last executing test programs:

5.33538961s ago: executing program 0 (id=171):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x1, @perf_config_ext={0x0, 0x2}, 0x8002, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x7, 0x20000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x5, 0x800000000003}, 0x100000, 0x0, 0x2005, 0x3, 0x5, 0x8, 0xfffc}, 0x0, 0x3, 0xffffffffffffffff, 0xa)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x44094000, 0x0, 0x21, &(0x7f0000000400), 0x0, &(0x7f0000008a00))
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000c80)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000200))
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r2, 0x4002f516, &(0x7f0000000240)={0x81, 0x93})
ioctl$PPPIOCSFLAGS1(r2, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r2, &(0x7f0000000080)=[{&(0x7f0000000300)='\x00!G', 0x3}], 0x1, 0x9, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00'}, 0x10)
writev(r4, &(0x7f0000004340)=[{&(0x7f0000002080)="4f7f61bfe7ec271202403a540b524a03bda1e44111dd69d3924090d27ac2f6b2c654d94690a10a33d0", 0x29}], 0x1)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0)

4.271124996s ago: executing program 0 (id=177):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x30, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xa4}}, 0x20000080)

4.258388486s ago: executing program 0 (id=179):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f00000004c0)=@nbd={'/dev/nbd', 0x0}, 0x0, &(0x7f0000000500)='./bus\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f00000500000000000000", @ANYRES32, @ANYBLOB='\x00'/19, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000013bd0000b0c990f100"/28], 0x48)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000580)={'vcan0\x00'})
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bind$can_raw(r4, 0x0, 0x0)
bind$can_raw(r4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0)
syz_clone(0x440c7200, 0x0, 0x0, 0x0, 0x0, 0x0)

2.85375288s ago: executing program 0 (id=188):
r0 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000300)={0x0, 0x1, 0x7})
r1 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
epoll_pwait(r1, &(0x7f0000000040)=[{}], 0x1, 0x800, &(0x7f0000000080)={[0x3]}, 0x8)
r2 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0xff97, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)
mq_timedreceive(r0, &(0x7f0000000440)=""/121, 0x79, 0x6, 0x0)

1.928167397s ago: executing program 0 (id=201):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x34, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xa8}}, 0x20000080)

1.926942137s ago: executing program 4 (id=204):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x30, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x30, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}], {0x14, 0x10}}, 0xa8}}, 0x20000080)

1.836348077s ago: executing program 0 (id=206):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800001bc81a000000000002000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000101180000000000000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000e500010000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
epoll_create1(0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x100010e, &(0x7f0000000200), 0x2, 0x45c, &(0x7f0000000b40)="$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")
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0xa4}, {0x6}]})
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r3)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r3, 0x40085507, &(0x7f00000000c0)=0x50000002)
ioctl$TIOCSSOFTCAR(r0, 0x5453, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x4, 0x2004, @fd, 0x81, 0x0, 0x0, 0x4, 0x1, {0x1}})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000480)={0x0, 0x0})
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, 0xffffffffffffffff, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, 0xffffffffffffffff, &(0x7f0000000c40)={0x2000000b})

1.762079027s ago: executing program 2 (id=207):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x28, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}], {0x14, 0x10}}, 0xac}}, 0x20000080)

1.696612916s ago: executing program 2 (id=208):
r0 = memfd_create(&(0x7f0000001d80)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x84\xcdN\xf7\xf6\b~\xed_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xadNaC\xa6\xf9\xa7>c\x84\xd8\xfa\xf1\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8g8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\xea\x82\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\x0f\x8eS\xaeX\x93\x7f\xd3\xb9a\xe4\xe0\xbd\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x84\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1#\xe7N\x89\xf8\xe8+\xa1\x82\x13\xb2\xa9\xef\xa5\xf8\x8b \x00\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)2\xe2\xd6\x81\x00b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|&k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc2Ru2Ht\re\xa1\xf6\xbd\xaa\xb0\x83}i\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf\xa4O\xb4\xed\xc8\xccH\xd1=\x81\x00\x00\x00\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xd6\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\x86C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17U\xf0\x16K\xf9&@\xb1[\xe2j$F1n@\xde\n%t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5#\x7f\xa8\x1f\x14\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebk\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x850\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96\x87\xc0e\xab\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!\xec\xf7$\xc2\xbaU \x98\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\"k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xec\x01\'\t\x89(\xf9\x98B\xaf\xde*\x91\xd5k\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\xdfC\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84\x0e\xa7U\xc7}\xea.U`\x1b*\xcep\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xc9\xcfw\xf3\x02\x1b\xde\xc3\x86\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x13\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcdQ\xdf\x83\xbdjp,\xe8\xbb\xe6\xc6Db\xb8\xd6\xcd\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd4k7L\x8a\xa3Z\xf9%{\xfax\x9a\x04\'/\x90\xe6\xe2\xe9\xf1@o\x0ez\xb8\xce\xbeF\x0fkE\xf4ry\x92n\xff\xcb\xf8e\xf3j\xc5[wK\x91\xdb\xf7-r\xd3\x1bx\x9b$\x91\x03q\x9e@\xd8R\x11\x05|\x8f\xb4\xc9\x16\x87C\xab\x96\xc4\xef\xea\xb9\r\xf5\xf3\xbe\x8a\t\xc7\x88\xc0sL;.\xcf\x1d\xc4^\xb0l\xbb\x97\xc5\xf6n\xca\x18M\xb8\x81\xff\xa9~\xf7\xa3\xa6\xd3\x15I\xecXG\x89\xa8\b\x8b\xcc\xe8\x88\xa07Z\x03\xa8.\x7f\x16qlk\xf1\xf1y\x8c\xde\xd6|\xa1(\xf4\x12O\xca3\xf8%1\x8d\xd7\a\xfeJ\xe6\x8bc\xb3\x1bKC.\xafB\x8d\xdd\xf9\x1e\x9d\xa7\x13\x00\x14\xc7\xa1\xf3\x1e\xcb\x19\x13z`\xac\xf3\xd1x\x1b#}\xfaYR\xc5#Zoag@\x18\xfa*\xb4\xc4\x04\x03V\x87\xc5\xe7\xb5\x9bJ\x85-\x7f\xfe\xc0\xb7g\xe8\'`\x96q\x88[\xf8\xe8L\x12\x85\xf5t\x99\x0e}\xd3H\xed\xda\xf3>\xd8\x12\x8cXc5%\x03\x8d`\xdayC\x9b\x9a\xd9c\xe9\xb4\v\x99\x87\xe4\x00\x8a\x8eS\x8e\f\x05ZH\xa2\x0e\xbc\x9c\x95\b2Cf6\x9a\xe7\xb9\x86\xbe\xd0\xda\x91\xc1sl\x11PA\x93\xa5\x93\xc8\xf1w\x7fp6z\xbf\xe8[\'u\xb8\xd2$K\x12\rt\x87\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00r\xe2`\xdf\xd2\xb3\xaf\xe9\xc4!Z\xb4&\xa2\x12\xe2i\x91kC$A\xafR\xb3\xff\x1d=\xec\x10\xb4+\x13\'\x92>\x14\x00\a\xb6R\x8b\xdcz\xc3\xd1Y\xd6\xd9;s \xb0\x938\xb7D9\xdcN\xbd\xdbn\xe35\xa7\x02\x9c\xc1\xd9\x13?\xc9\xd7\xab\x9c\xf3\x82\xd1\xee^kk\xce\xdbn\x02\x1f\x80\t\xdbr\xa9\xcc\xf1\xcb\x9f@\x8c\xfc\x02W/p\x97\xb0\xbd\x8f\xdb|n2a\xee\x95u\x83\xca\x8a>}\xd3\xd0\xff6.pa\x17\xe3e\xd2\x7f\xf6\xbc\x9d\x112\x1b\x14<B\x91\xc0{{\x9d@\xb3a\xad\x14\xe9\xcc|\xd7\xa1\xc6\xb9F\x04\xce]\xb9Y\xbd\xbd\f\xa4F;q\xec\x83\x9bM\x93\xa4\x9c\xdd\x93\xa0\x82E\x02d\xd4RAI\xd9O\x17\xa6P#\xa35\a\xf6\xbb\t>p\xa1\xd6u\xefn\xb4\xa3\x05D\x8c\xc5l\xcc\b\xeb\xf42\xe9\xf15\xf3\xf2\xee\xd6\xed\t\xb3\xf7\x1a\x7f\xe6\xb4z\x19\xe1\xb4w\xf7\xa6\xd7\\\xfa\x96\xe2\xf9\xb1\x81\xba\xdfg\xadI\x1c\xde*_\xd5\xdf\xeeA\xcd \x91\xc9\xd4\xd1\xcd*.t\x80]\xd5~\xfb\xfb>\x9d\x91Kq]N\x87\x0f\x04L\xd4(\xf2G \xfdr~:\xc4\xc3\xfe\x14G\xadG~^l\xe0:(Y`\x0e\x90\xfa\x1c\xb6\f6\x92B\x92\xd3\xa9BG\xd2*AB\x1e\x01\xf0m+\x02\x87\x81aj;\xb6y.g\xeb\xc4\x0f\xd3\x85\xa5\x00\xa1\xa6iP\x0f\x02\x14\x90q\x94\xab\xb3\x0f\x01=\x06\x98\xa8\x87\xd9=\xce\xbef\x98\x87\xb5p\xf7\xd7\xeb\xfb\xf30\xb8\xf1\b\x06M\x18w\xdc\x0e\x98?\x04G\xf9\x99\xab\xc1\xc0z\xe9Fu\x03\x9aj\xc0]\xb47\xd5\xb8]\x98y@\x8c\x8fM\x8c],\x1b\x03\xaa\'gv\xeb\xbf\xa8d\"\x94e3Q\xfci\xdf\xad\x819\xd1\xf3\xaa\xc8i\xf2\x8a\xc4CU3\x87Ns\x9f\x9f\xcd\x05\x06', 0x7)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000002, 0x13, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
read(r0, &(0x7f0000001900)=""/260, 0x119)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='cpu_frequency_limits\x00', r3, 0x0, 0x4}, 0x18)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
pipe(&(0x7f0000000480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x7000000}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x2d, &(0x7f0000000cc0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x70c, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@jmp={0x5, 0x1, 0x99796797ec807d36, 0x7, 0x1, 0xffffffffffffffc0, 0x1}, @alu={0x4, 0x1, 0x3, 0x0, 0xa, 0x1, 0xfffffffffffffff0}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2b7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @map_val={0x18, 0xd9b79c375e24d930, 0x2, 0x0, r1, 0x0, 0x0, 0x0, 0x9}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$PPPIOCGDEBUG(r4, 0x80047441, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00'}, 0x10)
setsockopt$sock_int(r4, 0x1, 0x10, &(0x7f0000000280)=0x10000, 0x4)
write(r5, &(0x7f0000000340), 0x11000)
sendmsg$NFT_BATCH(r6, &(0x7f0000000800)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000a80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWSETELEM={0x1c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELTABLE={0x15c, 0x2, 0xa, 0x801, 0x0, 0x0, {0x0, 0x0, 0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_USERDATA={0x5e, 0x6, "54480c2f373bdf2bb6eb3c435540363c7086a2a580d1e8ab63df668a300278981ccab080b17373ee0e910935919fa5e86935c9b2aed92597288108df7c40784afaadec85e7167276f82d887aeded22cb7c5db6ebf3b4177f3828"}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_USERDATA={0xa2, 0x6, "cebfaa3206e465d9fd2c4855a13a9cf46d80076b70710b1994ba47cf252fa57e7521c5aab2fbc98a59a7e82447f035ff51d1bf1c2aa938d80fcb546a6b577b6c9720a12b9b145641ebb6e485fea44a359d85cb3148bdf9373f120a77bf99efd2f0177b0b7b3321ddad0659beeb31d7b4b89f3cca9c4ef1af242bd528f909c7a13c273511589ba08c67e35b2a014bdcdca03c8667877d8aa1dcfd9f05c43f"}]}, @NFT_MSG_DELFLOWTABLE={0x18, 0x18, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_FLOWTABLE_HOOK={0x4}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x1b8}, 0x1, 0x0, 0x0, 0x34040840}, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000001780), 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r4, @ANYBLOB=',wf', @ANYBLOB])
vmsplice(r4, &(0x7f0000000000), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000600)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@errors_remount}, {@noload}]}, 0x3, 0x44a, &(0x7f00000006c0)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x18, 0x4, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000006c0)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1}}, @TCA_ACT_BPF_FD={0x8, 0x5, r8}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
socket(0x10, 0x3, 0x0)

1.342203575s ago: executing program 4 (id=210):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x38, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xc, 0x3, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}]}]}]}], {0x14, 0x10}}, 0xbc}}, 0x20000080)

1.303433735s ago: executing program 4 (id=211):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAPCLR(r3, 0x4b68, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4, <r5=>0xffffffffffffffff}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
r7 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
writev(r7, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}], 0x1)
getrusage(0x1, &(0x7f00000004c0))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000180)={[{@errors_remount}, {@data_journal}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@nolazytime}, {@resgid}, {@quota}]}, 0x1, 0x451, &(0x7f0000000780)="$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")

1.086169804s ago: executing program 4 (id=214):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000840)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
r3 = socket$inet(0x2, 0x6000000000000001, 0x0)
mmap(&(0x7f0000001000/0x200000)=nil, 0x200000, 0x2000001, 0x2011, r3, 0x0)
sendmsg$tipc(r0, &(0x7f00000005c0)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x600}}, 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x101d0}], 0x1}, 0x0)

1.060806484s ago: executing program 4 (id=216):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x34, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xa8}}, 0x20000080)

