff0
[   41.555456][ T3657]  do_syscall_64+0xd2/0x200
[   41.555486][ T3657]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   41.555509][ T3657]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   41.555538][ T3657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.555618][ T3657] RIP: 0033:0x7f0ba95aeec9
[   41.555686][ T3657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.555705][ T3657] RSP: 002b:00007f0ba8017038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   41.555720][ T3657] RAX: ffffffffffffffda RBX: 00007f0ba9805fa0 RCX: 00007f0ba95aeec9
[   41.555773][ T3657] RDX: 0000000000000010 RSI: 00002000000006c0 RDI: 0000000000000003
[   41.555819][ T3657] RBP: 00007f0ba8017090 R08: 0000000000000000 R09: 0000000000000000
[   41.555830][ T3657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.555840][ T3657] R13: 00007f0ba9806038 R14: 00007f0ba9805fa0 R15: 00007ffc4383adc8
[   41.555855][ T3657]  </TASK>
[   41.557219][ T3634]  loop0: p2 p3 p4
[   41.740446][ T3634] loop0: p2 size 458752 extends beyond EOD, truncated
[   41.754103][ T3634] loop0: p3 size 395700 extends beyond EOD, truncated
[   41.781224][ T3634] loop0: p4 start 117506304 is beyond EOD, truncated
[   41.890923][ T3671] FAULT_INJECTION: forcing a failure.
[   41.890923][ T3671] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   41.904048][ T3671] CPU: 1 UID: 0 PID: 3671 Comm: syz.2.64 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   41.904070][ T3671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   41.904142][ T3671] Call Trace:
[   41.904149][ T3671]  <TASK>
[   41.904157][ T3671]  __dump_stack+0x1d/0x30
[   41.904180][ T3671]  dump_stack_lvl+0xe8/0x140
[   41.904219][ T3671]  dump_stack+0x15/0x1b
[   41.904238][ T3671]  should_fail_ex+0x265/0x280
[   41.904268][ T3671]  should_fail+0xb/0x20
[   41.904287][ T3671]  should_fail_usercopy+0x1a/0x20
[   41.904318][ T3671]  _copy_from_user+0x1c/0xb0
[   41.904425][ T3671]  ___sys_recvmsg+0xaa/0x370
[   41.904492][ T3671]  ? 0xffffffff81000000
[   41.904506][ T3671]  ? __rcu_read_unlock+0x4f/0x70
[   41.904538][ T3671]  __x64_sys_recvmsg+0xd1/0x160
[   41.904565][ T3671]  x64_sys_call+0x2b42/0x2ff0
[   41.904591][ T3671]  do_syscall_64+0xd2/0x200
[   41.904665][ T3671]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   41.904725][ T3671]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   41.904838][ T3671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   41.904864][ T3671] RIP: 0033:0x7fd291cfeec9
[   41.904881][ T3671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   41.904899][ T3671] RSP: 002b:00007fd290767038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   41.904953][ T3671] RAX: ffffffffffffffda RBX: 00007fd291f55fa0 RCX: 00007fd291cfeec9
[   41.904964][ T3671] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000000000000006
[   41.904974][ T3671] RBP: 00007fd290767090 R08: 0000000000000000 R09: 0000000000000000
[   41.904988][ T3671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   41.905001][ T3671] R13: 00007fd291f56038 R14: 00007fd291f55fa0 R15: 00007fff9201c048
[   41.905048][ T3671]  </TASK>
[   41.920394][ T3663] loop4: detected capacity change from 0 to 512
[   41.977773][ T3671] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.64'.
[   42.046415][ T3663] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   42.052019][ T3679] netlink: 'syz.0.66': attribute type 1 has an invalid length.
[   42.056629][ T3663] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   42.141745][ T3606] udevd[3606]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[   42.153578][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   42.184102][ T3663] EXT4-fs (loop4): 1 truncate cleaned up
[   42.190116][ T3663] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.213104][ T3673] loop3: detected capacity change from 0 to 512
[   42.270278][ T3684] loop2: detected capacity change from 0 to 512
[   42.283932][ T3673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.336418][ T3673] ext4 filesystem being mounted at /10/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.365988][ T3684] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.396374][ T3684] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   42.457638][ T3672] syz.3.65 (3672) used greatest stack depth: 10552 bytes left
[   42.475903][ T3684] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.68: bg 0: block 289: padding at end of block bitmap is not set
[   42.496654][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.552581][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.576986][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.605865][ T3701] program syz.2.73 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   42.704222][ T3712] sg_read: process 41 (syz.3.79) changed security contexts after opening file descriptor, this is not allowed.