1.037576164s ago: executing program 4 (id=217):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800001bc81a000000000002000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000101180000000000000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000e500010000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
epoll_create1(0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x100010e, &(0x7f0000000200), 0x2, 0x45c, &(0x7f0000000b40)="$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")
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0xa4}, {0x6}]})
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r3)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r3, 0x40085507, &(0x7f00000000c0)=0x50000002)
ioctl$TIOCSSOFTCAR(r0, 0x5453, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x4, 0x2004, @fd, 0x81, 0x0, 0x0, 0x4, 0x1, {0x1}})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000480)={0x0, 0x0})
socket$nl_netfilter(0x10, 0x3, 0xc)

1.019466633s ago: executing program 3 (id=219):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3, <r4=>0xffffffffffffffff}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
writev(0xffffffffffffffff, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}], 0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0xfe, 0x7ffc0002}]})
getrusage(0x1, &(0x7f00000004c0))

989.595004ms ago: executing program 3 (id=220):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x30, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x30, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}], {0x14, 0x10}}, 0xa8}}, 0x20000080)

966.557943ms ago: executing program 3 (id=221):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x38, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0xc, 0x3, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}]}]}]}], {0x14, 0x10}}, 0xbc}}, 0x20000080)

936.554073ms ago: executing program 3 (id=223):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000002bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0x200, 0x0, 0x4)
io_uring_enter(r3, 0x1e76, 0x0, 0x6, 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r9)
socket(0x400000000010, 0x3, 0x0)
ioctl$TUNSETTXFILTER(r5, 0x400454d1, &(0x7f0000000a80)=ANY=[@ANYBLOB="01000100ffffffff000037a9"])
ioctl$SIOCSIFHWADDR(r9, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r11}, 0x10)
r12 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCGPTPEER(r12, 0x5441, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x10, &(0x7f0000000300)=ANY=[@ANYRES64=0x0], 0x0, 0x238, &(0x7f0000000500)="$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")

788.652503ms ago: executing program 2 (id=226):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r2, 0x3)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r3, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)

728.770743ms ago: executing program 2 (id=227):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x90}}, 0x20000080)

697.640212ms ago: executing program 2 (id=228):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3477, 0x0, 0x0, 0x0, 0x8}}, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c)
r2 = dup2(r1, r1)
write$qrtrtun(r2, &(0x7f00000003c0)="63c01ea7106c790a09300a72054cf6897d9b14bf892ae5bc2ca23d1d4b4225ab78c1da0f0a4936", 0x27)

646.391252ms ago: executing program 2 (id=230):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800001bc81a000000000002000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000101180000000000000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000e500010000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e85000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
epoll_create1(0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x100010e, &(0x7f0000000200), 0x2, 0x45c, &(0x7f0000000b40)="$eJzs28tvG8UfAPDvrpu++0t+pTz6AAIFEfFImrRAD3AAgcQBJCQu5WiStCp1G9QEiVYRBITKEVXijjhW4i/gBBcEnJC4wh1VqlAuFE5Ga+86tmOnSfNwwJ+PtMnM7mxmvp4de3YnDqBvDWc/koj9EfFrRAzWs60Fhuu/bi/OT/61OD+ZRLX61h9Jrdyfi/OTRdHivH15ZiSNSD9N4miHemevXL1QrlSmL+f5sbmL743NXrn6zPmL5XPT56YvTZw+ferk+PPPTTybHa6uN87/Z2098uHMscOvvX39jckz19/58eukiL8tjg0yvNLBx6vrDmlbOdCUTnb0sCGsSSkisu4aqI3/wSjFUucNxqufdD0x3aIGApummutyeKEK/HftHoxeNwHojeKDPrv/rW83tm7ysQ3ceql+A5TFfjvfYiFqO4tbnIG2+9uNNBwRZxb+/jLbYnOeQwAAtPg2m/883Tz/K+YfadzXVO5/+drQUL6WcjAi7qnuikMRcW9Erez9EfHAGutvXyRZPv9Jb95VYKuUzf9eyNe2GvO/er1FkaFSnjtQi38gOXu+Mn0if01GYmBXlh9foY7vXvnl827Hmud/2ZbVX8wF83bc3LGr9Zyp8lx5PTE3u/VxxJEdneJPGisBSUQcjogjd1nH+SdvHOt27M7xN+xctmcD1pmqX0U8Ue//hWiLv5CsvD45tjsq0yfGiqtiuZ9+vvZmt/rXEP+myPp/b8frvxH/UNKyXruw5pXLa7991vWeZnR11/+LzeNrqrw0IIqL4oPy3Nzl8Yidyev1Rjfvn1g6t8gX5bP4R453Hv8HY+mVOBoR2UX8YEQ8FBEP5333SEQ8GhHHV4j/h5cfe7fbse3Q/1Nt/T/UWqS1/5sSO6N9T+dE6cL337T+xaXk6t7/TtVSI/me1bz/raZdWWJdLx4AAAD8S6QRsT+SdLSRTtPR0fr/8B+KvWllZnbuqbMz71+aqn9HYCgG0uJJ12DT89Dx/La+yE+05U/mz42/KO2p5UcnZypTvQ4e+ty+LuM/83up160DNp3va0H/Mv6hfxn/0L+Mf+hfHcb/nl60A9h6nT7/P+pBO4Ct1zb+LftBH2mM/6S37QC2nud/0L+ax78pAPSN2T1x5y/JS0gsS0S6LZqxMYlkk0fB/l4HuPZEr9+ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANsY/AQAA//9couxY")
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0xa4}, {0x6}]})
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r3)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r3, 0x40085507, &(0x7f00000000c0)=0x50000002)
ioctl$TIOCSSOFTCAR(r0, 0x5453, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x4, 0x2004, @fd, 0x81, 0x0, 0x0, 0x4, 0x1, {0x1}})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000480)={0x0, 0x0})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}], {0x14}}, 0x54}}, 0x0)
r5 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, 0xffffffffffffffff, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r5, 0x3, 0xffffffffffffffff, &(0x7f0000000c40)={0x2000000b})

615.973003ms ago: executing program 3 (id=232):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
r0 = socket(0x2, 0x3, 0x6)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
openat(r1, &(0x7f0000000280)='./file0\x00', 0x6a0c2, 0xc4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
add_key$user(&(0x7f0000000380), &(0x7f00000004c0)={'syz', 0x0}, &(0x7f0000000500)="df28055314bfd4446014b7561f494b96f973d64aa05d8db10686d2a7ee81a4d5261743f12c67b3026e98cfd3a1e6f779e66175274319714677adeb65e84915bbfca36c40dd820324cecd4236dba0787ca22846285f5e18ea1985087c352a77c29c87ed4523ba88495bd89b176b18a271002a7fbc25fe14b4eb77b73d25e137d718f4670a83bf6a8ea8c9b33f235b9e3aebe36bbbcffab890f222bb0deec10acd93a0ce8b2d8a3f8ac097a4db31809d1e7b612f7956a1609257c0fad3ae681dc231e26124ed539de0c053e2fcdbc34ed56b18b7541134fbf6e25a8e0f1d", 0xdd, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x3)
mount$9p_tcp(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e22'])
close_range(r0, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000000)=ANY=[], 0x3, 0x35b, &(0x7f0000000980)="$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")
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f00000001c0)=""/184, 0xb8)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02cf5e000055dc6f77d05a41bfd83b0919190882428a5bc0ef96b751006cb8c319ff75faf9363786fd5bd748c664a7a054216e45a0ad4e3079e579ce755b20cc26b28461a67a930f2d79a3a87a14585b43ce9bc83100000000", @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000200"/28], 0x50)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x7, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000490000000000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000008c0)="89", 0x0}, 0x32)
symlinkat(0x0, 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x6, 0x0, 0x7ffc1ffb}]})
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYRES8], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="50914ddc783317428ade2c67b2aa958b3d456fe78f4d63962863ba517d2f975425968ebaa75e92550e0f71349ffeb353a76caabe3f2fdad91a63db7e88ebcdb7bebfd4f65bbf0bc8eb8783490af80f4d344640b09a8860249115d7b805afd67c23daa1853278f889320820a40bf37baa3bbb266c08d708e87ecad9", @ANYRES64=r4], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = semget$private(0x0, 0x3, 0x0)
semop(r6, &(0x7f0000000100)=[{0x2, 0xd5db}], 0x1)
semop(r6, &(0x7f0000000140)=[{0x0, 0xfffb}, {0x2, 0x7f, 0x1800}], 0x2)
semop(r6, &(0x7f0000001400)=[{0x0, 0x200}], 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000029000)={<r7=>0xffffffffffffffff})
ioctl$int_in(r7, 0x5452, &(0x7f0000000180)=0xf64c)
fcntl$setsig(r7, 0xa, 0x12)

408.439631ms ago: executing program 3 (id=236):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280), 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="180800001bc81a000000000002000001851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000000006608000000000101180000000000000000000000000000009500000000000000360a000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000e500010000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000050000000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e85000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
epoll_create1(0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x100010e, &(0x7f0000000200), 0x2, 0x45c, &(0x7f0000000b40)="$eJzs28tvG8UfAPDvrpu++0t+pTz6AAIFEfFImrRAD3AAgcQBJCQu5WiStCp1G9QEiVYRBITKEVXijjhW4i/gBBcEnJC4wh1VqlAuFE5Ga+86tmOnSfNwwJ+PtMnM7mxmvp4de3YnDqBvDWc/koj9EfFrRAzWs60Fhuu/bi/OT/61OD+ZRLX61h9Jrdyfi/OTRdHivH15ZiSNSD9N4miHemevXL1QrlSmL+f5sbmL743NXrn6zPmL5XPT56YvTZw+ferk+PPPTTybHa6uN87/Z2098uHMscOvvX39jckz19/58eukiL8tjg0yvNLBx6vrDmlbOdCUTnb0sCGsSSkisu4aqI3/wSjFUucNxqufdD0x3aIGApummutyeKEK/HftHoxeNwHojeKDPrv/rW83tm7ysQ3ceql+A5TFfjvfYiFqO4tbnIG2+9uNNBwRZxb+/jLbYnOeQwAAtPg2m/883Tz/K+YfadzXVO5/+drQUL6WcjAi7qnuikMRcW9Erez9EfHAGutvXyRZPv9Jb95VYKuUzf9eyNe2GvO/er1FkaFSnjtQi38gOXu+Mn0if01GYmBXlh9foY7vXvnl827Hmud/2ZbVX8wF83bc3LGr9Zyp8lx5PTE3u/VxxJEdneJPGisBSUQcjogjd1nH+SdvHOt27M7xN+xctmcD1pmqX0U8Ue//hWiLv5CsvD45tjsq0yfGiqtiuZ9+vvZmt/rXEP+myPp/b8frvxH/UNKyXruw5pXLa7991vWeZnR11/+LzeNrqrw0IIqL4oPy3Nzl8Yidyev1Rjfvn1g6t8gX5bP4R453Hv8HY+mVOBoR2UX8YEQ8FBEP5333SEQ8GhHHV4j/h5cfe7fbse3Q/1Nt/T/UWqS1/5sSO6N9T+dE6cL337T+xaXk6t7/TtVSI/me1bz/raZdWWJdLx4AAAD8S6QRsT+SdLSRTtPR0fr/8B+KvWllZnbuqbMz71+aqn9HYCgG0uJJ12DT89Dx/La+yE+05U/mz42/KO2p5UcnZypTvQ4e+ty+LuM/83up160DNp3va0H/Mv6hfxn/0L+Mf+hfHcb/nl60A9h6nT7/P+pBO4Ct1zb+LftBH2mM/6S37QC2nud/0L+ax78pAPSN2T1x5y/JS0gsS0S6LZqxMYlkk0fB/l4HuPZEr9+ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANsY/AQAA//9couxY")
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0xa4}, {0x6}]})
r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r3)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r3, 0x40085507, &(0x7f00000000c0)=0x50000002)
ioctl$TIOCSSOFTCAR(r0, 0x5453, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000480)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x4, 0x2004, @fd, 0x81, 0x0, 0x0, 0x4, 0x1, {0x1}})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000480)={0x0, 0x0})
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, 0xffffffffffffffff, &(0x7f0000000040))
epoll_ctl$EPOLL_CTL_MOD(r4, 0x3, 0xffffffffffffffff, &(0x7f0000000c40)={0x2000000b})

303.336181ms ago: executing program 1 (id=238):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x10}]}, @NFT_MSG_NEWSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0x90}}, 0x20000080)

260.477861ms ago: executing program 1 (id=239):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYRES8=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000001c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r2, 0x3)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x96, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_bp={0x0}, 0x11090, 0xe2, 0x0, 0x3, 0x926c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0x1}, 0x0, &(0x7f0000000080)}, 0x20)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x5, 0x97, &(0x7f00000001c0)=""/151, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0, 0x2}, 0x48)
connect$inet(r3, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)

98.75722ms ago: executing program 1 (id=240):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x3, &(0x7f0000000600)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3477, 0x0, 0x0, 0x0, 0x8}}, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c)
r2 = dup2(r1, r1)
write$qrtrtun(r2, &(0x7f00000003c0)="63c01ea7106c790a09300a72054cf6897d9b14bf892ae5bc2ca23d1d4b4225ab78c1da0f0a4936", 0x27)

98.37606ms ago: executing program 1 (id=241):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x34, 0xe, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}], {0x14, 0x10}}, 0x7c}}, 0x20000080)

84.42531ms ago: executing program 1 (id=242):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAPCLR(r3, 0x4b68, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4, <r5=>0xffffffffffffffff}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
getrusage(0x1, &(0x7f00000004c0))
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x58e, &(0x7f0000000180)={[{@errors_remount}, {@data_journal}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6e}}, {@nolazytime}, {@resgid}, {@quota}]}, 0x1, 0x451, &(0x7f0000000780)="$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")

0s ago: executing program 1 (id=243):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESHEX, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000002bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r2, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4}, &(0x7f0000000140)=<r4=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0x200, 0x0, 0x4)
io_uring_enter(r3, 0x1e76, 0x0, 0x6, 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r9)
socket(0x400000000010, 0x3, 0x0)
ioctl$TUNSETTXFILTER(r5, 0x400454d1, &(0x7f0000000a80)=ANY=[@ANYBLOB="01000100ffffffff000037a9"])
ioctl$SIOCSIFHWADDR(r9, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r10, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r11}, 0x10)
r12 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCGPTPEER(r12, 0x5441, 0x0)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x10, &(0x7f0000000300)=ANY=[@ANYRES64=0x0], 0x0, 0x238, &(0x7f0000000500)="$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")

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.18' (ED25519) to the list of known hosts.
[   28.074576][   T29] audit: type=1400 audit(1738312628.881:82): avc:  denied  { mounton } for  pid=3286 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   28.075376][ T3286] cgroup: Unknown subsys name 'net'
[   28.097409][   T29] audit: type=1400 audit(1738312628.881:83): avc:  denied  { mount } for  pid=3286 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   28.124930][   T29] audit: type=1400 audit(1738312628.911:84): avc:  denied  { unmount } for  pid=3286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   28.277227][ T3286] cgroup: Unknown subsys name 'cpuset'
[   28.283294][ T3286] cgroup: Unknown subsys name 'rlimit'
[   28.431436][   T29] audit: type=1400 audit(1738312629.241:85): avc:  denied  { setattr } for  pid=3286 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   28.454699][   T29] audit: type=1400 audit(1738312629.241:86): avc:  denied  { create } for  pid=3286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   28.475236][   T29] audit: type=1400 audit(1738312629.241:87): avc:  denied  { write } for  pid=3286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   28.481042][ T3289] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   28.495664][   T29] audit: type=1400 audit(1738312629.241:88): avc:  denied  { read } for  pid=3286 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   28.524805][   T29] audit: type=1400 audit(1738312629.251:89): avc:  denied  { mounton } for  pid=3286 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   28.549606][   T29] audit: type=1400 audit(1738312629.251:90): avc:  denied  { mount } for  pid=3286 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   28.573048][   T29] audit: type=1400 audit(1738312629.321:91): avc:  denied  { relabelto } for  pid=3289 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   28.605332][ T3286] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   30.376439][ T3296] chnl_net:caif_netlink_parms(): no params data found
[   30.388344][ T3303] chnl_net:caif_netlink_parms(): no params data found
[   30.403640][ T3298] chnl_net:caif_netlink_parms(): no params data found
[   30.447630][ T3305] chnl_net:caif_netlink_parms(): no params data found
[   30.485148][ T3296] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.492266][ T3296] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.499738][ T3296] bridge_slave_0: entered allmulticast mode
[   30.506055][ T3296] bridge_slave_0: entered promiscuous mode
[   30.537172][ T3296] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.545294][ T3296] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.552678][ T3296] bridge_slave_1: entered allmulticast mode
[   30.559026][ T3296] bridge_slave_1: entered promiscuous mode
[   30.569163][ T3306] chnl_net:caif_netlink_parms(): no params data found
[   30.597593][ T3303] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.604896][ T3303] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.612339][ T3303] bridge_slave_0: entered allmulticast mode
[   30.618649][ T3303] bridge_slave_0: entered promiscuous mode
[   30.627347][ T3303] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.634540][ T3303] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.641667][ T3303] bridge_slave_1: entered allmulticast mode
[   30.648060][ T3303] bridge_slave_1: entered promiscuous mode
[   30.658692][ T3298] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.665760][ T3298] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.672984][ T3298] bridge_slave_0: entered allmulticast mode
[   30.679763][ T3298] bridge_slave_0: entered promiscuous mode
[   30.701890][ T3296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.711067][ T3298] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.718199][ T3298] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.725689][ T3298] bridge_slave_1: entered allmulticast mode
[   30.732159][ T3298] bridge_slave_1: entered promiscuous mode
[   30.748900][ T3296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.764817][ T3305] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.772057][ T3305] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.779202][ T3305] bridge_slave_0: entered allmulticast mode
[   30.785546][ T3305] bridge_slave_0: entered promiscuous mode
[   30.792131][ T3305] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.799294][ T3305] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.806710][ T3305] bridge_slave_1: entered allmulticast mode
[   30.813039][ T3305] bridge_slave_1: entered promiscuous mode
[   30.823840][ T3303] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.852032][ T3296] team0: Port device team_slave_0 added
[   30.859554][ T3303] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.869542][ T3298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.887457][ T3296] team0: Port device team_slave_1 added
[   30.898568][ T3298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.907778][ T3306] bridge0: port 1(bridge_slave_0) entered blocking state
[   30.914815][ T3306] bridge0: port 1(bridge_slave_0) entered disabled state
[   30.922045][ T3306] bridge_slave_0: entered allmulticast mode
[   30.928353][ T3306] bridge_slave_0: entered promiscuous mode
[   30.935944][ T3305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   30.945993][ T3305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   30.967948][ T3306] bridge0: port 2(bridge_slave_1) entered blocking state
[   30.975100][ T3306] bridge0: port 2(bridge_slave_1) entered disabled state
[   30.982506][ T3306] bridge_slave_1: entered allmulticast mode
[   30.989016][ T3306] bridge_slave_1: entered promiscuous mode
[   31.004091][ T3303] team0: Port device team_slave_0 added
[   31.009960][ T3296] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.017122][ T3296] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.043042][ T3296] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.065871][ T3303] team0: Port device team_slave_1 added
[   31.072038][ T3296] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.079095][ T3296] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.105016][ T3296] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.116600][ T3298] team0: Port device team_slave_0 added
[   31.129460][ T3306] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   31.139931][ T3305] team0: Port device team_slave_0 added
[   31.155197][ T3303] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.162184][ T3303] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.188079][ T3303] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.199623][ T3298] team0: Port device team_slave_1 added
[   31.206061][ T3305] team0: Port device team_slave_1 added
[   31.212558][ T3306] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   31.222462][ T3303] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.229481][ T3303] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.255957][ T3303] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.297627][ T3298] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.304618][ T3298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.330713][ T3298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.346095][ T3306] team0: Port device team_slave_0 added
[   31.352055][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.359066][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.384997][ T3305] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.402564][ T3296] hsr_slave_0: entered promiscuous mode
[   31.408764][ T3296] hsr_slave_1: entered promiscuous mode
[   31.420298][ T3298] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.427431][ T3298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.453720][ T3298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.465049][ T3306] team0: Port device team_slave_1 added
[   31.477263][ T3305] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.484201][ T3305] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.510281][ T3305] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.535034][ T3303] hsr_slave_0: entered promiscuous mode
[   31.540978][ T3303] hsr_slave_1: entered promiscuous mode
[   31.546970][ T3303] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   31.554514][ T3303] Cannot create hsr debugfs directory
[   31.582056][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_0
[   31.589088][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.615064][ T3306] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   31.642936][ T3306] batman_adv: batadv0: Adding interface: batadv_slave_1
[   31.649985][ T3306] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   31.676066][ T3306] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   31.690938][ T3298] hsr_slave_0: entered promiscuous mode
[   31.697014][ T3298] hsr_slave_1: entered promiscuous mode
[   31.702794][ T3298] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   31.710430][ T3298] Cannot create hsr debugfs directory
[   31.718273][ T3305] hsr_slave_0: entered promiscuous mode
[   31.724174][ T3305] hsr_slave_1: entered promiscuous mode
[   31.730537][ T3305] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   31.738205][ T3305] Cannot create hsr debugfs directory
[   31.783331][ T3306] hsr_slave_0: entered promiscuous mode
[   31.789479][ T3306] hsr_slave_1: entered promiscuous mode
[   31.795390][ T3306] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   31.803126][ T3306] Cannot create hsr debugfs directory
[   31.940920][ T3296] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   31.949231][ T3296] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   31.958243][ T3296] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   31.968253][ T3296] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   31.990534][ T3306] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   32.000107][ T3306] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   32.012320][ T3306] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   32.025237][ T3306] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   32.048433][ T3305] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   32.059374][ T3305] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   32.068043][ T3305] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   32.081849][ T3305] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   32.103726][ T3303] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   32.115267][ T3296] 8021q: adding VLAN 0 to HW filter on device bond0
[   32.123455][ T3303] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   32.132098][ T3303] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   32.153474][ T3303] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   32.170190][ T3296] 8021q: adding VLAN 0 to HW filter on device team0
[   32.192861][  T556] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.200005][  T556] bridge0: port 1(bridge_slave_0) entered forwarding state
[   32.213001][ T3298] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   32.225855][ T3298] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   32.234651][ T3298] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   32.244363][  T556] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.251435][  T556] bridge0: port 2(bridge_slave_1) entered forwarding state
[   32.266001][ T3298] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   32.302527][ T3306] 8021q: adding VLAN 0 to HW filter on device bond0
[   32.318664][ T3305] 8021q: adding VLAN 0 to HW filter on device bond0
[   32.340976][ T3306] 8021q: adding VLAN 0 to HW filter on device team0
[   32.362295][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.369346][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[   32.389245][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.396330][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   32.409413][ T3305] 8021q: adding VLAN 0 to HW filter on device team0
[   32.422338][ T3298] 8021q: adding VLAN 0 to HW filter on device bond0
[   32.434156][ T3296] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.444976][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.452158][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[   32.468227][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.475437][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   32.488680][ T3303] 8021q: adding VLAN 0 to HW filter on device bond0
[   32.496929][ T3298] 8021q: adding VLAN 0 to HW filter on device team0
[   32.521470][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.528623][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   32.540489][ T3303] 8021q: adding VLAN 0 to HW filter on device team0
[   32.553097][   T50] bridge0: port 1(bridge_slave_0) entered blocking state
[   32.560197][   T50] bridge0: port 1(bridge_slave_0) entered forwarding state
[   32.569295][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.576463][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   32.596431][ T3298] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   32.606974][ T3298] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   32.627254][   T50] bridge0: port 2(bridge_slave_1) entered blocking state
[   32.634354][   T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[   32.660361][ T3305] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   32.670783][ T3305] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   32.692811][ T3306] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.737227][ T3296] veth0_vlan: entered promiscuous mode
[   32.758495][ T3296] veth1_vlan: entered promiscuous mode
[   32.774539][ T3298] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.790915][ T3303] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.806912][ T3296] veth0_macvtap: entered promiscuous mode
[   32.818495][ T3296] veth1_macvtap: entered promiscuous mode
[   32.833775][ T3305] 8021q: adding VLAN 0 to HW filter on device batadv0
[   32.851743][ T3296] batman_adv: batadv0: Interface activated: batadv_slave_0
[   32.888369][ T3296] batman_adv: batadv0: Interface activated: batadv_slave_1
[   32.917781][ T3296] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   32.926627][ T3296] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   32.935314][ T3296] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   32.944080][ T3296] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   32.976620][ T3298] veth0_vlan: entered promiscuous mode
[   32.984054][ T3303] veth0_vlan: entered promiscuous mode
[   32.992056][ T3306] veth0_vlan: entered promiscuous mode
[   33.006282][ T3303] veth1_vlan: entered promiscuous mode
[   33.014900][ T3305] veth0_vlan: entered promiscuous mode
[   33.022129][ T3298] veth1_vlan: entered promiscuous mode
[   33.034732][ T3306] veth1_vlan: entered promiscuous mode
[   33.057857][ T3305] veth1_vlan: entered promiscuous mode
[   33.069796][ T3298] veth0_macvtap: entered promiscuous mode
[   33.076691][   T29] kauditd_printk_skb: 24 callbacks suppressed
[   33.076702][   T29] audit: type=1400 audit(1738312633.891:116): avc:  denied  { unmount } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   33.080008][ T3305] veth0_macvtap: entered promiscuous mode
[   33.109322][   T29] audit: type=1400 audit(1738312633.921:117): avc:  denied  { mounton } for  pid=3296 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   33.118622][ T3303] veth0_macvtap: entered promiscuous mode
[   33.132332][   T29] audit: type=1400 audit(1738312633.921:118): avc:  denied  { mount } for  pid=3296 comm="syz-executor" name="/" dev="gadgetfs" ino=4549 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[   33.142676][ T3306] veth0_macvtap: entered promiscuous mode
[   33.171502][ T3298] veth1_macvtap: entered promiscuous mode
[   33.178868][ T3305] veth1_macvtap: entered promiscuous mode
[   33.187435][ T3296] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   33.188191][ T3303] veth1_macvtap: entered promiscuous mode