[   42.912017][ T3735] loop1: detected capacity change from 0 to 512
[   42.927170][ T3735] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   42.944069][ T3735] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   42.957574][ T3735] process 'syz.1.88' launched './file1' with NULL argv: empty string added
[   43.004956][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.029187][ T3739] loop1: detected capacity change from 0 to 512
[   43.046117][ T3739] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   43.059269][ T3739] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   43.093230][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.138996][ T3745] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   43.151871][ T3745] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1538 sclass=netlink_route_socket pid=3745 comm=syz.1.91
[   43.166093][ T3745] netlink: 4 bytes leftover after parsing attributes in process `syz.1.91'.
[   43.174983][ T3745] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   43.187804][ T3745] batman_adv: batadv0: Removing interface: batadv_slave_1
[   43.225274][ T3746] loop1: detected capacity change from 0 to 512
[   43.231831][ T3746] EXT4-fs: Ignoring removed i_version option
[   43.261600][ T3746] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.91: corrupted in-inode xattr: overlapping e_value 
[   43.280396][ T3748] loop0: detected capacity change from 0 to 1024
[   43.293391][ T3746] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.91: couldn't read orphan inode 15 (err -117)
[   43.315022][ T3748] EXT4-fs: Ignoring removed bh option
[   43.320985][ T3748] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   43.332112][ T3746] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.345874][ T3748] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   43.360766][ T3745] EXT4-fs error (device loop1): ext4_add_entry:2417: inode #2: comm syz.1.91: Directory hole found for htree leaf block 0
[   43.388412][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.400597][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.505394][   T29] kauditd_printk_skb: 317 callbacks suppressed
[   43.505412][   T29] audit: type=1400 audit(1758952781.874:459): avc:  denied  { execute } for  pid=3764 comm="syz.1.99" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=5359 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   43.590609][   T29] audit: type=1400 audit(1758952781.954:460): avc:  denied  { read write } for  pid=3776 comm="syz.1.104" dev="sockfs" ino=5377 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   43.648416][   T29] audit: type=1400 audit(1758952782.014:461): avc:  denied  { create } for  pid=3782 comm="syz.4.107" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   43.650286][ T3783] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=260 sclass=netlink_route_socket pid=3783 comm=syz.4.107
[   43.668880][   T29] audit: type=1326 audit(1758952782.014:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3782 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ba95aeec9 code=0x7ffc0000
[   43.703333][   T29] audit: type=1326 audit(1758952782.014:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3782 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0ba95aeec9 code=0x7ffc0000
[   43.726555][   T29] audit: type=1326 audit(1758952782.014:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3782 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ba95aeec9 code=0x7ffc0000
[   43.750388][   T29] audit: type=1326 audit(1758952782.014:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3782 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0ba95aeec9 code=0x7ffc0000
[   43.773651][   T29] audit: type=1326 audit(1758952782.014:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3782 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ba95aeec9 code=0x7ffc0000
[   43.796894][   T29] audit: type=1326 audit(1758952782.014:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3782 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0ba95aeec9 code=0x7ffc0000
[   43.820081][   T29] audit: type=1326 audit(1758952782.014:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3782 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ba95aeec9 code=0x7ffc0000
[   44.058065][ T3826] netlink: 12 bytes leftover after parsing attributes in process `syz.3.125'.
[   44.094019][ T3832] netlink: 16 bytes leftover after parsing attributes in process `syz.3.126'.
[   44.121721][ T3834] loop3: detected capacity change from 0 to 512
[   44.129713][ T3834] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   44.146639][ T3834] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.159292][ T3834] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.172342][ T3834] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.128: corrupted xattr block 19: overlapping e_value 
[   44.187337][ T3834] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   44.196489][ T3834] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.128: corrupted xattr block 19: overlapping e_value 
[   44.210324][ T3834] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop3 ino=15
[   44.229662][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.356739][ T3843] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9488 sclass=netlink_route_socket pid=3843 comm=syz.0.130
[   44.370412][ T3843] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3843 comm=syz.0.130
[   44.498426][ T3851] loop0: detected capacity change from 0 to 512
[   44.505336][ T3851] EXT4-fs: Ignoring removed oldalloc option
[   44.514065][ T3851] EXT4-fs (loop0): bad geometry: block count 1792 exceeds size of device (256 blocks)
[   44.531016][ T3851] loop0: detected capacity change from 0 to 1024
[   44.538911][ T3851] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[   44.549844][ T3851] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[   44.559992][ T3851] JBD2: no valid journal superblock found
[   44.565765][ T3851] EXT4-fs (loop0): Could not load journal inode
[   44.659430][ T3858] netlink: 12 bytes leftover after parsing attributes in process `syz.0.136'.
[   44.678123][ T3860] xt_l2tp: invalid flags combination: 0
[   44.697619][ T3862] FAULT_INJECTION: forcing a failure.
[   44.697619][ T3862] name failslab, interval 1, probability 0, space 0, times 0
[   44.710282][ T3862] CPU: 1 UID: 0 PID: 3862 Comm: syz.0.138 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   44.710323][ T3862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   44.710338][ T3862] Call Trace:
[   44.710380][ T3862]  <TASK>
[   44.710388][ T3862]  __dump_stack+0x1d/0x30
[   44.710408][ T3862]  dump_stack_lvl+0xe8/0x140
[   44.710425][ T3862]  dump_stack+0x15/0x1b
[   44.710499][ T3862]  should_fail_ex+0x265/0x280
[   44.710575][ T3862]  should_failslab+0x8c/0xb0
[   44.710639][ T3862]  kmem_cache_alloc_noprof+0x50/0x310
[   44.710672][ T3862]  ? __inet_hash_connect+0x7a2/0x1350
[   44.710707][ T3862]  ? inet_sk_get_local_port_range+0x89/0x100
[   44.710741][ T3862]  __inet_hash_connect+0x7a2/0x1350
[   44.710785][ T3862]  ? __pfx___inet6_check_established+0x10/0x10
[   44.710948][ T3862]  inet6_hash_connect+0xaf/0xc0
[   44.711010][ T3862]  tcp_v6_connect+0x983/0xc30
[   44.711041][ T3862]  __inet_stream_connect+0x169/0x7e0
[   44.711061][ T3862]  ? tcp_sendmsg_fastopen+0x172/0x520
[   44.711167][ T3862]  ? should_failslab+0x8c/0xb0
[   44.711194][ T3862]  ? __kmalloc_cache_noprof+0x189/0x320
[   44.711224][ T3862]  tcp_sendmsg_fastopen+0x43a/0x520
[   44.711304][ T3862]  tcp_sendmsg_locked+0x26e1/0x2c00
[   44.711330][ T3862]  ? mntput_no_expire+0x6f/0x460
[   44.711382][ T3862]  ? __rcu_read_unlock+0x4f/0x70
[   44.711399][ T3862]  ? avc_has_perm_noaudit+0x1b1/0x200
[   44.711470][ T3862]  ? avc_has_perm+0xf7/0x180
[   44.711496][ T3862]  ? _raw_spin_unlock_bh+0x36/0x40
[   44.711585][ T3862]  ? __pfx_tcp_sendmsg+0x10/0x10
[   44.711610][ T3862]  tcp_sendmsg+0x2f/0x50
[   44.711678][ T3862]  inet6_sendmsg+0x76/0xd0
[   44.711714][ T3862]  __sock_sendmsg+0x8b/0x180
[   44.711806][ T3862]  __sys_sendto+0x268/0x330
[   44.711849][ T3862]  __x64_sys_sendto+0x76/0x90
[   44.711873][ T3862]  x64_sys_call+0x2d05/0x2ff0
[   44.711897][ T3862]  do_syscall_64+0xd2/0x200
[   44.711927][ T3862]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   44.711972][ T3862]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   44.712032][ T3862]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   44.712119][ T3862] RIP: 0033:0x7f57a898eec9
[   44.712132][ T3862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   44.712148][ T3862] RSP: 002b:00007f57a73ef038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[   44.712165][ T3862] RAX: ffffffffffffffda RBX: 00007f57a8be5fa0 RCX: 00007f57a898eec9
[   44.712233][ T3862] RDX: 0000000000000900 RSI: 0000000000000000 RDI: 0000000000000003
[   44.712248][ T3862] RBP: 00007f57a73ef090 R08: 0000200000b63fe4 R09: 000000000000001c
[   44.712263][ T3862] R10: 0000000020004002 R11: 0000000000000246 R12: 0000000000000001
[   44.712277][ T3862] R13: 00007f57a8be6038 R14: 00007f57a8be5fa0 R15: 00007fff0ca64df8
[   44.712295][ T3862]  </TASK>
[   45.037760][ T3870] caif0: entered promiscuous mode
[   45.042918][ T3870] caif0: entered allmulticast mode
[   45.052590][ T3873] loop3: detected capacity change from 0 to 512
[   45.069141][ T3874] loop4: detected capacity change from 0 to 512
[   45.079107][ T3870] loop2: detected capacity change from 0 to 512
[   45.094904][ T3870] EXT4-fs: Ignoring removed mblk_io_submit option
[   45.101780][ T3870] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   45.114153][ T3870] EXT4-fs (loop2): 1 truncate cleaned up
[   45.120242][ T3870] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   45.133095][ T3881] FAULT_INJECTION: forcing a failure.