[   33.214323][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.224844][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.235504][ T3298] batman_adv: batadv0: Interface activated: batadv_slave_0
[   33.246561][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.257227][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.267284][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.276335][   T29] audit: type=1400 audit(1738312634.061:119): avc:  denied  { read write } for  pid=3296 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   33.278468][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.302504][   T29] audit: type=1400 audit(1738312634.061:120): avc:  denied  { open } for  pid=3296 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   33.302528][   T29] audit: type=1400 audit(1738312634.061:121): avc:  denied  { ioctl } for  pid=3296 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=103 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   33.315224][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_0
[   33.377409][ T3305] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.387901][ T3305] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.399062][   T29] audit: type=1400 audit(1738312634.191:122): avc:  denied  { prog_load } for  pid=3437 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   33.400167][ T3305] batman_adv: batadv0: Interface activated: batadv_slave_1
[   33.418039][   T29] audit: type=1400 audit(1738312634.191:123): avc:  denied  { bpf } for  pid=3437 comm="syz.3.4" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   33.445522][   T29] audit: type=1400 audit(1738312634.191:124): avc:  denied  { map_create } for  pid=3437 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   33.464655][   T29] audit: type=1400 audit(1738312634.191:125): avc:  denied  { map_read map_write } for  pid=3437 comm="syz.3.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   33.486887][ T3306] veth1_macvtap: entered promiscuous mode
[   33.496801][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.507372][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.517195][ T3298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.527909][ T3298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.538330][ T3298] batman_adv: batadv0: Interface activated: batadv_slave_1
[   33.582230][ T3442] loop3: detected capacity change from 0 to 512
[   33.586466][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.599277][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.599997][ T3442] EXT4-fs (loop3): orphan cleanup on readonly fs
[   33.609121][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.609137][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.609190][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.609200][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.621486][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_0
[   33.627076][ T3442] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   33.638237][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.646618][ T3442] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   33.656038][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.677150][ T3442] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #13: comm syz.3.7: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   33.677915][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.732888][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.742720][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.753213][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.763024][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   33.773524][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.784184][ T3442] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.7: couldn't read orphan inode 13 (err -117)
[   33.785288][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_0
[   33.796825][ T3442] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   33.804142][ T3298] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   33.824281][ T3298] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   33.833033][ T3298] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   33.841746][ T3298] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   33.851299][ T3442] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[   33.852411][ T3305] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   33.867123][ T3442] EXT4-fs warning (device loop3): read_mmp_block:115: Error -117 while reading MMP block 2
[   33.869462][ T3305] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   33.888198][ T3305] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   33.896905][ T3305] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   33.909617][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.920118][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.930041][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.940497][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.950329][ T3306] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   33.960791][ T3306] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   33.971409][ T3306] batman_adv: batadv0: Interface activated: batadv_slave_1
[   33.980360][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   33.993600][ T3306] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   34.002362][ T3306] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   34.011315][ T3306] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   34.020165][ T3306] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   34.031067][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   34.041714][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   34.051651][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   34.062151][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   34.072008][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   34.082514][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   34.092464][ T3303] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   34.103876][ T3303] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   34.114771][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_1
[   34.149084][ T3303] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   34.158362][ T3303] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   34.167204][ T3303] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   34.175977][ T3303] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   34.309819][ T3460] loop4: detected capacity change from 0 to 1024
[   34.319786][ T3460] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   34.330833][ T3460] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[   34.348694][ T3464] loop2: detected capacity change from 0 to 128
[   34.366133][ T3465] loop3: detected capacity change from 0 to 128
[   34.392699][ T3460] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   34.434555][ T3460] EXT4-fs (loop4): invalid journal inode
[   34.440719][ T3460] EXT4-fs (loop4): can't get journal size
[   34.448525][ T3460] EXT4-fs error (device loop4): ext4_protect_reserved_inode:182: inode #3: comm syz.4.5: blocks 2-2 from inode overlap system zone
[   34.468614][ T3460] EXT4-fs (loop4): failed to initialize system zone (-117)
[   34.476005][ T3460] EXT4-fs (loop4): mount failed
[   34.504170][ T3470] loop1: detected capacity change from 0 to 512
[   34.523264][ T3473] loop0: detected capacity change from 0 to 512
[   34.582691][ T3473] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   34.595667][ T3473] ext4 filesystem being mounted at /0/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   34.725691][ T3470] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   34.738841][ T3470] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   34.871001][ T3482] loop3: detected capacity change from 0 to 512
[   34.932823][ T3482] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   34.994731][ T3470] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2863: Unable to expand inode 17. Delete some EAs or run e2fsck.
[   35.020913][ T3486] loop2: detected capacity change from 0 to 1024
[   35.031771][ T3482] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.14: bad orphan inode 16
[   35.056871][ T3470] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.12: invalid indirect mapped block 4294967295 (level 0)
[   35.073140][ T3486] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   35.084175][ T3486] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[   35.103573][ T3482] ext4_test_bit(bit=15, block=4) = 0
[   35.108991][ T3482] EXT4-fs (loop3): 1 orphan inode deleted
[   35.116142][ T3470] EXT4-fs (loop1): Remounting filesystem read-only
[   35.124164][ T3482] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   35.164880][ T3470] EXT4-fs (loop1): 1 orphan inode deleted
[   35.170717][ T3470] EXT4-fs (loop1): 1 truncate cleaned up
[   35.178025][ T3486] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   35.191246][ T3470] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   35.205692][ T3486] EXT4-fs (loop2): invalid journal inode
[   35.215827][ T3486] EXT4-fs (loop2): can't get journal size
[   35.222885][ T3470] SELinux: (dev loop1, type ext4) getxattr errno 5
[   35.230196][ T3486] EXT4-fs error (device loop2): ext4_protect_reserved_inode:182: inode #3: comm syz.2.15: blocks 2-2 from inode overlap system zone
[   35.245512][ T3470] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.254838][ T3486] EXT4-fs (loop2): failed to initialize system zone (-117)
[   35.263840][ T3486] EXT4-fs (loop2): mount failed
[   35.470542][ T3490] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   35.530064][ T3490] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   35.584569][ T3496] loop1: detected capacity change from 0 to 512
[   35.647889][ T3496] EXT4-fs (loop1): orphan cleanup on readonly fs
[   35.673415][ T3496] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   35.732214][ T3496] EXT4-fs (loop1): Cannot turn on quotas: error -22
[   35.872945][ T3496] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #13: comm syz.1.18: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   35.879188][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   35.901530][ T3496] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.18: couldn't read orphan inode 13 (err -117)
[   35.977931][ T3509] loop4: detected capacity change from 0 to 512
[   35.989813][ T3508] loop2: detected capacity change from 0 to 128
[   36.069290][ T3509] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.081992][ T3509] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   36.257585][ T3496] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   36.343608][ T3512] loop0: detected capacity change from 0 to 512
[   36.350904][ T3496] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   36.373469][ T3512] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   36.392802][ T3496] EXT4-fs warning (device loop1): read_mmp_block:115: Error -117 while reading MMP block 2
[   36.445462][ T3512] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.24: invalid indirect mapped block 4294967295 (level 0)
[   36.542667][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.746085][ T3512] EXT4-fs (loop0): Remounting filesystem read-only
[   36.753547][ T3512] EXT4-fs (loop0): 1 orphan inode deleted
[   36.759340][ T3512] EXT4-fs (loop0): 1 truncate cleaned up
[   36.766729][ T3512] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   36.780435][ T3512] SELinux: (dev loop0, type ext4) getxattr errno 5
[   36.787873][ T3512] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   36.933557][ T3522] loop1: detected capacity change from 0 to 512
[   36.957496][ T3524] loop2: detected capacity change from 0 to 512
[   36.974660][ T3522] EXT4-fs (loop1): orphan cleanup on readonly fs
[   36.990887][ T3524] EXT4-fs (loop2): orphan cleanup on readonly fs
[   37.002793][ T3522] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   37.028476][ T3524] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   37.053607][ T3522] EXT4-fs (loop1): Cannot turn on quotas: error -22
[   37.068567][ T3524] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   37.079712][ T3522] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #13: comm syz.1.26: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   37.109547][ T3524] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #13: comm syz.2.27: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   37.139013][ T3522] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.26: couldn't read orphan inode 13 (err -117)
[   37.151693][ T3529] netlink: 12 bytes leftover after parsing attributes in process `syz.0.28'.
[   37.160937][ T3524] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.27: couldn't read orphan inode 13 (err -117)
[   37.175141][ T3522] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   37.194883][ T3522] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   37.204617][ T3522] EXT4-fs warning (device loop1): read_mmp_block:115: Error -117 while reading MMP block 2
[   37.222296][ T3524] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   37.252288][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.269696][ T3524] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   37.285228][ T3524] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 2
[   37.335639][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.395219][ T3537] loop0: detected capacity change from 0 to 256
[   37.402752][ T3537] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   37.418320][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.493659][ T3543] loop4: detected capacity change from 0 to 512
[   37.504132][ T3543] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   37.533322][ T3477] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   37.551399][ T3546] loop0: detected capacity change from 0 to 256
[   37.569998][ T3546] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   37.589556][ T3543] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.35: invalid indirect mapped block 4294967295 (level 0)
[   37.604297][ T3543] EXT4-fs (loop4): Remounting filesystem read-only
[   37.611231][ T3543] EXT4-fs (loop4): 1 orphan inode deleted
[   37.617043][ T3543] EXT4-fs (loop4): 1 truncate cleaned up
[   37.624689][ T3543] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.637320][ T3543] SELinux: (dev loop4, type ext4) getxattr errno 5
[   37.691693][ T3543] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   37.707327][ T3551] loop1: detected capacity change from 0 to 512
[   37.729684][ T3551] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   37.742607][ T3551] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   38.012515][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   38.125180][ T3552] loop2: detected capacity change from 0 to 512
[   38.166644][ T3552] =======================================================
[   38.166644][ T3552] WARNING: The mand mount option has been deprecated and
[   38.166644][ T3552]          and is ignored by this kernel. Remove the mand
[   38.166644][ T3552]          option from the mount to silence this warning.
[   38.166644][ T3552] =======================================================
[   38.211349][ T3558] loop0: detected capacity change from 0 to 256
[   38.218150][   T29] kauditd_printk_skb: 216 callbacks suppressed
[   38.218161][   T29] audit: type=1400 audit(1738312639.011:342): avc:  denied  { create } for  pid=3557 comm="syz.0.39" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   38.249910][ T3558] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   38.486571][   T29] audit: type=1400 audit(1738312639.051:343): avc:  denied  { read } for  pid=2980 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   38.508795][   T29] audit: type=1400 audit(1738312639.051:344): avc:  denied  { search } for  pid=2980 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   38.530609][   T29] audit: type=1400 audit(1738312639.051:345): avc:  denied  { open } for  pid=2980 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   38.553135][   T29] audit: type=1400 audit(1738312639.051:346): avc:  denied  { getattr } for  pid=2980 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   38.567060][    C0] Illegal XDP return value 16128 on prog  (id 33) dev bond_slave_1, expect packet loss!
[   38.580151][ T3552] EXT4-fs: Ignoring removed orlov option
[   38.593093][ T3552] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   38.641288][ T3552] EXT4-fs (loop2): orphan cleanup on readonly fs
[   38.674961][ T3552] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.37: bg 0: block 248: padding at end of block bitmap is not set
[   38.783588][ T3552] Quota error (device loop2): write_blk: dquota write failed
[   38.791184][ T3552] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   38.801239][ T3552] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.37: Failed to acquire dquot type 1
[   38.834463][ T3563] loop4: detected capacity change from 0 to 512
[   38.844648][ T3570] loop3: detected capacity change from 0 to 512
[   38.852887][ T3563] EXT4-fs: Ignoring removed orlov option
[   38.875923][ T3563] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   38.894236][ T3570] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   38.905379][ T3563] EXT4-fs (loop4): orphan cleanup on readonly fs
[   38.913217][ T3552] EXT4-fs (loop2): 1 truncate cleaned up
[   38.922484][ T3570] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.43: bad orphan inode 16
[   38.929474][   T29] audit: type=1400 audit(1738312639.471:347): avc:  denied  { read } for  pid=3560 comm="syz.3.38" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   38.935267][ T3563] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.41: bg 0: block 248: padding at end of block bitmap is not set
[   38.955923][   T29] audit: type=1400 audit(1738312639.471:348): avc:  denied  { open } for  pid=3560 comm="syz.3.38" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   38.973724][ T3572] netlink: 12 bytes leftover after parsing attributes in process `syz.0.44'.
[   38.996324][   T29] audit: type=1400 audit(1738312639.471:349): avc:  denied  { ioctl } for  pid=3560 comm="syz.3.38" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x2275 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[   39.006171][ T3552] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.035327][ T3563] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.41: Failed to acquire dquot type 1
[   39.054683][ T3570] ext4_test_bit(bit=15, block=4) = 0
[   39.055764][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.060357][ T3570] EXT4-fs (loop3): 1 orphan inode deleted
[   39.075642][ T3570] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   39.107543][ T3550] syz.2.37 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   39.108622][ T3563] EXT4-fs (loop4): 1 truncate cleaned up
[   39.128877][ T3563] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.167841][ T3552] syz.2.37 (3552) used greatest stack depth: 9280 bytes left
[   39.175822][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.207426][ T3548] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   39.225430][ T3582] loop2: detected capacity change from 0 to 512
[   39.237700][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.270830][ T3582] EXT4-fs (loop2): orphan cleanup on readonly fs
[   39.277857][ T3582] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   39.293919][ T3582] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   39.308624][ T3582] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #13: comm syz.2.47: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   39.309160][ T3586] loop4: detected capacity change from 0 to 512
[   39.327337][ T3582] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.47: couldn't read orphan inode 13 (err -117)
[   39.345628][ T3582] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.406688][ T3587] loop1: detected capacity change from 0 to 512
[   39.468695][ T3586] EXT4-fs (loop4): orphan cleanup on readonly fs
[   39.475486][ T3586] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   39.495854][ T3576] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   39.515440][ T3582] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   39.528082][ T3576] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   39.540530][ T3586] EXT4-fs (loop4): Cannot turn on quotas: error -22
[   39.549762][ T3587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   39.562476][ T3587] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   39.755290][ T3582] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 2
[   39.765771][ T3586] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #13: comm syz.4.48: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   39.789929][ T3586] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.48: couldn't read orphan inode 13 (err -117)
[   39.802719][ T3586] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   39.899349][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   39.956561][ T3586] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[   39.969701][ T3586] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 2
[   40.228961][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.397461][ T3600] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   40.404925][ T3600] batman_adv: batadv0: Removing interface: batadv_slave_0
[   40.458938][ T3600] netlink: 'syz.4.50': attribute type 3 has an invalid length.
[   40.466841][ T3600] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   40.561891][ T3606] loop0: detected capacity change from 0 to 512
[   40.573772][ T3606] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   40.601434][ T3606] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.55: invalid indirect mapped block 4294967295 (level 0)
[   40.618051][ T3606] EXT4-fs (loop0): Remounting filesystem read-only
[   40.624658][ T3606] EXT4-fs (loop0): 1 orphan inode deleted
[   40.630523][ T3606] EXT4-fs (loop0): 1 truncate cleaned up
[   40.636878][ T3606] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   40.654234][ T3606] SELinux: (dev loop0, type ext4) getxattr errno 5
[   40.661732][ T3606] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   40.771543][ T3616] loop0: detected capacity change from 0 to 128
[   40.825568][ T3611] loop2: detected capacity change from 0 to 512
[   40.843047][ T3611] EXT4-fs: Ignoring removed orlov option
[   40.864800][ T3611] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   40.885150][ T3611] EXT4-fs (loop2): orphan cleanup on readonly fs
[   40.933022][ T3611] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.57: bg 0: block 248: padding at end of block bitmap is not set
[   40.949818][ T3620] loop0: detected capacity change from 0 to 512
[   40.956964][ T3620] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   40.994298][ T3611] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.57: Failed to acquire dquot type 1
[   41.009167][ T3620] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.58: bad orphan inode 16
[   41.031984][ T3620] ext4_test_bit(bit=15, block=4) = 0
[   41.037322][ T3620] EXT4-fs (loop0): 1 orphan inode deleted
[   41.070316][ T3620] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   41.104322][ T3611] EXT4-fs (loop2): 1 truncate cleaned up
[   41.127751][ T3611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   41.162175][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.460171][ T3631] loop1: detected capacity change from 0 to 512
[   41.488890][ T3631] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   41.501639][ T3631] ext4 filesystem being mounted at /8/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   41.675286][ T3591] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   41.692321][ T3626] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   41.723377][ T3630] loop4: detected capacity change from 0 to 512
[   41.745482][ T3626] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   41.764532][ T3630] EXT4-fs: Ignoring removed orlov option
[   41.825473][ T3630] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   41.859327][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   41.891899][ T3630] EXT4-fs (loop4): orphan cleanup on readonly fs
[   41.914907][ T3630] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.61: bg 0: block 248: padding at end of block bitmap is not set
[   41.969390][ T3630] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.61: Failed to acquire dquot type 1
[   42.009311][ T3630] EXT4-fs (loop4): 1 truncate cleaned up
[   42.346994][ T3611] syz.2.57 (3611) used greatest stack depth: 9272 bytes left
[   42.355404][ T3630] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   42.405707][ T3615] syz.2.57 (3615) used greatest stack depth: 7208 bytes left
[   42.417868][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   42.439034][ T3638] loop3: detected capacity change from 0 to 128
[   42.715105][ T3643] netlink: 12 bytes leftover after parsing attributes in process `syz.3.64'.
[   42.724410][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.134227][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   43.737844][   T29] kauditd_printk_skb: 115 callbacks suppressed
[   43.737858][   T29] audit: type=1400 audit(1738312644.551:459): avc:  denied  { ioctl } for  pid=3650 comm="syz.1.66" path="socket:[4797]" dev="sockfs" ino=4797 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   43.737893][ T3651] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   43.776975][ T3651] batman_adv: batadv0: Removing interface: batadv_slave_0
[   43.787820][   T29] audit: type=1400 audit(1738312644.601:460): avc:  denied  { create } for  pid=3653 comm="syz.4.68" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   43.808579][ T3651] netlink: 'syz.1.66': attribute type 3 has an invalid length.
[   43.816174][ T3651] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   43.826239][ T3655] loop4: detected capacity change from 0 to 256
[   43.832772][ T3654] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   43.846218][ T3654] batman_adv: batadv0: Removing interface: batadv_slave_0
[   43.871689][   T29] audit: type=1400 audit(1738312644.681:461): avc:  denied  { getopt } for  pid=3653 comm="syz.4.68" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[   43.897425][ T3654] netlink: 'syz.3.69': attribute type 3 has an invalid length.
[   43.905047][   T29] audit: type=1326 audit(1738312644.691:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3661 comm="syz.2.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   43.905074][   T29] audit: type=1326 audit(1738312644.691:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3661 comm="syz.2.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   43.905095][   T29] audit: type=1326 audit(1738312644.691:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3661 comm="syz.2.72" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   43.928186][ T3654] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   43.970391][ T3667] loop2: detected capacity change from 0 to 512
[   44.000344][ T3667] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   44.010456][   T29] audit: type=1400 audit(1738312644.771:465): avc:  denied  { write } for  pid=3666 comm="syz.2.74" name="pfkey" dev="proc" ino=4026532600 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   44.033375][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.043809][ T3667] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.74: bad orphan inode 16
[   44.055037][ T3673] loop1: detected capacity change from 0 to 512
[   44.056327][ T3667] ext4_test_bit(bit=15, block=4) = 0
[   44.066676][ T3667] EXT4-fs (loop2): 1 orphan inode deleted
[   44.091142][   T29] audit: type=1326 audit(1738312644.901:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3669 comm="syz.3.76" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65337dcda9 code=0x7ffc0000
[   44.102196][ T3675] loop0: detected capacity change from 0 to 512
[   44.114494][   T29] audit: type=1326 audit(1738312644.901:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3669 comm="syz.3.76" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65337dcda9 code=0x7ffc0000
[   44.133884][ T3675] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   44.143838][   T29] audit: type=1326 audit(1738312644.901:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3669 comm="syz.3.76" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f65337dcda9 code=0x7ffc0000
[   44.145356][ T3667] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.199607][ T3677] loop3: detected capacity change from 0 to 512
[   44.209020][ T3675] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.75: bad orphan inode 16
[   44.214828][ T3673] EXT4-fs (loop1): orphan cleanup on readonly fs
[   44.237106][ T3673] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   44.253128][ T3675] ext4_test_bit(bit=15, block=4) = 0
[   44.258460][ T3675] EXT4-fs (loop0): 1 orphan inode deleted
[   44.265539][ T3677] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   44.304558][ T3675] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.305359][ T3677] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.78: invalid indirect mapped block 4294967295 (level 0)
[   44.325259][ T3673] EXT4-fs (loop1): Cannot turn on quotas: error -22
[   44.337902][ T3677] EXT4-fs (loop3): Remounting filesystem read-only
[   44.338117][ T3673] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #13: comm syz.1.77: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   44.344616][ T3677] EXT4-fs (loop3): 1 orphan inode deleted
[   44.367997][ T3677] EXT4-fs (loop3): 1 truncate cleaned up
[   44.374176][ T3677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   44.389793][ T3673] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.77: couldn't read orphan inode 13 (err -117)
[   44.391528][ T3677] SELinux: (dev loop3, type ext4) getxattr errno 5
[   44.409386][ T3677] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.420021][ T3673] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   44.455632][ T3673] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[   44.475764][ T3673] EXT4-fs warning (device loop1): read_mmp_block:115: Error -117 while reading MMP block 2
[   44.506104][ T3693] netlink: 'syz.4.84': attribute type 3 has an invalid length.
[   44.513867][ T3693] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   44.531262][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   44.555949][ T3700] loop1: detected capacity change from 0 to 512
[   44.565616][ T3700] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   44.579547][ T3700] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.85: bad orphan inode 16
[   44.588099][ T3667] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   44.591124][ T3700] ext4_test_bit(bit=15, block=4) = 0
[   44.603289][ T3700] EXT4-fs (loop1): 1 orphan inode deleted
[   44.610506][ T3700] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   44.611552][ T3667] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   44.632984][ T3706] loop4: detected capacity change from 0 to 128
[   44.729247][ T3705] loop3: detected capacity change from 0 to 512
[   44.736113][ T3696] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   44.761552][ T3696] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   44.804413][ T3705] EXT4-fs: Ignoring removed orlov option
[   44.811609][ T3705] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   44.929295][ T3705] EXT4-fs (loop3): orphan cleanup on readonly fs
[   44.938329][ T3705] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.89: bg 0: block 248: padding at end of block bitmap is not set
[   44.953695][ T3705] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.89: Failed to acquire dquot type 1
[   44.965439][ T3708] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   44.975927][ T3708] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   45.323211][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   45.337906][ T3705] EXT4-fs (loop3): 1 truncate cleaned up