[   45.133095][ T3881] name failslab, interval 1, probability 0, space 0, times 0
[   45.145734][ T3881] CPU: 0 UID: 0 PID: 3881 Comm: syz.1.145 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   45.145790][ T3881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   45.145805][ T3881] Call Trace:
[   45.145812][ T3881]  <TASK>
[   45.145819][ T3881]  __dump_stack+0x1d/0x30
[   45.145843][ T3881]  dump_stack_lvl+0xe8/0x140
[   45.145865][ T3881]  dump_stack+0x15/0x1b
[   45.145947][ T3881]  should_fail_ex+0x265/0x280
[   45.146027][ T3881]  should_failslab+0x8c/0xb0
[   45.146056][ T3881]  kmem_cache_alloc_noprof+0x50/0x310
[   45.146087][ T3881]  ? getname_flags+0x80/0x3b0
[   45.146179][ T3881]  getname_flags+0x80/0x3b0
[   45.146217][ T3881]  __se_sys_move_mount+0x2d6/0x490
[   45.146297][ T3881]  __x64_sys_move_mount+0x67/0x80
[   45.146335][ T3881]  x64_sys_call+0xcfe/0x2ff0
[   45.146364][ T3881]  do_syscall_64+0xd2/0x200
[   45.146396][ T3881]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   45.146486][ T3881]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   45.146516][ T3881]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.146539][ T3881] RIP: 0033:0x7f460cceeec9
[   45.146554][ T3881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.146630][ T3881] RSP: 002b:00007f460b757038 EFLAGS: 00000246 ORIG_RAX: 00000000000001ad
[   45.146651][ T3881] RAX: ffffffffffffffda RBX: 00007f460cf45fa0 RCX: 00007f460cceeec9
[   45.146664][ T3881] RDX: ffffffffffffff9c RSI: 0000000000000000 RDI: ffffffffffffffff
[   45.146678][ T3881] RBP: 00007f460b757090 R08: 0000000000000262 R09: 0000000000000000
[   45.146691][ T3881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   45.146704][ T3881] R13: 00007f460cf46038 R14: 00007f460cf45fa0 R15: 00007fff6fd96b88
[   45.146738][ T3881]  </TASK>
[   45.613275][ T3893] capability: warning: `syz.1.147' uses deprecated v2 capabilities in a way that may be insecure
[   45.958022][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.006841][ T3895] netlink: 20 bytes leftover after parsing attributes in process `syz.2.148'.
[   46.080971][ T3897] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14864 sclass=netlink_route_socket pid=3897 comm=syz.0.149
[   46.138898][ T3901] netlink: 4 bytes leftover after parsing attributes in process `syz.0.151'.
[   47.150485][ T3921] caif0: entered promiscuous mode
[   47.155721][ T3921] caif0: entered allmulticast mode
[   47.164389][ T3921] loop1: detected capacity change from 0 to 512
[   47.171405][ T3921] EXT4-fs: Ignoring removed mblk_io_submit option
[   47.181897][ T3921] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   47.195576][ T3921] EXT4-fs (loop1): 1 truncate cleaned up
[   47.201721][ T3921] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.259924][ T3926] netlink: 'syz.2.160': attribute type 1 has an invalid length.
[   47.267803][ T3926] netlink: 180 bytes leftover after parsing attributes in process `syz.2.160'.
[   47.497307][ T3929] loop2: detected capacity change from 0 to 512
[   47.514378][ T3929] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.527312][ T3929] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   47.644373][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.016790][ T3986] rdma_rxe: rxe_newlink: failed to add bond_slave_0
[   48.076794][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.096744][ T3996] capability: warning: `syz.4.168' uses 32-bit capabilities (legacy support in use)
[   48.205925][ T4018] netlink: 8 bytes leftover after parsing attributes in process `syz.1.170'.
[   48.424099][ T4057] loop1: detected capacity change from 0 to 2048
[   48.445114][ T4057] Alternate GPT is invalid, using primary GPT.