[   45.933222][ T3707] syz.3.89 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[   45.947279][ T3707] CPU: 1 UID: 0 PID: 3707 Comm: syz.3.89 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[   45.947299][ T3707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   45.947313][ T3707] Call Trace:
[   45.947319][ T3707]  <TASK>
[   45.947387][ T3707]  dump_stack_lvl+0xf2/0x150
[   45.947416][ T3707]  dump_stack+0x15/0x1a
[   45.947432][ T3707]  dump_header+0x83/0x2d0
[   45.947457][ T3707]  oom_kill_process+0x341/0x4c0
[   45.947554][ T3707]  out_of_memory+0x9af/0xbe0
[   45.947589][ T3707]  ? css_next_descendant_pre+0x11c/0x140
[   45.947649][ T3707]  mem_cgroup_out_of_memory+0x13e/0x190
[   45.947671][ T3707]  try_charge_memcg+0x508/0x7f0
[   45.947697][ T3707]  obj_cgroup_charge_pages+0xbd/0x1a0
[   45.947744][ T3707]  __memcg_kmem_charge_page+0x9d/0x170
[   45.947774][ T3707]  __alloc_frozen_pages_noprof+0x1bc/0x340
[   45.947818][ T3707]  alloc_pages_mpol+0xb4/0x260
[   45.947843][ T3707]  alloc_pages_noprof+0xe8/0x130
[   45.947870][ T3707]  __vmalloc_node_range_noprof+0x6e5/0xe70
[   45.947900][ T3707]  __kvmalloc_node_noprof+0x121/0x170
[   45.948079][ T3707]  ? ip_set_alloc+0x1f/0x30
[   45.948098][ T3707]  ip_set_alloc+0x1f/0x30
[   45.948115][ T3707]  hash_netiface_create+0x273/0x730
[   45.948136][ T3707]  ? __nla_parse+0x40/0x60
[   45.948155][ T3707]  ? __pfx_hash_netiface_create+0x10/0x10
[   45.948178][ T3707]  ip_set_create+0x359/0x8a0
[   45.948262][ T3707]  ? strnstr+0x100/0x100
[   45.948294][ T3707]  ? __nla_parse+0x40/0x60
[   45.948313][ T3707]  nfnetlink_rcv_msg+0x4a9/0x570
[   45.948343][ T3707]  netlink_rcv_skb+0x12c/0x230
[   45.948392][ T3707]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   45.948416][ T3707]  nfnetlink_rcv+0x16c/0x15d0
[   45.948434][ T3707]  ? kmem_cache_free+0xdc/0x2d0
[   45.948460][ T3707]  ? nlmon_xmit+0x51/0x60
[   45.948539][ T3707]  ? __kfree_skb+0x102/0x150
[   45.948559][ T3707]  ? consume_skb+0x49/0x160
[   45.948580][ T3707]  ? nlmon_xmit+0x51/0x60
[   45.948599][ T3707]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   45.948643][ T3707]  ? __dev_queue_xmit+0xb6e/0x2090
[   45.948669][ T3707]  ? ref_tracker_free+0x3a5/0x410
[   45.948730][ T3707]  ? __dev_queue_xmit+0x186/0x2090
[   45.948753][ T3707]  ? __netlink_deliver_tap+0x4c6/0x4f0
[   45.948779][ T3707]  netlink_unicast+0x599/0x670
[   45.948806][ T3707]  netlink_sendmsg+0x5cc/0x6e0
[   45.948885][ T3707]  ? __pfx_netlink_sendmsg+0x10/0x10
[   45.948908][ T3707]  __sock_sendmsg+0x140/0x180
[   45.948923][ T3707]  ____sys_sendmsg+0x312/0x410
[   45.948966][ T3707]  __sys_sendmsg+0x19d/0x230
[   45.949043][ T3707]  __x64_sys_sendmsg+0x46/0x50
[   45.949104][ T3707]  x64_sys_call+0x2734/0x2dc0
[   45.949126][ T3707]  do_syscall_64+0xc9/0x1c0
[   45.949147][ T3707]  ? clear_bhb_loop+0x55/0xb0
[   45.949201][ T3707]  ? clear_bhb_loop+0x55/0xb0
[   45.949223][ T3707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   45.949259][ T3707] RIP: 0033:0x7f65337dcda9
[   45.949276][ T3707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   45.949290][ T3707] RSP: 002b:00007f6531e26038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   45.949307][ T3707] RAX: ffffffffffffffda RBX: 00007f65339f6080 RCX: 00007f65337dcda9
[   45.949320][ T3707] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000005
[   45.949332][ T3707] RBP: 00007f653385e2a0 R08: 0000000000000000 R09: 0000000000000000
[   45.949380][ T3707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   45.949433][ T3707] R13: 0000000000000000 R14: 00007f65339f6080 R15: 00007ffdca565f88
[   45.949465][ T3707]  </TASK>
[   45.949470][ T3707] memory: usage 307200kB, limit 307200kB, failcnt 232
[   46.299836][ T3707] memory+swap: usage 307664kB, limit 9007199254740988kB, failcnt 0
[   46.307818][ T3707] kmem: usage 307180kB, limit 9007199254740988kB, failcnt 0
[   46.315090][ T3707] Memory cgroup stats for /syz3:
[   46.320935][ T3707] cache 20480
[   46.329255][ T3707] rss 0
[   46.332016][ T3707] shmem 0
[   46.334945][ T3707] mapped_file 0
[   46.338453][ T3707] dirty 0
[   46.341601][ T3707] writeback 0
[   46.344886][ T3707] workingset_refault_anon 44
[   46.349603][ T3707] workingset_refault_file 41
[   46.354319][ T3707] swap 475136
[   46.354864][ T3705] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.357611][ T3707] swapcached 0
[   46.373333][ T3707] pgpgin 1340
[   46.376682][ T3707] pgpgout 1335
[   46.380155][ T3707] pgfault 2276
[   46.383523][ T3707] pgmajfault 16
[   46.386988][ T3707] inactive_anon 0
[   46.390609][ T3707] active_anon 0
[   46.394082][ T3707] inactive_file 16384
[   46.398098][ T3707] active_file 0
[   46.401549][ T3707] unevictable 0
[   46.405025][ T3707] hierarchical_memory_limit 314572800
[   46.410875][ T3707] hierarchical_memsw_limit 9223372036854771712
[   46.417739][ T3707] total_cache 20480
[   46.421641][ T3707] total_rss 0
[   46.424930][ T3707] total_shmem 0
[   46.428418][ T3707] total_mapped_file 0
[   46.432392][ T3707] total_dirty 0
[   46.435857][ T3707] total_writeback 0
[   46.439787][ T3707] total_workingset_refault_anon 44
[   46.444894][ T3707] total_workingset_refault_file 41
[   46.450081][ T3707] total_swap 475136
[   46.453965][ T3707] total_swapcached 0
[   46.457865][ T3707] total_pgpgin 1340
[   46.461756][ T3707] total_pgpgout 1335
[   46.465649][ T3707] total_pgfault 2276
[   46.469599][ T3707] total_pgmajfault 16
[   46.473594][ T3707] total_inactive_anon 0
[   46.477769][ T3707] total_active_anon 0
[   46.481756][ T3707] total_inactive_file 16384
[   46.486261][ T3707] total_active_file 0
[   46.490314][ T3707] total_unevictable 0
[   46.494328][ T3707] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.89,pid=3704,uid=0
[   46.508861][ T3707] Memory cgroup out of memory: Killed process 3704 (syz.3.89) total-vm:95760kB, anon-rss:1044kB, file-rss:22528kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   46.586812][ T3722] loop4: detected capacity change from 0 to 512
[   46.604231][ T3722] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   46.634138][ T3722] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.93: invalid indirect mapped block 4294967295 (level 0)
[   46.658665][ T3729] loop2: detected capacity change from 0 to 512
[   46.666375][ T3722] EXT4-fs (loop4): Remounting filesystem read-only
[   46.675830][ T3729] EXT4-fs (loop2): orphan cleanup on readonly fs
[   46.682821][ T3722] EXT4-fs (loop4): 1 orphan inode deleted
[   46.688620][ T3722] EXT4-fs (loop4): 1 truncate cleaned up
[   46.694990][ T3729] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   46.710323][ T3722] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   46.723058][ T3722] SELinux: (dev loop4, type ext4) getxattr errno 5
[   46.726744][ T3729] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   46.737700][ T3722] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.746870][ T3729] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #13: comm syz.2.96: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   46.777566][ T3729] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.96: couldn't read orphan inode 13 (err -117)
[   46.790479][ T3729] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   46.805267][ T3729] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   46.814941][ T3729] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 2
[   46.825114][ T3707] syz.3.89 (3707) used greatest stack depth: 7200 bytes left
[   46.839755][ T3734] netlink: 'syz.4.98': attribute type 3 has an invalid length.
[   46.843819][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.847350][ T3734] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   46.873348][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   46.897456][ T3736] netlink: 'syz.4.101': attribute type 3 has an invalid length.
[   46.905127][ T3736] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   47.029448][ T3752] loop3: detected capacity change from 0 to 512
[   47.052156][ T3752] EXT4-fs: Ignoring removed orlov option
[   47.058430][ T3752] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   47.078446][ T3752] EXT4-fs (loop3): orphan cleanup on readonly fs
[   47.087191][ T3752] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.103: bg 0: block 248: padding at end of block bitmap is not set
[   47.110478][ T3757] team0 (unregistering): Port device team_slave_0 removed
[   47.122497][ T3298] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.140640][ T3759] loop2: detected capacity change from 0 to 512
[   47.159523][ T3752] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.103: Failed to acquire dquot type 1
[   47.173354][ T3757] team0 (unregistering): Port device team_slave_1 removed
[   47.193185][ T3759] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   47.222654][ T3761] loop0: detected capacity change from 0 to 512
[   47.233548][ T3752] EXT4-fs (loop3): 1 truncate cleaned up
[   47.242798][ T3759] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.108: invalid indirect mapped block 4294967295 (level 0)
[   47.263614][ T3761] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   47.274816][ T3752] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.288733][ T3759] EXT4-fs (loop2): Remounting filesystem read-only
[   47.295805][ T3759] EXT4-fs (loop2): 1 orphan inode deleted
[   47.301597][ T3759] EXT4-fs (loop2): 1 truncate cleaned up
[   47.309196][ T3761] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.109: bad orphan inode 16
[   47.319576][ T3761] ext4_test_bit(bit=15, block=4) = 0
[   47.324924][ T3761] EXT4-fs (loop0): 1 orphan inode deleted
[   47.333722][ T3759] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   47.347844][ T3761] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   47.361058][ T3759] SELinux: (dev loop2, type ext4) getxattr errno 5
[   47.372005][ T3759] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.425234][ T3765] loop2: detected capacity change from 0 to 512
[   47.445532][ T3765] EXT4-fs (loop2): orphan cleanup on readonly fs
[   47.453949][ T3765] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   47.470259][ T3765] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   47.477309][ T3765] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #13: comm syz.2.110: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   47.496707][ T3765] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.110: couldn't read orphan inode 13 (err -117)
[   47.510261][ T3765] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   47.524727][ T3765] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   47.536223][ T3765] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 2
[   47.565699][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.587857][ T3305] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   47.604392][ T3769] netlink: 'syz.1.111': attribute type 3 has an invalid length.
[   47.612092][ T3769] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   47.654868][ T3742] syz.3.103 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000
[   47.669213][ T3742] CPU: 0 UID: 0 PID: 3742 Comm: syz.3.103 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[   47.669234][ T3742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   47.669244][ T3742] Call Trace:
[   47.669250][ T3742]  <TASK>
[   47.669258][ T3742]  dump_stack_lvl+0xf2/0x150
[   47.669284][ T3742]  dump_stack+0x15/0x1a
[   47.669331][ T3742]  dump_header+0x83/0x2d0
[   47.669355][ T3742]  oom_kill_process+0x341/0x4c0
[   47.669406][ T3742]  out_of_memory+0x9af/0xbe0
[   47.669433][ T3742]  ? css_next_descendant_pre+0x11c/0x140
[   47.669456][ T3742]  mem_cgroup_out_of_memory+0x13e/0x190
[   47.669481][ T3742]  try_charge_memcg+0x508/0x7f0
[   47.669590][ T3742]  obj_cgroup_charge_pages+0xbd/0x1a0
[   47.669619][ T3742]  __memcg_kmem_charge_page+0x9d/0x170
[   47.669648][ T3742]  __alloc_frozen_pages_noprof+0x1bc/0x340
[   47.669672][ T3742]  alloc_pages_mpol+0xb4/0x260
[   47.669709][ T3742]  alloc_pages_noprof+0xe8/0x130
[   47.669780][ T3742]  __vmalloc_node_range_noprof+0x6e5/0xe70
[   47.669813][ T3742]  __kvmalloc_node_noprof+0x121/0x170
[   47.669837][ T3742]  ? ip_set_alloc+0x1f/0x30
[   47.669856][ T3742]  ip_set_alloc+0x1f/0x30
[   47.669923][ T3742]  hash_netiface_create+0x273/0x730
[   47.669947][ T3742]  ? __nla_parse+0x40/0x60
[   47.670004][ T3742]  ? __pfx_hash_netiface_create+0x10/0x10
[   47.670023][ T3742]  ip_set_create+0x359/0x8a0
[   47.670044][ T3742]  ? strnstr+0x100/0x100
[   47.670072][ T3742]  ? __nla_parse+0x40/0x60
[   47.670090][ T3742]  nfnetlink_rcv_msg+0x4a9/0x570
[   47.670204][ T3742]  netlink_rcv_skb+0x12c/0x230
[   47.670230][ T3742]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   47.670257][ T3742]  nfnetlink_rcv+0x16c/0x15d0
[   47.670275][ T3742]  ? kmem_cache_free+0xdc/0x2d0
[   47.670442][ T3742]  ? nlmon_xmit+0x51/0x60
[   47.670462][ T3742]  ? __kfree_skb+0x102/0x150
[   47.670484][ T3742]  ? consume_skb+0x49/0x160
[   47.670583][ T3742]  ? nlmon_xmit+0x51/0x60
[   47.670602][ T3742]  ? dev_hard_start_xmit+0x3c1/0x3f0
[   47.670627][ T3742]  ? __dev_queue_xmit+0xb6e/0x2090
[   47.670706][ T3742]  ? ref_tracker_free+0x3a5/0x410
[   47.670744][ T3742]  ? __dev_queue_xmit+0x186/0x2090
[   47.670774][ T3742]  ? __netlink_deliver_tap+0x4c6/0x4f0
[   47.670802][ T3742]  netlink_unicast+0x599/0x670
[   47.670829][ T3742]  netlink_sendmsg+0x5cc/0x6e0
[   47.670909][ T3742]  ? __pfx_netlink_sendmsg+0x10/0x10
[   47.670934][ T3742]  __sock_sendmsg+0x140/0x180
[   47.670975][ T3742]  ____sys_sendmsg+0x312/0x410
[   47.670999][ T3742]  __sys_sendmsg+0x19d/0x230
[   47.671030][ T3742]  __x64_sys_sendmsg+0x46/0x50
[   47.671085][ T3742]  x64_sys_call+0x2734/0x2dc0
[   47.671110][ T3742]  do_syscall_64+0xc9/0x1c0
[   47.671136][ T3742]  ? clear_bhb_loop+0x55/0xb0
[   47.671159][ T3742]  ? clear_bhb_loop+0x55/0xb0
[   47.671180][ T3742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   47.671204][ T3742] RIP: 0033:0x7f65337dcda9
[   47.671219][ T3742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   47.671299][ T3742] RSP: 002b:00007f6531e47038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   47.671317][ T3742] RAX: ffffffffffffffda RBX: 00007f65339f5fa0 RCX: 00007f65337dcda9
[   47.671328][ T3742] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000004
[   47.671340][ T3742] RBP: 00007f653385e2a0 R08: 0000000000000000 R09: 0000000000000000
[   47.671352][ T3742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   47.671362][ T3742] R13: 0000000000000000 R14: 00007f65339f5fa0 R15: 00007ffdca565f88
[   47.671441][ T3742]  </TASK>
[   47.671446][ T3742] memory: usage 307200kB, limit 307200kB, failcnt 507
[   47.737384][ T3767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   47.739016][ T3742] memory+swap: usage 307656kB, limit 9007199254740988kB, failcnt 0
[   47.745101][ T3767] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   47.749852][ T3742] kmem: usage 307184kB, limit 9007199254740988kB, failcnt 0
[   47.762471][ T3775] loop2: detected capacity change from 0 to 128
[   47.765401][ T3742] Memory cgroup stats for /syz3:
[   48.065843][ T3742] cache 8192
[   48.075553][ T3742] rss 0
[   48.078417][ T3742] shmem 0
[   48.081383][ T3742] mapped_file 0
[   48.084914][ T3742] dirty 0
[   48.087939][ T3742] writeback 4096
[   48.091557][ T3742] workingset_refault_anon 116
[   48.096229][ T3742] workingset_refault_file 192
[   48.100952][ T3742] swap 466944
[   48.104227][ T3742] swapcached 8192
[   48.107922][ T3742] pgpgin 1748
[   48.111269][ T3742] pgpgout 1744
[   48.114634][ T3742] pgfault 2613
[   48.118046][ T3742] pgmajfault 78
[   48.121577][ T3742] inactive_anon 4096
[   48.125464][ T3742] active_anon 0
[   48.128933][ T3742] inactive_file 0
[   48.132564][ T3742] active_file 8192
[   48.136263][ T3742] unevictable 0
[   48.139730][ T3742] hierarchical_memory_limit 314572800
[   48.145095][ T3742] hierarchical_memsw_limit 9223372036854771712
[   48.151796][ T3742] total_cache 8192
[   48.155610][ T3742] total_rss 0
[   48.158971][ T3742] total_shmem 0
[   48.162423][ T3742] total_mapped_file 0
[   48.166472][ T3742] total_dirty 0
[   48.169930][ T3742] total_writeback 4096
[   48.174016][ T3742] total_workingset_refault_anon 116
[   48.179311][ T3742] total_workingset_refault_file 192
[   48.184521][ T3742] total_swap 466944
[   48.188359][ T3742] total_swapcached 8192
[   48.192631][ T3742] total_pgpgin 1748
[   48.196523][ T3742] total_pgpgout 1744
[   48.200407][ T3742] total_pgfault 2613
[   48.204280][ T3742] total_pgmajfault 78
[   48.208293][ T3742] total_inactive_anon 4096
[   48.212752][ T3742] total_active_anon 0
[   48.216791][ T3742] total_inactive_file 0
[   48.220931][ T3742] total_active_file 8192
[   48.225149][ T3742] total_unevictable 0
[   48.229155][ T3742] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.103,pid=3741,uid=0
[   48.243967][ T3742] Memory cgroup out of memory: Killed process 3741 (syz.3.103) total-vm:93712kB, anon-rss:916kB, file-rss:22556kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[   48.816636][ T3742] syz.3.103 (3742) used greatest stack depth: 7144 bytes left
[   48.836816][ T3296] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   48.903666][ T3797] loop3: detected capacity change from 0 to 512
[   48.911501][ T3797] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   48.939955][ T3797] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.121: bad orphan inode 16
[   48.951391][ T3797] ext4_test_bit(bit=15, block=4) = 0
[   48.956722][ T3797] EXT4-fs (loop3): 1 orphan inode deleted
[   48.963886][ T3797] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   49.008060][   T29] kauditd_printk_skb: 101 callbacks suppressed
[   49.008084][   T29] audit: type=1326 audit(1738312649.791:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3796 comm="syz.3.121" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f65337dcda9 code=0x0
[   49.291604][ T3799] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   49.301748][ T3799] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   49.432325][ T3801] loop2: detected capacity change from 0 to 512
[   49.451068][ T3801] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   49.463813][ T3801] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.122: invalid indirect mapped block 4294967295 (level 0)
[   49.479332][ T3801] EXT4-fs (loop2): Remounting filesystem read-only
[   49.485963][ T3801] EXT4-fs (loop2): 1 orphan inode deleted
[   49.491926][ T3801] EXT4-fs (loop2): 1 truncate cleaned up
[   49.499330][ T3801] SELinux: (dev loop2, type ext4) getxattr errno 5
[   49.543073][ T3804] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   49.550800][ T3804] batman_adv: batadv0: Removing interface: batadv_slave_0
[   49.561465][ T3804] netlink: 'syz.2.123': attribute type 3 has an invalid length.
[   49.569230][ T3804] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   49.612977][ T3806] loop2: detected capacity change from 0 to 512
[   49.622123][ T3806] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   49.639050][ T3806] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.124: invalid indirect mapped block 4294967295 (level 0)
[   49.655577][ T3806] EXT4-fs (loop2): Remounting filesystem read-only
[   49.662567][ T3806] EXT4-fs (loop2): 1 orphan inode deleted
[   49.668351][ T3806] EXT4-fs (loop2): 1 truncate cleaned up
[   49.677233][ T3806] SELinux: (dev loop2, type ext4) getxattr errno 5
[   49.726031][   T29] audit: type=1326 audit(1738312650.531:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3808 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   49.749325][   T29] audit: type=1326 audit(1738312650.531:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3808 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   49.772630][   T29] audit: type=1326 audit(1738312650.531:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3808 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   49.796014][   T29] audit: type=1326 audit(1738312650.531:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3808 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   49.819353][   T29] audit: type=1326 audit(1738312650.531:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3808 comm="syz.2.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   50.353396][   T29] audit: type=1400 audit(1738312651.161:572): avc:  denied  { sqpoll } for  pid=3823 comm="syz.1.133" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[   50.387452][ T3825] tipc: Started in network mode
[   50.392365][ T3825] tipc: Node identity c6ebb177d759, cluster identity 4711
[   50.399748][ T3825] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   50.409989][ T3828] loop0: detected capacity change from 0 to 512
[   50.432435][ T3828] EXT4-fs: Ignoring removed orlov option
[   50.440653][ T3832] syzkaller0: entered promiscuous mode
[   50.446150][ T3832] syzkaller0: entered allmulticast mode
[   50.456324][   T29] audit: type=1400 audit(1738312651.221:573): avc:  denied  { watch_reads } for  pid=3824 comm="syz.4.132" path="/28" dev="tmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   50.487496][ T3828] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   50.508084][ T3830] tipc: Started in network mode
[   50.513012][ T3830] tipc: Node identity ba64b0ae2063, cluster identity 4711
[   50.520349][ T3830] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   50.530313][ T3828] EXT4-fs (loop0): orphan cleanup on readonly fs
[   50.544415][ T3825] tipc: Resetting bearer <eth:syzkaller0>
[   50.565807][ T3828] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.131: bg 0: block 248: padding at end of block bitmap is not set
[   50.591399][ T3825] loop1: detected capacity change from 0 to 256
[   50.610801][ T3839] syzkaller0: entered promiscuous mode
[   50.616359][ T3839] syzkaller0: entered allmulticast mode
[   50.635216][ T3825] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   50.651398][ T3828] Quota error (device loop0): write_blk: dquota write failed
[   50.658913][ T3828] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   50.668859][ T3828] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.131: Failed to acquire dquot type 1
[   50.686638][ T3840] loop4: detected capacity change from 0 to 512
[   50.693323][ T3840] EXT4-fs: Ignoring removed orlov option
[   50.702293][ T3840] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   50.714156][ T3823] tipc: Resetting bearer <eth:syzkaller0>
[   50.721402][ T3840] EXT4-fs (loop4): orphan cleanup on readonly fs
[   50.728420][ T3823] tipc: Disabling bearer <eth:syzkaller0>
[   50.754452][ T3840] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.136: bg 0: block 248: padding at end of block bitmap is not set
[   50.770876][ T3840] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.136: Failed to acquire dquot type 1
[   50.782170][ T3828] EXT4-fs (loop0): 1 truncate cleaned up
[   50.787826][ T3840] EXT4-fs (loop4): 1 truncate cleaned up
[   50.803440][ T3830] loop2: detected capacity change from 0 to 256
[   50.824040][ T3830] FAT-fs (loop2): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   50.898098][ T3844] loop1: detected capacity change from 0 to 256
[   50.904607][ T3829] tipc: Resetting bearer <eth:syzkaller0>
[   50.911818][ T3844] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   50.964014][ T3829] tipc: Disabling bearer <eth:syzkaller0>
[   51.007371][ T3847] netlink: 'syz.1.138': attribute type 3 has an invalid length.
[   51.015192][ T3847] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[   51.200596][ T3853] team0 (unregistering): Port device team_slave_0 removed
[   51.210400][ T3853] team0 (unregistering): Port device team_slave_1 removed
[   51.557596][ T3822] syz.0.131 (3822) used greatest stack depth: 6208 bytes left
[   52.029411][ T3860] netlink: 'syz.1.145': attribute type 1 has an invalid length.
[   52.069027][ T3860] loop1: detected capacity change from 0 to 2048
[   52.079741][ T3860] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[   52.291158][ T3862] loop0: detected capacity change from 0 to 512
[   52.307338][ T3866] loop3: detected capacity change from 0 to 512
[   52.329731][ T3862] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   52.352555][ T3866] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   52.381149][ T3862] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.141: bad orphan inode 16
[   52.400408][ T3866] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.144: invalid indirect mapped block 4294967295 (level 0)
[   52.415902][ T3875] loop4: detected capacity change from 0 to 128
[   52.446472][ T3862] ext4_test_bit(bit=15, block=4) = 0
[   52.451914][ T3862] EXT4-fs (loop0): 1 orphan inode deleted
[   52.498928][ T3866] EXT4-fs (loop3): Remounting filesystem read-only
[   52.505520][ T3866] EXT4-fs (loop3): 1 orphan inode deleted
[   52.511344][ T3866] EXT4-fs (loop3): 1 truncate cleaned up
[   52.520158][ T3866] SELinux: (dev loop3, type ext4) getxattr errno 5
[   52.550361][ T3877] loop1: detected capacity change from 0 to 256
[   52.594767][ T3877] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   52.633490][ T3882] loop3: detected capacity change from 0 to 512
[   52.644321][ T3882] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   52.738231][ T3882] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.152: bad orphan inode 16
[   52.748797][ T3882] ext4_test_bit(bit=15, block=4) = 0
[   52.754104][ T3882] EXT4-fs (loop3): 1 orphan inode deleted
[   52.763624][ T3884] tipc: Started in network mode
[   52.768622][ T3884] tipc: Node identity 92f8a733ec5f, cluster identity 4711
[   52.775886][ T3884] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   52.784677][ T3884] syzkaller0: entered promiscuous mode
[   52.790218][ T3884] syzkaller0: entered allmulticast mode
[   52.803442][ T3884] tipc: Resetting bearer <eth:syzkaller0>
[   53.049009][ T3885] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.061129][ T3895] loop1: detected capacity change from 0 to 512
[   53.085140][ T3885] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.141860][ T3895] EXT4-fs: Ignoring removed orlov option
[   53.169969][ T3884] loop4: detected capacity change from 0 to 256
[   53.205654][ T3895] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   53.231285][ T3884] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   53.319068][ T3896] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   53.334617][ T3896] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   53.368771][ T3883] tipc: Resetting bearer <eth:syzkaller0>
[   53.390401][ T3883] tipc: Disabling bearer <eth:syzkaller0>
[   53.605071][ T3591] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   53.624373][ T3895] EXT4-fs (loop1): orphan cleanup on readonly fs
[   53.659249][ T3899] loop4: detected capacity change from 0 to 256
[   53.667286][ T3895] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.153: bg 0: block 248: padding at end of block bitmap is not set
[   53.689733][ T3899] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   53.731296][ T3895] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.153: Failed to acquire dquot type 1
[   53.776170][ T3901] loop4: detected capacity change from 0 to 512
[   53.791861][ T3901] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   53.814305][ T3895] EXT4-fs (loop1): 1 truncate cleaned up
[   53.821979][ T3901] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.155: bad orphan inode 16
[   53.845216][ T3901] ext4_test_bit(bit=15, block=4) = 0
[   53.850552][ T3901] EXT4-fs (loop4): 1 orphan inode deleted
[   54.022367][ T3905] Zero length message leads to an empty skb
[   54.049674][   T29] kauditd_printk_skb: 170 callbacks suppressed
[   54.049686][   T29] audit: type=1400 audit(1738312654.861:740): avc:  denied  { unmount } for  pid=3303 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   54.127149][ T3903] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   54.141146][ T3903] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   54.171258][ T3914] loop2: detected capacity change from 0 to 512
[   54.181123][ T3914] EXT4-fs (loop2): orphan cleanup on readonly fs
[   54.188558][ T3914] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   54.203408][ T3914] EXT4-fs (loop2): Cannot turn on quotas: error -22
[   54.210388][ T3914] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #13: comm syz.2.160: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   54.228748][ T3914] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.160: couldn't read orphan inode 13 (err -117)
[   54.244107][ T3914] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   54.253841][ T3914] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 2
[   54.364696][ T3917] loop2: detected capacity change from 0 to 128
[   54.374388][   T29] audit: type=1326 audit(1738312655.181:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.398202][   T29] audit: type=1326 audit(1738312655.181:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.421993][   T29] audit: type=1326 audit(1738312655.181:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.445523][   T29] audit: type=1326 audit(1738312655.181:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.468770][   T29] audit: type=1326 audit(1738312655.181:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.492136][   T29] audit: type=1326 audit(1738312655.181:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.515405][   T29] audit: type=1326 audit(1738312655.181:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.538733][   T29] audit: type=1326 audit(1738312655.181:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.562131][   T29] audit: type=1326 audit(1738312655.181:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3916 comm="syz.2.161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7fade482cda9 code=0x7ffc0000
[   54.989106][ T3926] loop1: detected capacity change from 0 to 256
[   54.999372][ T3926] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   56.242882][ T3935] loop3: detected capacity change from 0 to 512
[   56.252500][ T3935] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   56.279314][ T3935] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.166: bad orphan inode 16
[   56.289798][ T3935] ext4_test_bit(bit=15, block=4) = 0
[   56.295100][ T3935] EXT4-fs (loop3): 1 orphan inode deleted
[   56.657151][ T3941] mmap: syz.0.167 (3941) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   56.707859][ T3941] loop0: detected capacity change from 0 to 164
[   56.718949][ T3941] iso9660: Unknown parameter '000000000000200'
[   56.738007][ T3937] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   56.787924][ T3937] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   56.813221][ T3943] loop2: detected capacity change from 0 to 512
[   56.886158][ T3943] EXT4-fs: Ignoring removed orlov option
[   56.914053][ T3943] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   56.925522][ T3952] loop4: detected capacity change from 0 to 128
[   56.963780][ T3943] EXT4-fs (loop2): orphan cleanup on readonly fs
[   56.979942][ T3943] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.169: bg 0: block 248: padding at end of block bitmap is not set
[   57.068505][ T3943] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.169: Failed to acquire dquot type 1
[   57.096823][ T3956] FAULT_INJECTION: forcing a failure.
[   57.096823][ T3956] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   57.110126][ T3956] CPU: 1 UID: 0 PID: 3956 Comm: syz.4.173 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[   57.110155][ T3956] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   57.110166][ T3956] Call Trace:
[   57.110188][ T3956]  <TASK>
[   57.110195][ T3956]  dump_stack_lvl+0xf2/0x150
[   57.110216][ T3956]  dump_stack+0x15/0x1a
[   57.110231][ T3956]  should_fail_ex+0x24a/0x260
[   57.110257][ T3956]  should_fail+0xb/0x10
[   57.110296][ T3956]  should_fail_usercopy+0x1a/0x20
[   57.110320][ T3956]  _copy_from_user+0x1c/0xa0