[   48.451526][ T4057]  loop1: p1 p2 p3
[   48.455277][ T4057] loop1: partition table partially beyond EOD, truncated
[   48.558681][ T4078] loop1: detected capacity change from 0 to 512
[   48.574770][ T4078] EXT4-fs (loop1): revision level too high, forcing read-only mode
[   48.585431][ T4078] EXT4-fs (loop1): orphan cleanup on readonly fs
[   48.596031][ T4078] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.177: corrupted inode contents
[   48.608258][ T4078] EXT4-fs (loop1): Remounting filesystem read-only
[   48.615181][ T4078] EXT4-fs (loop1): 1 truncate cleaned up
[   48.620997][ T1424] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   48.631648][ T1424] __quota_error: 249 callbacks suppressed
[   48.631660][ T1424] Quota error (device loop1): write_blk: dquota write failed
[   48.644780][ T1424] Quota error (device loop1): remove_free_dqentry: Can't write block (5) with free entries
[   48.654873][ T1424] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   48.665447][ T1424] Quota error (device loop1): write_blk: dquota write failed
[   48.672852][ T1424] Quota error (device loop1): free_dqentry: Can't move quota data block (5) to free list
[   48.683656][ T1424] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[   48.693856][ T1424] Quota error (device loop1): v2_write_file_info: Can't write info structure
[   48.710532][ T1424] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   48.725006][ T4078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   48.738683][ T4078] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.778481][ T4106] loop3: detected capacity change from 0 to 512
[   48.796945][ T4109] loop1: detected capacity change from 0 to 512
[   48.807283][ T4109] EXT4-fs: Ignoring removed mblk_io_submit option
[   48.829901][ T4109] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   48.844358][ T4109] EXT4-fs (loop1): 1 truncate cleaned up
[   48.850438][ T4109] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   48.870913][   T29] audit: type=1400 audit(1758952787.234:718): avc:  denied  { create } for  pid=4107 comm="syz.1.179" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   48.893453][   T29] audit: type=1400 audit(1758952787.254:719): avc:  denied  { read open } for  pid=4107 comm="syz.1.179" path="/50/bus/bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   48.916472][   T29] audit: type=1400 audit(1758952787.264:720): avc:  denied  { write } for  pid=4107 comm="syz.1.179" name="bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   49.161913][   T29] audit: type=1326 audit(1758952787.524:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4153 comm="syz.4.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ba95aeec9 code=0x7ffc0000
[   49.214085][ T4158] netdevsim netdevsim4: Direct firmware load for ./file0/file1 failed with error -2
[   49.278835][ T4164] netlink: 8 bytes leftover after parsing attributes in process `syz.2.182'.
[   49.518555][ T4158] loop4: detected capacity change from 0 to 512
[   49.547806][ T4158] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   49.644783][ T4158] EXT4-fs (loop4): orphan cleanup on readonly fs
[   49.652464][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.665632][ T4158] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.181: corrupted inode contents
[   49.699787][ T4158] EXT4-fs (loop4): Remounting filesystem read-only
[   49.718005][ T4158] EXT4-fs (loop4): 1 truncate cleaned up
[   49.725600][  T167] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   49.736264][  T167] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[   49.758791][  T167] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[   49.771957][ T4158] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   49.798910][ T4183] loop2: detected capacity change from 0 to 1024
[   49.807537][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   49.824138][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   49.851496][ T4183] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   49.896560][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   49.930108][ T4196] loop2: detected capacity change from 0 to 512
[   50.005801][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   50.126077][ T4205] loop2: detected capacity change from 0 to 4096
[   50.133345][ T4205] EXT4-fs (loop2): cluster size (1024) smaller than block size (4096)
[   50.212020][ T4218] loop2: detected capacity change from 0 to 512
[   50.232941][ T4218] EXT4-fs: Ignoring removed mblk_io_submit option
[   50.242217][ T4222] loop1: detected capacity change from 0 to 128
[   50.255749][ T4218] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   50.283580][ T4218] EXT4-fs (loop2): 1 truncate cleaned up
[   50.297697][ T4218] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   50.336948][ T4233] Zero length message leads to an empty skb
[   50.465953][ T4243] loop0: detected capacity change from 0 to 8192
[   50.642458][ T4253] loop0: detected capacity change from 0 to 128
[   51.051500][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   51.151627][ T4270] netlink: 20 bytes leftover after parsing attributes in process `syz.0.225'.
[   51.245414][ T4275] netlink: 20 bytes leftover after parsing attributes in process `syz.0.226'.
[   51.364271][ T4279] netlink: 12 bytes leftover after parsing attributes in process `syz.1.227'.
[   51.373208][ T4279] netlink: 12 bytes leftover after parsing attributes in process `syz.1.227'.
[   51.412867][ T4285] caif0: entered promiscuous mode
[   51.417939][ T4285] caif0: entered allmulticast mode
[   51.431364][ T4285] loop0: detected capacity change from 0 to 512
[   51.442931][ T4285] EXT4-fs: Ignoring removed mblk_io_submit option
[   51.476472][ T4285] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   51.508727][ T4285] EXT4-fs (loop0): 1 truncate cleaned up
[   51.515448][ T4285] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   51.751145][ T4300] netlink: 20 bytes leftover after parsing attributes in process `syz.4.236'.
[   52.174351][ T4313] netlink: 12 bytes leftover after parsing attributes in process `syz.2.240'.
[   52.183345][ T4313] netlink: 12 bytes leftover after parsing attributes in process `syz.2.240'.
[   52.277532][ T3299] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   52.366919][ T4329] netlink: 20 bytes leftover after parsing attributes in process `syz.0.248'.
[   52.405898][ T4331] loop2: detected capacity change from 0 to 512
[   52.542078][ T4345] loop1: detected capacity change from 0 to 512
[   52.550378][ T4345] EXT4-fs: Ignoring removed mblk_io_submit option
[   52.560457][ T4345] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   52.611320][ T4345] EXT4-fs (loop1): 1 truncate cleaned up
[   52.618924][ T4345] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   53.048343][ T4374] loop4: detected capacity change from 0 to 4096
[   53.071103][ T4374] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.107180][ T4381] loop3: detected capacity change from 0 to 512
[   53.120300][ T4374] EXT4-fs error (device loop4): ext4_get_first_dir_block:3549: inode #12: block 80: comm syz.4.266: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[   53.185594][ T4381] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.198222][ T4374] EXT4-fs (loop4): Remounting filesystem read-only
[   53.230053][ T4381] ext4 filesystem being mounted at /45/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   53.244829][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.245182][ T4381] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.269: bg 0: block 289: padding at end of block bitmap is not set
[   53.288921][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.329549][ T4390] __nla_validate_parse: 8 callbacks suppressed
[   53.329563][ T4390] netlink: 12 bytes leftover after parsing attributes in process `syz.4.273'.
[   53.344666][ T4390] netlink: 12 bytes leftover after parsing attributes in process `syz.4.273'.
[   53.400060][ T4402] netlink: 4 bytes leftover after parsing attributes in process `syz.3.272'.
[   53.421235][ T4402] bridge_slave_1: left allmulticast mode
[   53.427042][ T4402] bridge_slave_1: left promiscuous mode
[   53.432760][ T4402] bridge0: port 2(bridge_slave_1) entered disabled state
[   53.441812][ T4402] bridge_slave_0: left allmulticast mode
[   53.447491][ T4402] bridge_slave_0: left promiscuous mode
[   53.453123][ T4402] bridge0: port 1(bridge_slave_0) entered disabled state
[   53.463239][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.510659][ T4409] netlink: 4 bytes leftover after parsing attributes in process `syz.1.277'.
[   53.599971][ T4392] loop3: detected capacity change from 0 to 1024
[   53.615720][ T4421] loop4: detected capacity change from 0 to 512
[   53.616482][ T4392] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.272: Failed to acquire dquot type 0
[   53.634954][ T4392] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[   53.649571][ T4392] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.272: corrupted inode contents
[   53.652313][ T4421] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.669624][ T4392] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #13: comm syz.3.272: mark_inode_dirty error
[   53.673825][ T4421] ext4 filesystem being mounted at /61/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   53.685090][ T4421] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.282: bg 0: block 289: padding at end of block bitmap is not set
[   53.698450][ T4392] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.272: corrupted inode contents
[   53.712796][   T29] kauditd_printk_skb: 212 callbacks suppressed
[   53.712811][   T29] audit: type=1326 audit(1758952792.084:926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4410 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f460cceeec9 code=0x7ffc0000
[   53.751365][   T29] audit: type=1326 audit(1758952792.114:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4408 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f460cceeec9 code=0x7ffc0000
[   53.774740][   T29] audit: type=1326 audit(1758952792.114:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4408 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f460cceeec9 code=0x7ffc0000
[   53.775861][ T4392] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #13: comm syz.3.272: mark_inode_dirty error
[   53.797955][   T29] audit: type=1326 audit(1758952792.114:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4408 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f460cceeec9 code=0x7ffc0000
[   53.832362][   T29] audit: type=1326 audit(1758952792.114:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4408 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f460cceeec9 code=0x7ffc0000
[   53.855656][   T29] audit: type=1326 audit(1758952792.114:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4408 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f460cceeec9 code=0x7ffc0000
[   53.856916][ T4392] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.272: corrupted inode contents
[   53.892407][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   53.892556][ T4392] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   53.910677][ T4392] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.272: corrupted inode contents
[   53.923579][ T4392] EXT4-fs error (device loop3): ext4_truncate:4666: inode #13: comm syz.3.272: mark_inode_dirty error
[   53.936065][ T4392] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   53.945581][ T4392] EXT4-fs (loop3): 1 truncate cleaned up
[   53.951781][ T4392] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   53.970734][   T29] audit: type=1400 audit(1758952792.344:932): avc:  denied  { bind } for  pid=4427 comm="syz.4.284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   53.992762][   T29] audit: type=1400 audit(1758952792.344:933): avc:  denied  { setopt } for  pid=4427 comm="syz.4.284" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   54.013212][   T29] audit: type=1400 audit(1758952792.364:934): avc:  denied  { remount } for  pid=4391 comm="syz.3.272" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   54.014292][ T4428] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.044154][ T4392] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   54.066048][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   54.106058][ T4428] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.159094][   T29] audit: type=1326 audit(1758952792.524:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4431 comm="syz.3.285" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa52cf9eec9 code=0x0
[   54.195950][ T4428] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.246048][ T4428] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.301918][   T51] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.326473][   T51] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.338114][ T4437] loop1: detected capacity change from 0 to 512
[   54.343338][   T51] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.353315][ T4437] EXT4-fs: Ignoring removed mblk_io_submit option
[   54.359955][   T31] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   54.375268][ T4437] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   54.395652][ T4437] EXT4-fs (loop1): 1 truncate cleaned up
[   54.405144][ T4437] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   54.725468][ T4468] loop4: detected capacity change from 0 to 512
[   54.991812][ T4472] netlink: 4 bytes leftover after parsing attributes in process `syz.4.302'.