[   57.110337][ T3956]  copy_msghdr_from_user+0x54/0x2a0
[   57.110437][ T3956]  ? __fget_files+0x17c/0x1c0
[   57.110459][ T3956]  __sys_sendmsg+0x13e/0x230
[   57.110492][ T3956]  __x64_sys_sendmsg+0x46/0x50
[   57.110637][ T3956]  x64_sys_call+0x2734/0x2dc0
[   57.110656][ T3956]  do_syscall_64+0xc9/0x1c0
[   57.110673][ T3956]  ? clear_bhb_loop+0x55/0xb0
[   57.110709][ T3956]  ? clear_bhb_loop+0x55/0xb0
[   57.110732][ T3956]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   57.110757][ T3956] RIP: 0033:0x7f5d8a7fcda9
[   57.110776][ T3956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   57.110790][ T3956] RSP: 002b:00007f5d88e61038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   57.110805][ T3956] RAX: ffffffffffffffda RBX: 00007f5d8aa15fa0 RCX: 00007f5d8a7fcda9
[   57.110817][ T3956] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[   57.110827][ T3956] RBP: 00007f5d88e61090 R08: 0000000000000000 R09: 0000000000000000
[   57.110836][ T3956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   57.110845][ T3956] R13: 0000000000000000 R14: 00007f5d8aa15fa0 R15: 00007fff5ae35438
[   57.110859][ T3956]  </TASK>
[   57.113371][ T3958] netlink: 8 bytes leftover after parsing attributes in process `syz.1.174'.
[   57.204531][ T3943] EXT4-fs (loop2): 1 truncate cleaned up
[   57.246838][ T3960] loop4: detected capacity change from 0 to 512
[   57.316693][ T3960] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   57.328467][ T3960] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.175: bad orphan inode 16
[   57.342208][ T3960] ext4_test_bit(bit=15, block=4) = 0
[   57.347550][ T3960] EXT4-fs (loop4): 1 orphan inode deleted
[   57.682936][ T3964] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   57.692831][ T3964] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   57.972295][ T3971] loop1: detected capacity change from 0 to 512
[   57.980719][ T3971] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   58.005602][ T3971] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.178: invalid indirect mapped block 4294967295 (level 0)
[   58.020739][ T3971] EXT4-fs (loop1): Remounting filesystem read-only
[   58.027676][ T3971] EXT4-fs (loop1): 1 orphan inode deleted
[   58.033556][ T3971] EXT4-fs (loop1): 1 truncate cleaned up
[   58.040822][ T3971] SELinux: (dev loop1, type ext4) getxattr errno 5
[   59.069747][   T29] kauditd_printk_skb: 37 callbacks suppressed
[   59.069762][   T29] audit: type=1400 audit(1738312659.881:785): avc:  denied  { name_bind } for  pid=3984 comm="syz.1.183" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   59.097511][   T29] audit: type=1400 audit(1738312659.881:786): avc:  denied  { node_bind } for  pid=3984 comm="syz.1.183" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   59.122881][   T29] audit: type=1400 audit(1738312659.931:787): avc:  denied  { mounton } for  pid=3984 comm="syz.1.183" path="/36/file0" dev="tmpfs" ino=213 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   59.145314][   T29] audit: type=1400 audit(1738312659.931:788): avc:  denied  { read } for  pid=2980 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   59.167256][   T29] audit: type=1400 audit(1738312659.931:789): avc:  denied  { search } for  pid=2980 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   59.188824][   T29] audit: type=1400 audit(1738312659.931:790): avc:  denied  { open } for  pid=2980 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   59.211524][   T29] audit: type=1400 audit(1738312659.931:791): avc:  denied  { getattr } for  pid=2980 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   59.258848][ T3988] loop1: detected capacity change from 0 to 128
[   59.286744][   T29] audit: type=1400 audit(1738312660.061:792): avc:  denied  { unmount } for  pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   59.306411][   T29] audit: type=1400 audit(1738312660.081:793): avc:  denied  { create } for  pid=3989 comm="syz.2.185" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   59.325779][   T29] audit: type=1400 audit(1738312660.081:794): avc:  denied  { ioctl } for  pid=3989 comm="syz.2.185" path="socket:[5739]" dev="sockfs" ino=5739 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1
[   59.371812][ T3994] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   59.382237][ T3994] syzkaller0: entered promiscuous mode
[   59.387847][ T3994] syzkaller0: entered allmulticast mode
[   59.409828][ T3994] tipc: Resetting bearer <eth:syzkaller0>
[   59.439949][ T3994] loop2: detected capacity change from 0 to 256
[   59.448466][ T3994] FAT-fs (loop2): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   59.484100][ T3993] tipc: Resetting bearer <eth:syzkaller0>
[   59.494853][ T3993] tipc: Disabling bearer <eth:syzkaller0>
[   59.503497][ T4006] loop1: detected capacity change from 0 to 2048
[   59.537202][ T4006] GPT:first_usable_lbas don't match.
[   59.542524][ T4006] GPT:34 != 290
[   59.546022][ T4006] GPT: Use GNU Parted to correct GPT errors.
[   59.552239][ T4006]  loop1: p1 p2 p3
[   59.614016][ T3290] udevd[3290]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[   59.614467][ T3468] udevd[3468]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[   59.625394][ T3469] udevd[3469]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[   59.648615][ T4006] loop1: detected capacity change from 0 to 512
[   59.700732][ T4018] loop3: detected capacity change from 0 to 512
[   59.738493][ T4018] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #4: comm syz.3.197: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 9(4), depth 0(0)
[   59.757129][ T4018] EXT4-fs error (device loop3): ext4_quota_enable:7104: comm syz.3.197: Bad quota inode: 4, type: 1
[   59.779830][ T4018] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[   59.795365][ T4018] EXT4-fs (loop3): mount failed
[   59.806249][ T4018] loop3: detected capacity change from 0 to 512
[   59.817097][ T4018] EXT4-fs (loop3): orphan cleanup on readonly fs
[   59.823778][ T4018] EXT4-fs warning (device loop3): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   59.838795][ T4018] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   59.860697][ T4018] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #13: comm syz.3.197: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   59.881515][ T4030] loop2: detected capacity change from 0 to 128
[   59.889670][ T4018] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.197: couldn't read orphan inode 13 (err -117)
[   60.078319][ T4018] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[   60.091370][ T4018] EXT4-fs warning (device loop3): read_mmp_block:115: Error -117 while reading MMP block 2
[   60.134152][ T4034] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.197: deleted inode referenced: 12
[   60.182847][ T4018] EXT4-fs error (device loop3): ext4_lookup:1817: inode #2: comm syz.3.197: deleted inode referenced: 12
[   60.499443][ T4042] loop0: detected capacity change from 0 to 512
[   60.528490][ T4042] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   60.602962][ T4042] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.206: bad orphan inode 16
[   60.613154][ T4042] ext4_test_bit(bit=15, block=4) = 0
[   60.618529][ T4042] EXT4-fs (loop0): 1 orphan inode deleted
[   60.638128][ T4048] loop2: detected capacity change from 0 to 512
[   60.652414][ T4048] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   60.664675][ T4048] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.208: corrupted in-inode xattr: e_name out of bounds
[   60.681329][ T4048] EXT4-fs (loop2): Remounting filesystem read-only
[   60.687952][ T4048] EXT4-fs (loop2): 1 truncate cleaned up
[   60.694139][ T4048] SELinux: (dev loop2, type ext4) getxattr errno 5
[   60.930544][ T4050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   60.957998][ T4050] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   60.968062][ T4060] loop4: detected capacity change from 0 to 512
[   60.977025][ T4056] loop3: detected capacity change from 0 to 1024
[   61.001230][ T4060] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   61.039725][ T4060] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.211: invalid indirect mapped block 4294967295 (level 0)
[   61.073220][ T4060] EXT4-fs (loop4): Remounting filesystem read-only
[   61.079579][ T4064] 9p: Unknown access argument k§@ámchk"ù°L€:O"´tœÌå‹C§Ïeü]zqèÚ2NÃ7Vw”3ÒÞ3kȇu­[¢ðïÏ6줓îå~¥(Yë•00000000000000000000: -22
[   61.080197][ T4060] EXT4-fs (loop4): 1 orphan inode deleted
[   61.099214][ T4060] EXT4-fs (loop4): 1 truncate cleaned up
[   61.105313][ T4060] SELinux: (dev loop4, type ext4) getxattr errno 5
[   61.151839][ T4069] loop1: detected capacity change from 0 to 128
[   61.208879][ T4077] loop4: detected capacity change from 0 to 512
[   61.227355][ T4077] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   61.238374][ T4077] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.217: bad orphan inode 16
[   61.252287][ T4077] ext4_test_bit(bit=15, block=4) = 0
[   61.257704][ T4077] EXT4-fs (loop4): 1 orphan inode deleted
[   61.294568][ T4089] loop1: detected capacity change from 0 to 256
[   61.302109][ T4089] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   61.307243][ T4088] tipc: Started in network mode
[   61.316218][ T4088] tipc: Node identity 82bc63c2baca, cluster identity 4711
[   61.323400][ T4088] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   61.364622][ T4094] syzkaller0: entered promiscuous mode
[   61.370283][ T4094] syzkaller0: entered allmulticast mode
[   61.392272][ T4096] loop1: detected capacity change from 0 to 512
[   61.396554][ T4088] tipc: Resetting bearer <eth:syzkaller0>
[   61.398982][ T4096] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   61.428443][ T4096] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.225: invalid indirect mapped block 4294967295 (level 0)
[   61.451927][ T4088] loop3: detected capacity change from 0 to 256
[   61.461773][ T4096] EXT4-fs (loop1): Remounting filesystem read-only
[   61.469517][ T4088] FAT-fs (loop3): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   61.479287][ T4096] EXT4-fs (loop1): 1 orphan inode deleted
[   61.485271][ T4096] EXT4-fs (loop1): 1 truncate cleaned up
[   61.492074][ T4096] SELinux: (dev loop1, type ext4) getxattr errno 5
[   61.504001][ T4087] tipc: Resetting bearer <eth:syzkaller0>
[   61.517608][ T4091] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.533406][ T4091] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   61.543389][ T4087] tipc: Disabling bearer <eth:syzkaller0>
[   61.592497][ T4109] loop2: detected capacity change from 0 to 512
[   61.609307][ T4109] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   61.652111][ T4109] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.230: bad orphan inode 16
[   61.662608][ T4109] ext4_test_bit(bit=15, block=4) = 0
[   61.668049][ T4109] EXT4-fs (loop2): 1 orphan inode deleted
[   61.675648][ T4120] loop3: detected capacity change from 0 to 128
[   61.837515][ T4139] loop3: detected capacity change from 0 to 512
[   61.845342][ T4139] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   61.860856][ T4139] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.236: bad orphan inode 16
[   61.872265][ T4142] FAULT_INJECTION: forcing a failure.
[   61.872265][ T4142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   61.875235][ T4139] ext4_test_bit(bit=15, block=4) = 0
[   61.885390][ T4142] CPU: 0 UID: 0 PID: 4142 Comm: syz.1.237 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[   61.885415][ T4142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   61.885426][ T4142] Call Trace:
[   61.885432][ T4142]  <TASK>
[   61.885439][ T4142]  dump_stack_lvl+0xf2/0x150
[   61.885531][ T4142]  dump_stack+0x15/0x1a
[   61.885549][ T4142]  should_fail_ex+0x24a/0x260
[   61.885577][ T4142]  should_fail+0xb/0x10
[   61.885600][ T4142]  should_fail_usercopy+0x1a/0x20
[   61.885684][ T4142]  _copy_from_user+0x1c/0xa0
[   61.885704][ T4142]  move_addr_to_kernel+0x82/0x120
[   61.885779][ T4142]  __sys_connect+0x67/0x1b0
[   61.885824][ T4142]  __x64_sys_connect+0x41/0x50
[   61.885844][ T4142]  x64_sys_call+0x22a7/0x2dc0
[   61.885866][ T4142]  do_syscall_64+0xc9/0x1c0
[   61.885887][ T4142]  ? clear_bhb_loop+0x55/0xb0
[   61.885910][ T4142]  ? clear_bhb_loop+0x55/0xb0
[   61.886023][ T4142]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   61.886046][ T4142] RIP: 0033:0x7f6b037fcda9
[   61.886061][ T4142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   61.886077][ T4142] RSP: 002b:00007f6b01e67038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[   61.886093][ T4142] RAX: ffffffffffffffda RBX: 00007f6b03a15fa0 RCX: 00007f6b037fcda9
[   61.886104][ T4142] RDX: 0000000000000010 RSI: 0000000020772000 RDI: 0000000000000007
[   61.886122][ T4142] RBP: 00007f6b01e67090 R08: 0000000000000000 R09: 0000000000000000
[   61.886133][ T4142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   61.886143][ T4142] R13: 0000000000000000 R14: 00007f6b03a15fa0 R15: 00007fffbdf0b4a8
[   61.886160][ T4142]  </TASK>
[   61.929782][ T4134] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   61.931096][ T4139] EXT4-fs (loop3): 1 orphan inode deleted
[   62.074218][ T4134] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.140808][ T4154] loop1: detected capacity change from 0 to 512
[   62.150119][ T4154] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   62.161439][ T4154] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.242: invalid indirect mapped block 4294967295 (level 0)
[   62.175904][ T4154] EXT4-fs (loop1): Remounting filesystem read-only
[   62.183079][ T4154] EXT4-fs (loop1): 1 orphan inode deleted
[   62.188862][ T4154] EXT4-fs (loop1): 1 truncate cleaned up
[   62.194852][ T4154] SELinux: (dev loop1, type ext4) getxattr errno 5
[   62.227055][ T4157] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   62.240003][ T4157] syzkaller0: entered promiscuous mode
[   62.245514][ T4157] syzkaller0: entered allmulticast mode
[   62.256487][ T4157] tipc: Resetting bearer <eth:syzkaller0>
[   62.263020][ T4148] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   62.275017][ T4148] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   62.286232][ T4158] ==================================================================
[   62.294416][ T4158] BUG: KCSAN: data-race in getrusage / vms_clear_ptes
[   62.301196][ T4158] 
[   62.303606][ T4158] write to 0xffff888117bdaaf8 of 8 bytes by task 4157 on cpu 1:
[   62.311227][ T4158]  vms_clear_ptes+0x1a2/0x300
[   62.315905][ T4158]  vms_complete_munmap_vmas+0x17b/0x480
[   62.321462][ T4158]  do_vmi_align_munmap+0x344/0x390
[   62.326579][ T4158]  do_vmi_munmap+0x1eb/0x230
[   62.331179][ T4158]  __vm_munmap+0x19a/0x280
[   62.335589][ T4158]  __x64_sys_munmap+0x36/0x40
[   62.340257][ T4158]  x64_sys_call+0xe14/0x2dc0
[   62.344849][ T4158]  do_syscall_64+0xc9/0x1c0
[   62.349345][ T4158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   62.355249][ T4158] 
[   62.357557][ T4158] read to 0xffff888117bdaaf8 of 8 bytes by task 4158 on cpu 0:
[   62.365082][ T4158]  getrusage+0xa15/0xb70
[   62.369323][ T4158]  io_sq_thread+0x5f9/0x1100
[   62.374097][ T4158]  ret_from_fork+0x4b/0x60
[   62.378508][ T4158]  ret_from_fork_asm+0x1a/0x30
[   62.383276][ T4158] 
[   62.385587][ T4158] value changed: 0x00000000000014e5 -> 0x00000000000016fb
[   62.392678][ T4158] 
[   62.394999][ T4158] Reported by Kernel Concurrency Sanitizer on:
[   62.401303][ T4158] CPU: 0 UID: 0 PID: 4158 Comm: iou-sqp-4157 Not tainted 6.13.0-syzkaller-09760-g69e858e0b8b2 #0
[   62.411816][ T4158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   62.421967][ T4158] ==================================================================
[   62.432466][ T4157] loop1: detected capacity change from 0 to 256
[   62.445685][ T4157] FAT-fs (loop1): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[   62.457781][ T4156] tipc: Resetting bearer <eth:syzkaller0>
[   62.464713][ T4156] tipc: Disabling bearer <eth:syzkaller0>