[   55.213284][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.324704][ T4499] serio: Serial port ptm0
[   55.386124][ T4507] netlink: 4 bytes leftover after parsing attributes in process `syz.4.316'.
[   55.470334][ T4520] loop2: detected capacity change from 0 to 512
[   55.486564][ T4520] EXT4-fs: Ignoring removed mblk_io_submit option
[   55.499477][ T4520] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   55.516993][ T4520] EXT4-fs (loop2): 1 truncate cleaned up
[   55.523356][ T4520] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   55.562445][ T4528] netlink: 20 bytes leftover after parsing attributes in process `syz.4.325'.
[   55.575897][ T4528] loop4: detected capacity change from 0 to 512
[   55.626967][ T4528] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.325: bg 0: block 5: invalid block bitmap
[   55.648989][ T4528] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   55.692805][ T4528] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.325: invalid indirect mapped block 3 (level 2)
[   55.709747][ T4528] EXT4-fs (loop4): 2 truncates cleaned up
[   55.716700][ T4528] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   55.729994][ T4538] loop3: detected capacity change from 0 to 8192
[   55.772951][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   55.804132][ T4543] netlink: 4 bytes leftover after parsing attributes in process `syz.4.330'.
[   55.890574][ T4550] loop0: detected capacity change from 0 to 512
[   56.019459][ T4568] loop3: detected capacity change from 0 to 512
[   56.148664][ T4576] netlink: 20 bytes leftover after parsing attributes in process `syz.0.344'.
[   56.320755][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.351357][ T4610] netlink: 'syz.0.358': attribute type 4 has an invalid length.
[   56.359178][ T4610] netlink: 17 bytes leftover after parsing attributes in process `syz.0.358'.
[   56.420641][ T4614] vlan2: entered allmulticast mode
[   56.499321][ T4634] loop2: detected capacity change from 0 to 512
[   56.514611][ T4634] EXT4-fs: Ignoring removed mblk_io_submit option
[   56.532432][ T4634] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   56.543172][ T4636] loop1: detected capacity change from 0 to 512
[   56.546649][ T4634] EXT4-fs (loop2): 1 truncate cleaned up
[   56.562170][ T4636] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   56.569153][ T4634] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   56.594853][ T4636] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   56.608984][ T4636] ext4 filesystem being mounted at /78/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.636326][ T4636] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.369: corrupted xattr block 19: overlapping e_value 
[   56.652592][ T4636] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[   56.661866][ T4636] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.369: corrupted xattr block 19: overlapping e_value 
[   56.678433][ T4636] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[   56.686776][ T4643] sctp: failed to load transform for md5: -2
[   56.708048][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   56.728298][ T3307] ==================================================================
[   56.736411][ T3307] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru
[   56.743992][ T3307] 
[   56.746324][ T3307] read-write to 0xffff888237c25ea8 of 1 bytes by task 4651 on cpu 0:
[   56.754386][ T3307]  folio_add_lru+0xa5/0x1f0
[   56.758908][ T3307]  folio_add_lru_vma+0x49/0x70
[   56.763679][ T3307]  do_wp_page+0x1458/0x24e0
[   56.768198][ T3307]  handle_mm_fault+0x77d/0x2c20
[   56.773052][ T3307]  do_user_addr_fault+0x636/0x1090
[   56.778187][ T3307]  exc_page_fault+0x62/0xa0
[   56.782706][ T3307]  asm_exc_page_fault+0x26/0x30
[   56.787603][ T3307] 
[   56.789929][ T3307] read to 0xffff888237c25ea8 of 1 bytes by task 3307 on cpu 1:
[   56.797469][ T3307]  __lru_add_drain_all+0x12b/0x3f0
[   56.802591][ T3307]  lru_add_drain_all+0x10/0x20
[   56.807362][ T3307]  invalidate_bdev+0x47/0x70
[   56.811961][ T3307]  ext4_put_super+0x624/0x7d0
[   56.816645][ T3307]  generic_shutdown_super+0xe3/0x210
[   56.821955][ T3307]  kill_block_super+0x2a/0x70
[   56.826644][ T3307]  ext4_kill_sb+0x42/0x80
[   56.830995][ T3307]  deactivate_locked_super+0x75/0x1c0
[   56.836393][ T3307]  deactivate_super+0x97/0xa0
[   56.841099][ T3307]  cleanup_mnt+0x269/0x2e0
[   56.845542][ T3307]  __cleanup_mnt+0x19/0x20
[   56.849979][ T3307]  task_work_run+0x12e/0x1a0
[   56.854592][ T3307]  exit_to_user_mode_loop+0xe4/0x100
[   56.859887][ T3307]  do_syscall_64+0x1d6/0x200
[   56.864497][ T3307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.870399][ T3307] 
[   56.872724][ T3307] value changed: 0x0d -> 0x10
[   56.877419][ T3307] 
[   56.879753][ T3307] Reported by Kernel Concurrency Sanitizer on:
[   56.885932][ T3307] CPU: 1 UID: 0 PID: 3307 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(voluntary) 
[   56.895837][ T3307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   56.905914][ T3307] ==================================================================
[   56.941776][ T4655] FAULT_INJECTION: forcing a failure.
[   56.941776][ T4655] name failslab, interval 1, probability 0, space 0, times 0
[   56.954420][ T4655] CPU: 0 UID: 0 PID: 4655 Comm: syz.1.372 Not tainted syzkaller #0 PREEMPT(voluntary) 
[   56.954480][ T4655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[   56.954490][ T4655] Call Trace:
[   56.954494][ T4655]  <TASK>
[   56.954500][ T4655]  __dump_stack+0x1d/0x30
[   56.954541][ T4655]  dump_stack_lvl+0xe8/0x140
[   56.954561][ T4655]  dump_stack+0x15/0x1b
[   56.954575][ T4655]  should_fail_ex+0x265/0x280
[   56.954666][ T4655]  should_failslab+0x8c/0xb0
[   56.954771][ T4655]  __kmalloc_noprof+0xa5/0x3e0
[   56.954798][ T4655]  ? iovec_from_user+0x84/0x210
[   56.954827][ T4655]  ? mntput_no_expire+0x6f/0x460
[   56.954904][ T4655]  iovec_from_user+0x84/0x210
[   56.955021][ T4655]  __import_iovec+0xf3/0x540
[   56.955058][ T4655]  import_iovec+0x61/0x80
[   56.955134][ T4655]  ___sys_recvmsg+0x358/0x370
[   56.955210][ T4655]  do_recvmmsg+0x1ef/0x540
[   56.955244][ T4655]  ? get_timespec64+0xc9/0x100
[   56.955339][ T4655]  __x64_sys_recvmmsg+0xfb/0x170
[   56.955383][ T4655]  x64_sys_call+0x27a6/0x2ff0
[   56.955473][ T4655]  do_syscall_64+0xd2/0x200
[   56.955506][ T4655]  ? arch_exit_to_user_mode_prepare+0x27/0x80
[   56.955608][ T4655]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[   56.955640][ T4655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   56.955663][ T4655] RIP: 0033:0x7f460cceeec9
[   56.955679][ T4655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   56.955697][ T4655] RSP: 002b:00007f460b757038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[   56.955771][ T4655] RAX: ffffffffffffffda RBX: 00007f460cf45fa0 RCX: 00007f460cceeec9
[   56.955786][ T4655] RDX: 04000000000003b4 RSI: 00002000000037c0 RDI: 0000000000000003
[   56.955801][ T4655] RBP: 00007f460b757090 R08: 0000200000003700 R09: 0000000000000000
[   56.955814][ T4655] R10: 0000000002040000 R11: 0000000000000246 R12: 0000000000000001
[   56.955824][ T4655] R13: 00007f460cf46038 R14: 00007f460cf45fa0 R15: 00007fff6fd96b88
[   56.955840][ T4655]  </TASK>
[   57.345471][ T3308] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.